libs/uvl/root/lib/uci/schema/default/firewall

   1 package firewall
   2
   3 config section
   4         option name     'zone'
   5         option title    'Firewall zones'
   6         option package  'firewall'
   7
   8 config variable
   9         option name     'name'
  10         option title    'Name of this firewall zone'
  11         option section  'firewall.zone'
  12         option required true
  13
  14 config variable
  15         option name     'network'
  16         option title    'Associated network of this firewall zone'
  17         option section  'firewall.zone'
  18 #       option valueof  'network.interface'
  19 #       option type     'lazylist'
  20
  21 config variable
  22         option name     'forward'
  23         option title    'Zone specific action for forwarded traffic'
  24         option section  'firewall.zone'
  25         option required true
  26
  27 config variable
  28         option name     'input'
  29         option title    'Zone specific action for incoming traffic'
  30         option section  'firewall.zone'
  31         option required true
  32
  33 config variable
  34         option name     'output'
  35         option title    'Zone specific action for outgoing traffic'
  36         option section  'firewall.zone'
  37         option required true
  38
  39 config variable
  40         option name     'masq'
  41         option title    'Enable masquerading for outgoing zone traffic'
  42         option section  'firewall.zone'
  43         option datatype 'boolean'
  44
  45
  46
  47 config section
  48         option name     'defaults'
  49         option title    'Global firewall defaults'
  50         option package  'firewall'
  51         option unique   true
  52         option required true
  53
  54 config variable
  55         option name     'forward'
  56         option title    'Action for forwarded traffic'
  57         option section  'firewall.defaults'
  58         option required true
  59
  60 config variable
  61         option name     'input'
  62         option title    'Action for incoming traffic'
  63         option section  'firewall.defaults'
  64         option required true
  65
  66 config variable
  67         option name     'output'
  68         option title    'Action for outgoing traffic'
  69         option section  'firewall.defaults'
  70         option required true
  71
  72 config variable
  73         option name     'syn_flood'
  74         option title    'Enable syn-flood protection'
  75         option section  'firewall.defaults'
  76         option datatype 'boolean'
  77
  78
  79
  80 config section
  81         option name     'forwarding'
  82         option title    'Firewall traffic forwarding rules'
  83         option package  'firewall'
  84
  85 config variable
  86         option name     'src'
  87         option title    'Source zone'
  88         option section  'firewall.forwarding'
  89         option valueof  'firewall.zone.name'
  90         option required true
  91
  92 config variable
  93         option name     'dest'
  94         option title    'Destination zone'
  95         option section  'firewall.forwarding'
  96         option valueof  'firewall.zone.name'
  97         option required true
  98
  99
 100
 101 config section
 102         option name     'rule'
 103         option title    'Custom rule specification'
 104         option package  'firewall'
 105         list   depends  'target, src'
 106         list   depends  'target, dest'
 107
 108 config variable
 109         option name     'src'
 110         option title    'Source zone'
 111         option section  'firewall.rule'
 112         list   valueof  'firewall.zone'
 113         list   valueof  'firewall.zone.network'
 114
 115 config variable
 116         option name     'src_ip'
 117         option title    'Source IP address'
 118         option section  'firewall.rule'
 119         option datatype 'ipaddr'
 120
 121 config variable
 122         option name     'src_port'
 123         option title    'Source port'
 124         option section  'firewall.rule'
 125         option datatype 'uint'
 126
 127 config variable
 128         option name     'src_mac'
 129         option title    'Source MAC address'
 130         option section  'firewall.rule'
 131         option datatype 'macaddr'
 132
 133 config variable
 134         option name     'dest'
 135         option title    'Destination zone'
 136         option section  'firewall.rule'
 137         list   valueof  'firewall.zone'
 138         list   valueof  'firewall.zone.network'
 139
 140 config variable
 141         option name     'dest_ip'
 142         option title    'Destination IP address'
 143         option section  'firewall.rule'
 144         option datatype 'ipaddr'
 145
 146 config variable
 147         option name     'dest_port'
 148         option title    'Destination port'
 149         option section  'firewall.rule'
 150         option datatype 'uint'
 151
 152 config variable
 153         option name     'proto'
 154         option title    'Protocol'
 155         option section  'firewall.rule'
 156         option datatype 'string'
 157
 158 config variable
 159         option name     'target'
 160         option title    'Option target'
 161         option section  'firewall.rule'
 162         option datatype 'string'
 163         option required true
 164
 165
 166
 167 config section
 168         option name     'redirect'
 169         option title    'Traffic redirection rule definition'
 170         option package  'firewall'
 171
 172 config variable
 173         option name     'src'
 174         option title    'Source zone'
 175         option section  'firewall.redirect'
 176         list   valueof  'firewall.zone'
 177         list   valueof  'firewall.zone.network'
 178
 179 config variable
 180         option name     'src_ip'
 181         option title    'Source IP address'
 182         option section  'firewall.redirect'
 183         option datatype 'ipaddr'
 184
 185 config variable
 186         option name     'src_port'
 187         option title    'Source port'
 188         option section  'firewall.redirect'
 189         option datatype 'uint'
 190
 191 config variable
 192         option name     'src_dport'
 193         option title    'Source destination port'
 194         option section  'firewall.redirect'
 195         option datatype 'uint'
 196
 197 config variable
 198         option name     'src_mac'
 199         option title    'Option src_mac'
 200         option section  'firewall.redirect'
 201         option datatype 'macaddr'
 202
 203 config variable
 204         option name     'dest'
 205         option title    'Destination zone'
 206         option section  'firewall.redirect'
 207         list   valueof  'firewall.zone'
 208         list   valueof  'firewall.zone.network'
 209
 210 config variable
 211         option name     'dest_ip'
 212         option title    'Destination IP address'
 213         option section  'firewall.redirect'
 214         option datatype 'ipaddr'
 215
 216 config variable
 217         option name     'dest_port'
 218         option title    'Destination port'
 219         option section  'firewall.redirect'
 220         option datatype 'uint'
 221
 222 config variable
 223         option name     'proto'
 224         option title    'Protocol'
 225         option section  'firewall.redirect'
 226         option datatype 'string'
 227
 228
 229
 230 config section
 231         option name     'include'
 232         option title    'User defined config includes'
 233         option package  'firewall'
 234
 235 config variable
 236         option name     'path'
 237         option title    'Path to the include file'
 238         option section  'firewall.include'
 239         option datatype 'file'