firehol-group(5)
firehol-group - group commands with common options
Description
firehol-group
NAME
firehol-group - group commands with common options
SYNOPSIS
group with rule-params
group end
DESCRIPTION
The group command allows you to group together multiple client and server commands.
Grouping commands with common options (see firehol-params(5)) allows the option values to be checked only once in the generated firewall rather than once per service, making it more efficient.
Nested groups may be used.
EXAMPLES
This:
interface any
world
client all accept
server http accept
# Provide these
services to trusted hosts only
server "ssh telnet" accept src "192.0.2.1
192.0.2.2"
can be replaced to produce a more efficient firewall by this:
interface any
world
client all accept
server http accept
# Provide these
services to trusted hosts only
group with src "192.0.2.1 192.0.2.2"
server telnet accept
server ssh accept
group end
SEE ALSO
|
• |
firehol(1) - FireHOL program |
|||
|
• |
firehol.conf(5) - FireHOL configuration |
|||
|
• |
firehol-interface(5) - interface definition |
|||
|
• |
firehol-router(5) - router definition |
|||
|
• |
firehol-params(5) - optional rule parameters |
|||
|
• |
FireHOL Website (http://firehol.org/) |
|||
|
• |
FireHOL Online PDF Manual (http://firehol.org/firehol-manual.pdf) |
|||
|
• |
FireHOL Online Documentation (http://firehol.org/documentation/) |
AUTHORS
FireHOL Team.