Rechercher une page de manuel
shorewall-notrack
Langue: en
Version: 03/19/2009 (fedora - 06/07/09)
Section: 5 (Format de fichier)
Synopsis
- /etc/shorewall/notrack
Description
- The notrack file is used to exempt certain traffic from Netfilter connection tracking. Traffic matching entries in this fill will not be tracked.
The file was added in shorewall-perl 4.2.7 and is not supported by shorewall-shell or by earlier versions of shorewall-perl.
The columns in the file are as follows.
SOURCE - zone[:interface][:address-list]
- where zone is the name of a zone, interface is an interface to that zone, and address-list is a comma-separated list of addresses (may contain exclusion - see m[blue]shorewall-exclusionm[][1] (5)).
DEST - [address-list]
- where address-list is a comma-separated list of addresses (may contain exclusion - see m[blue]shorewall-exclusionm[][1] (5)).
PROTO - protocol-name-or-number
- A protocol name from FC/etc/protocolsF[] or a protocol number.
DEST PORT(S) - port-number/service-name-list
- A comma-separated list of port numbers and/or service names from FC/etc/servicesF[]. May also include port ranges of the form low-port:high-port if your kernel and iptables include port range support.
SOURCE PORT(S) - port-number/service-name-list
- A comma-separated list of port numbers and/or service names from FC/etc/servicesF[]. May also include port ranges of the form low-port:high-port if your kernel and iptables include port range support.
USER/GROUP - [user][:group]
- May only be specified if the SOURCE zone is $FW. Specifies the effective user id and or group id of the process sending the traffic.
FILES
/etc/shorewall/notrack
See ALSO
shorewall(8), shorewall-accounting(5), shorewall-actions(5), shorewall-blacklist(5), shorewall-hosts(5), shorewall-interfaces(5), shorewall-ipsec(5), shorewall-masq(5), shorewall-nat(5), shorewall-netmap(5), shorewall-params(5), shorewall-policy(5), shorewall-providers(5), shorewall-proxyarp(5), shorewall-route_rules(5), shorewall-routestopped(5), shorewall-rules(5), shorewall.conf(5), shorewall-tcclasses(5), shorewall-tcdevices(5), shorewall-tcrules(5), shorewall-tos(5), shorewall-tunnels(5), shorewall-zones(5)
Notes
- 1.
- shorewall-exclusion
- http://www.shorewall.net/manpages/shorewall-exclusion.html
Contenus ©2006-2024 Benjamin Poulain
Design ©2006-2024 Maxime Vantorre