type => 'boolean',
optional => 1,
},
- allow_bridge_route => {
- description => "Enable firewall when bridges contains IP address. The firewall is not fully functional in that case, so you need to enable that explicitly",
- type => 'boolean',
- optional => 1,
- },
- optimize => {
- description => "Allow rules processing speed optimizations.",
- type => 'boolean',
- optional => 1,
- },
nf_conntrack_max => {
description => "Maximum number of tracked connections.",
type => 'integer',
method => 'GET',
description => "Get host firewall options.",
proxyto => 'node',
+ permissions => {
+ check => ['perm', '/nodes/{node}', [ 'Sys.Audit' ]],
+ },
parameters => {
additionalProperties => 0,
properties => {
description => "Set Firewall options.",
protected => 1,
proxyto => 'node',
+ permissions => {
+ check => ['perm', '/nodes/{node}', [ 'Sys.Modify' ]],
+ },
parameters => {
additionalProperties => 0,
properties => &$add_option_properties({