2 Summary: Fiaif is an Intelligent Firewall for iptables based Linux systems.
3 Summary(pl): Fiaif to inteligentny firewall bazuj±cy na iptables.
8 Group: Networking/Utilities
9 Source0: http://fiaif.fugmann.dhs.org/dist/%{name}_%{version}-%{rel}.tar.gz
10 URL: http://fiaif.fugmann.dhs.org/
12 Requires: iptables, bash >= 2.04, sed, grep, textutils, sh-utils, chkconfig
13 Conflicts: ipmasq, knetfilter, firewall-easy, shorewall, firewall-init
14 BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
17 The Goal of FIAIF is to provide a highly customizable script for
18 setting up an iptables based firewall.
20 Unlike many other scripts, FIAIF can be truly customized allowing
21 multiple interfaces (or rather zones). There is no limit on the number
22 of zones. All configuration is done through configuration files. No
23 need to understand the script behind it all.
25 The script makes heavy use of state-full firewalling, and all RELATED
26 and ESTABLISHED packets are accepted on all chains. If you which to
27 block something out, do not accept it in the first place.
29 The script is written in BASH. Though this is not the optimal program
30 to use, it means that you do not need to install extra interpreters on
31 your firewall. This allows you to have a minimalistic installation on
34 Install this package if your machine is ever on the internet.
37 %setup -q -n %{name}-%{version}_%{rel}
41 rm -rf $RPM_BUILD_ROOT
42 %{__make} install DESTDIR=$RPM_BUILD_ROOT
43 %{__make} install-config DESTDIR=$RPM_BUILD_ROOT
46 rm -rf $RPM_BUILD_ROOT
49 if [ -x /sbin/chkconfig ]; then /sbin/chkconfig --level 345 fiaif on; fi
50 # Make sure that old state does not exist
51 [ -f /var/state/fiaif/iptables ] && rm -f /var/state/fiaif/iptables
54 if [ $1 = 0 ]; then if [ -x /sbin/chkconfig ]; then /sbin/chkconfig --del fiaif; fi ; fi
57 %defattr(644,root,root,755)
59 %dir %attr(0700,root,root) %{_sysconfdir}/fiaif/
60 %dir /var/state/fiaif/
61 %config %attr(0600,root,root) %{_sysconfdir}/fiaif/zone.dmz
62 %config %attr(0600,root,root) %{_sysconfdir}/fiaif/zone.ext
63 %config %attr(0600,root,root) %{_sysconfdir}/fiaif/zone.int
64 %config %attr(0600,root,root) %{_sysconfdir}/fiaif/fiaif.conf
65 %config %attr(0600,root,root) %{_sysconfdir}/fiaif/reserved_networks
66 %config %attr(0600,root,root) %{_sysconfdir}/fiaif/private_networks
67 %config %attr(0600,root,root) %{_sysconfdir}/fiaif/type_of_services
69 %attr(0755,root,root) %{_sysconfdir}/rc.d/init.d/fiaif
70 %attr(0755,root,root) %{_sbindir}/fiaif-scan
72 %dir %{_datadir}/fiaif
73 %{_datadir}/fiaif/traffic-shaping.sh
74 %{_datadir}/fiaif/functions.sh
75 %{_datadir}/fiaif/zones.sh
76 %{_datadir}/fiaif/iptables.sh
77 %{_datadir}/fiaif/proc-check.sh
78 %{_datadir}/fiaif/sanity_check.sh
79 %{_datadir}/fiaif/constants.sh
81 %{_mandir}/man8/fiaif.8.gz
82 %{_mandir}/man5/zone.conf.5.gz
83 %{_mandir}/man5/fiaif.conf.5.gz
84 %{_mandir}/man8/fiaif-scan.8.gz
86 %doc todo VERSION doc/faq.txt