From d2e2b6bbec89e741b5e6c3e5c3129534170a2146 Mon Sep 17 00:00:00 2001
From: Mohit Mehta <mohit.mehta@vyatta.com>
Date: Tue, 7 Apr 2009 18:27:37 -0700
Subject: Add 1st pass of zone based firewall support (transit zones only for
 now)

---
 templates/zone-policy/zone/node.def | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 templates/zone-policy/zone/node.def

(limited to 'templates/zone-policy/zone/node.def')

diff --git a/templates/zone-policy/zone/node.def b/templates/zone-policy/zone/node.def
new file mode 100644
index 00000000..5fd8dc6e
--- /dev/null
+++ b/templates/zone-policy/zone/node.def
@@ -0,0 +1,21 @@
+tag:
+type: txt
+help: Set zone name
+
+syntax:expression: exec "                                    \
+        if [ `echo -n '$VAR(@)' | wc -c` -gt 24 ]; then    \
+          echo  Zone name must be 24 characters or less; \
+          exit 1 ;                                           \
+        fi ; "
+
+syntax:expression: pattern $VAR(@) "^[^-]" ; "Zone name cannot start with \"-\""
+
+syntax:expression: pattern $VAR(@) "^[^;]*$" ; "Zone name cannot contain ';'"
+
+create: /opt/vyatta/sbin/vyatta-zone.pl 	\
+          --action=add-zone                 	\
+          --zone-name="$VAR(@)"
+
+delete: /opt/vyatta/sbin/vyatta-zone.pl 	\
+          --action=delete-zone                 	\
+          --zone-name="$VAR(@)"
-- 
cgit v1.2.3