1FIREWALLD.HELPER(5)            firewalld.helper            FIREWALLD.HELPER(5)
2
3
4

NAME

6       firewalld.helper - firewalld helper configuration files
7

SYNOPSIS

9       /etc/firewalld/helpers/helper.xml
10       /usr/lib/firewalld/helpers/helper.xml
11
12
13

DESCRIPTION

15       A firewalld helper configuration file provides the information of a
16       helper entry for firewalld. The most important configuration options
17       are ports, family and module.
18
19       This example configuration file shows the structure of a helper
20       configuration file:
21
22           <?xml version="1.0" encoding="utf-8"?>
23           <helper module="nf_conntrack_module" [family="ipv4|ipv6"]>
24             <short>short</short>
25             <description>description</description>
26             <port portid[-portid]" protocol="tcp|udp|sctp|dccp"/>
27           </helper>
28
29
30

OPTIONS

32       The config can contain these tags and attributes. Some of them are
33       mandatory, others optional.
34
35   helper
36       The mandatory helper start and end tag defines the helper. This tag can
37       only be used once in a helper configuration file. There is one
38       mandatory and also optional attributes for helper:
39
40       module="string"
41           The mandatory module of the helper. This is one of the netfilter
42           conntrack helper modules. The name starts with nf_conntrack_.
43
44       family="ipv4|ipv6"
45           The optional family of the helper. This can be one of these ipv
46           types: ipv4 or ipv6. If the family is not specified, then the
47           helper is usable for IPv4 and IPv6.
48
49       version="string"
50           To give the helper a version.
51
52   short
53       Is an optional start and end tag and is used to give an icmptype a more
54       readable name.
55
56   description
57       Is an optional start and end tag to have a description for a icmptype.
58
59   port
60       Is an mandatory empty-element tag and can be used several times to have
61       more than one port entry. All attributes of a port entry are mandatory:
62
63       port="string"
64           The port string can be a single port number or a port range
65           portid-portid or also empty to match a protocol only.
66
67       protocol="string"
68           The protocol value can either be tcp, udp, sctp or dccp.
69

SEE ALSO

71       firewall-applet(1), firewalld(1), firewall-cmd(1), firewall-config(1),
72       firewalld.conf(5), firewalld.direct(5), firewalld.dbus(5),
73       firewalld.icmptype(5), firewalld.lockdown-whitelist(5), firewall-
74       offline-cmd(1), firewalld.richlanguage(5), firewalld.service(5),
75       firewalld.zone(5), firewalld.zones(5), firewalld.ipset(5),
76       firewalld.helper(5)
77

NOTES

79       firewalld home page:
80           http://firewalld.org
81
82       More documentation with examples:
83           http://fedoraproject.org/wiki/FirewallD
84

AUTHORS

86       Thomas Woerner <twoerner@redhat.com>
87           Developer
88
89       Jiri Popelka <jpopelka@redhat.com>
90           Developer
91
92
93
94firewalld 0.6.3                                            FIREWALLD.HELPER(5)
Impressum