Commit eb4720e5 authored by Matt Taggart's avatar Matt Taggart

new stoppedrules, replaces routestopped

parent 725b5bdc
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
#
# Shorewall -- /etc/shorewall/stoppedrules
#
# For information about entries in this file, type "man shorewall-stoppedrules"
#
# The manpage is also online at
# http://www.shorewall.net/manpages/shorewall-stoppedrules.html
#
# See http://shorewall.net/starting_and_stopping_shorewall.htm for additional
# information.
#
###############################################################################
#ACTION SOURCE DEST PROTO DPORT SPORT
......@@ -29,6 +29,8 @@ class shorewall(
$nat_defaults = {},
$routestopped = {},
$routestopped_defaults = {},
$stoppedrules = {},
$stoppedrules_defaults = {},
$params = {},
$params_defaults = {},
$tcdevices = {},
......@@ -72,6 +74,8 @@ class shorewall(
'proxyarp',
# See http://www.shorewall.net/3.0/Documentation.htm#NAT
'nat',
# See http://www.shorewall.net/manpages/shorewall-stoppedrules.html
'stoppedrules',
# See http://www.shorewall.net/3.0/Documentation.htm#Routestopped
'routestopped',
# See http://www.shorewall.net/3.0/Documentation.htm#Variables
......@@ -102,6 +106,8 @@ class shorewall(
create_resources('shorewall::masq',$masq,$masq_defaults)
create_resources('shorewall::proxyarp',$proxyarp,$proxyarp_defaults)
create_resources('shorewall::nat',$nat,$nat_defaults)
create_resources('shorewall::stoppedrules',$stoppedrules,
$stoppedrules_defaults)
create_resources('shorewall::routestopped',$routestopped,
$routestopped_defaults)
create_resources('shorewall::params',$params,$params_defaults)
......
define shorewall::stoppedrules(
$action = 'ACCEPT',
$source = '-',
$destination = '-',
$proto = '-',
$destinationport = '-',
$sourceport = '-',
$order = '100'
){
shorewall::entry{"stoppedrules-${order}-${name}":
line => "${action} ${source} ${destination} ${proto} ${destinationport} ${sourceport}"
}
}
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment