"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "share/man/man8/arno-iptables-firewall.8" between
aif-2.1.0.tar.gz and aif-2.1.1.tar.gz

About: Arno’s iptables firewall is a stateful firewall script for both single and multi-homed machines with DSL/ADSL support.

arno-iptables-firewall.8  (aif-2.1.0):arno-iptables-firewall.8  (aif-2.1.1)
ARNO-IPTABLES-FIREWALL(8) ARNO-IPTABLES-FIREWALL(8) ARNO-IPTABLES-FIREWALL(8) AIF Manual ARNO-IPTABLES-FIREWALL(8)
NAME NAME
arno-iptables-firewall - Single- & multi-homed firewall script with DSL/A DSL support. arno-iptables-firewall - Single- & multi-homed firewall script with DSL/A DSL support.
SYNOPSIS SYNOPSIS
/etc/init.d/arno-iptables-firewall [start|stop|status|force-reload|restar arno-iptables-firewall start | restart | force-reload | stop | stop-b
t] lock | status | status-plugins |
check-conf
DESCRIPTION DESCRIPTION
arno-iptables-firewall is an iptables configuration script with support arno-iptables-firewall is an iptables configuration script with support f
for both IPv4 & IPv6. While it or both IPv4 & IPv6. In general,
is extremely easy to use one can nevertheless use it in quite complicated it should not be called directly, but rather should be invoked via /etc/
environments. init.d/arno-iptables-firewall or
systemctl COMMAND arno-iptables-firewall.service, depending on the init
system in use. While it is
extremely easy to set up a basic firewall one can nevertheless co
nfigure it to meet quite complex
requirements.
All available options are explained in the extensively documented configu ration file. All available options are explained in the extensively documented configu ration file.
The external interface of the system needs to be set up properly in the As a bare minimum the external interface of the system needs to be set up
firewalls configuration file properly in the firewalls con-
(EXT_IF). The default behavior of the firewall is to deny all incoming c figuration (EXT_IF). The default behavior of the firewall is to deny all
onnections. incoming connections.
For additional requirements not covered by the configuration file custom Instead of editing the main configuration file, it is recommended to
iptables rules can be placed in put configuration snippets into
/etc/arno-iptables-firewall/custom-rules. This file is automatically par .conf files to be placed in the configuration directory. These are source
sed by the service script. d after the main configuration
file has been read and can be used to override previous (default) configu
rations.
For additional requirements not covered by the configuration file an
d not coverable by configuration
snippets custom iptables rules can be placed in a custom rules file. This
file is automatically parsed by
the service script.
See the README file (eg. in /usr/(local/)share/doc/arno-iptables-firewall Logs are written to a dedicated log file if rsyslogd is in use. The arn
) for an example how to manage o-fwfilter script can be used to
logging of firewall events through syslogd. make the firewall logs more readable for humans (see manpage).
The arno-fwfilter script can be used to make the firewall logs more reada Several plugins implementing advanced features come with the firewall scr
ble for humans (see manpage). ipt. Each of them brings its own
configuration file to be found in the plugins configuration directory.
Several plugins for the firewall script are available online. Pl
ugins can be downloaded from
https://rocky.eld.leidenuniv.nl/ Please see the README file for more info
rmation.
FILES FILES
/etc/init.d/arno-iptables-firewall system service script
/etc/arno-iptables-firewall/firewall.conf firewall configuration
/etc/arno-iptables-firewall/conf.d/ firewall configuration di
rectory
/etc/arno-iptables-firewall/custom-rules custom iptables rules
/etc/arno-iptables-firewall/blocked-hosts host blacklist
/etc/arno-iptables-firewall/mac-addresses mac filter list
Please note, that the last two files do exist in the initial configuratio
n and their use is disabled in
/etc/arno-iptables-firewall/firewall.conf /etc/arno-iptables-firewall/firewall.conf
main configuration file
SEE ALSO /etc/arno-iptables-firewall/conf.d/
iptables(8), arno-fwfilter(1), syslog.conf(5) firewall configuration directory
/etc/arno-iptables-firewall/plugins/
plugins configuration directory
The https://rocky.eld.leidenuniv.nl/ web site. /etc/arno-iptables-firewall/custom-rules
custom iptables rules file
/etc/arno-iptables-firewall/blocked-hosts
host blacklist. This file does not pre-exist and its use is di
sabled in the main configuration
file by default.
/var/log/arno-iptables-firewall
log file maintained by rsyslogd
SEE ALSO
iptables(8), arno-fwfilter(1), /usr/local/share/doc/a
rno-iptables-firewall/README.gz,
https://rocky.eld.leidenuniv.nl/
AUTHOR AUTHORS
arno-iptables-firewall was written by Arno van Amersfoort <arnova@roc ky.eld.leidenuniv.nl> and Lonnie arno-iptables-firewall was written by Arno van Amersfoort <arnova@roc ky.eld.leidenuniv.nl> and Lonnie
Abelbeck <abelbeck@rocky.eld.leidenuniv.nl>. Abelbeck <lonnie@abelbeck.com>.
This manual page was written by Michael Hanke <michael.hanke@gmail.com>, This manual page was initially written by Michael Hanke <michael.hanke@gm
for the Debian project (but may ail.com> and has been reworked
be used by others). by Sven Geuer <debmaint@g-e-u-e-r.de>, for the Debian project (but may be
used by others).
Michael Hanke March 14, 2012 ARNO-IPTABLES-FIREWALL(8) Sven Geuer 2020-03-25 ARNO-IPTABLES-FIREWALL(8)
 End of changes. 15 change blocks. 
43 lines changed or deleted 62 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)