Firewall configuration framework
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
etc
usr/local/sbin
README
licence.txt

README

IPT-CONF
========
Linu IPtables Configurator

Easy way to configure and sync firewall between many servers.
It uses directory with rules enabled and rules available. 

You should use puppet for distribution firewall between servers or easily
change firewall rules based on server configured services.

Index
-----

0. About
1. Installation
2. Files
3. Mirros
4. Contact

0. About
--------
IPT-CONF is small and simple configuration framework 
for linux firewall based on iptables.

You can use cli tools to add or remove rules or
do it manualy by hand.

1. Installation
---------------

Best way is unpack sources and copy folders into /

 cd ipt-conf/
 cp -rf etc /
 cp -rf usr /

Now it's time to run configuration script

 /usr/local/sbin/firewall-conf-init.sh

This script create configuration files and prepare simple firewall for you.

2. Files
--------

Configuration files

/etc/ipt.conf                 -  Main configuration file, you can define where 
                                 is init and configuration  directory located

/etc/ipt-conf/firewall.conf   -  Main firewall configuration with binary path 
                                 definition and default policy 

/etc/ipt-conf/rules.enabled   -  Directory with enabled rules
/etc/ipt-conf/rules.available -  Directory with rules definitions


You can also find some *.conf files in rules.* directories. 
Be carefull, they have different meanings depended on parrent directory.

rules.enables/*.conf          - configuration for active rules
rules.available/*.conf        - configuration for rule initialization (add rule)

3. Mirrors
----------

Primary repository is stored on github.com
git://github.com/rvojcik/ipt-conf.git

#  IPT-CONF small configuration framework to handle configuration of linux iptables netfilter.
#  Copyright (C) 2011 Robert Vojcik
#  
#  This program is free software; 
#  you can redistribute it and/or modify it under the terms of the GNU General Public License 
#  as published by the Free Software Foundation; either version 2 of the License, 
#  or (at your option) any later version.
#  
#  This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; 
#  without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. 
#  See the GNU General Public License for more details.
#  
#  You should have received a copy of the GNU General Public License along with this program; 
#  if not, write to the Free Software Foundation, Inc., 
#  59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
#  
#  Contact
#  -------
#  Robert Vojcik ( robert@vojcik.net )