shorewall6-lite-5.0.4/0000755000000000000000000000000012650243750013243 5ustar rootrootshorewall6-lite-5.0.4/shorewallrc.cygwin0000644000000000000000000000226012650243750017012 0ustar rootroot# # Cygwin Shorewall 5.0 rc file # BUILD=cygwin HOST=cygwin PREFIX=/usr #Top-level directory for shared files, libraries, etc. SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory CONFDIR=/etc #Directory where subsystem configurations are installed SBINDIR=/bin #Directory where system administration programs are installed MANDIR=${SHAREDIR}/man #Directory where manpages are installed. INITDIR=/etc/init.d #Unused on Cygwin INITFILE= #Unused on Cygwin INITSOURCE= #Unused on Cygwin ANNOTATED= #Unused on Cygwin SERVICEDIR= #Unused on Cygwin SERVICEFILE= #Unused on Cygwin SYSCONFDIR= #Unused on Cygwin SPARSE=Yes #Only install $PRODUCT/$PRODUCT.conf in $CONFDIR. VARLIB=/var/lib #Unused on Cygwin shorewall6-lite-5.0.4/shorewallrc.slackware0000644000000000000000000000365412650243750017476 0ustar rootroot# # Slackware Shorewall 5.0 rc file # BUILD=slackware HOST=slackware PREFIX=/usr #Top-level directory for shared files, libraries, etc. SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory CONFDIR=/etc #Directory where subsystem configurations are installed SBINDIR=/sbin #Directory where system administration programs are installed MANDIR=${PREFIX}/man #Directory where manpages are installed. INITDIR=/etc/rc.d #Directory where SysV init scripts are installed. AUXINITSOURCE=init.slackware.firewall.sh #Name of the distributed file to be installed as the SysV init script AUXINITFILE=rc.firewall #Name of the product's installed SysV init script INITSOURCE=init.slackware.$PRODUCT.sh #Name of the distributed file to be installed as a second SysV init script INITFILE=rc.$PRODUCT #Name of the product's installed second init script SERVICEDIR= #Name of the directory where .service files are installed (systems running systemd only) SERVICEFILE= #Name of the file to install in $SYSTEMD. Default is $PRODUCT.service SYSCONFFILE= #Name of the distributed file to be installed in $SYSCONFDIR SYSCONFDIR= #Name of the directory where SysV init parameter files are installed. ANNOTATED= #If non-empty, install annotated configuration files VARLIB=/var/lib #Directory where product variable data is stored. VARDIR=${VARLIB}/$PRODUCT #Directory where product variable data is stored. shorewall6-lite-5.0.4/default.debian0000644000000000000000000000166112647470621016044 0ustar rootroot# prevent startup with default configuration # set the following varible to 1 in order to allow Shorewall6-lite to start startup=0 # If your Shorewall6-lite configuration requires detection of the ip address of # a ppp interface, you must list such interfaces in "wait_interface" to get # Shorewall6-lite to wait until the interface is configured. Otherwise the # script will fail because it won't be able to detect the IP address. # # Example: # wait_interface="ppp0" # or # wait_interface="ppp0 ppp1" # or, if you have defined in /etc/shorewall6-lite/params # wait_interface= # # Startup options # OPTIONS="" # # Start options # STARTOPTIONS="" # # Restart options # RESTARTOPTIONS="" # # Init Log -- if /dev/null, use the STARTUP_LOG defined in shorewall.conf # INITLOG=/dev/null # # Set this to 1 to cause '/etc/init.d/shorewall6-lite stop' to place the firewall in # a safe state rather than to open it # SAFESTOP=0 # EOF shorewall6-lite-5.0.4/init.debian.sh0000755000000000000000000000616312647470621016001 0ustar rootroot#!/bin/sh ### BEGIN INIT INFO # Provides: shorewall6-lite # Required-Start: $network $remote_fs # Required-Stop: $network $remote_fs # Default-Start: S # Default-Stop: 0 6 # Short-Description: Configure the firewall at boot time # Description: Configure the firewall according to the rules specified in # /etc/shorewall6-lite ### END INIT INFO . /lib/lsb/init-functions SRWL=/sbin/shorewall6-lite SRWL_OPTS="-tvv" test -n ${INITLOG:=/var/log/shorewall6-lite-init.log} [ "$INITLOG" = "/dev/null" ] && SHOREWALL_INIT_SCRIPT=1 || SHOREWALL_INIT_SCRIPT=0 export SHOREWALL_INIT_SCRIPT test -x $SRWL || exit 0 test -x $WAIT_FOR_IFUP || exit 0 test -n "$INITLOG" || { echo "INITLOG cannot be empty, please configure $0" ; exit 1; } if [ "$(id -u)" != "0" ] then echo "You must be root to start, stop or restart \"Shorewall6 Lite firewall\"." exit 1 fi echo_notdone () { if [ "$INITLOG" = "/dev/null" ] ; then echo "not done." else echo "not done (check $INITLOG)." fi exit 1 } not_configured () { echo "#### WARNING ####" echo "the firewall won't be started/stopped unless it is configured" if [ "$1" != "stop" ] then echo "" echo "Please read about Debian specific customization in" echo "/usr/share/doc/shorewall6-lite/README.Debian.gz." fi echo "#################" exit 0 } # parse the shorewall6 params file in order to use params in # /etc/default/shorewall6 if [ -f "/etc/shorewall6-lite/params" ] then . /etc/shorewall6-lite/params fi # check if shorewall is configured or not if [ -f "/etc/default/shorewall6-lite" ] then . /etc/default/shorewall6-lite SRWL_OPTS="$SRWL_OPTS $OPTIONS" if [ "$startup" != "1" ] then not_configured fi else not_configured fi # # The installer may alter this # . /usr/share/shorewall/shorewallrc # start the firewall shorewall6_start () { echo -n "Starting \"Shorewall6 Lite firewall\": " $SRWL $SRWL_OPTS start $STARTOPTIONS >> $INITLOG 2>&1 && echo "done." || echo_notdone return 0 } # stop the firewall shorewall6_stop () { echo -n "Stopping \"Shorewall6 Lite firewall\": " if [ "$SAFESTOP" = 1 ]; then $SRWL $SRWL_OPTS stop >> $INITLOG 2>&1 && echo "done." || echo_notdone else $SRWL $SRWL_OPTS clear >> $INITLOG 2>&1 && echo "done." || echo_notdone fi return 0 } # restart the firewall shorewall6_restart () { echo -n "Restarting \"Shorewall6 Lite firewall\": " $SRWL $SRWL_OPTS restart $RESTARTOPTIONS >> $INITLOG 2>&1 && echo "done." || echo_notdone return 0 } # refresh the firewall shorewall6_refresh () { echo -n "Refreshing \"Shorewall6 Lite firewall\": " $SRWL $SRWL_OPTS refresh >> $INITLOG 2>&1 && echo "done." || echo_notdone return 0 } # status of the firewall shorewall6_status () { $SRWL $SRWL_OPTS status && exit 0 || exit $? } case "$1" in start) shorewall6_start ;; stop) shorewall6_stop ;; refresh) shorewall6_refresh ;; force-reload|restart) shorewall6_restart ;; status) shorewall6_status ;; *) echo "Usage: /etc/init.d/shorewall6-lite {start|stop|refresh|restart|force-reload|status}" exit 1 esac exit 0 shorewall6-lite-5.0.4/modules0000644000000000000000000000132512650243750014637 0ustar rootroot# # Shorewall6 version 5 - Modules File # # /usr/share/shorewall6/modules # # This file loads the modules that may be needed by the firewall. # # THE ORDER OF THE COMMANDS BELOW IS IMPORTANT!!!!!! You MUST load in # dependency order. i.e., if M2 depends on M1 then you must load M1 # before you load M2. # # If you need to modify this file, copy it to /etc/shorewall and modify the # copy. # ############################################################################### # # Essential Modules # INCLUDE modules.essential # # Other xtables modules # INCLUDE modules.xtables # # Helpers # INCLUDE helpers # # Ipset # INCLUDE modules.ipset # # Traffic Shaping # INCLUDE modules.tc # # Extensions # INCLUDE modules.extensions shorewall6-lite-5.0.4/helpers0000644000000000000000000000254712650243750014640 0ustar rootroot# # Shorewall6 version 5 - Helpers File # # /usr/share/shorewall6/helpers # # This file loads the modules that may be needed by the firewall. # # THE ORDER OF THE COMMANDS BELOW IS IMPORTANT!!!!!! You MUST load in # dependency order. i.e., if M2 depends on M1 then you must load M1 # before you load M2. # # If you need to modify this file, copy it to /etc/shorewall and modify the # copy. # ############################################################################### # # Helpers # loadmodule nf_conntrack_amanda loadmodule nf_conntrack_ftp loadmodule nf_conntrack_h323 loadmodule nf_conntrack_irc loadmodule nf_conntrack_netbios_ns loadmodule nf_conntrack_netbios_ns loadmodule nf_conntrack_netlink loadmodule nf_conntrack_pptp loadmodule nf_conntrack_proto_sctp loadmodule nf_conntrack_proto_udplite loadmodule nf_conntrack_sane loadmodule nf_conntrack_sip sip_direct_media=0 loadmodule nf_conntrack_pptp loadmodule nf_conntrack_proto_gre loadmodule nf_conntrack_proto_sctp loadmodule nf_conntrack_sip loadmodule nf_conntrack_tftp loadmodule nf_conntrack_sane # # While not actually helpers, these are included here so that # LOG_BACKEND can work correctly. Not all of them will be # loaded, since at least one of them will be an alias on any # given system. # loadmodule ip6t_LOG loadmodule nf_log_ipv6 loadmodule xt_LOG loadmodule xt_NFLOG loadmodule nfnetlink_log shorewall6-lite-5.0.4/shorewall6-lite.conf0000644000000000000000000000337412647470621017147 0ustar rootroot############################################################################### # /etc/shorewall6-lite/shorewall6-lite.conf Version 5 - Change the following # variables to override the values in the shorewall.conf file used to # compile /var/lib/shorewall-lite/firewall. Those values may be found in # /var/lib/shorewall-lite/firewall.conf. # # For information about the settings in this file, type # "man shorewall6-lite.conf" # # Manpage also online at # http://www.shorewall.net/manpages6/shorewall6-lite.conf.html. ############################################################################### # N 0 T E ############################################################################### # Entries in this file override entries in the shorewall.conf file in the # export directory when the firewall script was compiled. Any variable # not set here assumes the value defined at firewall compilation time. # # PROVIDED THAT shorewall.conf IN THE EXPORT DIRECTORY IS CORRECT, YOU DO NOT # NEED TO MODIFY THIS FILE IN ANY WAY ############################################################################### # V E R B O S I T Y ############################################################################### VERBOSITY= ############################################################################### # L O G G I N G ############################################################################### LOGFILE= ############################################################################### # L O C A T I O N O F F I L E S A N D D I R E C T O R I E S ############################################################################### IP6TABLES= PATH= SHOREWALL_SHELL= SUBSYSLOCK= RESTOREFILE= #LAST LINE -- DO NOT REMOVE shorewall6-lite-5.0.4/README.txt0000644000000000000000000000006612647470621014750 0ustar rootrootThis is the Shorewall6-lite stable 4.4 branch of Git. shorewall6-lite-5.0.4/shorewallrc.default0000644000000000000000000000353412650243750017143 0ustar rootroot# # Default Shorewall 5.0 rc file # HOST=linux #Generic Linux BUILD= #Default is to detect the build system PREFIX=/usr #Top-level directory for shared files, libraries, etc. SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory CONFDIR=/etc #Directory where subsystem configurations are installed SBINDIR=/sbin #Directory where system administration programs are installed MANDIR=${PREFIX}/man #Directory where manpages are installed. INITDIR=/etc/init.d #Directory where SysV init scripts are installed. INITFILE=$PRODUCT #Name of the product's installed SysV init script INITSOURCE=init.sh #Name of the distributed file to be installed as the SysV init script ANNOTATED= #If non-zero, annotated configuration files are installed SERVICEDIR= #Directory where .service files are installed (systems running systemd only) SERVICEFILE= #Name of the file to install in $SYSTEMD. Default is $PRODUCT.service SYSCONFFILE= #Name of the distributed file to be installed in $SYSCONFDIR SYSCONFDIR= #Directory where SysV init parameter files are installed SPARSE= #If non-empty, only install $PRODUCT/$PRODUCT.conf in $CONFDIR VARLIB=/var/lib #Directory where product variable data is stored. VARDIR=${VARLIB}/$PRODUCT #Directory where product variable data is stored. shorewall6-lite-5.0.4/shorewallrc.openwrt0000644000000000000000000000336612650243750017220 0ustar rootroot# # Created by Shorewall Core version 5.0.2-RC1 configure - Fri, Nov 06, 2015 10:02:03 AM # # Input: host=openwrt # PREFIX=/usr #Top-level directory for shared files, libraries, etc. SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory CONFDIR=/etc #Directory where subsystem configurations are installed SBINDIR=/sbin #Directory where system administration programs are installed MANDIR= #Directory where manpages are installed. INITDIR=/etc/init.d #Directory where SysV init scripts are installed. INITFILE=$PRODUCT #Name of the product's installed SysV init script INITSOURCE=init.openwrt.sh #Name of the distributed file to be installed as the SysV init script ANNOTATED= #If non-zero, annotated configuration files are installed SYSCONFDIR=${CONFDIR}/sysconfig #Directory where SysV init parameter files are installed SYSCONFFILE=sysconfig #Name of the distributed file to be installed in $SYSCONFDIR SERVICEDIR= #Directory where .service files are installed (systems running systemd only) SERVICEFILE= #Name of the file to install in $SYSTEMD. Default is $PRODUCT.service SPARSE= #If non-empty, only install $PRODUCT/$PRODUCT.conf in $CONFDIR VARLIB=/lib #Directory where product variable data is stored. VARDIR=${VARLIB}/$PRODUCT #Directory where product variable data is stored. shorewall6-lite-5.0.4/shorewallrc.apple0000644000000000000000000000226212650243750016615 0ustar rootroot# # Apple OS X Shorewall 5.0 rc file # BUILD=apple HOST=apple PREFIX=/usr #Top-level directory for shared files, libraries, etc. SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory CONFDIR=/etc #Directory where subsystem configurations are installed SBINDIR=/sbin #Directory where system administration programs are installed MANDIR=${SHAREDIR}/man #Directory where manpages are installed. INITDIR= #Unused on OS X INITFILE= #Unused on OS X INITSOURCE= #Unused on OS X ANNOTATED= #Unused on OS X SERVICEDIR= #Unused on OS X SERVICEFILE= #Unused on OS X SYSCONFDIR= #Unused on OS X SPARSE=Yes #Only install $PRODUCT/$PRODUCT.conf in $CONFDIR. VARLIB=/var/lib #Unused on OS X shorewall6-lite-5.0.4/shorewallrc.debian.sysvinit0000644000000000000000000000337712650243750020635 0ustar rootroot# # Debian Shorewall 4.5 rc file # BUILD= #Default is to detect the build system HOST=debian PREFIX=/usr #Top-level directory for shared files, libraries, etc. SHAREDIR=${PREFIX}/share #Directory for arch-neutral files. LIBEXECDIR=${PREFIX}/share #Directory for executable scripts. PERLLIBDIR=${PREFIX}/share/shorewall #Directory to install Shorewall Perl module directory CONFDIR=/etc #Directory where subsystem configurations are installed SBINDIR=/sbin #Directory where system administration programs are installed MANDIR=${PREFIX}/share/man #Directory where manpages are installed. INITDIR=/etc/init.d #Directory where SysV init scripts are installed. INITFILE=$PRODUCT #Name of the product's installed SysV init script INITSOURCE=init.debian.sh #Name of the distributed file to be installed as the SysV init script ANNOTATED= #If non-zero, annotated configuration files are installed SYSCONFFILE=default.debian #Name of the distributed file to be installed in $SYSCONFDIR SERVICEFILE= #Name of the file to install in $SYSTEMD. Default is $PRODUCT.service SYSCONFDIR=/etc/default #Directory where SysV init parameter files are installed SERVICEDIR= #Directory where .service files are installed (systems running systemd only) SPARSE=Yes #If non-empty, only install $PRODUCT/$PRODUCT.conf in $CONFDIR VARLIB=/var/lib #Directory where product variable data is stored. VARDIR=${VARLIB}/$PRODUCT #Directory where product variable data is stored. shorewall6-lite-5.0.4/configure0000755000000000000000000001220412650243750015151 0ustar rootroot#!/bin/bash # # Shorewall Packet Filtering Firewall RPM configuration program - V4.6 # # (c) 2012,2014 - Tom Eastep (teastep@shorewall.net) # # Shorewall documentation is available at http://www.shorewall.net # # This program is part of Shorewall. # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by the # Free Software Foundation, either version 2 of the license or, at your # option, any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # Usage: ./configure [