1 |
constanze 13/12/02 20:04:55 |
2 |
|
3 |
Added: shorewall6.confd shorewallrc shorewall6.systemd |
4 |
shorewall6.initd |
5 |
Log: |
6 |
Version Bump; Thanks to Thomas D. |
7 |
|
8 |
(Portage version: 2.2.7/cvs/Linux x86_64, signed Manifest commit with key BB80F419010E3EC3) |
9 |
|
10 |
Revision Changes Path |
11 |
1.1 net-firewall/shorewall6/files/4.5.21.4/shorewall6.confd |
12 |
|
13 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewall6.confd?rev=1.1&view=markup |
14 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewall6.confd?rev=1.1&content-type=text/plain |
15 |
|
16 |
Index: shorewall6.confd |
17 |
=================================================================== |
18 |
# Global start/restart/stop options |
19 |
# |
20 |
OPTIONS="" |
21 |
|
22 |
# Start options |
23 |
# |
24 |
STARTOPTIONS="" |
25 |
|
26 |
# Stop options |
27 |
# |
28 |
STOPOPTIONS="" |
29 |
|
30 |
# Restart options |
31 |
# |
32 |
RESTARTOPTIONS="" |
33 |
|
34 |
|
35 |
|
36 |
1.1 net-firewall/shorewall6/files/4.5.21.4/shorewallrc |
37 |
|
38 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewallrc?rev=1.1&view=markup |
39 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewallrc?rev=1.1&content-type=text/plain |
40 |
|
41 |
Index: shorewallrc |
42 |
=================================================================== |
43 |
# |
44 |
# Gentoo Shorewall 4.5 rc file |
45 |
# |
46 |
BUILD= #Default is to detect the build system |
47 |
HOST=gentoo #Gentoo GNU Linux |
48 |
PREFIX=@GENTOO_PORTAGE_EPREFIX@/usr #Top-level directory for shared files, libraries, etc. |
49 |
SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. |
50 |
LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. |
51 |
PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory |
52 |
CONFDIR=@GENTOO_PORTAGE_EPREFIX@/etc #Directory where subsystem configurations are installed |
53 |
SBINDIR=@GENTOO_PORTAGE_EPREFIX@/sbin #Directory where system administration programs are installed |
54 |
MANDIR=${PREFIX}/share/man #Directory where manpages are installed. |
55 |
INITDIR=${CONFDIR}/init.d #Directory where SysV init scripts are installed. |
56 |
INITFILE=${PRODUCT} #Name of the product's installed SysV init script |
57 |
INITSOURCE=init.gentoo.sh #Name of the distributed file to be installed as the SysV init script |
58 |
ANNOTATED= #If non-zero, annotated configuration files are installed |
59 |
SYSTEMD=@GENTOO_PORTAGE_EPREFIX@/usr/lib/systemd/system #Directory where .service files are installed (systems running systemd only) |
60 |
SERVICEFILE=gentoo.service #Name of the distributed file to be installed as systemd service file |
61 |
SYSCONFFILE=default.gentoo #Name of the distributed file to be installed in $SYSCONFDIR |
62 |
SYSCONFDIR=${CONFDIR}/conf.d #Directory where SysV init parameter files are installed |
63 |
SPARSE= #If non-empty, only install $PRODUCT/$PRODUCT.conf in $CONFDIR |
64 |
VARLIB=@GENTOO_PORTAGE_EPREFIX@/var/lib #Directory where product variable data is stored. |
65 |
VARDIR=${VARLIB}/${PRODUCT} #Directory where product variable data is stored. |
66 |
|
67 |
|
68 |
|
69 |
1.1 net-firewall/shorewall6/files/4.5.21.4/shorewall6.systemd |
70 |
|
71 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewall6.systemd?rev=1.1&view=markup |
72 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewall6.systemd?rev=1.1&content-type=text/plain |
73 |
|
74 |
Index: shorewall6.systemd |
75 |
=================================================================== |
76 |
# |
77 |
# The Shoreline Firewall 6 (Shorewall6) Packet Filtering Firewall - V4.5 |
78 |
# |
79 |
[Unit] |
80 |
Description=Shorewall IPv6 firewall |
81 |
Documentation=man:shorewall6(8) http://www.shorewall.net/Documentation_Index.html |
82 |
After=network.target |
83 |
|
84 |
[Service] |
85 |
Type=oneshot |
86 |
RemainAfterExit=yes |
87 |
EnvironmentFile=/etc/conf.d/shorewall6 |
88 |
ExecStart=/sbin/shorewall6 $OPTIONS start $STARTOPTIONS |
89 |
ExecStop=/sbin/shorewall6 $OPTIONS stop $STOPOPTIONS |
90 |
|
91 |
[Install] |
92 |
WantedBy=multi-user.target |
93 |
|
94 |
|
95 |
|
96 |
1.1 net-firewall/shorewall6/files/4.5.21.4/shorewall6.initd |
97 |
|
98 |
file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewall6.initd?rev=1.1&view=markup |
99 |
plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewall6.initd?rev=1.1&content-type=text/plain |
100 |
|
101 |
Index: shorewall6.initd |
102 |
=================================================================== |
103 |
#!/sbin/runscript |
104 |
# Copyright 1999-2013 Gentoo Foundation |
105 |
# Distributed under the terms of the GNU General Public License v2 |
106 |
# $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall6/files/4.5.21.4/shorewall6.initd,v 1.1 2013/12/02 20:04:55 constanze Exp $ |
107 |
|
108 |
description='The Shoreline Firewall 6, more commonly known as "Shorewall6", is' |
109 |
description="${description} a high-level tool for configuring Netfilter." |
110 |
|
111 |
extra_commands="check clear" |
112 |
extra_started_commands="refresh reset" |
113 |
|
114 |
description_check="Checks if the configuration will compile or not." |
115 |
|
116 |
description_clear="Clear will remove all rules and chains installed by" |
117 |
description_clear="${description_clear} Shorewall6. The firewall is then" |
118 |
description_clear="${description_clear} wide open and unprotected." |
119 |
|
120 |
description_refresh="The mangle table will be refreshed along with the" |
121 |
description_refresh="${description_refresh} blacklist chain (if any)." |
122 |
|
123 |
description_reset="All the packet and byte counters in the firewall are reset." |
124 |
|
125 |
depend() { |
126 |
need net |
127 |
provide firewall |
128 |
after ulogd |
129 |
} |
130 |
|
131 |
status() { |
132 |
local _retval |
133 |
/sbin/shorewall6 status 1>/dev/null |
134 |
_retval=$? |
135 |
if [ ${_retval} = '0' ]; then |
136 |
einfo 'status: started' |
137 |
mark_service_started "${SVCNAME}" |
138 |
return 0 |
139 |
else |
140 |
einfo 'status: stopped' |
141 |
mark_service_stopped "${SVCNAME}" |
142 |
return 3 |
143 |
fi |
144 |
} |
145 |
|
146 |
start() { |
147 |
ebegin "Starting shorewall6" |
148 |
/sbin/shorewall6 ${OPTIONS} start ${STARTOPTIONS} 1>/dev/null |
149 |
eend $? |
150 |
} |
151 |
|
152 |
stop() { |
153 |
ebegin "Stopping shorewall6" |
154 |
/sbin/shorewall6 ${OPTIONS} stop ${STOPOPTIONS} 1>/dev/null |
155 |
eend $? |
156 |
} |
157 |
|
158 |
restart() { |
159 |
# shorewall comes with its own control script that includes a |
160 |
# restart function, so refrain from calling svc_stop/svc_start |
161 |
# here. Note that this comment is required to fix bug 55576; |
162 |
# runscript.sh greps this script... (09 Jul 2004 agriffis) |
163 |
|
164 |
ebegin "Restarting shorewall6" |
165 |
/sbin/shorewall6 status 1>/dev/null |
166 |
if [ $? != 0 ] ; then |
167 |
svc_start |
168 |
else |
169 |
/sbin/shorewall6 ${OPTIONS} restart ${RESTARTOPTIONS} 1>/dev/null |
170 |
fi |
171 |
eend $? |
172 |
} |
173 |
|
174 |
clear() { |
175 |
# clear will remove all the rules and bring the system to an unfirewalled |
176 |
# state. (21 Nov 2004 eldad) |
177 |
|
178 |
ebegin "Clearing all shorewall rules and setting policy to ACCEPT" |
179 |
/sbin/shorewall6 ${OPTIONS} clear 1>/dev/null |
180 |
eend $? |
181 |
} |
182 |
|
183 |
reset() { |
184 |
# reset the packet and byte counters in the firewall |
185 |
|
186 |
ebegin "Resetting the packet and byte counters in shorewall6" |
187 |
/sbin/shorewall6 ${OPTIONS} reset 1>/dev/null |
188 |
eend $? |
189 |
} |
190 |
|
191 |
refresh() { |
192 |
# refresh the rules involving the broadcast addresses of firewall |
193 |
# interfaces, the black list, traffic control rules and |
194 |
# ECN control rules |
195 |
|
196 |
ebegin "Refreshing shorewall6 rules" |
197 |
/sbin/shorewall6 ${OPTIONS} refresh 1>/dev/null |
198 |
eend $? |
199 |
} |
200 |
|
201 |
check() { |
202 |
# perform cursory validation of the zones, interfaces, hosts, rules |
203 |
# and policy files. CAUTION: does not parse and validate the generated |
204 |
# iptables commands. |
205 |
|
206 |
ebegin "Checking shorewall6 configuration" |
207 |
/sbin/shorewall6 ${OPTIONS} check 1>/dev/null |
208 |
eend $? |
209 |
} |