diff options
| author | Bob Gilligan <gilligan@sydney.vyatta.com> | 2007-12-12 14:13:13 -0800 |
|---|---|---|
| committer | Bob Gilligan <gilligan@sydney.vyatta.com> | 2007-12-12 14:13:13 -0800 |
| commit | 189566463805d5b45c54129463d8ee00312dc459 (patch) | |
| tree | c72f6415ffaf05f7d6d26a95426107e3422f3f82 /templates | |
| parent | 7ef7ac6dc5bc429508a4190906bce8c463afac30 (diff) | |
| download | vyatta-cfg-firewall-189566463805d5b45c54129463d8ee00312dc459.tar.gz vyatta-cfg-firewall-189566463805d5b45c54129463d8ee00312dc459.zip | |
Add templates for firewall nodes in the "interfaces" tree.
Diffstat (limited to 'templates')
14 files changed, 90 insertions, 0 deletions
diff --git a/templates/interfaces/ethernet/node.tag/firewall/in/name/node.def b/templates/interfaces/ethernet/node.tag/firewall/in/name/node.def new file mode 100644 index 0000000..c3e58b7 --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/firewall/in/name/node.def @@ -0,0 +1,14 @@ +type: txt +help: "Inbound interface filter name" +create: "sh -c \"echo create eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../..) $(..) $(@)\" " +update: "sh -c \"echo update eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../..) $(..) $(@)\" " +delete: "sh -c \"echo delete eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $(../../..) $(..) $(@)\" " diff --git a/templates/interfaces/ethernet/node.tag/firewall/in/node.def b/templates/interfaces/ethernet/node.tag/firewall/in/node.def new file mode 100644 index 0000000..caa7172 --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/firewall/in/node.def @@ -0,0 +1 @@ +help: "Filter forwarded packets on inbound interface" diff --git a/templates/interfaces/ethernet/node.tag/firewall/local/name/node.def b/templates/interfaces/ethernet/node.tag/firewall/local/name/node.def new file mode 100644 index 0000000..e0a2fa5 --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/firewall/local/name/node.def @@ -0,0 +1,14 @@ +type: txt +help: "Local filter name" +create: "sh -c \"echo create eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../..) $(..) $(@)\" " +update: "sh -c \"echo update eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../..) $(..) $(@)\" " +delete: "sh -c \"echo delete eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $(../../..) $(..) $(@)\" " diff --git a/templates/interfaces/ethernet/node.tag/firewall/local/node.def b/templates/interfaces/ethernet/node.tag/firewall/local/node.def new file mode 100644 index 0000000..5785f8d --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/firewall/local/node.def @@ -0,0 +1 @@ +help: "Filter packets destined for this router" diff --git a/templates/interfaces/ethernet/node.tag/firewall/node.def b/templates/interfaces/ethernet/node.tag/firewall/node.def new file mode 100644 index 0000000..95ad2ba --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/firewall/node.def @@ -0,0 +1 @@ +help: "Configure firewall options" diff --git a/templates/interfaces/ethernet/node.tag/firewall/out/name/node.def b/templates/interfaces/ethernet/node.tag/firewall/out/name/node.def new file mode 100644 index 0000000..9828c9c --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/firewall/out/name/node.def @@ -0,0 +1,14 @@ +type: txt +help: "Outbound interface filter name" +create: "sh -c \"echo create eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../..) $(..) $(@)\" " +update: "sh -c \"echo update eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../..) $(..) $(@)\" " +delete: "sh -c \"echo delete eth=[$(../../..)] dir=[$(..)] name=[$(@)] \ +>> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $(../../..) $(..) $(@)\" " diff --git a/templates/interfaces/ethernet/node.tag/firewall/out/node.def b/templates/interfaces/ethernet/node.tag/firewall/out/node.def new file mode 100644 index 0000000..66f4e6f --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/firewall/out/node.def @@ -0,0 +1 @@ +help: "Filter forwarded packets on outbound interface" diff --git a/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/in/name/node.def b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/in/name/node.def new file mode 100644 index 0000000..10ee0bb --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/in/name/node.def @@ -0,0 +1,14 @@ +type: txt +help: "Inbound interface filter name" +create: "sh -c \"echo create eth=[$(../../../../..)] vif=[$(../../..)] \ +dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../../../..).$(../../..) $(..) $(@)\" " +update: "sh -c \"echo update eth=[$(../../../../..)] vif=[$(../../..)] \ +dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../../../..).$(../../..) $(..) $(@)\" " +delete: "sh -c \"echo delete eth=[$(../../../../..)] vif=[$(../../..)] \ +dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $(../../../../..).$(../../..) $(..) $(@)\" " diff --git a/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/in/node.def b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/in/node.def new file mode 100644 index 0000000..caa7172 --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/in/node.def @@ -0,0 +1 @@ +help: "Filter forwarded packets on inbound interface" diff --git a/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/local/name/node.def b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/local/name/node.def new file mode 100644 index 0000000..d8dfd8b --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/local/name/node.def @@ -0,0 +1,13 @@ +type: txt +help: "Local filter name" +create: "sh -c \"echo create eth=[$(../../../../..)] vif=[$(../../..)] \ dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../../../..).$(../../..) $(..) $(@)\" " +update: "sh -c \"echo update eth=[$(../../../../..)] vif=[$(../../..)] \ +dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../../../..).$(../../..) $(..) $(@)\" " +delete: "sh -c \"echo delete eth=[$(../../../../..)] vif=[$(../../..)] \ +dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $(../../../../..).$(../../..) $(..) $(@)\" " diff --git a/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/local/node.def b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/local/node.def new file mode 100644 index 0000000..5785f8d --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/local/node.def @@ -0,0 +1 @@ +help: "Filter packets destined for this router" diff --git a/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/node.def b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/node.def new file mode 100644 index 0000000..95ad2ba --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/node.def @@ -0,0 +1 @@ +help: "Configure firewall options" diff --git a/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/out/name/node.def b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/out/name/node.def new file mode 100644 index 0000000..c3ec18a --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/out/name/node.def @@ -0,0 +1,13 @@ +type: txt +help: "Outbound interface filter name" +create: "sh -c \"echo create eth=[$(../../../../..)] vif=[$(../../..)] \ dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../../../..).$(../../..) $(..) $(@)\" " +update: "sh -c \"echo update eth=[$(../../../../..)] vif=[$(../../..)] \ +dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces update $(../../../../..).$(../../..) $(..) $(@)\" " +delete: "sh -c \"echo delete eth=[$(../../../../..)] vif=[$(../../..)] \ +dir=[$(..)] name=[$(@)] >> /tmp/cli.log && \ +/opt/vyatta/sbin/vyatta-firewall.pl \ +--update-interfaces delete $(../../../../..).$(../../..) $(..) $(@)\" " diff --git a/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/out/node.def b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/out/node.def new file mode 100644 index 0000000..66f4e6f --- /dev/null +++ b/templates/interfaces/ethernet/node.tag/vif/node.tag/firewall/out/node.def @@ -0,0 +1 @@ +help: "Filter forwarded packets on outbound interface" |