"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "manpages/shorewall-conntrack.xml" between
shorewall-docs-xml-5.2.3.6.tar.bz2 and shorewall-docs-xml-5.2.6.tar.bz2

About: Shorewall (The Shoreline Firewall) is an iptables based firewall (documentation; XML)

[ To the main shorewall (docs-xml) source changes report ]

shorewall-conntrack.xml  (shorewall-docs-xml-5.2.3.6.tar.bz2):shorewall-conntrack.xml  (shorewall-docs-xml-5.2.6.tar.bz2)
skipping to change at line 293 skipping to change at line 293
recognized by Shorewall, the following error message will be recognized by Shorewall, the following error message will be
issued:</para> issued:</para>
<simplelist> <simplelist>
<member>ERROR: Unknown target <member>ERROR: Unknown target
(<replaceable>target</replaceable>)</member> (<replaceable>target</replaceable>)</member>
</simplelist> </simplelist>
<para>This error message may be eliminated by adding <para>This error message may be eliminated by adding
<replaceable>target</replaceable> as a builtin action in <ulink <replaceable>target</replaceable> as a builtin action in <ulink
url="/manpages/shorewall-actions.html">shorewall-actions</ulink>(5 ).</para> url="shorewall-actions.html">shorewall-actions</ulink>(5).</para>
</listitem> </listitem>
<listitem> <listitem>
<para><option>IPTABLES</option>(<replaceable>target</replaceable>) </para> <para><option>IPTABLES</option>(<replaceable>target</replaceable>) </para>
<para>IPv4 only.</para> <para>IPv4 only.</para>
<para>Added in Shorewall 4.6.0. Allows you to specify any <para>Added in Shorewall 4.6.0. Allows you to specify any
iptables <replaceable>target</replaceable> with target options iptables <replaceable>target</replaceable> with target options
(e.g., "IPTABLES(AUDIT --type drop)"). If the target is not one (e.g., "IPTABLES(AUDIT --type drop)"). If the target is not one
recognized by Shorewall, the following error message will be recognized by Shorewall, the following error message will be
issued:</para> issued:</para>
<simplelist> <simplelist>
<member>ERROR: Unknown target <member>ERROR: Unknown target
(<replaceable>target</replaceable>)</member> (<replaceable>target</replaceable>)</member>
</simplelist> </simplelist>
<para>This error message may be eliminated by adding <para>This error message may be eliminated by adding
<replaceable>target</replaceable> as a builtin action in <ulink <replaceable>target</replaceable> as a builtin action in <ulink
url="/manpages/shorewall-actions.html">shorewall-actions</ulink>(5 ).</para> url="shorewall-actions.html">shorewall-actions</ulink>(5).</para>
</listitem> </listitem>
<listitem> <listitem>
<para><option>LOG</option></para> <para><option>LOG</option></para>
<para>Added in Shoreawll 4.6.0. Logs the packet using the <para>Added in Shoreawll 4.6.0. Logs the packet using the
specified <replaceable>log-level</replaceable> and<replaceable> specified <replaceable>log-level</replaceable> and<replaceable>
log-tag </replaceable>(if any). If no log-level is specified, log-tag </replaceable>(if any). If no log-level is specified,
then 'info' is assumed.</para> then 'info' is assumed.</para>
</listitem> </listitem>
skipping to change at line 392 skipping to change at line 392
<varlistentry> <varlistentry>
<term>SOURCE (formats 1 and 2) ‒ <term>SOURCE (formats 1 and 2) ‒
{<emphasis>zone</emphasis>[:<emphasis>interface</emphasis>][:<emphasis>a ddress-list</emphasis>]}</term> {<emphasis>zone</emphasis>[:<emphasis>interface</emphasis>][:<emphasis>a ddress-list</emphasis>]}</term>
<listitem> <listitem>
<para>where <replaceable>zone</replaceable> is the name of a zone, <para>where <replaceable>zone</replaceable> is the name of a zone,
<replaceable>interface</replaceable> is an interface to that zone, <replaceable>interface</replaceable> is an interface to that zone,
and <replaceable>address-list</replaceable> is a comma-separated and <replaceable>address-list</replaceable> is a comma-separated
list of addresses (may contain exclusion - see <ulink list of addresses (may contain exclusion - see <ulink
url="/manpages/shorewall-exclusion.html">shorewall-exclusion</ulink> url="shorewall-exclusion.html">shorewall-exclusion</ulink>
(5)).</para> (5)).</para>
<para>Beginning with Shorewall 4.5.7, <option>all</option> can be <para>Beginning with Shorewall 4.5.7, <option>all</option> can be
used as the <replaceable>zone</replaceable> name to mean used as the <replaceable>zone</replaceable> name to mean
<firstterm>all zones</firstterm>.</para> <firstterm>all zones</firstterm>.</para>
<para>Beginning with Shorewall 4.5.10, <option>all-</option> can be <para>Beginning with Shorewall 4.5.10, <option>all-</option> can be
used as the <replaceable>zone</replaceable> name to mean all used as the <replaceable>zone</replaceable> name to mean all
<firstterm>off-firewall zone</firstterm>s.</para> <firstterm>off-firewall zone</firstterm>s.</para>
</listitem> </listitem>
skipping to change at line 414 skipping to change at line 414
<varlistentry> <varlistentry>
<term>SOURCE (format 3 prior to Shorewall 5.1.0) ‒ <term>SOURCE (format 3 prior to Shorewall 5.1.0) ‒
{-|<emphasis>interface</emphasis>[:<emphasis>address-list</emphasis>]|<r eplaceable>address-list</replaceable>}</term> {-|<emphasis>interface</emphasis>[:<emphasis>address-list</emphasis>]|<r eplaceable>address-list</replaceable>}</term>
<listitem> <listitem>
<para>Where <replaceable>interface</replaceable> is an interface to <para>Where <replaceable>interface</replaceable> is an interface to
that zone, and <replaceable>address-list</replaceable> is a that zone, and <replaceable>address-list</replaceable> is a
comma-separated list of addresses (may contain exclusion - see comma-separated list of addresses (may contain exclusion - see
<ulink <ulink
url="/manpages/shorewall-exclusion.html">shorewall-exclusion</ulink> url="shorewall-exclusion.html">shorewall-exclusion</ulink>
(5)).</para> (5)).</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">SOURCE (format 3 on Shorewall 5.1.0 and <term><emphasis role="bold">SOURCE (format 3 on Shorewall 5.1.0 and
later) - later) -
{-|[<replaceable>source-spec</replaceable>[,...]]}</emphasis></term> {-|[<replaceable>source-spec</replaceable>[,...]]}</emphasis></term>
<listitem> <listitem>
skipping to change at line 464 skipping to change at line 464
<listitem> <listitem>
<para>The name of an ipset preceded by a plus sign ("+"). <para>The name of an ipset preceded by a plus sign ("+").
See <ulink See <ulink
url="shorewall-ipsets.html">shorewall-ipsets</ulink>(5).</pa ra> url="shorewall-ipsets.html">shorewall-ipsets</ulink>(5).</pa ra>
</listitem> </listitem>
</itemizedlist> </itemizedlist>
<para><replaceable>exclusion</replaceable> is described in <para><replaceable>exclusion</replaceable> is described in
<ulink <ulink
url="/manpages/shorewall-exclusion.html">shorewall-exclusion</ul ink>(5).</para> url="shorewall-exclusion.html">shorewall-exclusion</ulink>(5).</ para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><replaceable>interface</replaceable>:<replaceable>address</r eplaceable>[,...][<replaceable>exclusion</replaceable>]</term> <term><replaceable>interface</replaceable>:<replaceable>address</r eplaceable>[,...][<replaceable>exclusion</replaceable>]</term>
<listitem> <listitem>
<para>This form combines the preceding two and requires that <para>This form combines the preceding two and requires that
both the incoming interface and source address match.</para> both the incoming interface and source address match.</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><replaceable>exclusion</replaceable></term> <term><replaceable>exclusion</replaceable></term>
<listitem> <listitem>
<para>See <ulink <para>See <ulink
url="/manpages/shorewall-exclusion.html">shorewall-exclusion</ul ink> url="shorewall-exclusion.html">shorewall-exclusion</ulink>
(5)</para> (5)</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
</variablelist> </variablelist>
<para>Beginning with Shorewall 5.1.0, multiple <para>Beginning with Shorewall 5.1.0, multiple
<replaceable>source-spec</replaceable>s separated by commas may be <replaceable>source-spec</replaceable>s separated by commas may be
specified provided that the following alternative forms are specified provided that the following alternative forms are
used:</para> used:</para>
skipping to change at line 511 skipping to change at line 511
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term>DEST (Prior to Shorewall 5.1.0) ‒ <term>DEST (Prior to Shorewall 5.1.0) ‒
{-|<emphasis>interface</emphasis>[:<emphasis>address-list</emphasis>]|<r eplaceable>address-list</replaceable>}</term> {-|<emphasis>interface</emphasis>[:<emphasis>address-list</emphasis>]|<r eplaceable>address-list</replaceable>}</term>
<listitem> <listitem>
<para>where <replaceable>address-list</replaceable> is a <para>where <replaceable>address-list</replaceable> is a
comma-separated list of addresses (may contain exclusion - see comma-separated list of addresses (may contain exclusion - see
<ulink <ulink
url="/manpages/shorewall-exclusion.html">shorewall-exclusion</ulink> url="shorewall-exclusion.html">shorewall-exclusion</ulink>
(5)).</para> (5)).</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><emphasis role="bold">DEST (Shorewall 5.1.0 and later) - <term><emphasis role="bold">DEST (Shorewall 5.1.0 and later) -
{-|<replaceable>dest-spec</replaceable>[,...]}</emphasis></term> {-|<replaceable>dest-spec</replaceable>[,...]}</emphasis></term>
<listitem> <listitem>
<para>where <replaceable>dest-spec</replaceable> is one of the <para>where <replaceable>dest-spec</replaceable> is one of the
skipping to change at line 560 skipping to change at line 560
<listitem> <listitem>
<para>The name of an ipset preceded by a plus sign ("+"). <para>The name of an ipset preceded by a plus sign ("+").
See <ulink See <ulink
url="shorewall-ipsets.html">shorewall-ipsets</ulink>(5).</pa ra> url="shorewall-ipsets.html">shorewall-ipsets</ulink>(5).</pa ra>
</listitem> </listitem>
</itemizedlist> </itemizedlist>
<para><replaceable>exclusion</replaceable> is described in <para><replaceable>exclusion</replaceable> is described in
<ulink <ulink
url="/manpages/shorewall-exclusion.html">shorewall-exclusion</ul ink>(5).</para> url="shorewall-exclusion.html">shorewall-exclusion</ulink>(5).</ para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><replaceable>interface</replaceable>:<replaceable>address</r eplaceable>[,...][<replaceable>exclusion</replaceable>]</term> <term><replaceable>interface</replaceable>:<replaceable>address</r eplaceable>[,...][<replaceable>exclusion</replaceable>]</term>
<listitem> <listitem>
<para>This form combines the preceding two and requires that <para>This form combines the preceding two and requires that
both the outgoing interface and destination address both the outgoing interface and destination address
match.</para> match.</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term><replaceable>exclusion</replaceable></term> <term><replaceable>exclusion</replaceable></term>
<listitem> <listitem>
<para>See <ulink <para>See <ulink
url="/manpages/shorewall-exclusion.html">shorewall-exclusion</ul ink> url="shorewall-exclusion.html">shorewall-exclusion</ulink>
(5)</para> (5)</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
</variablelist> </variablelist>
<para>Beginning with Shorewall 5.1.0, multiple source-specs <para>Beginning with Shorewall 5.1.0, multiple source-specs
separated by commas may be specified provided that the following separated by commas may be specified provided that the following
alternative forms are used:</para> alternative forms are used:</para>
<blockquote> <blockquote>
skipping to change at line 781 skipping to change at line 781
<para>/etc/shorewall/conntrack</para> <para>/etc/shorewall/conntrack</para>
<para>/etc/shorewall6/conntrack</para> <para>/etc/shorewall6/conntrack</para>
</refsect1> </refsect1>
<refsect1> <refsect1>
<title>See ALSO</title> <title>See ALSO</title>
<para><ulink <para><ulink
url="/configuration_file_basics.htm#Pairs">http://www.shorewall.net/configur ation_file_basics.htm#Pairs</ulink></para> url="../configuration_file_basics.htm#Pairs">https://shorewall.org/configura tion_file_basics.htm#Pairs</ulink></para>
<para>shorewall(8)</para> <para>shorewall(8)</para>
</refsect1> </refsect1>
</refentry> </refentry>
 End of changes. 10 change blocks. 
10 lines changed or deleted 10 lines changed or added
To the XML Documents section of the shorewall (docs-xml) source changes report or the top of this page
Mainly generated by pkgdiff using rfcdiff
Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)