diff options
Diffstat (limited to 'main/shorewall-common')
| -rw-r--r-- | main/shorewall-common/APKBUILD | 21 | ||||
| -rw-r--r-- | main/shorewall-common/shorewall.initd | 80 |
2 files changed, 101 insertions, 0 deletions
diff --git a/main/shorewall-common/APKBUILD b/main/shorewall-common/APKBUILD new file mode 100644 index 00000000000..1c0a51d8a6b --- /dev/null +++ b/main/shorewall-common/APKBUILD @@ -0,0 +1,21 @@ +# Maintainer: Natanael Copa <ncopa@alpinelinux.org> +pkgname=shorewall-common +pkgver=4.2.10 +pkgrel=0 +pkgdesc="Shoreline Firewall is an iptables-based firewall for Linux." +url="http://www.shorewall.net/" +license="GPL-2" +depends="iptables iproute2" +subpackages="$pkgname-doc" +source="http://www1.shorewall.net/pub/shorewall/4.2/shorewall-$pkgver/shorewall-common-$pkgver.tar.bz2 + shorewall.initd + " + +build() { + cd "$srcdir/$pkgname-$pkgver" + + PREFIX="${pkgdir}" ./install.sh || return 1 + install -Dm755 "$srcdir"/shorewall.initd "$pkgdir"/etc/init.d/shorewall +} +md5sums="49bdbbae8dec65154c4e5538ed3c9865 shorewall-common-4.2.10.tar.bz2 +71fb6da1f50f5c6e9dd35b60b3629531 shorewall.initd" diff --git a/main/shorewall-common/shorewall.initd b/main/shorewall-common/shorewall.initd new file mode 100644 index 00000000000..9dda676c574 --- /dev/null +++ b/main/shorewall-common/shorewall.initd @@ -0,0 +1,80 @@ +#!/sbin/runscript +# Copyright 1999-2006 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall-common/files/shorewall.initd,v 1.2 2008/05/04 13:16:40 pva Exp $ + +opts="start stop restart clear reset refresh check" + +depend() { + need net + provide firewall + after ulogd +} + +start() { + ebegin "Starting firewall" + /sbin/shorewall -f start 1>/dev/null + eend $? +} + +stop() { + ebegin "Stopping firewall" + /sbin/shorewall stop 1>/dev/null + eend $? +} + +restart() { + # shorewall comes with its own control script that includes a + # restart function, so refrain from calling svc_stop/svc_start + # here. Note that this comment is required to fix bug 55576; + # runscript.sh greps this script... (09 Jul 2004 agriffis) + ebegin "Restarting firewall" + /sbin/shorewall status >/dev/null + if [ $? != 0 ] ; then + svc_start + else + if [ -f /var/lib/shorewall/restore ] ; then + /sbin/shorewall restore + else + /sbin/shorewall restart 1>/dev/null + fi + fi + eend $? +} + +clear() { + # clear will remove all the rules and bring the system to an unfirewalled + # state. (21 Nov 2004 eldad) + + ebegin "Clearing all firewall rules and setting policy to ACCEPT" + /sbin/shorewall clear + eend $? +} + +reset() { + # reset the packet and byte counters in the firewall + + ebegin "Resetting the packet and byte counters in the firewall" + /sbin/shorewall reset + eend $? +} + +refresh() { + # refresh the rules involving the broadcast addresses of firewall + # interfaces, the black list, traffic control rules and + # ECN control rules + + ebegin "Refreshing firewall rules" + /sbin/shorewall refresh + eend $? +} + +check() { + # perform cursory validation of the zones, interfaces, hosts, rules + # and policy files. CAUTION: does not parse and validate the generated + # iptables commands. + + ebegin "Checking configuration files" + /sbin/shorewall check + eend $? +} |