1FIREWALLD.IPSET(5)              firewalld.ipset             FIREWALLD.IPSET(5)
2
3
4

NAME

6       firewalld.ipset - firewalld ipset configuration files
7

SYNOPSIS

9       /etc/firewalld/ipsets/ipset.xml
10       /usr/lib/firewalld/ipsets/ipset.xml
11
12
13

DESCRIPTION

15       A firewalld ipset configuration file provides the information of an ip
16       set for firewalld. The most important configuration options are type,
17       option and entry.
18
19       This example configuration file shows the structure of an ipset
20       configuration file:
21
22           <?xml version="1.0" encoding="utf-8"?>
23           <ipset type="hash:ip">
24             <short>My Ipset</short>
25             <description>description</description>
26             <entry>1.2.3.4</entry>
27             <entry>1.2.3.5</entry>
28             <entry>1.2.3.6</entry>
29           </ipset>
30
31
32

OPTIONS

34       The config can contain these tags and attributes. Some of them are
35       mandatory, others optional.
36
37   ipset
38       The mandatory ipset start and end tag defines the ipset. This tag can
39       only be used once in a ipset configuration file. There is one mandatory
40       and also optional attributes for ipsets:
41
42       type="string"
43           The mandatory type of the ipset. To get the list of supported
44           types, use firewall-cmd --get-ipset-types.
45
46       version="string"
47           To give the ipset a version.
48
49   short
50       Is an optional start and end tag and is used to give an ipset a more
51       readable name.
52
53   description
54       Is an optional start and end tag to have a description for a ipset.
55
56   option
57       Is an optional empty-element tag and can be used several times to have
58       more than one option. Mostly all attributes of an option entry are
59       mandatory:
60
61       name="string"
62           The mandatory option name string.
63
64       value="string"
65           The optional value of the option.
66
67       The supported options are: family: "inet"|"inet6", timeout: integer,
68       hashsize: integer, maxelem: integer. For more information on these
69       options, please have a look at the ipset documentation.
70
71   entry
72       Is an optional start and end tag and can be used several times to have
73       more than one entry entry. An entry entry does not have attributes.
74

SEE ALSO

76       firewall-applet(1), firewalld(1), firewall-cmd(1), firewall-config(1),
77       firewalld.conf(5), firewalld.direct(5), firewalld.dbus(5),
78       firewalld.icmptype(5), firewalld.lockdown-whitelist(5), firewall-
79       offline-cmd(1), firewalld.richlanguage(5), firewalld.service(5),
80       firewalld.zone(5), firewalld.zones(5), firewalld.policy(5),
81       firewalld.policies(5), firewalld.ipset(5), firewalld.helper(5)
82

NOTES

84       firewalld home page:
85           http://firewalld.org
86
87       More documentation with examples:
88           http://fedoraproject.org/wiki/FirewallD
89

AUTHORS

91       Thomas Woerner <twoerner@redhat.com>
92           Developer
93
94       Jiri Popelka <jpopelka@redhat.com>
95           Developer
96
97       Eric Garver <eric@garver.life>
98           Developer
99
100
101
102firewalld 1.2.3                                             FIREWALLD.IPSET(5)
Impressum