ALT Linux repos
Group :: System/Configuration/Networking
RPM: firehol
Main Changelog Spec Patches Sources Download Gear Bugs and FR Repocop
# BEGIN SourceDeps(oneline):
BuildRequires: %_bindir/flock %_bindir/gunzip %_bindir/less %_bindir/renice %_bindir/zcat perl(Text/ParseWords.pm)
# END SourceDeps(oneline)
%def_with fireqos
Name: firehol
Version: 3.1.7
Release: alt1
Summary: An easy to use but powerfull iptables stateful firewall
License: GPLv2
Group: System/Configuration/Networking
Url: http://firehol.org/
# Source-url: https://github.com/firehol/firehol/releases/download/v%version/firehol-%version.tar.xz
Packager: Vitaly Lipatov <lav at altlinux.ru>
Source: %name-%version.tar
Source1: ftp_ssl.conf
Patch1: firehol-sbin-alt-init.patch
Patch2: firehol-sbin-alt-iptables.patch
BuildArch: noarch
%define iptools /sbin/insmod /sbin/modprobe iproute traceroute iptables ipset iprange iputils whois tcpdump
BuildRequires: %iptools
Requires: %iptools
%define tools which bash4 su curl procps-ng udev-rules jq unzip
BuildRequires: %tools
Requires: %tools
%description
FireHOL uses an extremely simple but powerfull way to define firewall
rules which it turns into complete stateful iptables firewalls. FireHOL
is a generic firewall generator, meaning that you can design any kind of
local or routing stateful packet filtering firewalls with ease.
Install FireHOL if you want an easy way to configure stateful packet
filtering firewalls on Linux hosts and routers.
You can run FireHOL with the 'helpme' argument, to get a configuration
file for the system run, which you can modify according to your needs.
The default configuration file will allow only client traffic on all
interfaces.
%prep
%setup
#patch1 -p2
%patch2 -p2
# wait for new bash4
subst 's|+(\[0-9\])|[0-9]*|' sbin/fireqos
# https://bugzilla.altlinux.org/show_bug.cgi?id=32663
%if %_vendor == "alt"
for i in sbin/firehol sbin/fireqos ; do
test -s "$i" || continue
subst "s|^#!%_bindir/env bash$|#!/bin/bash4|g" "$i"
subst "s|^#!/bin/bash$|#!/bin/bash4|g" "$i"
done
%endif
%build
# bash4 hack
ln -s /bin/bash4 bash
export PATH=$(pwd):$PATH
%configure
%make
%install
%makeinstall_std
# Hack for documentation without crufts.
rm -frv %buildroot%_docdir
find doc/ examples/ -name "Makefile*" -delete -print
# Install systemd units.
mkdir -p %buildroot%_unitdir
install -pm644 contrib/firehol.service contrib/fireqos.service %buildroot%_unitdir
# Install runtime directories.
mkdir -p %buildroot%_sysconfdir/firehol/services
mkdir -p %buildroot%_var/spool/firehol
# Ghost configurations.
touch %buildroot%_sysconfdir/firehol/firehol.conf \
%buildroot%_sysconfdir/firehol/fireqos.conf
%if 0
mkdir -p %buildroot%_sysconfdir/firehol/services
install -m 640 examples/client-all.conf %buildroot%_sysconfdir/firehol/firehol.conf
%endif
%if_without fireqos
# TODO: backport fireqos to bash3
rm -f %buildroot%_sbindir/fireqos %buildroot%_unitdir/fireqos.service
%endif
%pre
%post
if [ -f %_sysconfdir/firehol.conf -a ! -f %_sysconfdir/firehol/firehol.conf ]
then
mv -f %_sysconfdir/firehol.conf %_sysconfdir/firehol/firehol.conf
echo
echo
echo "FireHOL has now its configuration in %_sysconfdir/firehol/firehol.conf"
echo "Your existing configuration has been moved to its new place."
echo
fi
%files
%doc COPYING THANKS README ChangeLog contrib
%dir %_sysconfdir/firehol
%dir %_sysconfdir/firehol/services
%_sysconfdir/firehol/services/*
%_sbindir/*
#_initdir/firehol
%_unitdir/firehol.service
%if_with fireqos
%_unitdir/fireqos.service
%endif
%_man1dir/*
%_man5dir/*
%config(noreplace) %_sysconfdir/firehol/firehol.conf
%config(noreplace) %_sysconfdir/firehol/fireqos.conf
%_sysconfdir/firehol/firehol.conf.example
%_sysconfdir/firehol/fireqos.conf.example
%dir %_libexecdir/%name
%_libexecdir/%name/%version/
%_datadir/update-ipsets/
%doc examples
%doc doc/*
%changelog
…
Full changelog you can see here
BuildRequires: %_bindir/flock %_bindir/gunzip %_bindir/less %_bindir/renice %_bindir/zcat perl(Text/ParseWords.pm)
# END SourceDeps(oneline)
%def_with fireqos
Name: firehol
Version: 3.1.7
Release: alt1
Summary: An easy to use but powerfull iptables stateful firewall
License: GPLv2
Group: System/Configuration/Networking
Url: http://firehol.org/
# Source-url: https://github.com/firehol/firehol/releases/download/v%version/firehol-%version.tar.xz
Packager: Vitaly Lipatov <lav at altlinux.ru>
Source: %name-%version.tar
Source1: ftp_ssl.conf
Patch1: firehol-sbin-alt-init.patch
Patch2: firehol-sbin-alt-iptables.patch
BuildArch: noarch
%define iptools /sbin/insmod /sbin/modprobe iproute traceroute iptables ipset iprange iputils whois tcpdump
BuildRequires: %iptools
Requires: %iptools
%define tools which bash4 su curl procps-ng udev-rules jq unzip
BuildRequires: %tools
Requires: %tools
%description
FireHOL uses an extremely simple but powerfull way to define firewall
rules which it turns into complete stateful iptables firewalls. FireHOL
is a generic firewall generator, meaning that you can design any kind of
local or routing stateful packet filtering firewalls with ease.
Install FireHOL if you want an easy way to configure stateful packet
filtering firewalls on Linux hosts and routers.
You can run FireHOL with the 'helpme' argument, to get a configuration
file for the system run, which you can modify according to your needs.
The default configuration file will allow only client traffic on all
interfaces.
%prep
%setup
#patch1 -p2
%patch2 -p2
# wait for new bash4
subst 's|+(\[0-9\])|[0-9]*|' sbin/fireqos
# https://bugzilla.altlinux.org/show_bug.cgi?id=32663
%if %_vendor == "alt"
for i in sbin/firehol sbin/fireqos ; do
test -s "$i" || continue
subst "s|^#!%_bindir/env bash$|#!/bin/bash4|g" "$i"
subst "s|^#!/bin/bash$|#!/bin/bash4|g" "$i"
done
%endif
%build
# bash4 hack
ln -s /bin/bash4 bash
export PATH=$(pwd):$PATH
%configure
%make
%install
%makeinstall_std
# Hack for documentation without crufts.
rm -frv %buildroot%_docdir
find doc/ examples/ -name "Makefile*" -delete -print
# Install systemd units.
mkdir -p %buildroot%_unitdir
install -pm644 contrib/firehol.service contrib/fireqos.service %buildroot%_unitdir
# Install runtime directories.
mkdir -p %buildroot%_sysconfdir/firehol/services
mkdir -p %buildroot%_var/spool/firehol
# Ghost configurations.
touch %buildroot%_sysconfdir/firehol/firehol.conf \
%buildroot%_sysconfdir/firehol/fireqos.conf
%if 0
mkdir -p %buildroot%_sysconfdir/firehol/services
install -m 640 examples/client-all.conf %buildroot%_sysconfdir/firehol/firehol.conf
%endif
%if_without fireqos
# TODO: backport fireqos to bash3
rm -f %buildroot%_sbindir/fireqos %buildroot%_unitdir/fireqos.service
%endif
%pre
%post
if [ -f %_sysconfdir/firehol.conf -a ! -f %_sysconfdir/firehol/firehol.conf ]
then
mv -f %_sysconfdir/firehol.conf %_sysconfdir/firehol/firehol.conf
echo
echo
echo "FireHOL has now its configuration in %_sysconfdir/firehol/firehol.conf"
echo "Your existing configuration has been moved to its new place."
echo
fi
%files
%doc COPYING THANKS README ChangeLog contrib
%dir %_sysconfdir/firehol
%dir %_sysconfdir/firehol/services
%_sysconfdir/firehol/services/*
%_sbindir/*
#_initdir/firehol
%_unitdir/firehol.service
%if_with fireqos
%_unitdir/fireqos.service
%endif
%_man1dir/*
%_man5dir/*
%config(noreplace) %_sysconfdir/firehol/firehol.conf
%config(noreplace) %_sysconfdir/firehol/fireqos.conf
%_sysconfdir/firehol/firehol.conf.example
%_sysconfdir/firehol/fireqos.conf.example
%dir %_libexecdir/%name
%_libexecdir/%name/%version/
%_datadir/update-ipsets/
%doc examples
%doc doc/*
%changelog
…
Full changelog you can see here