mirror of
https://github.com/firehol/firehol.git
synced 2024-06-30 19:02:21 +00:00
Added rquotad to the NFS service.
This commit is contained in:
parent
ebdac907b0
commit
a14d038022
@ -352,7 +352,7 @@ server_nfs_ports="many"
|
|||||||
client_nfs_ports="500:65535"
|
client_nfs_ports="500:65535"
|
||||||
service_nfs_type="complex"
|
service_nfs_type="complex"
|
||||||
service_nfs_notes="
|
service_nfs_notes="
|
||||||
The NFS service queries the RPC service on the NFS server host to find out the ports <b>nfsd</b> and <b>mountd</b> are listening.
|
The NFS service queries the RPC service on the NFS server host to find out the ports <b>nfsd</b>, <b>mountd</b>, <b>lockd</b> and <b>rquotad</b> are listening.
|
||||||
Then, according to these ports it sets up rules on all the supported protocols (as reported by RPC) in order the
|
Then, according to these ports it sets up rules on all the supported protocols (as reported by RPC) in order the
|
||||||
clients to be able to reach the server.
|
clients to be able to reach the server.
|
||||||
<p>
|
<p>
|
||||||
@ -784,7 +784,7 @@ cat <<"EOF"
|
|||||||
<tr><td align=center valign=middle>
|
<tr><td align=center valign=middle>
|
||||||
<A href="http://sourceforge.net"><IMG src="http://sourceforge.net/sflogo.php?group_id=58425&type=5" width="210" height="62" border="0" alt="SourceForge Logo"></A>
|
<A href="http://sourceforge.net"><IMG src="http://sourceforge.net/sflogo.php?group_id=58425&type=5" width="210" height="62" border="0" alt="SourceForge Logo"></A>
|
||||||
</td><td align=center valign=middle>
|
</td><td align=center valign=middle>
|
||||||
<small>$Id: create_services.sh,v 1.44 2004/07/29 22:31:15 ktsaou Exp $</small>
|
<small>$Id: create_services.sh,v 1.45 2004/09/10 21:36:27 ktsaou Exp $</small>
|
||||||
<p>
|
<p>
|
||||||
<b>FireHOL</b>, a firewall for humans...<br>
|
<b>FireHOL</b>, a firewall for humans...<br>
|
||||||
© Copyright 2003
|
© Copyright 2003
|
||||||
|
17
firehol.sh
17
firehol.sh
@ -10,7 +10,7 @@
|
|||||||
#
|
#
|
||||||
# config: /etc/firehol/firehol.conf
|
# config: /etc/firehol/firehol.conf
|
||||||
#
|
#
|
||||||
# $Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
|
# $Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
|
||||||
#
|
#
|
||||||
|
|
||||||
# Remember who you are.
|
# Remember who you are.
|
||||||
@ -855,6 +855,7 @@ rules_nfs() {
|
|||||||
return 1
|
return 1
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
local server_rquotad_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " rquotad$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
|
||||||
local server_mountd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " mountd$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
|
local server_mountd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " mountd$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
|
||||||
local server_lockd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " nlockmgr$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
|
local server_lockd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " nlockmgr$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
|
||||||
local server_nfsd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " nfs$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
|
local server_nfsd_ports="`${CAT_CMD} "${tmp}" | ${GREP_CMD} " nfs$" | ( while read a b proto port s; do echo "$proto/$port"; done ) | ${SORT_CMD} | ${UNIQ_CMD}`"
|
||||||
@ -869,6 +870,12 @@ rules_nfs() {
|
|||||||
dst="dst ${x}"
|
dst="dst ${x}"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
if [ ! -z "${server_rquotad_ports}" ]
|
||||||
|
then
|
||||||
|
set_work_function "Processing rquotad rules for server '${x}'"
|
||||||
|
rules_custom "${mychain}" "${type}" nfs-rquotad "${server_rquotad_ports}" "500:65535" "${action}" $dst "$@"
|
||||||
|
fi
|
||||||
|
|
||||||
set_work_function "Processing mountd rules for server '${x}'"
|
set_work_function "Processing mountd rules for server '${x}'"
|
||||||
rules_custom "${mychain}" "${type}" nfs-mountd "${server_mountd_ports}" "500:65535" "${action}" $dst "$@"
|
rules_custom "${mychain}" "${type}" nfs-mountd "${server_mountd_ports}" "500:65535" "${action}" $dst "$@"
|
||||||
|
|
||||||
@ -4274,7 +4281,7 @@ case "${arg}" in
|
|||||||
else
|
else
|
||||||
|
|
||||||
${CAT_CMD} <<EOF
|
${CAT_CMD} <<EOF
|
||||||
$Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
|
$Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
|
||||||
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
||||||
FireHOL is distributed under GPL.
|
FireHOL is distributed under GPL.
|
||||||
|
|
||||||
@ -4460,7 +4467,7 @@ then
|
|||||||
|
|
||||||
${CAT_CMD} <<EOF
|
${CAT_CMD} <<EOF
|
||||||
|
|
||||||
$Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
|
$Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
|
||||||
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
||||||
FireHOL is distributed under GPL.
|
FireHOL is distributed under GPL.
|
||||||
Home Page: http://firehol.sourceforge.net
|
Home Page: http://firehol.sourceforge.net
|
||||||
@ -4754,7 +4761,7 @@ then
|
|||||||
|
|
||||||
${CAT_CMD} >&2 <<EOF
|
${CAT_CMD} >&2 <<EOF
|
||||||
|
|
||||||
$Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
|
$Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
|
||||||
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
(C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
||||||
FireHOL is distributed under GPL.
|
FireHOL is distributed under GPL.
|
||||||
Home Page: http://firehol.sourceforge.net
|
Home Page: http://firehol.sourceforge.net
|
||||||
@ -4837,7 +4844,7 @@ EOF
|
|||||||
echo "# "
|
echo "# "
|
||||||
|
|
||||||
${CAT_CMD} <<EOF
|
${CAT_CMD} <<EOF
|
||||||
# $Id: firehol.sh,v 1.198 2004/08/21 21:07:09 ktsaou Exp $
|
# $Id: firehol.sh,v 1.199 2004/09/10 21:36:26 ktsaou Exp $
|
||||||
# (C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
# (C) Copyright 2003, Costa Tsaousis <costa@tsaousis.gr>
|
||||||
# FireHOL is distributed under GPL.
|
# FireHOL is distributed under GPL.
|
||||||
# Home Page: http://firehol.sourceforge.net
|
# Home Page: http://firehol.sourceforge.net
|
||||||
|
Loading…
Reference in New Issue
Block a user