diff options
| author | Jaroslav Lichtblau | 2014-11-28 20:17:14 +0100 |
|---|---|---|
| committer | Jaroslav Lichtblau | 2014-11-28 20:17:14 +0100 |
| commit | 032481cf4e9133d41a565586366046c7674f1058 (patch) | |
| tree | 2d6e2ace944c7aeb737b332d2a2572de8a2d2f8f | |
| download | aur-032481cf4e9133d41a565586366046c7674f1058.tar.gz | |
Initial PKGBUILD status as of 28.11.2014
| -rw-r--r-- | .AURINFO | 33 | ||||
| -rw-r--r-- | .SRCINFO | 36 | ||||
| -rw-r--r-- | PKGBUILD | 71 | ||||
| -rw-r--r-- | arno-iptables-firewall.patch | 25 | ||||
| -rw-r--r-- | arno-iptables-firewall.service | 14 |
5 files changed, 179 insertions, 0 deletions
diff --git a/.AURINFO b/.AURINFO new file mode 100644 index 000000000000..975a5c6896e6 --- /dev/null +++ b/.AURINFO @@ -0,0 +1,33 @@ +pkgbase = arno-iptables-firewall + pkgdesc = A secure stateful firewall for both single and multi-homed machine + pkgver = 2.0.1e + pkgrel = 1 + url = http://rocky.eld.leidenuniv.nl/joomla/ + arch = any + license = GPL + makedepends = patch + depends = iptables + depends = iproute2 + source = http://rocky.eld.leidenuniv.nl/arno-iptables-firewall/arno-iptables-firewall_2.0.1e.tar.gz + source = arno-iptables-firewall.patch + source = arno-iptables-firewall.service + backup = etc/arno-iptables-firewall/firewall.conf + backup = etc/arno-iptables-firewall/custom-rules + backup = etc/arno-iptables-firewall/plugins/dmz-dnat.conf + backup = etc/arno-iptables-firewall/plugins/dsl-ppp-modem.conf + backup = etc/arno-iptables-firewall/plugins/dyndns-host-open.conf + backup = etc/arno-iptables-firewall/plugins/ids-protection.conf + backup = etc/arno-iptables-firewall/plugins/ipsec-vpn.conf + backup = etc/arno-iptables-firewall/plugins/ipv6-over-ipv4.conf + backup = etc/arno-iptables-firewall/plugins/linux-upnp-igd.conf + backup = etc/arno-iptables-firewall/plugins/mac-address-filter.conf + backup = etc/arno-iptables-firewall/plugins/multiroute.conf + backup = etc/arno-iptables-firewall/plugins/sip-voip.conf + backup = etc/arno-iptables-firewall/plugins/ssh-brute-force-protection.conf + backup = etc/arno-iptables-firewall/plugins/traffic-accounting.conf + backup = etc/arno-iptables-firewall/plugins/traffic-shaper.conf + backup = etc/arno-iptables-firewall/plugins/transparent-dnat.conf + backup = etc/arno-iptables-firewall/plugins/transparent-proxy.conf + +pkgname = arno-iptables-firewall + diff --git a/.SRCINFO b/.SRCINFO new file mode 100644 index 000000000000..dd463ec4da8a --- /dev/null +++ b/.SRCINFO @@ -0,0 +1,36 @@ +pkgbase = arno-iptables-firewall + pkgdesc = A secure stateful firewall for both single and multi-homed machine + pkgver = 2.0.1e + pkgrel = 1 + url = http://rocky.eld.leidenuniv.nl/joomla/ + arch = any + license = GPL + makedepends = patch + depends = iptables + depends = iproute2 + backup = etc/arno-iptables-firewall/firewall.conf + backup = etc/arno-iptables-firewall/custom-rules + backup = etc/arno-iptables-firewall/plugins/dmz-dnat.conf + backup = etc/arno-iptables-firewall/plugins/dsl-ppp-modem.conf + backup = etc/arno-iptables-firewall/plugins/dyndns-host-open.conf + backup = etc/arno-iptables-firewall/plugins/ids-protection.conf + backup = etc/arno-iptables-firewall/plugins/ipsec-vpn.conf + backup = etc/arno-iptables-firewall/plugins/ipv6-over-ipv4.conf + backup = etc/arno-iptables-firewall/plugins/linux-upnp-igd.conf + backup = etc/arno-iptables-firewall/plugins/mac-address-filter.conf + backup = etc/arno-iptables-firewall/plugins/multiroute.conf + backup = etc/arno-iptables-firewall/plugins/sip-voip.conf + backup = etc/arno-iptables-firewall/plugins/ssh-brute-force-protection.conf + backup = etc/arno-iptables-firewall/plugins/traffic-accounting.conf + backup = etc/arno-iptables-firewall/plugins/traffic-shaper.conf + backup = etc/arno-iptables-firewall/plugins/transparent-dnat.conf + backup = etc/arno-iptables-firewall/plugins/transparent-proxy.conf + source = http://rocky.eld.leidenuniv.nl/arno-iptables-firewall/arno-iptables-firewall_2.0.1e.tar.gz + source = arno-iptables-firewall.patch + source = arno-iptables-firewall.service + sha256sums = fa7b865e5d9b8e077cba73b2f28695a2fd691092a0a7f9e1c16ee369fc27fe43 + sha256sums = f1c09af1470354aa8b1a506cd97d1a5c2f95599db896e6dbde7dd506d4c85d1d + sha256sums = 8c35a221ae7bb4b8abda923590b8bfab856dcc4d3f85991eebb37314efd1931c + +pkgname = arno-iptables-firewall + diff --git a/PKGBUILD b/PKGBUILD new file mode 100644 index 000000000000..705774858a5b --- /dev/null +++ b/PKGBUILD @@ -0,0 +1,71 @@ +# Maintainer: Jaroslav Lichtblau <dragonlord@aur.archlinux.org> +# Contributor: Arto Puranen <purcher@gmail.com> + +pkgname=arno-iptables-firewall +pkgver=2.0.1e +pkgrel=1 +pkgdesc="A secure stateful firewall for both single and multi-homed machine" +arch=('any') +url=(http://rocky.eld.leidenuniv.nl/joomla/) +license=('GPL') +depends=('iptables' 'iproute2') +makedepends=('patch') +backup=(etc/${pkgname}/firewall.conf + etc/${pkgname}/custom-rules + etc/${pkgname}/plugins/dmz-dnat.conf + etc/${pkgname}/plugins/dsl-ppp-modem.conf + etc/${pkgname}/plugins/dyndns-host-open.conf + etc/${pkgname}/plugins/ids-protection.conf + etc/${pkgname}/plugins/ipsec-vpn.conf + etc/${pkgname}/plugins/ipv6-over-ipv4.conf + etc/${pkgname}/plugins/linux-upnp-igd.conf + etc/${pkgname}/plugins/mac-address-filter.conf + etc/${pkgname}/plugins/multiroute.conf + etc/${pkgname}/plugins/sip-voip.conf + etc/${pkgname}/plugins/ssh-brute-force-protection.conf + etc/${pkgname}/plugins/traffic-accounting.conf + etc/${pkgname}/plugins/traffic-shaper.conf + etc/${pkgname}/plugins/transparent-dnat.conf + etc/${pkgname}/plugins/transparent-proxy.conf) +source=(http://rocky.eld.leidenuniv.nl/${pkgname}/${pkgname}_${pkgver}.tar.gz + ${pkgname}.patch \ + ${pkgname}.service) +sha256sums=('fa7b865e5d9b8e077cba73b2f28695a2fd691092a0a7f9e1c16ee369fc27fe43' + 'f1c09af1470354aa8b1a506cd97d1a5c2f95599db896e6dbde7dd506d4c85d1d' + '8c35a221ae7bb4b8abda923590b8bfab856dcc4d3f85991eebb37314efd1931c') + +package() { + cd ${srcdir}/${pkgname}_${pkgver} + +# patch + patch -Np0 -i ${srcdir}/${pkgname}.patch + +# conf files + install -d -m 0755 etc/${pkgname}/plugins/ ${pkgdir}/etc/${pkgname}/plugins/ + for i in `find etc/${pkgname} -type f`; do install -T -m 0600 $i ${pkgdir}/$i ;done + install -D -m 0644 share/${pkgname}/environment ${pkgdir}/usr/share/${pkgname}/environment + +# plugins + install -d -m 0755 share/${pkgname}/plugins/ ${pkgdir}/usr/share/${pkgname}/plugins/ + for i in share/${pkgname}/plugins/*plugin; do install -T -m 0644 $i ${pkgdir}/usr/$i ;done + install -D -m 0744 share/${pkgname}/plugins/dyndns-host-open-helper \ + ${pkgdir}/usr/share/${pkgname}/plugins/dyndns-host-open-helper + install -D -m 0744 share/${pkgname}/plugins/traffic-accounting-helper \ + ${pkgdir}/usr/share/${pkgname}/plugins/traffic-accounting-helper + install -D -m 0744 share/${pkgname}/plugins/traffic-accounting-log-rotate \ + ${pkgdir}/usr/share/${pkgname}/plugins/traffic-accounting-log-rotate + install -D -m 0744 share/${pkgname}/plugins/traffic-accounting-show \ + ${pkgdir}/usr/share/${pkgname}/plugins/traffic-accounting-show + +# binary + install -D -m 0744 bin/${pkgname} ${pkgdir}/usr/bin/${pkgname} + install -D -m 0744 bin/arno-fwfilter ${pkgdir}/usr/bin/arno-fwfilter + install -D -m 0744 contrib/adsl-failover ${pkgdir}/usr/bin/adsl-failover + +# man files + install -D -m 0644 share/man/man1/arno-fwfilter.1 ${pkgdir}/usr/share/man/man1/arno-fwfilter.1 + install -D -m 0644 share/man/man8/${pkgname}.8 ${pkgdir}/usr/share/man/man8/${pkgname}.8 + +# systemd script + install -D -m 0644 ${srcdir}/${pkgname}.service ${pkgdir}/usr/lib/systemd/system/${pkgname}.service +} diff --git a/arno-iptables-firewall.patch b/arno-iptables-firewall.patch new file mode 100644 index 000000000000..298d0c0b8d8e --- /dev/null +++ b/arno-iptables-firewall.patch @@ -0,0 +1,25 @@ +--- etc/arno-iptables-firewall/firewall.conf 2010-12-30 13:17:02.000000000 +0100 ++++ etc/arno-iptables-firewall/firewall.conf 2011-01-22 21:10:39.000000000 +0100 +@@ -233,18 +233,18 @@ + # 'whereis iptables' to manually locate it), required for (default) IPv4 support + # ----------------------------------------------------------------------------- +-IP4TABLES="/sbin/iptables" ++IP4TABLES="/usr/bin/iptables" + + # (EXPERT SETTING!) Location of the ip6tables-binary (use 'locate ip6tables' or + # 'whereis ip6tables' to manually locate it), required for IPv6 support + # ----------------------------------------------------------------------------- +-IP6TABLES="/sbin/ip6tables" ++IP6TABLES="/usr/bin/ip6tables" + + # (EXPERT SETTING!) Location of the environment file + # ----------------------------------------------------------------------------- +-ENV_FILE="/usr/local/share/arno-iptables-firewall/environment" ++ENV_FILE="/usr/share/arno-iptables-firewall/environment" + + # (EXPERT SETTING!) Location of plugin binary & config files + # ----------------------------------------------------------------------------- +-PLUGIN_BIN_PATH="/usr/local/share/arno-iptables-firewall/plugins" ++PLUGIN_BIN_PATH="/usr/share/arno-iptables-firewall/plugins" + PLUGIN_CONF_PATH="/etc/arno-iptables-firewall/plugins" + diff --git a/arno-iptables-firewall.service b/arno-iptables-firewall.service new file mode 100644 index 000000000000..2d81c9869ec1 --- /dev/null +++ b/arno-iptables-firewall.service @@ -0,0 +1,14 @@ +[Unit] +Description=A secure stateful firewall for both single and multi-homed machine +Before=network.target +Wants=network.target + +[Service] +Type=oneshot +ExecStart=/usr/bin/arno-iptables-firewall start +ExecStop=/usr/bin/arno-iptables-firewall stop +ExecReload=/usr/bin/arno-iptables-firewall force-reload +RemainAfterExit=yes + +[Install] +WantedBy=multi-user.target |