pve-firewall-host-opts.adoc

   1 `enable`: `boolean` ::
   2
   3 Enable host firewall rules.
   4
   5 `log_level_in`: `(alert | crit | debug | emerg | err | info | nolog | notice | warning)` ::
   6
   7 Log level for incoming traffic.
   8
   9 `log_level_out`: `(alert | crit | debug | emerg | err | info | nolog | notice | warning)` ::
  10
  11 Log level for outgoing traffic.
  12
  13 `ndp`: `boolean` ::
  14
  15 Enable NDP.
  16
  17 `nf_conntrack_max`: `integer (32768 - N)` ::
  18
  19 Maximum number of tracked connections.
  20
  21 `nf_conntrack_tcp_timeout_established`: `integer (7875 - N)` ::
  22
  23 Conntrack established timeout.
  24
  25 `nosmurfs`: `boolean` ::
  26
  27 Enable SMURFS filter.
  28
  29 `smurf_log_level`: `(alert | crit | debug | emerg | err | info | nolog | notice | warning)` ::
  30
  31 Log level for SMURFS filter.
  32
  33 `tcp_flags_log_level`: `(alert | crit | debug | emerg | err | info | nolog | notice | warning)` ::
  34
  35 Log level for illegal tcp flags filter.
  36
  37 `tcpflags`: `boolean` ::
  38
  39 Filter illegal combinations of TCP flags.
  40