![首頁 Logo Keith ]p !!](/themes/mytheme/logo.png){kind=logo}
所有可用的 macro 存放在以下 Folder
/usr/share/shorewall/macro.*
#ACTION SOURCE DEST PROTO DEST PORT(S) SOURCE # PORT(S) SMB(ACCEPT) $FW loc SMB(ACCEPT) loc $FW
常用的 macro
macro 可以理解成所有人都可做什麼
- macro.SSH
- macro.Web
- macro.Mail
- macro.Ping
- macro.SMB
- macro.Munin
- macro.FTP
- macro.DNS
macro.Ping 的內容
#ACTION SOURCE DEST PROTO DEST SOURCE RATE USER/ # PORT(S) PORT(S) LIMIT GROUP PARAM - - icmp 8
修改 macro
如果想對 macro 有修改
可以把它 copy 到 /etc/shorewall, 之後自定它
應用
/etc/shorewall/macro.SMTP
#TARGET SOURCE DEST PROTO DEST PORT(S)
PARAM - 192.168.1.5 tcp 25
/etc/shorewall/rules
#ACTION SOURCE DEST PROTO DEST PORT(S)
SMTP(DNAT):info net loc
This would be equivalent to coding the following directly in /etc/shorewall/rules
#ACTION SOURCE DEST PROTO DEST PORT(S)
DNAT:info net loc:192.168.1.5 tcp 25