SHOREWALL6-ACTIONS(5) | Configuration Files | SHOREWALL6-ACTIONS(5) |
NAME¶
actions - shorewall6 action declaration fileSYNOPSIS¶
/etc/shorewall6/actions
DESCRIPTION¶
This file allows you to define new ACTIONS for use in rules (see shorewall6-rules(5)[1]). You define the ip6tables rules to be performed in an ACTION in /etc/shorewall6/action.action-name.Columns are:
NAME
OPTIONS
audit
builtin
Beginning with Shorewall 4.6.0, the Netfilter table(s) in which the builtin can be used may be specified: filter, nat, mangle and raw. If no table name(s) are given, then filter is assumed. The table names follow builtin and are separated by commas; for example, "FOOBAR builtin,filter,mangle" would specify FOOBAR as a builtin target that can be used in the filter and mangle tables.
Beginning with Shorewall 4.6.4, you may specify the terminating option with builtin to indicate to the Shorewall optimizer that the action is terminating (the current packet will not be passed to the next rule in the chain).
inline
Caution
Some of the Shorewall standard actions cannot be used in-line and will generate a warning and the compiler will ignore inline if you try to use them that way:
logjump
mangle
nat
noinline
nolog
state={UNTRACKED|NEW|ESTABLISHED|RELATED|INVALID}
terminating
FILES¶
/etc/shorewall6/actionsSEE ALSO¶
http://www.shorewall.net/Actions.html[5]shorewall6(8), shorewall6-accounting(5), shorewall6-blacklist(5), shorewall6-hosts(5), shorewall6-interfaces(5), shorewall6-maclist(5), shorewall6-netmap(5),shorewall6-params(5), shorewall6-policy(5), shorewall6-providers(5), shorewall6-rtrules(5), shorewall6-routestopped(5), shorewall6-rules(5), shorewall6.conf(5), shorewall6-secmarks(5), shorewall6-tcclasses(5), shorewall6-tcdevices(5), shorewall6-mangle(5), shorewall6-tos(5), shorewall6-tunnels(5), shorewall-zones(5)
NOTES¶
03/16/2017 | Configuration Files |