1eurephiadm fwprofiles(7)                              eurephiadm fwprofiles(7)
2
3
4

NAME

6       eurephiadm-fwprofiles - Configuring eurephia firewall profiles
7

SYNOPSIS

9       eurephiadm   fwprofiles  --list|-l  [-v|--verbose]  [-a|--accessprofile
10       <acc.  ID>]  [-f|--fw-destination   <name>]   [-i|--uid    <user   ID>]
11       [-n|--username    <username>]   [-c|--certid   <cert  ID>]  [-e|--email
12       <e-mail address>] [-d|--digest  <certificate SHA1 digest>]
13       eurephiadm   fwprofiles   --add|-A   [-d|--description   <Description>]
14       [-f|--fw-destination  <name>]
15       eurephiadm   fwprofiles  --delete|-D  [-a|--accessprofile   <acc.  ID>]
16       [-f|--fw-destination  <name>]
17

DESCRIPTION

19       The eurephia plug-in can take advantage of the OS firewall  to  give  a
20       fine  grained access control of each OpenVPN client.  The preconfigured
21       firewall chains available to eurephia needs to be  defined  using  this
22       eurephiadm  command.  When the firewall profiles are defined here, they
23       can be assigned to the different user accesses you have enabled.
24

MODES

26       Available modes for the fwprofiles command are:
27
28       -A | --add
29              [-d|--description <Description>] [-f|--fw-destination  <name>]
30              Add a new firewall profile.  Both --description and  --fw-desti‐
31              nation  are required.  The --description is just to give a human
32              readable description of the firewall profile name  and  is  only
33              used in the different reports available in eurephiadm.
34
35       -D | --delete
36              [-a|--accessprofile  <acc. ID>] [-f|--fw-destination  <name>]
37              Delete  a firewall profile.  Either --accessprofile or --fw-des‐
38              tination must be provided.
39
40       -l | --list
41              [-v|--verbose] [-a|--accessprofile <acc. ID>]  [-f|--fw-destina‐
42              tion   <name>] [-i|--uid  <user ID>] [-n|--username  <username>]
43              [-c|--certid   <cert   ID>]   [-e|--email    <e-mail   address>]
44              [-d|--digest  <certificate SHA1 digest>]
45              List available firewall profiles.  Without any arguments, a sim‐
46              ple overview over all  registered  firewall  profiles.   If  the
47              --verbose  argument  is  given, the list will be more comprehen‐
48              sive.
49
50              The rest of the arguments are filters which is  used  to  reduce
51              the length of the list.  Multiple filters may be added, but they
52              will only work as additional "AND" argument in the query.
53
54       -h | --help
55              <mode> Show a help screen.  Without any arguments, all modes are
56              listed.   Providing  a mode will show more information about the
57              chosen mode.
58

FILTERS

60       These filters are used by the --list mode.
61
62       -a | --accessprofile <id>
63              Numeric ID defining the access profile ID.
64
65       -f | --fw-destination <name>
66              The firewall reference for the chain used by the OS when filter‐
67              ing the OpenVPN client traffic.
68
69       -i | --uid <user id>
70              Numeric user ID
71
72       -n | --username <username>
73              User name
74
75       -c | --certid <certid>
76              Numeric reference to a certificate
77
78       -e | --email <email addr>
79              e-mail address in certificates
80
81       -d | --digest <SHA1 digest>
82              Certificate SHA1 digest
83

SEE ALSO

85       eurephiadm(7), eurephiadm-usercerts(7)
86

AUTHOR

88       Copyright (C) 2008-2012  David Sommerseth <dazo@users.sourceforge.net>
89
90
91
92David Sommerseth                   July 2010          eurephiadm fwprofiles(7)
Impressum