diff options
| author | Stig Thormodsrud <stig@vyatta.com> | 2008-02-01 10:15:32 -0800 |
|---|---|---|
| committer | Stig Thormodsrud <stig@vyatta.com> | 2008-02-01 10:15:32 -0800 |
| commit | 343ee77290bb4e73d7fd12e6d0fb8c3fc38a28a1 (patch) | |
| tree | 318d62a01f453895144909df2e6883d37e39c612 /templates | |
| parent | 452e464e0685427cf8ebba908f169857416651f1 (diff) | |
| download | vyatta-cfg-firewall-343ee77290bb4e73d7fd12e6d0fb8c3fc38a28a1.tar.gz vyatta-cfg-firewall-343ee77290bb4e73d7fd12e6d0fb8c3fc38a28a1.zip | |
Add firewall node to tunnel interface
Diffstat (limited to 'templates')
14 files changed, 114 insertions, 0 deletions
diff --git a/templates/interfaces/tunnel/node.tag/firewall/in/name/node.def b/templates/interfaces/tunnel/node.tag/firewall/in/name/node.def new file mode 100644 index 0000000..290e726 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/firewall/in/name/node.def @@ -0,0 +1,18 @@ +type: txt + +help: Inbound interface filter name + +create:expression: "sh -c \"echo create eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../@) $VAR(..) $VAR(@)\" " + +update:expression: "sh -c \"echo update eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../@) $VAR(..) $VAR(@)\" " + +delete:expression: "sh -c \"echo delete eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $VAR(../../../@) $VAR(..) $VAR(@)\" " diff --git a/templates/interfaces/tunnel/node.tag/firewall/in/node.def b/templates/interfaces/tunnel/node.tag/firewall/in/node.def new file mode 100644 index 0000000..7a9f156 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/firewall/in/node.def @@ -0,0 +1 @@ +help: Filter forwarded packets on inbound interface diff --git a/templates/interfaces/tunnel/node.tag/firewall/local/name/node.def b/templates/interfaces/tunnel/node.tag/firewall/local/name/node.def new file mode 100644 index 0000000..5bd9cd6 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/firewall/local/name/node.def @@ -0,0 +1,18 @@ +type: txt + +help: Local filter name + +create:expression: "sh -c \"echo create eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../@) $VAR(..) $VAR(@)\" " + +update:expression: "sh -c \"echo update eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../@) $VAR(..) $VAR(@)\" " + +delete:expression: "sh -c \"echo delete eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $VAR(../../../@) $VAR(..) $VAR(@)\" " diff --git a/templates/interfaces/tunnel/node.tag/firewall/local/node.def b/templates/interfaces/tunnel/node.tag/firewall/local/node.def new file mode 100644 index 0000000..eb0ccdf --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/firewall/local/node.def @@ -0,0 +1 @@ +help: Filter packets destined for this router diff --git a/templates/interfaces/tunnel/node.tag/firewall/node.def b/templates/interfaces/tunnel/node.tag/firewall/node.def new file mode 100644 index 0000000..7778775 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/firewall/node.def @@ -0,0 +1 @@ +help: Configure firewall options diff --git a/templates/interfaces/tunnel/node.tag/firewall/out/name/node.def b/templates/interfaces/tunnel/node.tag/firewall/out/name/node.def new file mode 100644 index 0000000..0086f38 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/firewall/out/name/node.def @@ -0,0 +1,18 @@ +type: txt + +help: Outbound interface filter name + +create:expression: "sh -c \"echo create eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../@) $VAR(..) $VAR(@)\" " + +update:expression: "sh -c \"echo update eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../@) $VAR(..) $VAR(@)\" " + +delete:expression: "sh -c \"echo delete eth=[$VAR(../../../@)] dir=[$VAR(..)] name=[$VAR(@)] \ +>> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $VAR(../../../@) $VAR(..) $VAR(@)\" " diff --git a/templates/interfaces/tunnel/node.tag/firewall/out/node.def b/templates/interfaces/tunnel/node.tag/firewall/out/node.def new file mode 100644 index 0000000..4cf0682 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/firewall/out/node.def @@ -0,0 +1 @@ +help: Filter forwarded packets on outbound interface diff --git a/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/in/name/node.def b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/in/name/node.def new file mode 100644 index 0000000..ade7e78 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/in/name/node.def @@ -0,0 +1,18 @@ +type: txt + +help: Inbound interface filter name + +create:expression: "sh -c \"echo create eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ +dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " + +update:expression: "sh -c \"echo update eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ +dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " + +delete:expression: "sh -c \"echo delete eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ +dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " diff --git a/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/in/node.def b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/in/node.def new file mode 100644 index 0000000..7a9f156 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/in/node.def @@ -0,0 +1 @@ +help: Filter forwarded packets on inbound interface diff --git a/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/local/name/node.def b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/local/name/node.def new file mode 100644 index 0000000..4089ab1 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/local/name/node.def @@ -0,0 +1,17 @@ +type: txt + +help: Local filter name + +create:expression: "sh -c \"echo create eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " + +update:expression: "sh -c \"echo update eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ +dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " + +delete:expression: "sh -c \"echo delete eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ +dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " diff --git a/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/local/node.def b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/local/node.def new file mode 100644 index 0000000..eb0ccdf --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/local/node.def @@ -0,0 +1 @@ +help: Filter packets destined for this router diff --git a/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/node.def b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/node.def new file mode 100644 index 0000000..7778775 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/node.def @@ -0,0 +1 @@ +help: Configure firewall options diff --git a/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/out/name/node.def b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/out/name/node.def new file mode 100644 index 0000000..22642a2 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/out/name/node.def @@ -0,0 +1,17 @@ +type: txt + +help: Outbound interface filter name + +create:expression: "sh -c \"echo create eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " + +update:expression: "sh -c \"echo update eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ +dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " + +delete:expression: "sh -c \"echo delete eth=[$VAR(../../../../@)] vif=[$VAR(../../../@)] \ +dir=[$VAR(..)] name=[$VAR(@)] >> /tmp/cli.log && \ +sudo /opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $VAR(../../../../@).$VAR(../../../@) $VAR(..) $VAR(@)\" " diff --git a/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/out/node.def b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/out/node.def new file mode 100644 index 0000000..4cf0682 --- /dev/null +++ b/templates/interfaces/tunnel/node.tag/vif/node.tag/firewall/out/node.def @@ -0,0 +1 @@ +help: Filter forwarded packets on outbound interface |