]> git.ipfire.org Git - people/ms/network.git/blob - src/functions/functions.firewall-zones
projects / people / ms / network.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
hostapd: Enable WMM by default.
[people/ms/network.git] / src / functions / functions.firewall-zones
1 #!/bin/bash
2 ###############################################################################
3 # #
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2012 IPFire Network Development Team #
6 # #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
11 # #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
16 # #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
19 # #
20 ###############################################################################
21
22 function firewall_zone_create() {
23 local zone=${1}
24 assert isset zone
25
26 # Do nothing if the zone configuration already exists.
27 firewall_zone_exists ${zone} && return ${EXIT_OK}
28
29 # Write defaults to the file.
30 (
31 firewall_zone_read ${zone}
32 firewall_zone_write ${zone}
33 )
34
35 return ${EXIT_OK}
36 }
37
38 function firewall_zone_config() {
39 local zone=${1}
40 assert isset zone
41
42 print "$(zone_dir ${zone})/fwsettings"
43 return ${EXIT_OK}
44 }
45
46 function firewall_zone_exists() {
47 local file=$(firewall_zone_config $@)
48
49 [ -r "${file}" ] && return ${EXIT_TRUE} || return ${EXIT_FALSE}
50 }
51
52 function firewall_zone_read() {
53 local zone=${1}
54 assert isset zone
55
56 local file=$(firewall_zone_config ${zone})
57 assert isset file
58
59 config_read ${file} ${FIREWALL_ZONE_SETTINGS}
60
61 local arg default
62 for arg in ${FIREWALL_ZONE_SETTINGS}; do
63 isset ${arg} && continue
64
65 default="FIREWALL_ZONE_SETTINGS_${arg}"
66 assign "${arg}" "${!default}"
67 done
68
69 return ${EXIT_OK}
70 }
71
72 function firewall_zone_write() {
73 local zone=${1}
74 assert isset zone
75
76 local file=$(firewall_zone_config ${zone})
77 assert isset file
78
79 config_write ${file} ${FIREWALL_ZONE_SETTINGS}
80 return ${EXIT_OK}
81 }
82
83 function firewall_zone_print() {
84 local zone=${1}
85 assert isset zone
86
87 (
88 firewall_zone_read ${zone}
89 config_print ${FIREWALL_ZONE_SETTINGS}
90 )
91
92 return ${EXIT_OK}
93 }
94
95 function firewall_zone_edit() {
96 local zone=${1}
97 assert isset zone
98 shift
99
100 assert firewall_zone_exists ${zone}
101
102 (
103 # Read current settings.
104 firewall_zone_read ${zone}
105
106 while [ $# -gt 0 ]; do
107 case "${1}" in
108 --masquerade4=*)
109 MASQUERADE4=$(cli_get_val ${1})
110 ;;
111 --policy=*)
112 POLICY=$(cli_get_val ${1})
113 ;;
114 *)
115 warning "Unknown option: ${1}"
116 ;;
117 esac
118 shift
119 done
120
121 # Sanetize saved value.
122 if enabled MASQUERADE4; then
123 MASQUERADE4="true"
124 else
125 MASQUERADE4="false"
126 fi
127
128 # Write updated settings.
129 firewall_zone_write ${zone}
130 )
131 }
132
133 function firewall_zone_reset() {
134 local zone=${1}
135 assert isset zone
136
137 local file=$(firewall_zone_config ${zone})
138 assert isset file
139
140 # Remove the configuration file.
141 rm -f ${file}
142
143 # Recreate it.
144 firewall_zone_create ${zone}
145
146 return ${EXIT_OK}
147 }
Networking code of IPFire 3.x.