hwoarang 14/04/26 09:29:57 Added: shorewall.confd shorewallrc shorewall.systemd shorewall.initd Log: Version bump. Remove old. Bug #508396 thanks to Thomas D. <whi...@whissi.de> (Portage version: 2.2.10/cvs/Linux x86_64, signed Manifest commit with key 09BF4F54C2BA7F3C!)
Revision Changes Path 1.1 net-firewall/shorewall/files/4.5.21.9/shorewall.confd file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewall.confd?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewall.confd?rev=1.1&content-type=text/plain Index: shorewall.confd =================================================================== # Global start/restart/stop options # OPTIONS="" # Start options # STARTOPTIONS="" # Stop options # STOPOPTIONS="" # Restart options # RESTARTOPTIONS="" 1.1 net-firewall/shorewall/files/4.5.21.9/shorewallrc file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewallrc?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewallrc?rev=1.1&content-type=text/plain Index: shorewallrc =================================================================== # # Gentoo Shorewall 4.5 rc file # BUILD= #Default is to detect the build system HOST=gentoo #Gentoo GNU Linux PREFIX=@GENTOO_PORTAGE_EPREFIX@/usr #Top-level directory for shared files, libraries, etc. SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory CONFDIR=@GENTOO_PORTAGE_EPREFIX@/etc #Directory where subsystem configurations are installed SBINDIR=@GENTOO_PORTAGE_EPREFIX@/sbin #Directory where system administration programs are installed MANDIR=${PREFIX}/share/man #Directory where manpages are installed. INITDIR=${CONFDIR}/init.d #Directory where SysV init scripts are installed. INITFILE=${PRODUCT} #Name of the product's installed SysV init script INITSOURCE=init.gentoo.sh #Name of the distributed file to be installed as the SysV init script ANNOTATED= #If non-zero, annotated configuration files are installed SYSTEMD=@GENTOO_PORTAGE_EPREFIX@/usr/lib/systemd/system #Directory where .service files are installed (systems running systemd only) SERVICEFILE=gentoo.service #Name of the distributed file to be installed as systemd service file SYSCONFFILE=default.gentoo #Name of the distributed file to be installed in $SYSCONFDIR SYSCONFDIR=${CONFDIR}/conf.d #Directory where SysV init parameter files are installed SPARSE= #If non-empty, only install $PRODUCT/$PRODUCT.conf in $CONFDIR VARLIB=@GENTOO_PORTAGE_EPREFIX@/var/lib #Directory where product variable data is stored. VARDIR=${VARLIB}/${PRODUCT} #Directory where product variable data is stored. 1.1 net-firewall/shorewall/files/4.5.21.9/shorewall.systemd file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewall.systemd?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewall.systemd?rev=1.1&content-type=text/plain Index: shorewall.systemd =================================================================== # # The Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.5 # [Unit] Description=Shorewall IPv4 firewall Documentation=man:shorewall(8) http://www.shorewall.net/Documentation_Index.html After=network.target [Service] Type=oneshot RemainAfterExit=yes EnvironmentFile=/etc/conf.d/shorewall ExecStart=/sbin/shorewall $OPTIONS start $STARTOPTIONS ExecStop=/sbin/shorewall $OPTIONS stop $STOPOPTIONS [Install] WantedBy=multi-user.target 1.1 net-firewall/shorewall/files/4.5.21.9/shorewall.initd file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewall.initd?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewall.initd?rev=1.1&content-type=text/plain Index: shorewall.initd =================================================================== #!/sbin/runscript # Copyright 1999-2014 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 # $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall/files/4.5.21.9/shorewall.initd,v 1.1 2014/04/26 09:29:56 hwoarang Exp $ description='The Shoreline Firewall, more commonly known as "Shorewall", is' description="${description} a high-level tool for configuring Netfilter." extra_commands="check clear" extra_started_commands="refresh reset" description_check="Checks if the configuration will compile or not." description_clear="Clear will remove all rules and chains installed by" description_clear="${description_clear} Shorewall. The firewall is then" description_clear="${description_clear} wide open and unprotected." description_refresh="The mangle table will be refreshed along with the" description_refresh="${description_refresh} blacklist chain (if any)." description_reset="All the packet and byte counters in the firewall are reset." depend() { need net provide firewall after ulogd } status() { local _retval /sbin/shorewall status 1>/dev/null _retval=$? if [ ${_retval} = '0' ]; then einfo 'status: started' mark_service_started "${SVCNAME}" return 0 else einfo 'status: stopped' mark_service_stopped "${SVCNAME}" return 3 fi } start() { ebegin "Starting shorewall" /sbin/shorewall ${OPTIONS} start ${STARTOPTIONS} 1>/dev/null eend $? } stop() { ebegin "Stopping shorewall" /sbin/shorewall ${OPTIONS} stop ${STOPOPTIONS} 1>/dev/null eend $? } restart() { # shorewall comes with its own control script that includes a # restart function, so refrain from calling svc_stop/svc_start # here. Note that this comment is required to fix bug 55576; # runscript.sh greps this script... (09 Jul 2004 agriffis) ebegin "Restarting shorewall" /sbin/shorewall status 1>/dev/null if [ $? != 0 ] ; then svc_start else /sbin/shorewall ${OPTIONS} restart ${RESTARTOPTIONS} 1>/dev/null fi eend $? } clear() { # clear will remove all the rules and bring the system to an unfirewalled # state. (21 Nov 2004 eldad) ebegin "Clearing all shorewall rules and setting policy to ACCEPT" /sbin/shorewall ${OPTIONS} clear 1>/dev/null eend $? } reset() { # reset the packet and byte counters in the firewall ebegin "Resetting the packet and byte counters in shorewall" /sbin/shorewall ${OPTIONS} reset 1>/dev/null eend $? } refresh() { # refresh the rules involving the broadcast addresses of firewall # interfaces, the black list, traffic control rules and # ECN control rules ebegin "Refreshing shorewall rules" /sbin/shorewall ${OPTIONS} refresh 1>/dev/null eend $? } check() { # perform cursory validation of the zones, interfaces, hosts, rules # and policy files. CAUTION: does not parse and validate the generated # iptables commands. ebegin "Checking shorewall configuration" /sbin/shorewall ${OPTIONS} check 1>/dev/null eend $? }