delete $ENV{RESTART_PVE_FIREWALL};
+ PVE::Cluster::cfs_update();
+
+ PVE::Firewall::init();
+
if (!$param->{debug}) {
open STDIN, '</dev/null' || die "can't read /dev/null";
open STDOUT, '>/dev/null' || die "can't write /dev/null";
name => 'stop',
path => 'stop',
method => 'POST',
- description => "Stop firewall. This will remove all rules installed by this script. The host is unprotected afterwards.",
+ description => "Stop firewall. This removes all Proxmox VE related iptable rules. The host is unprotected afterwards.",
parameters => {
additionalProperties => 0,
properties => {},
name => 'compile',
path => 'compile',
method => 'POST',
- description => "Compile amd print firewall rules. This is only for testing.",
+ description => "Compile and print firewall rules. This is useful for testing.",
parameters => {
additionalProperties => 0,
properties => {},
=head1 NAME
-pvestatd - PVE Firewall Daemon
+pve-firewall - PVE Firewall Daemon
=head1 SYNOPSIS
-pve-firewall
+=include synopsis
=head1 DESCRIPTION
This service updates iptables rules periodically.
-
-
-
+=include pve_copyright