diff options
| author |   Markus Ullmann <jokey@gentoo.org> | 2007-09-06 11:22:31 +0000 |
|---|---|---|
| committer | Markus Ullmann <jokey@gentoo.org> | 2007-09-06 11:22:31 +0000 |
| commit | 13bd9eb555e084de0a9eadee83a8e06a144bcfad (patch) | |
| tree | eb0d8bab6775cfde8ddb4f4c1ba62fffd3a87f06 /net-firewall/shorewall-common | |
| parent | Stable on sparc wrt security bug #191321 (diff) | |
| download | historical-13bd9eb555e084de0a9eadee83a8e06a144bcfad.tar.gz historical-13bd9eb555e084de0a9eadee83a8e06a144bcfad.tar.bz2 historical-13bd9eb555e084de0a9eadee83a8e06a144bcfad.zip | |
Initial import of shorewall 4.x series wrt bug #174588 thanks to Vieri
Package-Manager: portage-2.1.3.7
Diffstat (limited to 'net-firewall/shorewall-common')
| -rw-r--r-- | net-firewall/shorewall-common/ChangeLog | 10 | ||||
| -rw-r--r-- | net-firewall/shorewall-common/Manifest | 21 | ||||
| -rw-r--r-- | net-firewall/shorewall-common/files/digest-shorewall-common-4.0.3 | 6 | ||||
| -rw-r--r-- | net-firewall/shorewall-common/files/shorewall.initd | 75 | ||||
| -rw-r--r-- | net-firewall/shorewall-common/metadata.xml | 8 | ||||
| -rw-r--r-- | net-firewall/shorewall-common/shorewall-common-4.0.3.ebuild | 101 |
6 files changed, 221 insertions, 0 deletions
diff --git a/net-firewall/shorewall-common/ChangeLog b/net-firewall/shorewall-common/ChangeLog new file mode 100644 index 000000000000..c3fb1f8ab4e0 --- /dev/null +++ b/net-firewall/shorewall-common/ChangeLog @@ -0,0 +1,10 @@ +# ChangeLog for net-firewall/shorewall-common +# Copyright 1999-2007 Gentoo Foundation; Distributed under the GPL v2 +# $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall-common/ChangeLog,v 1.1 2007/09/06 11:16:44 jokey Exp $ + +*shorewall-common-4.0.3 (06 Sep 2007) + + 06 Sep 2007; Markus Ullmann <jokey@gentoo.org> +files/shorewall.initd, + +metadata.xml, +shorewall-common-4.0.3.ebuild: + Initial import of shorewall 4.x series wrt bug #174588 thanks to Vieri + diff --git a/net-firewall/shorewall-common/Manifest b/net-firewall/shorewall-common/Manifest new file mode 100644 index 000000000000..e4705fccf6c5 --- /dev/null +++ b/net-firewall/shorewall-common/Manifest @@ -0,0 +1,21 @@ +AUX shorewall.initd 1812 RMD160 73672d6c34a14277b68e882f86158d09daa4a282 SHA1 929b2b6256a9776a6a88b613b50ea9879f98e938 SHA256 2936b7fcf96c5411d7cd5c0aa951664b840dfecd1bb8d369e10621a0d89a320e +MD5 6f1c449b193857db7eeee19b118ff523 files/shorewall.initd 1812 +RMD160 73672d6c34a14277b68e882f86158d09daa4a282 files/shorewall.initd 1812 +SHA256 2936b7fcf96c5411d7cd5c0aa951664b840dfecd1bb8d369e10621a0d89a320e files/shorewall.initd 1812 +DIST shorewall-common-4.0.3.tar.bz2 127258 RMD160 d7894d7f5ce3f9b14645ef36b8b08f1f413cadf9 SHA1 45d864be4364cf861809860b37b893933f5f8c94 SHA256 05738d5c6c895f861d5946160c9f4daf8e8316a1fdbb222173c5f5fff133d314 +DIST shorewall-docs-html-4.0.3.tar.bz2 2324955 RMD160 cfe63071479637909b1ef9bd761814ec0b66cbc6 SHA1 fdf04fd104e4c255745522fe4deb40727ef8a064 SHA256 a7821b955272b149bb7c8dfe164ae338ff62a97c8b417d995af3bf440c968067 +EBUILD shorewall-common-4.0.3.ebuild 3602 RMD160 6417cab413ad38975e8a31445000d83bd856aead SHA1 4b03446aaf9981ffd9a9b77426b9c7f24dfbc8e0 SHA256 252ca16b412940ac031b14592b94f5440631b740f3f0fc11aab4e25512e59869 +MD5 6e97a6015881b5b37a9ce38e398e85db shorewall-common-4.0.3.ebuild 3602 +RMD160 6417cab413ad38975e8a31445000d83bd856aead shorewall-common-4.0.3.ebuild 3602 +SHA256 252ca16b412940ac031b14592b94f5440631b740f3f0fc11aab4e25512e59869 shorewall-common-4.0.3.ebuild 3602 +MISC ChangeLog 365 RMD160 c484bd2613e7552ce9452c9c01316eeca03bc729 SHA1 da81f9630c50f7063b206e94bf80d726d53b8248 SHA256 4f6b1dace6984eeede732fea8cc24dc31ba7b109c5a116f3c54a65526adfd2f4 +MD5 13645b70e3620fd004129b5c14a92856 ChangeLog 365 +RMD160 c484bd2613e7552ce9452c9c01316eeca03bc729 ChangeLog 365 +SHA256 4f6b1dace6984eeede732fea8cc24dc31ba7b109c5a116f3c54a65526adfd2f4 ChangeLog 365 +MISC metadata.xml 221 RMD160 6a612dbdb85b7cbc15a4f4924fc62b435900bee4 SHA1 59ce39c64900516f7d583951daacb16fc01f0ea1 SHA256 80bafe9d61de4580c061d796ca9c244633349b7a6da85aeae6e11bbaad597110 +MD5 9683bb7323c40d69b48d54ad0eb169ed metadata.xml 221 +RMD160 6a612dbdb85b7cbc15a4f4924fc62b435900bee4 metadata.xml 221 +SHA256 80bafe9d61de4580c061d796ca9c244633349b7a6da85aeae6e11bbaad597110 metadata.xml 221 +MD5 e2bb1a73a2dc8ea78e0533afc495d349 files/digest-shorewall-common-4.0.3 554 +RMD160 c9ccdf6951b91c765f69b1a17ff38f569dcc1c44 files/digest-shorewall-common-4.0.3 554 +SHA256 f993b931fd513d9b8c953259c13dd1dd862611d7f59d29d1cc2dc0d3a57be086 files/digest-shorewall-common-4.0.3 554 diff --git a/net-firewall/shorewall-common/files/digest-shorewall-common-4.0.3 b/net-firewall/shorewall-common/files/digest-shorewall-common-4.0.3 new file mode 100644 index 000000000000..b23580de6063 --- /dev/null +++ b/net-firewall/shorewall-common/files/digest-shorewall-common-4.0.3 @@ -0,0 +1,6 @@ +MD5 34c462dd278592a9b4a98c7ebee5cc9b shorewall-common-4.0.3.tar.bz2 127258 +RMD160 d7894d7f5ce3f9b14645ef36b8b08f1f413cadf9 shorewall-common-4.0.3.tar.bz2 127258 +SHA256 05738d5c6c895f861d5946160c9f4daf8e8316a1fdbb222173c5f5fff133d314 shorewall-common-4.0.3.tar.bz2 127258 +MD5 4657acca54b086992c5b979a99355f5b shorewall-docs-html-4.0.3.tar.bz2 2324955 +RMD160 cfe63071479637909b1ef9bd761814ec0b66cbc6 shorewall-docs-html-4.0.3.tar.bz2 2324955 +SHA256 a7821b955272b149bb7c8dfe164ae338ff62a97c8b417d995af3bf440c968067 shorewall-docs-html-4.0.3.tar.bz2 2324955 diff --git a/net-firewall/shorewall-common/files/shorewall.initd b/net-firewall/shorewall-common/files/shorewall.initd new file mode 100644 index 000000000000..27efb064ed91 --- /dev/null +++ b/net-firewall/shorewall-common/files/shorewall.initd @@ -0,0 +1,75 @@ +#!/sbin/runscript +# Copyright 1999-2006 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall-common/files/shorewall.initd,v 1.1 2007/09/06 11:16:44 jokey Exp $ + +opts="start stop restart clear reset refresh check" + +depend() { + need net + provide firewall + after ulogd +} + +start() { + ebegin "Starting firewall" + /sbin/shorewall -f start 1>/dev/null + eend $? +} + +stop() { + ebegin "Stopping firewall" + /sbin/shorewall stop 1>/dev/null + eend $? +} + +restart() { + # shorewall comes with its own control script that includes a + # restart function, so refrain from calling svc_stop/svc_start + # here. Note that this comment is required to fix bug 55576; + # runscript.sh greps this script... (09 Jul 2004 agriffis) + ebegin "Restarting firewall" + if [ -f /var/lib/shorewall/restore ] ; then + /sbin/shorewall restore + else + /sbin/shorewall restart 1>/dev/null + fi + eend $? +} + +clear() { + # clear will remove all the rules and bring the system to an unfirewalled + # state. (21 Nov 2004 eldad) + + ebegin "Clearing all firewall rules and setting policy to ACCEPT" + /sbin/shorewall clear + eend $? +} + +reset() { + # reset the packet and byte counters in the firewall + + ebegin "Resetting the packet and byte counters in the firewall" + /sbin/shorewall reset + eend $? +} + +refresh() { + # refresh the rules involving the broadcast addresses of firewall + # interfaces, the black list, traffic control rules and + # ECN control rules + + ebegin "Refreshing firewall rules" + /sbin/shorewall refresh + eend $? +} + +check() { + # perform cursory validation of the zones, interfaces, hosts, rules + # and policy files. CAUTION: does not parse and validate the generated + # iptables commands. + + ebegin "Checking configuration files" + /sbin/shorewall check + eend $? +} diff --git a/net-firewall/shorewall-common/metadata.xml b/net-firewall/shorewall-common/metadata.xml new file mode 100644 index 000000000000..1c54eb31a1ba --- /dev/null +++ b/net-firewall/shorewall-common/metadata.xml @@ -0,0 +1,8 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd"> +<pkgmetadata> +<herd>netmon</herd> +<maintainer> + <email>netmon@gentoo.org</email> +</maintainer> +</pkgmetadata> diff --git a/net-firewall/shorewall-common/shorewall-common-4.0.3.ebuild b/net-firewall/shorewall-common/shorewall-common-4.0.3.ebuild new file mode 100644 index 000000000000..4c89b31c47b0 --- /dev/null +++ b/net-firewall/shorewall-common/shorewall-common-4.0.3.ebuild @@ -0,0 +1,101 @@ +# Copyright 1999-2007 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/net-firewall/shorewall-common/shorewall-common-4.0.3.ebuild,v 1.1 2007/09/06 11:16:44 jokey Exp $ + +inherit eutils + +# Choose between experimental, stable and beta: +#MY_P_TREE="development/4.0" # experimental and beta +MY_P_TREE="4.0" # stable +#MY_P_BETA="-RC1" # only beta and RC +MY_P_BETA="" # stable or experimental + +MY_P="${P/-common/}${MY_P_BETA}" +MY_PN="${PN/-common/}" + +MY_P_DOCS="${MY_P/${MY_PN}/${MY_PN}-docs-html}" + +DESCRIPTION="Shoreline Firewall is an iptables-based firewall for Linux." +HOMEPAGE="http://www.shorewall.net/" +SRC_URI="http://www1.shorewall.net/pub/${MY_PN}/${MY_P_TREE}/${MY_P}/${P}${MY_P_BETA}.tar.bz2 + doc? ( http://www1.shorewall.net/pub/${MY_PN}/${MY_P_TREE}/${MY_P}/${MY_P_DOCS}.tar.bz2 )" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="~amd64 ~x86" +IUSE="doc" + +DEPEND=">=net-firewall/iptables-1.2.4 + sys-apps/iproute2 + ~net-firewall/shorewall-shell-${PV} + !<net-firewall/shorewall-4.0.0" + +pkg_setup() { + if built_with_use sys-apps/iproute2 minimal; then + die "Shorewall requires sys-apps/iproute2 to be built without the \"minimal\" USE flag." + fi +} + +src_compile() { + einfo "Nothing to compile." +} + +src_install() { + keepdir /var/lib/shorewall + + cd "${WORKDIR}/${P}${MY_P_BETA}" + PREFIX="${D}" ./install.sh || die "install.sh failed" + newinitd "${FILESDIR}"/shorewall.initd shorewall || die "doinitd failed" + + dodoc changelog.txt releasenotes.txt + if use doc; then + cd "${WORKDIR}/${MY_P_DOCS}" + # install documentation + dohtml -r * + ## dosym Documentation_Index.html "/usr/share/doc/${PF}/html/index.htm" + # install samples + cp -pR "${S}${MY_P_BETA}/Samples" "${D}/usr/share/doc/${PF}" + fi +} + +pkg_postinst() { + elog + if use doc ; then + elog "Documentation is available at /usr/share/doc/${PF}/html." + elog "Please read the Release Notes in /usr/share/doc/${PF}." + elog "Samples are available at /usr/share/doc/${PF}/Samples." + else + elog "Documentation is available at http://www.shorewall.net" + fi + elog "There are man pages for shorewall(8) and for each configuration file." + elog + elog "Bridging configuration has changed with kernel 2.6.20+." + elog "Check the documentation." + elog + elog "Do not blindly start shorewall, edit the files in /etc/shorewall first" + elog "At the very least, you must change 'STARTUP_ENABLED' in shorewall.conf" + elog + elog "Be aware that version ${MY_P_TREE} differs substantially from previous releases." + elog "Information on upgrading is available at:" + elog "http://www.shorewall.net/upgrade_issues.htm" + elog + elog "There is a 'shorewall compile' command to generate scripts to run" + elog "on systems with Shorewall Lite installed." + elog "Please refer to http://www.shorewall.net/CompiledPrograms.html" + elog "It is advised to copy the /usr/share/shorewall/configfiles dir to your" + elog "own 'export directories'. However, whenever you upgrade Shorewall you" + elog "should check for changes in configfiles and manually update your exports." + elog "Alternatively, if you only have one Shorewall-Lite system in your network" + elog "then you can use the configfiles dir but set CONFIG_PROTECT appropriately" + elog "in /etc/make.conf (man make.conf)." + elog + elog "Known problems:" + elog "http://shorewall.net/pub/${MY_PN}/${MY_P_TREE}/${MY_P}/known_problems.txt" + elog + elog "Whether upgrading or installing you should run shorewall check," + elog "correct any errors found and run shorewall restart|start." + elog + elog "${PN} requires a compiler." + elog "You can choose to emerge shorewall-shell and/or shorewall-perl." + elog "As of ${PV} shorewall-shell is mandatory." +} |