Changes between Initial Version and Version 1 of VuurmuurScript

09/13/07 00:27:55 (14 years ago)
Victor Julien



  • VuurmuurScript

    v1 v1  
     1= Vuurmuur Scripting =
     3Using the vuurmuur_script command you can modify settings from the commandline. Here you find a description of the options.
     7Gives a list of all groups:
     9vuurmuur_script --list --group any
     12Gives a list of all groups in network localnet.lan
     14vuurmuur_script --list --group localnet.lan
     17Print content of host server.localnet.lan:
     19vuurmuur_script --print --host server.localnet.lan
     22Create an empty host:
     24vuurmuur_script --create --host pc1.localnet.lan
     27Set the host to active:
     29vuurmuur_script --modify --host pc1.localnet.lan --variable ACTIVE --set Yes
     32Set the ipaddress of the new host:
     34vuurmuur_script --modify --host pc1.localnet.lan --variable IPADDRESS --set
     37Append a rule to the rules list:
     39vuurmuur_script -M -r rules -V RULE -S "accept service ftp from pc1.localnet.lan to firewall" -A
     42Add the ipaddress to the blocklist:
     44vuurmuur_script --block
     47Remove an ipaddress from the blocklist:
     49vuurmuur_script --unblock
     55||1||commandline option error||
     56||2||command failed||
     57||3||object supplied with -n does not exist||
     58||4||object supplied with -n already exists||
     59||5||could not allocate memory (no more free memory?)||
     60||6||found some inconsistencies in the data (this should never happen, of course)||
     61||254||internal program error||
     64Commandline options:
     65||-c||vuurmuur config file location||optional||
     67||-d||1-3 debug level||optional||
     68||-h||print short help||
     70Command options:
     71||-C||--create||create a new object.||
     72||-D||--delete||delete an object.||
     73||-R||--rename||rename an object. The new name must be supplied with --set||
     74||-M||--modify||modify a variable supplied with --var in an object. Use --set for the new value.||
     75||-L||--list||list objects.||
     76||-P||--print||print the content of an object. Use --var to print only one variable.||
     77||||--block||add a host to the blocklist.||
     78||||--unblock||remove a host from the blocklist.||
     79||||--list-blocked||show current blocklist||
     81Object types:
     82||-o <name>||--host <name>||host.||
     83||-g <name>||--group <name>||group.||
     84||-n <name>||--network <name>||network.||
     85||-z <name>||--zone <name>||zone.||
     86||-s <name>||--service <name>||service.||
     87||-i <name>||--interface <name>||interface.||
     88||-r <name>||--rule <name>||rule.||
     91Other options:
     92||-A||--append||append instead of overwrite when using the modify command.||
     93||-O||--overwrite||overwrite when using the modify command (enabled by default)||
     94||-V <variable name>||--variable <variable name>||name of the variable to modify or print. Use the print command on an object to get a list of valid variables.||
     95||-S <value>||--set <value>||value to set on modify, or new name in case of rename.||
     96||||--apply||applies the change directly to the running vuurmuur daemons.||
     97||||--noapply||does not apply the change directly to the running vuurmuur daemons when by default it would (--block and --unblock).||