blob: f4fa66ee7ef464ae818a5c1dd85a20db3790bd00 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
|
# Copyright 1999-2012 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/net-firewall/arno-iptables-firewall/arno-iptables-firewall-2.0.1d.ebuild,v 1.1 2012/12/17 19:45:41 hwoarang Exp $
EAPI=4
DESCRIPTION="Arno's iptables firewall script"
HOMEPAGE="http://rocky.eld.leidenuniv.nl"
SRC_URI="http://rocky.eld.leidenuniv.nl/${PN}/${PN}_${PV}.tar.gz"
S=${WORKDIR}/${PN}_${PV}
LICENSE="GPL-2"
SLOT="0"
KEYWORDS="~amd64 ~x86"
IUSE="+plugins"
DEPEND=">=net-firewall/iptables-1.2.5
>=sys-apps/iproute2-2.6.35-r2"
RDEPEND="${DEPEND}"
inherit linux-info
pkg_pretend() {
if use kernel_linux; then
if [[ -e "${EROOT}usr/src/linux/.config" ]]; then
CONFIG_CHECK="IP_NF_IPTABLES"
check_extra_config
fi
fi
}
src_prepare() {
epatch "${FILESDIR}/rc.firewall_replace_opts.patch"
}
src_install() {
insinto /etc/arno-iptables-firewall
sed -e 's:/usr/local/share/:/usr/share/:' \
etc/arno-iptables-firewall/firewall.conf > \
"${T}"/firewall.conf || die
doins "${T}"/firewall.conf
doins etc/arno-iptables-firewall/custom-rules
sed -e 's:local/::' \
contrib/Gentoo/firewall.conf > \
"${T}"/arno-iptables-firewall.confd || die
newconfd "${T}"/arno-iptables-firewall.confd arno-iptables-firewall
newinitd contrib/Gentoo/rc.firewall arno-iptables-firewall
dobin bin/arno-fwfilter
dosbin bin/arno-iptables-firewall
insinto /usr/share/arno-iptables-firewall/
doins share/arno-iptables-firewall/environment
if use plugins
then
insinto /etc/arno-iptables-firewall/plugins
doins etc/arno-iptables-firewall/plugins/*
insinto /usr/share/arno-iptables-firewall/plugins
doins share/arno-iptables-firewall/plugins/*.plugin
exeinto /usr/share/arno-iptables-firewall/plugins
doexe share/arno-iptables-firewall/plugins/dyndns-host-open-helper
doexe share/arno-iptables-firewall/plugins/traffic-accounting-helper
doexe share/arno-iptables-firewall/plugins/traffic-accounting-log-rotate
doexe share/arno-iptables-firewall/plugins/traffic-accounting-show
docinto plugins
dodoc share/arno-iptables-firewall/plugins/*.CHANGELOG
fi
dodoc CHANGELOG README
doman share/man/man1/arno-fwfilter.1 \
share/man/man8/arno-iptables-firewall.8
}
pkg_postinst () {
elog "You will need to configure /etc/${PN}/firewall.conf before using this"
elog "package. To start the script, run:"
elog " /etc/init.d/${PN} start"
echo
elog "If you want to start this script at boot, run:"
elog " rc-update add ${PN} default"
echo
ewarn "When you start the firewall, the default is to"
ewarn "DROP ALL existing connections! So be careful when installing"
ewarn "on a remote host! There is an option to disable this behaviour"
ewarn "for testing."
echo
ewarn "When you stop this script, all firewall rules are flushed!"
echo
}
|
GitWeb