Firehol manual

firehol is a language to express firewalling rules, not just a script that produces some kind of a firewall.. The goals of firehol are: * Being as easy as possible Independently of the security skills he/she has, firehol allows to create and understand complex firewalls in just a few seconds. The configuration files are very easy to type and read. Command to display firehol manual in Linux: $ man 5 firehol. NAME www.doorway.ru - Configuration file for firehol(1) DESCRIPTION www.doorway.ru is the configuration file for firehol(1), which creates an iptables firewall from the simple rules in this file. FireHOL Reference Who should read this manual. This is a reference guide with specific detailed information on commands and configuration syntax for the FireHOL tool. The reference is unlikely to be suitable for newcomers to the tools, except as a means to .

firehol is a language to express firewalling rules, not just a script that produces some kind of a firewall.. The goals of firehol are: * Being as easy as possible Independently of the security skills he/she has, firehol allows to create and understand complex firewalls in just a few seconds. The configuration files are very easy to type and read. NAME¶ firehol-masquerade - set up masquerading (NAT) on an interface SYNOPSIS¶ masquerade real-interface rule-params. masquerade [reverse] rule-params DESCRIPTION¶ The masquerade helper command sets up masquerading on the output of a real network interface (as opposed to a FireHOL interface definition).. If a real-interface is specified the command should be used before any interface or. This module installs IPSets, which is part of Firehol. IPsets is a script called: update-ipsets which download ipsets or blacklist on the internet. Those IPSets can be used to analyse logfile. For example during analyse of an attack it might be interested to compare IPs with IPs on black lists.

FireHOL Reference Who should read this manual. This is a reference guide with specific detailed information on commands and configuration syntax for the FireHOL tool. The reference is unlikely to be suitable for newcomers to the tools, except as a means to look up more information on a particular command. SNAT is similar to masquerading but is more efficient for static IP addresses. You can use it to give a public IP address to a host which does not have one behind the firewall. See also firehol-masquerade(5). ipaddr[:port] is the source address to be set in packets matching rule-params. If no rules are given, all forwarded traffic will be matched. /keyword/ - Used to link to real manual pages; Simply create an appropriate file with the appropriate header and the site compilation takes care of the rest. The /keyword/ URLs are not defined as files anywhere: the values are extracted from the FireHOL/FireQOS reference manual during site compilation.