sad/firehol
1
0
Fork 0
mirror of https://github.com/firehol/firehol.git synced 2024-06-28 18:02:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

Added rquotad to the NFS service.

Browse Source
This commit is contained in:
ktsaou 2004-09-10 21:36:26 +00:00
parent ebdac907b0
commit a14d038022
2 changed files with 14 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
doc/create_services.sh
View File

@ -352,7 +352,7 @@ server_nfs_ports="many"
client_nfs_ports="500:65535"
service_nfs_type="complex"
service_nfs_notes="
The NFS service queries the RPC service on the NFS server host to find out the ports <b>nfsd</b> and <b>mountd</b> are listening.
The NFS service queries the RPC service on the NFS server host to find out the ports <b>nfsd</b>, <b>mountd</b>, <b>lockd</b> and <b>rquotad</b> are listening.
Then, according to these ports it sets up rules on all the supported protocols (as reported by RPC) in order the
clients to be able to reach the server.
<p>
@ -784,7 +784,7 @@ cat <<"EOF"
<tr><td align=center valign=middle>
<A href="http://sourceforge.net"><IMG src="http://sourceforge.net/sflogo.php?group_id=58425&amp;type=5" width="210" height="62" border="0" alt="SourceForge Logo"></A>
</td><td align=center valign=middle>
<small>$Id: create_services.sh,v 1.44 2004/07/29 22:31:15 ktsaou Exp $</small>
<small>$Id: create_services.sh,v 1.45 2004/09/10 21:36:27 ktsaou Exp $</small>
<p>
<b>FireHOL</b>, a firewall for humans...<br>
&copy; Copyright 2003

17
firehol.sh
View File

@ -10,7 +10,7 @@
#
# config: /etc/firehol/firehol.conf
#
# $Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
# $Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
#
# Remember who you are.
@ -855,6 +855,7 @@ rules_nfs() {
return 1
fi
local server_rquotad_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " rquotad$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
local server_mountd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " mountd$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
local server_lockd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " nlockmgr$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
local server_nfsd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " nfs$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
@ -869,6 +870,12 @@ rules_nfs() {
dst="dst ${x}"
fi
if [ ! -z "${server_rquotad_ports}" ]
then
set_work_function "Processing rquotad rules for server '${x}'"
rules_custom "${mychain}" "${type}" nfs-rquotad "${server_rquotad_ports}" "500:65535" "${action}" $dst "$@"
fi
set_work_function "Processing mountd rules for server '${x}'"
rules_custom "${mychain}" "${type}" nfs-mountd "${server_mountd_ports}" "500:65535" "${action}" $dst "$@"
@ -4274,7 +4281,7 @@ case "${arg}" in
else
${CAT_CMD} <<EOF
$Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
$Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
FireHOL is distributed under GPL.
@ -4460,7 +4467,7 @@ then
${CAT_CMD} <<EOF
$Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
$Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
FireHOL is distributed under GPL.
Home Page: http://firehol.sourceforge.net
@ -4754,7 +4761,7 @@ then
${CAT_CMD} >&2 <<EOF
$Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
$Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
FireHOL is distributed under GPL.
Home Page: http://firehol.sourceforge.net
@ -4837,7 +4844,7 @@ EOF
echo "# "
${CAT_CMD} <<EOF
# $Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
# $Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
# (C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
# FireHOL is distributed under GPL.
# Home Page: http://firehol.sourceforge.net