forked from extern/shorewall_code
99 lines
2.2 KiB
Plaintext
99 lines
2.2 KiB
Plaintext
#
|
|
# Shorewall6 version 4 - Modules File
|
|
#
|
|
# /usr/share/shorewall6/modules
|
|
#
|
|
# This file loads the modules that may be needed by the firewall.
|
|
#
|
|
# THE ORDER OF THE COMMANDS BELOW IS IMPORTANT!!!!!! You MUST load in
|
|
# dependency order. i.e., if M2 depends on M1 then you must load M1
|
|
# before you load M2.
|
|
#
|
|
# If you need to modify this file, copy it to /etc/shorewall and modify the
|
|
# copy.
|
|
#
|
|
###############################################################################
|
|
#
|
|
# Essential Modules
|
|
#
|
|
loadmodule nfnetlink
|
|
loadmodule x_tables
|
|
loadmodule ip6_tables
|
|
loadmodule ip6table_filter
|
|
loadmodule ip6table_mangle
|
|
loadmodule ip6table_raw
|
|
loadmodule xt_conntrack
|
|
loadmodule nf_conntrack_ipv6
|
|
loadmodule xt_state
|
|
loadmodule xt_tcpudp
|
|
loadmodule ip6t_REJECT
|
|
loadmodule ip6t_LOG
|
|
#
|
|
# Other xtables modules
|
|
#
|
|
loadmodule xt_CLASSIFY
|
|
loadmodule xt_connmark
|
|
loadmodule xt_CONNMARK
|
|
loadmodule xt_conntrack
|
|
loadmodule xt_dccp
|
|
loadmodule xt_dscp
|
|
loadmodule xt_DSCP
|
|
loadmodule xt_hashlimit
|
|
loadmodule xt_helper
|
|
loadmodule xt_iprange
|
|
loadmodule xt_length
|
|
loadmodule xt_limit
|
|
loadmodule xt_mac
|
|
loadmodule xt_mark
|
|
loadmodule xt_MARK
|
|
loadmodule xt_multiport
|
|
loadmodule xt_NFQUEUE
|
|
loadmodule xt_owner
|
|
loadmodule xt_physdev
|
|
loadmodule xt_pkttype
|
|
loadmodule xt_policy
|
|
loadmodule xt_sctp
|
|
loadmodule xt_tcpmss
|
|
loadmodule xt_TCPMSS
|
|
loadmodule xt_time
|
|
loadmodule xt_IPMARK
|
|
loadmodule xt_TPROXY
|
|
#
|
|
# Helpers
|
|
#
|
|
loadmodule nf_conntrack_amanda
|
|
loadmodule nf_conntrack_ftp
|
|
loadmodule nf_conntrack_h323
|
|
loadmodule nf_conntrack_irc
|
|
loadmodule nf_conntrack_netbios_ns
|
|
loadmodule nf_conntrack_netbios_ns
|
|
loadmodule nf_conntrack_netlink
|
|
loadmodule nf_conntrack_pptp
|
|
loadmodule nf_conntrack_proto_sctp
|
|
loadmodule nf_conntrack_proto_udplite
|
|
loadmodule nf_conntrack_sane
|
|
loadmodule nf_conntrack_sip
|
|
loadmodule nf_conntrack_pptp
|
|
loadmodule nf_conntrack_proto_gre
|
|
loadmodule nf_conntrack_proto_sctp
|
|
loadmodule nf_conntrack_sip
|
|
loadmodule nf_conntrack_tftp
|
|
loadmodule nf_conntrack_sane
|
|
#
|
|
# Traffic Shaping
|
|
#
|
|
loadmodule sch_sfq
|
|
loadmodule sch_ingress
|
|
loadmodule sch_htb
|
|
loadmodule sch_hfsc
|
|
loadmodule sch_prio
|
|
loadmodule sch_tbf
|
|
loadmodule cls_u32
|
|
loadmodule cls_fw
|
|
loadmodule cls_flow
|
|
loadmodule act_police
|
|
#
|
|
# Extensions
|
|
#
|
|
loadmodule ip6_queue
|