projects
/
matthijs
/
servers
/
drsnuggles.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (from parent 1:
31f3539
)
vuurmuur: Add separators to the rule config.
author
root
<root@drsnuggles.stderr.nl>
Thu, 16 Apr 2009 14:20:24 +0000
(16:20 +0200)
committer
root
<root@drsnuggles.stderr.nl>
Thu, 16 Apr 2009 14:20:24 +0000
(16:20 +0200)
etc/vuurmuur/rules/rules.conf
patch
|
blob
|
history
diff --git
a/etc/vuurmuur/rules/rules.conf
b/etc/vuurmuur/rules/rules.conf
index 33e4bc96cfc69c0f73d92d59e01bfaab146a1033..b7085fe6b03e1b2373454d605ff988d46eb857f8 100644
(file)
--- a/
etc/vuurmuur/rules/rules.conf
+++ b/
etc/vuurmuur/rules/rules.conf
@@
-2,8
+2,10
@@
RULE="Accept service ping from any to any options comment=\"ping\""
RULE="Accept service any from firewall to world.inet options comment=\"Outgoing host traffic\""
RULE="Accept service any from vservers.internal to world.inet options comment=\"Outgoing vserver traffic\""
RULE="Snat service any from vservers.internal to world.inet options comment=\"snat for vservers\""
RULE="Accept service any from firewall to world.inet options comment=\"Outgoing host traffic\""
RULE="Accept service any from vservers.internal to world.inet options comment=\"Outgoing vserver traffic\""
RULE="Snat service any from vservers.internal to world.inet options comment=\"snat for vservers\""
+RULE="separator"
RULE="Accept service any from zeratul.direct to firewall options comment=\"direct traffic from zeratul\""
RULE="Accept service any from firewall to zeratul.direct options comment=\"direct traffice to zeratul\""
RULE="Accept service any from zeratul.direct to firewall options comment=\"direct traffic from zeratul\""
RULE="Accept service any from firewall to zeratul.direct options comment=\"direct traffice to zeratul\""
+RULE="separator"
RULE="Accept service ssh-host from any to firewall(any) options comment=\"ssh access to the host\""
RULE="Portfw service http from world.inet to www.vservers.internal options comment=\"http to www\""
RULE="Portfw service smtp from world.inet to mail.vservers.internal options comment=\"smtp to mail\""
RULE="Accept service ssh-host from any to firewall(any) options comment=\"ssh access to the host\""
RULE="Portfw service http from world.inet to www.vservers.internal options comment=\"http to www\""
RULE="Portfw service smtp from world.inet to mail.vservers.internal options comment=\"smtp to mail\""