tomwij 14/06/12 14:26:06
Added: shorewall6.systemd shorewallrc shorewall6.confd
shorewall6.initd
Log:
Version bump to 4.5.21.10; fixes bug #509258 and bug #509258, proxied commit
for Thomas D. (whissi).
(Portage version: 2.2.10_p125/cvs/Linux x86_64, signed Manifest commit with
key 6D34E57D)
Revision Changes Path
1.1 net-firewall/shorewall6/files/4.5.21.10/shorewall6.systemd
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewall6.systemd?rev=1.1&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewall6.systemd?rev=1.1&content-type=text/plain
Index: shorewall6.systemd
===================================================================
#
# The Shoreline Firewall 6 (Shorewall6) Packet Filtering Firewall - V4.5
#
[Unit]
Description=Shorewall IPv6 firewall
Documentation=man:shorewall6(8)
http://www.shorewall.net/Documentation_Index.html
After=network.target
[Service]
Type=oneshot
RemainAfterExit=yes
EnvironmentFile=/etc/conf.d/shorewall6
ExecStart=/sbin/shorewall6 $OPTIONS start $STARTOPTIONS
ExecStop=/sbin/shorewall6 $OPTIONS stop $STOPOPTIONS
[Install]
WantedBy=multi-user.target
1.1 net-firewall/shorewall6/files/4.5.21.10/shorewallrc
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewallrc?rev=1.1&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewallrc?rev=1.1&content-type=text/plain
Index: shorewallrc
===================================================================
#
# Gentoo Shorewall 4.5 rc file
#
BUILD= #Default is to detect the build system
HOST=gentoo #Gentoo GNU Linux
PREFIX=@GENTOO_PORTAGE_EPREFIX@/usr #Top-level
directory for shared files, libraries, etc.
SHAREDIR=${PREFIX}/share #Directory for arch-neutral files.
LIBEXECDIR=${PREFIX}/share #Directory for executable scripts.
PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl
module directory
CONFDIR=@GENTOO_PORTAGE_EPREFIX@/etc #Directory
where subsystem configurations are installed
SBINDIR=@GENTOO_PORTAGE_EPREFIX@/sbin #Directory
where system administration programs are installed
MANDIR=${PREFIX}/share/man #Directory where manpages are installed.
INITDIR=${CONFDIR}/init.d #Directory where SysV init scripts are
installed.
INITFILE=${PRODUCT} #Name of the product's installed SysV
init script
INITSOURCE=init.gentoo.sh #Name of the distributed file to be
installed as the SysV init script
ANNOTATED= #If non-zero, annotated configuration
files are installed
SYSTEMD=@GENTOO_PORTAGE_EPREFIX@/usr/lib/systemd/system #Directory
where .service files are installed (systems running systemd only)
SERVICEFILE=gentoo.service #Name of the distributed file to be
installed as systemd service file
SYSCONFFILE=default.gentoo #Name of the distributed file to be
installed in $SYSCONFDIR
SYSCONFDIR=${CONFDIR}/conf.d #Directory where SysV init parameter
files are installed
SPARSE= #If non-empty, only install
$PRODUCT/$PRODUCT.conf in $CONFDIR
VARLIB=@GENTOO_PORTAGE_EPREFIX@/var/lib #Directory
where product variable data is stored.
VARDIR=${VARLIB}/${PRODUCT} #Directory where product variable data
is stored.
1.1 net-firewall/shorewall6/files/4.5.21.10/shorewall6.confd
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewall6.confd?rev=1.1&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewall6.confd?rev=1.1&content-type=text/plain
Index: shorewall6.confd
===================================================================
# Global start/restart/stop options
#
OPTIONS=""
# Start options
#
STARTOPTIONS=""
# Stop options
#
STOPOPTIONS=""
# Restart options
#
RESTARTOPTIONS=""
1.1 net-firewall/shorewall6/files/4.5.21.10/shorewall6.initd
file :
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewall6.initd?rev=1.1&view=markup
plain:
http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewall6.initd?rev=1.1&content-type=text/plain
Index: shorewall6.initd
===================================================================
#!/sbin/runscript
# Copyright 1999-2014 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header:
/var/cvsroot/gentoo-x86/net-firewall/shorewall6/files/4.5.21.10/shorewall6.initd,v
1.1 2014/06/12 14:26:06 tomwij Exp $
description='The Shoreline Firewall 6, more commonly known as "Shorewall6", is'
description="${description} a high-level tool for configuring Netfilter."
extra_commands="check clear"
extra_started_commands="refresh reset"
description_check="Checks if the configuration will compile or not."
description_clear="Clear will remove all rules and chains installed by"
description_clear="${description_clear} Shorewall6. The firewall is then"
description_clear="${description_clear} wide open and unprotected."
description_refresh="The mangle table will be refreshed along with the"
description_refresh="${description_refresh} blacklist chain (if any)."
description_reset="All the packet and byte counters in the firewall are reset."
depend() {
need net
provide firewall
after ulogd
}
status() {
local _retval
/sbin/shorewall6 status 1>/dev/null
_retval=$?
if [ ${_retval} = '0' ]; then
einfo 'status: started'
mark_service_started "${SVCNAME}"
return 0
else
einfo 'status: stopped'
mark_service_stopped "${SVCNAME}"
return 3
fi
}
start() {
ebegin "Starting shorewall6"
/sbin/shorewall6 ${OPTIONS} start ${STARTOPTIONS} 1>/dev/null
eend $?
}
stop() {
ebegin "Stopping shorewall6"
/sbin/shorewall6 ${OPTIONS} stop ${STOPOPTIONS} 1>/dev/null
eend $?
}
restart() {
# shorewall comes with its own control script that includes a
# restart function, so refrain from calling svc_stop/svc_start
# here. Note that this comment is required to fix bug 55576;
# runscript.sh greps this script... (09 Jul 2004 agriffis)
ebegin "Restarting shorewall6"
/sbin/shorewall6 status 1>/dev/null
if [ $? != 0 ] ; then
svc_start
else
/sbin/shorewall6 ${OPTIONS} restart ${RESTARTOPTIONS}
1>/dev/null
fi
eend $?
}
clear() {
# clear will remove all the rules and bring the system to an
unfirewalled
# state. (21 Nov 2004 eldad)
ebegin "Clearing all shorewall rules and setting policy to ACCEPT"
/sbin/shorewall6 ${OPTIONS} clear 1>/dev/null
eend $?
}
reset() {
# reset the packet and byte counters in the firewall
ebegin "Resetting the packet and byte counters in shorewall6"
/sbin/shorewall6 ${OPTIONS} reset 1>/dev/null
eend $?
}
refresh() {
# refresh the rules involving the broadcast addresses of firewall
# interfaces, the black list, traffic control rules and
# ECN control rules
ebegin "Refreshing shorewall6 rules"
/sbin/shorewall6 ${OPTIONS} refresh 1>/dev/null
eend $?
}
check() {
# perform cursory validation of the zones, interfaces, hosts, rules
# and policy files. CAUTION: does not parse and validate the generated
# iptables commands.
ebegin "Checking shorewall6 configuration"
/sbin/shorewall6 ${OPTIONS} check 1>/dev/null
eend $?
}
