]>
Commit | Line | Data |
---|---|---|
013dc89f | 1 | `enable`: `<boolean>` :: |
888c4116 DM |
2 | |
3 | Enable host firewall rules. | |
4 | ||
013dc89f | 5 | `log_level_in`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` :: |
888c4116 DM |
6 | |
7 | Log level for incoming traffic. | |
8 | ||
013dc89f | 9 | `log_level_out`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` :: |
888c4116 DM |
10 | |
11 | Log level for outgoing traffic. | |
12 | ||
013dc89f | 13 | `ndp`: `<boolean>` :: |
888c4116 DM |
14 | |
15 | Enable NDP. | |
16 | ||
013dc89f | 17 | `nf_conntrack_max`: `<integer> (32768 - N)` :: |
888c4116 DM |
18 | |
19 | Maximum number of tracked connections. | |
20 | ||
013dc89f | 21 | `nf_conntrack_tcp_timeout_established`: `<integer> (7875 - N)` :: |
888c4116 DM |
22 | |
23 | Conntrack established timeout. | |
24 | ||
013dc89f | 25 | `nosmurfs`: `<boolean>` :: |
888c4116 DM |
26 | |
27 | Enable SMURFS filter. | |
28 | ||
013dc89f | 29 | `smurf_log_level`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` :: |
888c4116 DM |
30 | |
31 | Log level for SMURFS filter. | |
32 | ||
013dc89f | 33 | `tcp_flags_log_level`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` :: |
888c4116 DM |
34 | |
35 | Log level for illegal tcp flags filter. | |
36 | ||
013dc89f | 37 | `tcpflags`: `<boolean>` :: |
888c4116 DM |
38 | |
39 | Filter illegal combinations of TCP flags. | |
40 |