1FOOMUURI(8) User Manual FOOMUURI(8)
2
6 foomuuri - multizone bidirectional nftables firewall
7
9 foomuuri [OPTION] [COMMAND]
10
12 Foomuuri is a firewall generator for nftables based on the concept of
13 zones. It is suitable for all systems from personal machines to corpo‐
14 rate firewalls, and supports advanced features such as a rich rule lan‐
15 guage, IPv4/IPv6 rule splitting, dynamic DNS lookups, a D-Bus API and
16 FirewallD emulation for NetworkManager’s zone support.
17
19 --help display this help and exit
20 --version
22 output version information and exit
23
25 start load configuration files, generate new ruleset and load it to
26 kernel
27 start-or-good
29 same as start but fallback to previous “good” ruleset if loading
30 fails
31 stop remove ruleset from kernel
33 reload same as start, followed by resolve+iplist refresh
35 check load configuration files and verify syntax
37 list list active ruleset currently loaded to kernel
39 list zone-zone {zone-zone...}
41 list active ruleset for zone-zone currently loaded to kernel
42 list macro
44 list all known macros
45 list counter
47 list all named counters
48 iplist list
50 list entries in all configured iplists and resolves
51 iplist list name {name...}
53 list entries in named iplist/resolve
54 iplist add name {timeout} ipaddress {ipaddress...}
56 add or refresh IP address to iplist
57 iplist del name ipaddress {ipaddress...}
59 delete IP address from iplist
60
62 Foomuuri reads configuration files from /etc/foomuuri/*.conf. See full
63 documentation for configuration syntax.
64
66 Kim B. Heino, b@bbbs.net, Foobar Oy
67
69 Submit bug reports <https://github.com/FoobarOy/foomuuri/issues>
70
72 Full documentation <https://github.com/FoobarOy/foomuuri/wiki>
73Foomuuri 0.21 Oct 06, 2023 FOOMUURI(8)