dirwall is a small iptables firewall script that keeps the iptables rules separate from the script. The rules are stored in separate files so that other packages may maintain them.
The dirwall rules are located in
/etc/dirwall/{ACCEPT,FORWARD,MASQ,NAT,NOLOG,REJECT}/*". There may be multiple rules per file, seperated by whitespaces. Comments starting with a '#' are allowed anywhere in the rule files. The rule filenames are reserved for packages that have that name (i.e. the "ssh" package has the right to manage the "/etc/dirwall/ACCEPT/ssh"
rule file). Local rule files should begin with the word "local-" so that they don't conflict.
What's New in This Release:
· added REJECT target support
· added nat table flushing and setting of default nat table policies
· renamed default filter policy config files to support nat policies
· better documentation
Product's homepage
Find us on Google+
