1semanage-node(8)                                              semanage-node(8)
2
3
4

NAME

6       semanage-node - SELinux Policy Management node mapping tool
7

SYNOPSIS

9       semanage  node [-h] [-n] [-N] [-S STORE] [ --add -M NETMASK -p PROTOCOL
10       -t TYPE -r RANGE  node  |  --delete  -M  NETMASK  -p  PROTOCOL  node  |
11       --deleteall | --extract | --list [-C] | --modify -M NETMASK -p PROTOCOL
12       -t TYPE -r RANGE node ]
13
14

DESCRIPTION

16       semanage is used to configure certain elements of SELinux policy  with‐
17       out  requiring  modification  to  or recompilation from policy sources.
18       semanage node controls the IP address to node type definitions.
19
20

OPTIONS

22       -h, --help
23              Show this help message and exit
24
25       -n, --noheading
26              Do not print heading when listing the specified object type
27
28       -N, --noreload
29              Do not reload policy after commit
30
31       -S STORE, --store STORE
32              Select an alternate SELinux Policy Store to manage
33
34       -C, --locallist
35              List local customizations
36
37       -a, --add
38              Add a record of the specified object type
39
40       -d, --delete
41              Delete a record of the specified object type
42
43       -m, --modify
44              Modify a record of the specified object type
45
46       -l, --list
47              List records of the specified object type
48
49       -E, --extract
50              Extract customizable commands, for use within a transaction
51
52       -D, --deleteall
53              Remove all local customizations
54
55       -M NETMASK, --netmask NETMASK
56              Network Mask, either in CIDR  (/16)  or  address  mask  notation
57              (255.255.0.0, ffff::)
58
59       -t TYPE, --type TYPE
60              SELinux type for the object
61
62       -r RANGE, --range RANGE
63              MLS/MCS  Security Range (MLS/MCS Systems only) SELinux Range for
64              SELinux login mapping defaults to the SELinux user record range.
65              SELinux Range for SELinux user defaults to s0.
66
67       -p PROTO, --proto PROTO
68              Protocol  for  the specified port (tcp|udp) or internet protocol
69              version for the specified node (ipv4|ipv6).
70
71

EXAMPLE

73       Apply type node_t to ipv4 node 127.0.0.2
74       # semanage node -a -t node_t -p ipv4 -M 255.255.255.255 127.0.0.2
75
76

SEE ALSO

78       selinux(8), semanage(8)
79
80
81
82                                   20130617                   semanage-node(8)
Impressum