#!/bin/sh # # Configuration for floppyfw # # Fill in the blanks. # # For configuring of modules to use : /modules.lst # For configuring logging: /syslogd.cfg # For configuring network interface cards (usually not necessary): /syslinux.cfg # For configuring firewall rules and incoming traffic: /firewall.ini # # # Outside network: # # DHCP is the hook for the DHCP-client for the outside interface. # If used, you may have hangups of connections when the client has # to get a new IP-address. # OUTSIDE_IP="" # # eth0 default device. # OUTSIDE_DEV="eth0" # # Not nescessary to set these if you are using DHCP # OUTSIDE_NETMASK="" OUTSIDE_BROADCAST="" # # # Your inside networks, these have 192.168.*.* set as default, this is # addresses assigned for internal networks according to RFC 1918. # # eth1 is the default device for the internal network. # INSIDE_DEV="eth1" INSIDE_TITLE="The Zwilight Zone" INSIDE_IP="192.168.101.1" INSIDE_NETWORK="192.168.101.0" INSIDE_NETMASK="255.255.255.0" INSIDE_BROADCAST="192.168.101.255" # Extra client-only subnet. # # Comment out the device to disable that subnet # #INSIDE2_DEV="eth2" INSIDE2_TITLE="Zone 2" INSIDE2_IP="192.168.102.1" INSIDE2_NETWORK="192.168.102.0" INSIDE2_NETMASK="255.255.255.0" INSIDE2_BROADCAST="192.168.102.255" # #INSIDE3_DEV="eth3" INSIDE3_TITLE="Zone 3" INSIDE3_IP="192.168.103.1" INSIDE3_NETWORK="192.168.103.0" INSIDE3_NETMASK="255.255.255.0" INSIDE3_BROADCAST="192.168.103.255" # #INSIDE4_DEV="eth4" INSIDE4_TITLE="Zone 4" INSIDE4_IP="192.168.104.1" INSIDE4_NETWORK="192.168.104.0" INSIDE4_NETMASK="255.255.255.0" INSIDE4_BROADCAST="192.168.104.255" # #INSIDE5_DEV="eth5" INSIDE5_TITLE="Zone 5" INSIDE5_IP="192.168.105.1" INSIDE5_NETWORK="192.168.105.0" INSIDE5_NETMASK="255.255.255.0" INSIDE5_BROADCAST="192.168.105.255" # # DHCPd Configuration (ignore this if dhcpd package is not used) # The start & end IP's of the dynamicly allocated range # DEFAULT_LEASE_TIME="86400" # default lease time 1 day MAX_LEASE_TIME="604800" # max lease time 7 day # DHCPD_FIRST_IP="192.168.101.21" # start of dynamic range DHCPD_LAST_IP="192.168.101.253" # end of dynamic range # DHCPD_FIRST_IP2="192.168.102.21" DHCPD_LAST_IP2="192.168.102.253" DHCPD_FIRST_IP3="192.168.103.21" DHCPD_LAST_IP3="192.168.103.253" DHCPD_FIRST_IP4="192.168.104.21" DHCPD_LAST_IP4="192.168.104.253" DHCPD_FIRST_IP5="192.168.105.21" DHCPD_LAST_IP5="192.168.105.253" # # Misc # These are not nescessary to set if you are using DHCP. # DEFAULT_GATEWAY="" NAME_SERVER_IP1="" NAME_SERVER_IP2="" # optional DOMAIN="" HOSTNAME="" # Some groups of ports TCP_MAIL="25 110 143 220 993 995" TCP_WEB="80 443" TCP_LDAP="389 636" TCP_APPLESHARE="548 12000:12005" TCP_HOTLINE="5500:5502" UDP_FILEMAKER="5003" # # Servers with port forwarding # Comment out the SERVER_IP to disable # # ftp, ssh, web, ident, ldap, mail and afpovertcp (AppleShare/IP) # on a linux box - logging is sent here also, so enable remote logging on the box # #SERVER_IP="192.168.101.2" SERVER_TCP_PORTS="21 22 ${TCP_WEB} 113 ${TCP_LDAP} ${TCP_MAIL} ${TCP_APPLESHARE}" SERVER_UDP_PORTS="" # # Mac server with FileMaker and Hotline #SERVER2_IP=192.168.101.3 SERVER2_TCP_PORTS="${TCP_HOTLINE}" SERVER2_UDP_PORTS="${UDP_FILEMAKER}" # # (y)es or (n)o # OPEN_SHELL=y ONLY_8M=n # # Turning on syslogd and klogd. # This is a nice thing but will eat CPU which is why it is turned # off by default. # USE_SYSLOG=y # This SYSLOG does not use syslogd.conf so we have to set things here. # Flags: # Log to /dev/tty3 instead of /var/log/messages which aren't exactly a # good idea on a ramdisk. # -O /dev/tty3 # Log to network. host:port # -R 10.42.42.42:514 # Log to both network and file: # -L # --MARK-- 0 is no mark. # -m 0 SYSLOG_FLAGS="-m 360 -O /dev/tty3" [ ${SERVER_IP} ] && SYSLOG_FLAGS="${SYSLOG_FLAGS} -R ${SERVER_IP}:514"