| shorewall-actions.xml (shorewall-docs-xml-5.2.3.6.tar.bz2) | : | shorewall-actions.xml (shorewall-docs-xml-5.2.6.tar.bz2) |
|---|
| | |
| skipping to change at line 29 | | skipping to change at line 29 |
|---|
| <refsynopsisdiv> | | <refsynopsisdiv> |
| <cmdsynopsis> | | <cmdsynopsis> |
| <command>/etc/shorewall[6]/actions</command> | | <command>/etc/shorewall[6]/actions</command> |
| </cmdsynopsis> | | </cmdsynopsis> |
| </refsynopsisdiv> | | </refsynopsisdiv> |
| | |
| <refsect1> | | <refsect1> |
| <title>Description</title> | | <title>Description</title> |
| | |
| <para>This file allows you to define new ACTIONS for use in rules (see | | <para>This file allows you to define new ACTIONS for use in rules (see |
|
| <ulink url="/manpages/shorewall-rules.html">shorewall-rules(5)</ulink>). | | <ulink url="shorewall-rules.html">shorewall-rules(5)</ulink>). You define |
| You define the iptables rules to be performed in an ACTION in | | the iptables rules to be performed in an ACTION in |
| /etc/shorewall/action.<emphasis>action-name</emphasis>.</para> | | /etc/shorewall/action.<emphasis>action-name</emphasis>.</para> |
| | |
| <para>Columns are:</para> | | <para>Columns are:</para> |
| | |
| <variablelist> | | <variablelist> |
| <varlistentry> | | <varlistentry> |
| <term>NAME</term> | | <term>NAME</term> |
| | |
| <listitem> | | <listitem> |
| <para>The name of the action. ACTION names should begin with an | | <para>The name of the action. ACTION names should begin with an |
| | |
| skipping to change at line 75 | | skipping to change at line 75 |
|---|
| </varlistentry> | | </varlistentry> |
| | |
| <varlistentry> | | <varlistentry> |
| <term><option>builtin</option></term> | | <term><option>builtin</option></term> |
| | |
| <listitem> | | <listitem> |
| <para>Added in Shorewall 4.5.16. Defines the action as a rule | | <para>Added in Shorewall 4.5.16. Defines the action as a rule |
| target that is supported by your iptables but is not directly | | target that is supported by your iptables but is not directly |
| supported by Shorewall. The action may be used as the rule | | supported by Shorewall. The action may be used as the rule |
| target in an INLINE rule in <ulink | | target in an INLINE rule in <ulink |
|
| url="/manpages/shorewall-rules.html">shorewall-rules</ulink>(5).
</para> | | url="shorewall-rules.html">shorewall-rules</ulink>(5).</para> |
| | |
| <para>Beginning with Shorewall 4.6.0, the Netfilter table(s) | | <para>Beginning with Shorewall 4.6.0, the Netfilter table(s) |
| in which the <emphasis role="bold">builtin</emphasis> can be | | in which the <emphasis role="bold">builtin</emphasis> can be |
| used may be specified: <emphasis | | used may be specified: <emphasis |
| role="bold">filter</emphasis>, <emphasis | | role="bold">filter</emphasis>, <emphasis |
| role="bold">nat</emphasis>, <emphasis | | role="bold">nat</emphasis>, <emphasis |
| role="bold">mangle</emphasis> and <emphasis | | role="bold">mangle</emphasis> and <emphasis |
| role="bold">raw</emphasis>. If no table name(s) are given, | | role="bold">raw</emphasis>. If no table name(s) are given, |
| then <emphasis role="bold">filter</emphasis> is assumed. The | | then <emphasis role="bold">filter</emphasis> is assumed. The |
| table names follow <emphasis role="bold">builtin</emphasis> | | table names follow <emphasis role="bold">builtin</emphasis> |
| | |
| skipping to change at line 151 | | skipping to change at line 151 |
|---|
| option is identical to <option>nolog</option>.</para> | | option is identical to <option>nolog</option>.</para> |
| </listitem> | | </listitem> |
| </varlistentry> | | </varlistentry> |
| | |
| <varlistentry> | | <varlistentry> |
| <term><option>mangle</option></term> | | <term><option>mangle</option></term> |
| | |
| <listitem> | | <listitem> |
| <para>Added in Shorewall 5.0.7. Specifies that this action is | | <para>Added in Shorewall 5.0.7. Specifies that this action is |
| to be used in <ulink | | to be used in <ulink |
|
| url="/manpages/shorewall-mangle.html">shorewall-mangle(5)</ulink | | url="shorewall-mangle.html">shorewall-mangle(5)</ulink> rather |
| > | | than <ulink |
| rather than <ulink | | url="shorewall-rules.html">shorewall-rules(5)</ulink>.</para> |
| url="/manpages/shorewall-rules.html">shorewall-rules(5)</ulink>. | | |
| </para> | | |
| </listitem> | | </listitem> |
| </varlistentry> | | </varlistentry> |
| | |
| <varlistentry> | | <varlistentry> |
| <term><option>nat</option></term> | | <term><option>nat</option></term> |
| | |
| <listitem> | | <listitem> |
| <para>Added in Shorewall 5.0.13. Specifies that this action is | | <para>Added in Shorewall 5.0.13. Specifies that this action is |
| to be used in <ulink | | to be used in <ulink |
|
| url="/manpages/shorewall-snat.html">shorewall-snat(5)</ulink> | | url="shorewall-snat.html">shorewall-snat(5)</ulink> rather |
| rather than <ulink | | than <ulink |
| url="/manpages/shorewall-rules.html">shorewall-rules(5)</ulink>. | | url="shorewall-rules.html">shorewall-rules(5)</ulink>. The |
| The <option>mangle</option> and <option>nat</option> options | | <option>mangle</option> and <option>nat</option> options are |
| are mutually exclusive.</para> | | mutually exclusive.</para> |
| </listitem> | | </listitem> |
| </varlistentry> | | </varlistentry> |
| | |
| <varlistentry> | | <varlistentry> |
| <term><option>noinline</option></term> | | <term><option>noinline</option></term> |
| | |
| <listitem> | | <listitem> |
| <para>Causes any later <option>inline</option> option for the | | <para>Causes any later <option>inline</option> option for the |
| same action to be ignored with a warning.</para> | | same action to be ignored with a warning.</para> |
| </listitem> | | </listitem> |
| | |
| skipping to change at line 216 | | skipping to change at line 216 |
|---|
| <replaceable>protocol</replaceable>.</para> | | <replaceable>protocol</replaceable>.</para> |
| | |
| <para>The <option>proto</option> option has no effect if the | | <para>The <option>proto</option> option has no effect if the |
| <option>inline</option> or <option>builtin</option> option is | | <option>inline</option> or <option>builtin</option> option is |
| specified. A warning is issued if <option>proto</option> is | | specified. A warning is issued if <option>proto</option> is |
| specified along with <option>builtin</option>.</para> | | specified along with <option>builtin</option>.</para> |
| </listitem> | | </listitem> |
| </varlistentry> | | </varlistentry> |
| | |
| <varlistentry> | | <varlistentry> |
|
| | <term><option>dport</option>=<replaceable>portorservice</replaceab |
| | le></term> |
| | |
| | <listitem> |
| | <para>Added in Shorewall 5.2.6. Requires that the <emphasis |
| | role="bold">proto</emphasis> option be previously given and |
| | indicates that this action may only be applied to flows with |
| | the specified <replaceable>protocol</replaceable> and |
| | <replaceable>portorservice</replaceable>. |
| | <replaceable>portorservice</replaceable> may be a valid port |
| | number or the name of a service defined in /etc/services to be |
| | usable with the specified <replaceable>protocol</replaceable>. |
| | If a port or service is specified in the DPORT column of an |
| | invocation, then it must match the named |
| | <replaceable>portorservice</replaceable>.</para> |
| | </listitem> |
| | </varlistentry> |
| | |
| | <varlistentry> |
| <term><option>section</option></term> | | <term><option>section</option></term> |
| | |
| <listitem> | | <listitem> |
| <para>Added in Shorewall 5.1.1. When specified, this option | | <para>Added in Shorewall 5.1.1. When specified, this option |
| causes the rules file section name and a comma to be prepended | | causes the rules file section name and a comma to be prepended |
| to the parameters passed to the action (if any). Note that | | to the parameters passed to the action (if any). Note that |
| this means that the first parameter passed to the action by | | this means that the first parameter passed to the action by |
| the user is actually the second parameter to the action. If | | the user is actually the second parameter to the action. If |
| the action is invoked out of the blrules file, 'BLACKLIST' is | | the action is invoked out of the blrules file, 'BLACKLIST' is |
| used as the section name.</para> | | used as the section name.</para> |
| | |
| skipping to change at line 271 | | skipping to change at line 289 |
|---|
| | |
| <para>/etc/shorewall/actions</para> | | <para>/etc/shorewall/actions</para> |
| | |
| <para>/etc/shorewall6/actions</para> | | <para>/etc/shorewall6/actions</para> |
| </refsect1> | | </refsect1> |
| | |
| <refsect1> | | <refsect1> |
| <title>See ALSO</title> | | <title>See ALSO</title> |
| | |
| <para><ulink | | <para><ulink |
|
| url="/Actions.html">http://www.shorewall.net/Actions.html</ulink></para> | | url="../Actions.html">https://shorewall.org/Actions.html</ulink></para> |
| | |
| <para>shorewall(8)</para> | | <para>shorewall(8)</para> |
| </refsect1> | | </refsect1> |
| </refentry> | | </refentry> |
| | | |
| End of changes. 6 change blocks. |
|---|
| 14 lines changed or deleted | | 31 lines changed or added |
|---|
"Fossies" - the Fresh Open Source Software Archive 