NCM::Component::shorewall - schema¶
Types¶
- /software/components/shorewall/component_shorewall_masq
- Description: a masq entry: dest source address proto port ipsec mark user switch origdest probability
- /software/components/shorewall/component_shorewall_masq/dest
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/source
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/address
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/proto
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/port
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/ipsec
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/mark
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/user
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/switch
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/origdest
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_masq/probability
- Optional
- Type: double
- /software/components/shorewall/component_shorewall_snat
- Description: a snat entry: ACTION SOURCE DEST PROTO PORT IPSEC MARK USER SWITCH ORIGDEST PROBABILITY
- /software/components/shorewall/component_shorewall_snat/action
- Required
- Type: string
- /software/components/shorewall/component_shorewall_snat/source
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/dest
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/proto
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/port
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/ipsec
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/mark
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/user
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/switch
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/origdest
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_snat/probability
- Optional
- Type: double
- /software/components/shorewall/component_shorewall_tcinterfaces
- Description: a tcinterfaces entry: interface type inbw outbw
- /software/components/shorewall/component_shorewall_tcinterfaces/interface
- Required
- Type: string
- /software/components/shorewall/component_shorewall_tcinterfaces/type
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_tcinterfaces/inbw
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_tcinterfaces/outbw
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_tcpri
- Description: a tcpri entry: band proto port address interface helper
- /software/components/shorewall/component_shorewall_tcpri/band
- Required
- Type: long
- Range: 1..3
- /software/components/shorewall/component_shorewall_tcpri/proto
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_tcpri/port
- Optional
- Type: long
- /software/components/shorewall/component_shorewall_tcpri/address
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_tcpri/interface
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_tcpri/helper
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_zones
- Description: a zones entry: zone[:parent] type options inoptions outoptions
- /software/components/shorewall/component_shorewall_zones/zone
- Required
- Type: string
- /software/components/shorewall/component_shorewall_zones/parent
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_zones/type
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_zones/options
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_zones/inoptions
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_zones/outoptions
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_interfaces
- Description: an interfaces entry: zone interface[:port] broadcast options
- /software/components/shorewall/component_shorewall_interfaces/zone
- Required
- Type: string
- /software/components/shorewall/component_shorewall_interfaces/interface
- Required
- Type: string
- /software/components/shorewall/component_shorewall_interfaces/port
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_interfaces/broadcast
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_interfaces/options
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_policy
- Description: a policy entry: src dst policy loglevel burst[:limit] connlimit
- /software/components/shorewall/component_shorewall_policy/src
- Required
- Type: string
- /software/components/shorewall/component_shorewall_policy/dst
- Required
- Type: string
- /software/components/shorewall/component_shorewall_policy/policy
- Required
- Type: string
- /software/components/shorewall/component_shorewall_policy/loglevel
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_policy/burst
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_policy/limit
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_policy/connlimit
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_providers
- Description: a providers entry: name number mark duplicate interface gateway options copy
- /software/components/shorewall/component_shorewall_providers/name
- Required
- Type: string
- /software/components/shorewall/component_shorewall_providers/number
- Required
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_providers/mark
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_providers/duplicate
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_providers/interface
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_providers/gateway
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_providers/options
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_providers/copy
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rtrules
- Description: a rtrules entry: source dest provider priority mark
- /software/components/shorewall/component_shorewall_rtrules/source
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rtrules/dest
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rtrules/provider
- Required
- Type: string
- /software/components/shorewall/component_shorewall_rtrules/priority
- Required
- Type: long
- Range: 1..32678
- /software/components/shorewall/component_shorewall_rtrules/mark
- Optional
- Type: long
- Range: 1..
- /software/components/shorewall/component_shorewall_stoppedrules
- Description: a stoppedrules entry: action src dst proto dport sport
- /software/components/shorewall/component_shorewall_stoppedrules/action
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_stoppedrules/src
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_stoppedrules/dst
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_stoppedrules/proto
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_stoppedrules/dport
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_stoppedrules/sport
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_rules_srcdst
- Description: a rules src or dst entry: zone[:interface][:address] (default: all zones)
- /software/components/shorewall/component_shorewall_rules_srcdst/zone
- Description: zone entry, all[+-]/any, the firewall itself ($FW) or none
- Required
- Type: string
- Default value: all
- /software/components/shorewall/component_shorewall_rules_srcdst/interface
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules_srcdst/address
- Description: address is an (mac)addres/range combo, e.g. ~00-A0-C9-15-39-78,155.186.235.0/24!155.186.235.16/28
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules
- Description: a rules entry: action src dst proto dstport srcport origdst rate user[:group] mark connlimit time headers switch helper
- /software/components/shorewall/component_shorewall_rules/action
- Required
- Type: string
- /software/components/shorewall/component_shorewall_rules/src
- Required
- Type: component_shorewall_rules_srcdst
- /software/components/shorewall/component_shorewall_rules/dst
- Required
- Type: component_shorewall_rules_srcdst
- /software/components/shorewall/component_shorewall_rules/proto
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/dstport
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/srcport
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/origdst
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/rate
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/user
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/group
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/mark
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/connlimit
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/time
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/headers
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/switch
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_rules/helper
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall_blacklist
- /software/components/shorewall/component_shorewall_shorewall
- Description: shorewall.conf options. only configured options are written to the configfile
- /software/components/shorewall/component_shorewall_shorewall/accept_default
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/accounting
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/accounting_table
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/add_ip_aliases
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/add_snat_aliases
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/adminisabsentminded
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/arptables
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/auto_comment
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/autocomment
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/autohelpers
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/automake
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/basic_filters
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/blacklist
- Optional
- Type: component_shorewall_shorewall_blacklist
- /software/components/shorewall/component_shorewall_shorewall/blacklist_disposition
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/blacklist_loglevel
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/blacklistnewonly
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/chain_scripts
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/clampmss
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/clear_tc
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/complete
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/config_path
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/defer_dns_resolution
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/delete_then_add
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/detect_dnat_ipaddrs
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/disable_ipv6
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/dont_load
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/drop_default
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/dynamic_blacklist
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/dynamic_zones
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/expand_policies
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/exportmodules
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/exportparams
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/fastaccept
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/forward_clear_mark
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/geoipdir
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/helpers
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/high_route_marks
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/ignoreunknownvariables
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/implicit_continue
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/inline_matches
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/invalid_disposition
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/invalid_log_level
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/ip
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/ip_forwarding
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/ipsecfile
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/ipset
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/ipset_warnings
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/iptables
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/keep_rt_tables
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/legacy_faststart
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/load_helpers_only
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/lockfile
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/log_backend
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/logallnew
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/logfile
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/logformat
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/loglimit
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/log_martians
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/logtagonly
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/log_verbosity
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/maclist_disposition
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/maclist_log_level
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/maclist_table
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/maclist_ttl
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_shorewall/mask_bits
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_shorewall/mangle_enabled
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/mapoldactions
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/mark_in_forward_chain
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/modulesdir
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/module_suffix
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/multicast
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/mutex_timeout
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_shorewall/nfqueue_default
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/null_route_rfc1918
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/optimize_accounting
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/optimize
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/path
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/perl
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/pkttype
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/queue_default
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/rcp_command
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/reject_default
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/require_interface
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/restore_default_route
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/restorefile
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/retain_aliases
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/route_filter
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/rsh_command
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/save_ipsets
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/shorewall_shell
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/smurf_log_level
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/startup_enabled
- Required
- Type: boolean
- Default value: true
- /software/components/shorewall/component_shorewall_shorewall/startup_log
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/subsyslock
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/tc_bits
- Optional
- Type: long
- Range: 0..
- /software/components/shorewall/component_shorewall_shorewall/tc_enabled
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/tc_expert
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/tcp_flags_disposition
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/tcp_flags_log_level
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/tc_priomap
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/tc
- Optional
- Type: string
- /software/components/shorewall/component_shorewall_shorewall/track_providers
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/track_rules
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/use_default_rt
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/use_physical_names
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/use_rt_names
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/verbosity
- Optional
- Type: long
- Range: 0..2
- /software/components/shorewall/component_shorewall_shorewall/wide_tc_marks
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/workarounds
- Optional
- Type: boolean
- /software/components/shorewall/component_shorewall_shorewall/zone2zone
- Optional
- Type: string
- /software/components/shorewall/component_shorewall
- /software/components/shorewall/component_shorewall/shorewall
- Description: shorewall.conf configuration
- Optional
- Type: component_shorewall_shorewall
- /software/components/shorewall/component_shorewall/zones
- Description: zones configuration
- Optional
- Type: component_shorewall_zones
- /software/components/shorewall/component_shorewall/interfaces
- Description: interfaces configuration
- Optional
- Type: component_shorewall_interfaces
- /software/components/shorewall/component_shorewall/policy
- Description: configuration
- Optional
- Type: component_shorewall_policy
- /software/components/shorewall/component_shorewall/rules
- Description: rules configuration
- Optional
- Type: component_shorewall_rules
- /software/components/shorewall/component_shorewall/tcinterfaces
- Description: tcinterfaces configuration
- Optional
- Type: component_shorewall_tcinterfaces
- /software/components/shorewall/component_shorewall/tcpri
- Description: tcpri configuration
- Optional
- Type: component_shorewall_tcpri
- /software/components/shorewall/component_shorewall/masq
- Description: masq configuration
- Optional
- Type: component_shorewall_masq
- /software/components/shorewall/component_shorewall/snat
- Description: snat configuration
- Optional
- Type: component_shorewall_snat
- /software/components/shorewall/component_shorewall/providers
- Description: providers configuration
- Optional
- Type: component_shorewall_providers
- /software/components/shorewall/component_shorewall/rtrules
- Description: rtrules configuration
- Optional
- Type: component_shorewall_rtrules
- /software/components/shorewall/component_shorewall/stoppedrules
- Description: rules to use when shorewall is stopped
- Optional
- Type: component_shorewall_stoppedrules
- /software/components/shorewall/shorewall_sysconfig
- Description: metaconfig schema for shorewall 5.x sysconfig (you cannot set RESTARTOPTIONS)
- /software/components/shorewall/shorewall_sysconfig/OPTIONS
- Optional
- Type: string
- /software/components/shorewall/shorewall_sysconfig/STARTOPTIONS
- Required
- Type: string
- Default value: /etc/shorewall
- /software/components/shorewall/shorewall_sysconfig/RELOADOPTIONS
- Required
- Type: string
- Default value: /etc/shorewall
- /software/components/shorewall/shorewall_sysconfig/STOPOPTIONS
- Optional
- Type: string