1shorewall-tos(5)                                              shorewall-tos(5)
2
3
4

NAME

6       tos - Shorewall Type of Service rules file
7

SYNOPSIS

9       /etc/shorewall/tos
10

DESCRIPTION

12       This file defines rules for setting Type Of Service (TOS)
13
14       The columns in the file are as follows.
15
16       SOURCE - {zone[:address]|all|$FW} (Shorewall-shell)
17              Name of a zone declared in shorewall-zones
18              ⟨shorewall-zones.html⟩ (5), all or $FW.
19
20              If not all or $FW, may optionally be followed by ":" and  an  IP
21              address, a MAC address, a subnet specification or the name of an
22              interface.
23
24              Example: loc:192.168.2.3
25
26              MAC addresses must be prefixed with "~" and use "-" as a separa‐
27              tor.
28
29              Example: ~00-A0-C9-15-39-78
30
31       SOURCE - {all|address]|all:address|$FW} (Shorewall-perl)
32              If  all,  may optionally be followed by ":" and an IP address, a
33              MAC address, a subnet specification or the name of an interface.
34
35              Example: all:192.168.2.3
36
37              MAC addresses must be prefixed with "~" and use "-" as a separa‐
38              tor.
39
40              Example: ~00-A0-C9-15-39-78
41
42       DEST - {zone[:address]|all} (Shorewall-shell)
43              Name of a zone declared in shorewall-zones
44              ⟨shorewall-zones.html⟩ (5) or all.
45
46              If not all, may optionally be followed by ":" and an IP  address
47              or a subnet specification
48
49              Example: loc:192.168.2.3
50
51       DEST - {all|address]|all:address} (Shorewall-perl)
52              Example: 192.168.2.3
53
54       PROTOCOL proto-name-or-number
55              Protocol name or number.
56
57       SOURCE PORT(S) — {-|port|lowport:highport}
58              Source port or port range. If all ports, use "-".
59
60       DEST PORT(S) — {-|port|lowport:highport}
61              Destination port or port range. If all ports, use "-"
62
63       TOS tos
64              Must be one of the following;
65
66                      tos-minimize-delay (16)
67                      tos-maximize-throughput (8)
68                      tos-maximize-reliability (4)
69                      tos-minimize-cost (2)
70                      tos-normal-service (0)
71
72       MARK — [!]value[/mask][:C]
73              If  you don't want to define a test but need to specify anything
74              in the following columns, place a "-" in this field.
75
76              !      Inverts the test (not equal)
77
78              value  Value of the packet or connection mark.
79
80              mask   A mask to be applied to the mark before testing.
81
82              :C     Designates a connection  mark.  If  omitted,  the  packet
83                     mark's  value is tested. This option is only supported by
84                     Shorewall-perl.
85

FILES

87       /etc/shorewall/tos
88

SEE ALSO

90       shorewall(8), shorewall-accounting(5), shorewall-actions(5), shorewall-
91       blacklist(5),  shorewall-hosts(5),  shorewall-interfaces(5), shorewall-
92       ipsec(5),  shorewall-maclist(5),  shorewall-masq(5),  shorewall-nat(5),
93       shorewall-netmap(5),  shorewall-params(5),  shorewall-policy(5), shore‐
94       wall-providers(5),   shorewall-proxyarp(5),   shorewall-route_rules(5),
95       shorewall-routestopped(5),    shorewall-rules(5),    shorewall.conf(5),
96       shorewall-tcclasses(5),  shorewall-tcdevices(5),  shorewall-tcrules(5),
97       shorewall-tunnels(5), shorewall-zones(5)
98
99
100
101                                  19 May 2008                 shorewall-tos(5)
Impressum