projects / project / luci.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
* luci/libs/uvl:
[project/luci.git] / libs / uvl / root / lib / uci / schema / default / firewall
1 package firewall
2
3 config section
4 option name 'zone'
5 option title 'Firewall zones'
6 option package 'firewall'
7
8 config variable
9 option name 'name'
10 option title 'Name of this firewall zone'
11 option section 'firewall.zone'
12 option required true
13
14 config variable
15 option name 'network'
16 option title 'Associated network of this firewall zone'
17 option section 'firewall.zone'
18 option valueof 'network.interface'
19 option multival true
20
21 config variable
22 option name 'forward'
23 option title 'Zone specific action for forwarded traffic'
24 option section 'firewall.zone'
25 option required true
26
27 config variable
28 option name 'input'
29 option title 'Zone specific action for incoming traffic'
30 option section 'firewall.zone'
31 option required true
32
33 config variable
34 option name 'output'
35 option title 'Zone specific action for outgoing traffic'
36 option section 'firewall.zone'
37 option required true
38
39 config variable
40 option name 'masq'
41 option title 'Enable masquerading for outgoing zone traffic'
42 option section 'firewall.zone'
43 option datatype 'boolean'
44
45
46
47 config section
48 option name 'defaults'
49 option title 'Global firewall defaults'
50 option package 'firewall'
51 option unique true
52 option required true
53
54 config variable
55 option name 'forward'
56 option title 'Action for forwarded traffic'
57 option section 'firewall.defaults'
58 option required true
59
60 config variable
61 option name 'input'
62 option title 'Action for incoming traffic'
63 option section 'firewall.defaults'
64 option required true
65
66 config variable
67 option name 'output'
68 option title 'Action for outgoing traffic'
69 option section 'firewall.defaults'
70 option required true
71
72 config variable
73 option name 'syn_flood'
74 option title 'Enable syn-flood protection'
75 option section 'firewall.defaults'
76 option datatype 'boolean'
77
78
79
80 config section
81 option name 'forwarding'
82 option title 'Firewall traffic forwarding rules'
83 option package 'firewall'
84
85 config variable
86 option name 'src'
87 option title 'Source zone'
88 option section 'firewall.forwarding'
89 option valueof 'firewall.zone.name'
90 option required true
91
92 config variable
93 option name 'dest'
94 option title 'Destination zone'
95 option section 'firewall.forwarding'
96 option valueof 'firewall.zone.name'
97 option required true
98
99
100
101 config section
102 option name 'rule'
103 option title 'Custom rule specification'
104 option package 'firewall'
105 list depends 'target, src'
106 list depends 'target, dest'
107
108 config variable
109 option name 'src'
110 option title 'Source zone'
111 option section 'firewall.rule'
112 option valueof 'firewall.zone.name'
113
114 config variable
115 option name 'src_ip'
116 option title 'Source IP address'
117 option section 'firewall.rule'
118 option datatype 'ipaddr'
119
120 config variable
121 option name 'src_port'
122 option title 'Source port'
123 option section 'firewall.rule'
124 option datatype 'portrange'
125
126 config variable
127 option name 'src_mac'
128 option title 'Source MAC address'
129 option section 'firewall.rule'
130 option datatype 'macaddr'
131
132 config variable
133 option name 'dest'
134 option title 'Destination zone'
135 option section 'firewall.rule'
136 option valueof 'firewall.zone.name'
137
138 config variable
139 option name 'dest_ip'
140 option title 'Destination IP address'
141 option section 'firewall.rule'
142 option datatype 'ipaddr'
143
144 config variable
145 option name 'dest_port'
146 option title 'Destination port'
147 option section 'firewall.rule'
148 option datatype 'portrange'
149
150 config variable
151 option name 'proto'
152 option title 'Protocol'
153 option section 'firewall.rule'
154 option datatype 'string'
155
156 config variable
157 option name 'target'
158 option title 'Option target'
159 option section 'firewall.rule'
160 option datatype 'string'
161 option required true
162
163
164
165 config section
166 option name 'redirect'
167 option title 'Traffic redirection rule definition'
168 option package 'firewall'
169
170 config variable
171 option name 'src'
172 option title 'Source zone'
173 option section 'firewall.redirect'
174 option valueof 'firewall.zone.name'
175
176 config variable
177 option name 'src_ip'
178 option title 'Source IP address'
179 option section 'firewall.redirect'
180 option datatype 'ipaddr'
181
182 config variable
183 option name 'src_port'
184 option title 'Source port'
185 option section 'firewall.redirect'
186 option datatype 'portrange'
187
188 config variable
189 option name 'src_dport'
190 option title 'Source destination port'
191 option section 'firewall.redirect'
192 option datatype 'portrange'
193
194 config variable
195 option name 'src_mac'
196 option title 'Option src_mac'
197 option section 'firewall.redirect'
198 option datatype 'macaddr'
199
200 config variable
201 option name 'dest'
202 option title 'Destination zone'
203 option section 'firewall.redirect'
204 option valueof 'firewall.zone.name'
205
206 config variable
207 option name 'dest_ip'
208 option title 'Destination IP address'
209 option section 'firewall.redirect'
210 option datatype 'ipaddr'
211
212 config variable
213 option name 'dest_port'
214 option title 'Destination port'
215 option section 'firewall.redirect'
216 option datatype 'portrange'
217
218 config variable
219 option name 'proto'
220 option title 'Protocol'
221 option section 'firewall.redirect'
222 option datatype 'string'
223
224
225
226 config section
227 option name 'include'
228 option title 'User defined config includes'
229 option package 'firewall'
230
231 config variable
232 option name 'path'
233 option title 'Path to the include file'
234 option section 'firewall.include'
235 option datatype 'file'
Lua Configuration Interface (mirror)