2005-05-17 01:37:23 +02:00
|
|
|
# this file is not parsed, but simply sourced
|
2005-05-18 18:21:54 +02:00
|
|
|
#
|
|
|
|
# web-splash is GPL software (http://www.fsf.org/licensing/licenses/gpl.html)
|
|
|
|
# suggestions and questions to: devel@sumpfralle.de
|
|
|
|
# homepage: https://systemausfall.org/toolforge/web-splash
|
|
|
|
#
|
|
|
|
|
2005-05-17 01:37:23 +02:00
|
|
|
|
|
|
|
# the source interface (only these packets will be filtered)
|
|
|
|
IF_SRC=eth1
|
|
|
|
|
2005-05-17 12:11:28 +02:00
|
|
|
# intern IP address auf the network, where web-splash will be used
|
|
|
|
INTERN_IP=192.168.1.1
|
2005-05-17 01:37:23 +02:00
|
|
|
|
2005-05-17 02:39:58 +02:00
|
|
|
# name of the local file that should be displayed by the cgi
|
2005-05-18 05:31:27 +02:00
|
|
|
SPLASH_DOCUMENT=/www/web-splash/splash-info.html
|
2005-05-17 02:39:58 +02:00
|
|
|
|
2005-05-18 05:31:27 +02:00
|
|
|
# allowed and denied IPs - separated by spaces
|
2005-05-17 12:11:28 +02:00
|
|
|
ALLOW_IP_LIST=""
|
|
|
|
DENY_IP_LIST=""
|
|
|
|
|
2005-05-17 01:37:23 +02:00
|
|
|
# templates for the rules to manage forwarding rules (_IP_ will be substituted by the host's IP)
|
2005-05-18 19:27:51 +02:00
|
|
|
# the first line adds the PREROUTING-ACCEPT rule
|
|
|
|
# the second line adds the counter rule
|
|
|
|
RULE_ADD='$IPT -t nat -I $CHAIN_FORWARD_CHECK -s _IP_ -j $CHAIN_FORWARD_ACTION;
|
|
|
|
$IPT -I $CHAIN_RETURN -d _IP_'
|
|
|
|
RULE_DEL='$IPT -t nat -D $CHAIN_FORWARD_CHECK -s _IP_ -j $CHAIN_FORWARD_ACTION;
|
|
|
|
$IPT -D $CHAIN_RETURN -d _IP_'
|
2005-05-17 01:37:23 +02:00
|
|
|
|
|
|
|
# the iptables chain, that contains all forwarded ips
|
2005-05-17 02:26:11 +02:00
|
|
|
CHAIN_FORWARD_CHECK=web_splash_forward_check
|
|
|
|
CHAIN_FORWARD_ACTION=web_splash_forward_action
|
|
|
|
CHAIN_REDIRECT=web_splash_redirect
|
2005-05-17 12:11:28 +02:00
|
|
|
CHAIN_SERVICES=web_splash_services
|
2005-05-18 19:27:51 +02:00
|
|
|
CHAIN_RETURN=web_splash_return
|
2005-05-17 01:37:23 +02:00
|
|
|
|
|
|
|
# the iptables action for bad packets (e.g. DROP or REJECT)
|
2005-05-17 02:26:11 +02:00
|
|
|
REJECT_ACTION=DROP
|
2005-05-17 01:37:23 +02:00
|
|
|
|
|
|
|
# the location of the iptables program
|
|
|
|
IPT=/sbin/iptables
|
|
|
|
[ ! -x "$IPT" ] && IPT=/usr/sbin/iptables
|
|
|
|
|
2005-05-17 12:11:28 +02:00
|
|
|
# path to the web-splash scripts
|
2005-05-18 18:21:54 +02:00
|
|
|
SPLASH_LIB=/usr/lib
|
2005-05-18 05:31:27 +02:00
|
|
|
SPLASH_BIN=/usr/bin
|
2005-05-18 19:27:51 +02:00
|
|
|
|
|
|
|
# activate DEBUG mode 0/1 (only for testing - it produces ugly output)
|
|
|
|
SPLASH_DEBUG=0
|