forked from extern/shorewall_code
117 lines
3.3 KiB
RPMSpec
117 lines
3.3 KiB
RPMSpec
%define name shorewall-init
|
|
%define version 4.4.10
|
|
%define release 0Beta2
|
|
|
|
Summary: Shorewall-init adds functionality to Shoreline Firewall (Shorewall).
|
|
Name: %{name}
|
|
Version: %{version}
|
|
Release: %{release}
|
|
License: GPLv2
|
|
Packager: Tom Eastep <teastep@shorewall.net>
|
|
Group: Networking/Utilities
|
|
Source: %{name}-%{version}.tgz
|
|
URL: http://www.shorewall.net/
|
|
BuildArch: noarch
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-root
|
|
Requires: shoreline_firewall >= 4.4.10
|
|
|
|
%description
|
|
|
|
The Shoreline Firewall, more commonly known as "Shorewall", is a Netfilter
|
|
(iptables) based firewall that can be used on a dedicated firewall system,
|
|
a multi-function gateway/ router/server or on a standalone GNU/Linux system.
|
|
|
|
Shorewall Init is a companion product to Shorewall that allows for tigher
|
|
control of connections during boot and that integrates Shorewall with
|
|
ifup/ifdown and NetworkManager.
|
|
|
|
%prep
|
|
|
|
%setup
|
|
|
|
%build
|
|
|
|
%install
|
|
export PREFIX=$RPM_BUILD_ROOT ; \
|
|
export OWNER=`id -n -u` ; \
|
|
export GROUP=`id -n -g` ;\
|
|
./install.sh
|
|
|
|
%clean
|
|
rm -rf $RPM_BUILD_ROOT
|
|
|
|
%pre
|
|
|
|
if [ -f /etc/sysconfig/shorewall-init ]; then
|
|
cp -fa /etc/sysconfig/shorewall-init /etc/sysconfig/shorewall-init.rpmsave
|
|
fi
|
|
|
|
%post
|
|
|
|
if [ $1 -eq 1 ]; then
|
|
if [ -x /sbin/insserv ]; then
|
|
/sbin/insserv /etc/rc.d/shorewall-init
|
|
elif [ -x /sbin/chkconfig ]; then
|
|
/sbin/chkconfig --add shorewall-init;
|
|
fi
|
|
|
|
if [ -f /etc/SuSE-release ]; then
|
|
ln -sf /usr/share/shorewall-init/ifupdown /etc/sysconfig/network/if-up.d/shorewall
|
|
ln -sf /usr/share/shorewall-init/ifupdown /etc/sysconfig/network/if-down.d/shorewall
|
|
else
|
|
if [ -f /sbin/ifup-local -o -f /sbin/ifdown-local ]; then
|
|
echo "WARNING: /sbin/ifup-local and/or /sbin/ifdown-local already exist; ifup/ifdown events will not be handled" >&2
|
|
else
|
|
ln -s /usr/share/shorewall-init/ifupdown /sbin/ifup-local
|
|
ln -s /usr/share/shorewall-init/ifupdown /sbin/ifdown-local
|
|
fi
|
|
|
|
if [ -d /etc/NetworkManager/dispatcher.d ]; then
|
|
#
|
|
# RedHat doesn't integrate ifup-local/ifdown-local with NetworkManager
|
|
#
|
|
ln -s /usr/share/shorewall-init/ifupdown /etc/NetworkManager/dispatcher.d/01-shorewall
|
|
fi
|
|
fi
|
|
fi
|
|
|
|
%preun
|
|
|
|
if [ $1 -eq 0 ]; then
|
|
if [ -x /sbin/insserv ]; then
|
|
/sbin/insserv -r /etc/init.d/shorewall-init
|
|
elif [ -x /sbin/chkconfig ]; then
|
|
/sbin/chkconfig --del shorewall-init
|
|
fi
|
|
|
|
[ -f /sbin/ifup-local ] && $(ls -l /sbin/ifup-local) | grep -q /usr/share/shorewall-init && rm -f /sbin/ifup-local
|
|
[ -f /sbin/ifdown-local ] && $(ls -l /sbin/ifdown-local) | grep -q /usr/share/shorewall-init && rm -f /sbin/ifdown-local
|
|
|
|
rm -f /etc/sysconfig/shorewall-init
|
|
|
|
rm -f /etc/NetworkManager/dispatcher.d/01-shorewall
|
|
|
|
rm -f /etc/sysconfig/network/if-up.d/shorewall
|
|
rm -f /etc/sysconfig/network/if-down.d/shorewall
|
|
fi
|
|
|
|
%files
|
|
%defattr(0644,root,root,0755)
|
|
%attr(0644,root,root) %config(noreplace) /etc/sysconfig/shorewall-init
|
|
%attr(0544,root,root) /etc/init.d/shorewall-init
|
|
%attr(0755,root,root) %dir /usr/share/shorewall-init
|
|
|
|
%attr(0644,root,root) /usr/share/shorewall-init/version
|
|
%attr(0544,root,root) /usr/share/shorewall-init/ifupdown
|
|
|
|
%doc COPYING changelog.txt releasenotes.txt
|
|
|
|
%changelog
|
|
* Thu May 20 2010 Tom Eastep tom@shorewall.net
|
|
- Updated to 4.4.10-0Beta2
|
|
* Tue May 18 2010 Tom Eastep tom@shorewall.net
|
|
- Initial version
|
|
|
|
|
|
|