SHOREWALL6-HOSTS(5) | Configuration Files | SHOREWALL6-HOSTS(5) |
NAME¶
hosts - shorewall6 fileSYNOPSIS¶
/etc/shorewall6/hosts
DESCRIPTION¶
This file is used to define zones in terms of subnets and/or individual IP addresses. Most simple setups don't need to (should not) place anything in this file.The order of entries in this file is not significant in determining zone composition. Rather, the order that the zones are declared in shorewall6-zones[1](5) determines the order in which the records in this file are interpreted.
Warning
The only time that you need this file is when you have more than one zone connected through a single interface.
Warning
If you have an entry for a zone and interface in shorewall6-interfaces[2](5) then do not include any entries in this file for that same (zone, interface) pair.
The columns in the file are as follows (where the column name is followed by a different name in parentheses, the different name is used in the alternate specification syntax).
ZONE - zone-name
HOST(S) (hosts)- interface:{address-or-range[,address-or-range]...|+ipset|dynamic}[exclusion]
You may also exclude certain hosts through use of an exclusion (see shorewall6-exclusion[3](5).
OPTIONS - [option[,option]...]
blacklist
ipsec
mss=mss
routeback
tcpflags
FILES¶
/etc/shorewall6/hostsSEE ALSO¶
http://www.shorewall.net/configuration_file_basics.htm#Pairs[5]shorewall6(8), shorewall6-accounting(5), shorewall6-actions(5), shorewall6-blacklist(5), shorewall6-interfaces(5), shorewall6-maclist(5), shorewall6-netmap(5),shorewall6-params(5), shorewall6-policy(5), shorewall6-providers(5), shorewall6-rtrules(5), shorewall6-routestopped(5), shorewall6-rules(5), shorewall6.conf(5), shorewall6-secmarks(5), shorewall6-tcclasses(5), shorewall6-tcdevices(5), shorewall6-mangle(5), shorewall6-tos(5), shorewall6-tunnels(5), shorewall-zones(5)
NOTES¶
- 1.
- shorewall6-zones
- 2.
- shorewall6-interfaces
- 3.
- shorewall6-exclusion
- 4.
- shorewall6-blacklist
03/16/2017 | Configuration Files |