tag:
priority: 210

type: txt

syntax:expression: pattern $VAR(@) "^[[:graph:]]{1,28}$" ; \
                   "Firewall name must be 28 characters or less"
syntax:expression: pattern $VAR(@) "^[^-]" ; \
                   "Firewall rule set name cannot start with \"-\""
syntax:expression: pattern $VAR(@) "^[^|;&$<>]*$" ; \
                   "Firewall rule set name cannot contain shell punctuation"
syntax:expression: ! pattern $VAR(@) "^VZONE" ; \
                   "Firewall rule set name cannot start with 'VZONE'"

end: if sudo /opt/vyatta/sbin/vyatta-firewall.pl --update-rules "firewall name" "$VAR(@)" ;
     then
       if [ ${COMMIT_ACTION} = 'DELETE' ] ; 
       then
          if sudo /opt/vyatta/sbin/vyatta-firewall.pl --teardown-ok "firewall name" ;
          then
             if sudo /opt/vyatta/sbin/vyatta-firewall.pl --teardown "firewall name"; then
                ${vyatta_sbindir}/vyatta-firewall-trap.pl --level="firewall name $VAR(@)"
             fi
          fi
       else
          ${vyatta_sbindir}/vyatta-firewall-trap.pl --level="firewall name $VAR(@)"
       fi
     else
       exit 1;
     fi
     sudo /opt/vyatta/sbin/vyatta-ipset.pl --action=prune-deleted-sets

create: sudo /opt/vyatta/sbin/vyatta-firewall.pl --setup iptables "firewall name"

help: IPv4 firewall rule-set name