Sisyphus repository
Last update: 7 december 2019 | SRPMs: 17495 | Visits: 15997305
en ru br
ALT Linux repos
5.0: 1.268-alt1.cvs20080809
4.1: 1.226-alt3.cvs20070210
4.0: 1.226-alt1.cvs20070210

Group :: System/Configuration/Networking
RPM: firehol

 Main   Changelog   Spec   Patches   Sources   Download   Gear   Bugs and FR  Repocop 

# BEGIN SourceDeps(oneline):
BuildRequires: /usr/bin/flock /usr/bin/gunzip /usr/bin/less /usr/bin/renice /usr/bin/zcat perl(Text/
# END SourceDeps(oneline)

# do not package fireqos due to bash4 bashisms (regexp in case)

# TODO: backport rate2bps() function in fireqos from bash 4
%def_without fireqos

Summary: An easy to use but powerfull iptables stateful firewall
Name: firehol
Version: 2.0.1
Release: alt1
License: GPL
Group: System/Configuration/Networking
Source0: %name-%version.tar
Source1: ftp_ssl.conf
Source2: firehol.service
Source3: fireqos.service
Patch1: firehol-sbin-alt-init.patch
Patch2: firehol-sbin-alt-iptables.patch

BuildArch: noarch

BuildRequires:  /sbin/insmod /sbin/modprobe
BuildRequires:  coreutils
BuildRequires:  iproute
BuildRequires:  iptables
BuildRequires:  procps-ng
BuildRequires:  systemd

Requires: which

FireHOL uses an extremely simple but powerfull way to define firewall
rules which it turns into complete stateful iptables firewalls.  FireHOL
is a generic firewall generator, meaning that you can design any kind of
local or routing stateful packet filtering firewalls with ease.

Install FireHOL if you want an easy way to configure stateful packet
filtering firewalls on Linux hosts and routers.

You can run FireHOL with the 'helpme' argument, to get a configuration
file for the system run, which you can modify according to your needs.

The default configuration file will allow only client traffic on all

%patch1 -p2
%patch2 -p2




# Hack for documentation without crufts.

rm -frv %{buildroot}%{_docdir}
find doc/ examples/ -name "Makefile*" -delete -print

# Install systemd units.

mkdir -p %{buildroot}%{_unitdir}
install -pm644 %{S:2} %{S:3} %{buildroot}%{_unitdir}

mkdir -p %buildroot%_initdir
install -m 750 sbin/firehol %buildroot%_initdir/firehol

# Install runtime directories.

mkdir -p %{buildroot}%{_sysconfdir}/firehol/services
mkdir -p %{buildroot}%{_var}/spool/firehol

# Ghost configurations.

touch %{buildroot}%{_sysconfdir}/firehol/firehol.conf \

%if 0
mkdir -p %buildroot%_sysconfdir/firehol/services
install -m 640 examples/client-all.conf %buildroot%_sysconfdir/firehol/firehol.conf

%if_without fireqos
# TODO: backport fireqos to bash3
rm -f %buildroot%_sbindir/fireqos %{buildroot}%{_unitdir}/fireqos.service

if [ -f %_sysconfdir/firehol.conf -a ! -f %_sysconfdir/firehol/firehol.conf ]
mv -f %_sysconfdir/firehol.conf %_sysconfdir/firehol/firehol.conf
echo "FireHOL has now its configuration in %_sysconfdir/firehol/firehol.conf"
echo "Your existing configuration has been moved to its new place."
%post_service firehol
%if_with fireqos
%post_service fireqos

%preun_service firehol
%if_with fireqos
%post_service fireqos

%dir %_sysconfdir/firehol
%dir %_sysconfdir/firehol/services
%config(noreplace) %_sysconfdir/firehol/firehol.conf
%config(noreplace) %_sysconfdir/firehol/fireqos.conf
%doc examples
%doc doc/*


Full changelog you can see here

design & coding: Vladimir Lettiev aka crux © 2004-2005, Andrew Avramenko aka liks © 2007-2008
current maintainer: Michael Shigorin