1 `enable`: `<boolean>` ::
3 Enable host firewall rules.
5 `log_level_in`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` ::
7 Log level for incoming traffic.
9 `log_level_out`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` ::
11 Log level for outgoing traffic.
17 `nf_conntrack_max`: `<integer> (32768 - N)` ::
19 Maximum number of tracked connections.
21 `nf_conntrack_tcp_timeout_established`: `<integer> (7875 - N)` ::
23 Conntrack established timeout.
25 `nosmurfs`: `<boolean>` ::
29 `smurf_log_level`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` ::
31 Log level for SMURFS filter.
33 `tcp_flags_log_level`: `<alert | crit | debug | emerg | err | info | nolog | notice | warning>` ::
35 Log level for illegal tcp flags filter.
37 `tcpflags`: `<boolean>` ::
39 Filter illegal combinations of TCP flags.