Date: Mon, 18 Apr 2005 08:00:42 -0300 (BRST) From: Renato Botelho <freebsd@galle.com.br> To: FreeBSD-gnats-submit@FreeBSD.org Subject: ports/80063: [MAINTAINER] security/pfw: update to 0.6 Message-ID: <200504181100.j3IB0gFn030575@data.galle.com.br> Resent-Message-ID: <200504181110.j3IBAR3N099962@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 80063 >Category: ports >Synopsis: [MAINTAINER] security/pfw: update to 0.6 >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: maintainer-update >Submitter-Id: current-users >Arrival-Date: Mon Apr 18 11:10:27 GMT 2005 >Closed-Date: >Last-Modified: >Originator: Renato Botelho >Release: FreeBSD 5.3-RELEASE-p9 i386 >Organization: Galle Folheados - http://www.galle.com.br >Environment: System: FreeBSD data.galle.com.br 5.3-RELEASE-p9 FreeBSD 5.3-RELEASE-p9 #9: Fri Apr 15 07:52:00 BRST 2005 >Description: - Update to 0.6 - Change pkg-descr to reflect this version - Unquote IGNORE message to pacify portlint - Add the Apache alias line to pkg-message Generated with FreeBSD Port Tools 0.63 >How-To-Repeat: >Fix: --- pfw-0.6.patch begins here --- Index: Makefile =================================================================== RCS file: /home/ncvs/ports/security/pfw/Makefile,v retrieving revision 1.1 diff -u -r1.1 Makefile --- Makefile 15 Apr 2005 18:41:09 -0000 1.1 +++ Makefile 18 Apr 2005 10:58:03 -0000 @@ -6,7 +6,7 @@ # PORTNAME= pfw -PORTVERSION= 0.5.3 +PORTVERSION= 0.6 CATEGORIES= security www MASTER_SITES= http://www.allard.nu/pfw/download/ EXTRACT_SUFX= .tgz @@ -28,16 +28,18 @@ .include <bsd.port.pre.mk> .if ${OSVERSION} < 500000 -IGNORE= "pf is only in 5.x" +IGNORE= pf is only in 5.x .elif ${OSVERSION} < 502105 RUN_DEPENDS+= pf:${PORTSDIR}/security/pf .endif do-install: - @${MKDIR} ${PFW_PREFIX} ${PFW_PREFIX}/bin ${PFW_PREFIX}/lib ${PFW_PREFIX}/web +.for dir in conf lib web + @${MKDIR} ${PFW_PREFIX}/${dir} + @${CP} -Rv ${WRKSRC}/${dir}/* ${PFW_PREFIX}/${dir} +.endfor @${CP} -v ${WRKSRC}/INSTALL ${WRKSRC}/README ${PFW_PREFIX} - @${CP} -Rv ${WRKSRC}/web/* ${PFW_PREFIX}/web - @${CP} -Rv ${WRKSRC}/lib/* ${PFW_PREFIX}/lib + @${MKDIR} ${PFW_PREFIX}/bin ${INSTALL_SCRIPT} ${WRKSRC}/bin/pfctlwrapper.sh.remote ${PFW_PREFIX}/bin ${INSTALL_SCRIPT} ${WRKSRC}/bin/pfctlwrapper.sh ${PFW_PREFIX}/bin Index: distinfo =================================================================== RCS file: /home/ncvs/ports/security/pfw/distinfo,v retrieving revision 1.1 diff -u -r1.1 distinfo --- distinfo 15 Apr 2005 18:41:09 -0000 1.1 +++ distinfo 18 Apr 2005 10:58:03 -0000 @@ -1,2 +1,2 @@ -MD5 (pfw-0.5.3.tgz) = d0442820beb5b2389c3b577f1bd4f900 -SIZE (pfw-0.5.3.tgz) = 28474 +MD5 (pfw-0.6.tgz) = 67b28218ea1910237221ccda186828b3 +SIZE (pfw-0.6.tgz) = 69960 Index: pkg-descr =================================================================== RCS file: /home/ncvs/ports/security/pfw/pkg-descr,v retrieving revision 1.2 diff -u -r1.2 pkg-descr --- pkg-descr 16 Apr 2005 06:32:29 -0000 1.2 +++ pkg-descr 18 Apr 2005 10:58:03 -0000 @@ -1,23 +1,19 @@ A web frontend for the pf firewall written in PHP. -What works? +Features - o Editing of macro, address translation, scrub, tables and - filter rules. See the screenshots to see which options has been - implemented. - o Queues - works as of version 0.5. - o Importing your current rulebase. And please backup your current - /etc/pf.conf before you install pfw. +With the exceptions listed below, everything that can be done with +pf can be done through pfw. This includes: + + o Editing of all pf rules types like macros, address translation, + queues, scrub, tables and filter rules. + o Importing your current rulebase. Please backup your current + /etc/pf.conf before installing pfw. o Installing the rulebase. This is not just a rulebase generator, it will read and write to and from your /etc/pf.conf file and reload pf through pfctl. - o pfw makes an effort to preserving configurations currently - not supported. - -What doesn't work yet? - - o Advanced filter options like dup-to & fastroute. - o Specifications using negated hosts, nets,... like !www.freebsd.org. + o Standard based xhtml 1.1 and CSS 2.0 compliant code with + separate print style sheet that will print your ruleset nicely. Author: Allard Consulting WWW: http://www.allard.nu/pfw/ Index: pkg-plist =================================================================== RCS file: /home/ncvs/ports/security/pfw/pkg-plist,v retrieving revision 1.1 diff -u -r1.1 pkg-plist --- pkg-plist 15 Apr 2005 18:41:09 -0000 1.1 +++ pkg-plist 18 Apr 2005 10:58:03 -0000 @@ -3,7 +3,14 @@ www/pfw/README www/pfw/bin/pfctlwrapper.sh www/pfw/bin/pfctlwrapper.sh.remote +www/pfw/conf/isakmpd.conf +www/pfw/conf/pf-bart.conf +www/pfw/conf/pf-demo.conf +www/pfw/conf/pf-holodoc.conf +www/pfw/conf/pf-test1.conf +www/pfw/conf/pf.conf www/pfw/lib/altq.class.php +www/pfw/lib/anchor.class.php www/pfw/lib/filter.class.php www/pfw/lib/macro.class.php www/pfw/lib/nat.class.php @@ -15,6 +22,9 @@ www/pfw/lib/table.class.php www/pfw/web/altq.php www/pfw/web/altqedit.php +www/pfw/web/anchor.php +www/pfw/web/anchoredit.php +www/pfw/web/anchorloadedit.php www/pfw/web/commentedit.php www/pfw/web/config.php www/pfw/web/filter.php @@ -24,20 +34,32 @@ www/pfw/web/install.php www/pfw/web/macro.php www/pfw/web/macroedit.php +www/pfw/web/manual/altq.php +www/pfw/web/manual/anchor.php +www/pfw/web/manual/filter.php +www/pfw/web/manual/macro.php +www/pfw/web/manual/nat.php +www/pfw/web/manual/options.php +www/pfw/web/manual/queue.php +www/pfw/web/manual/scrub.php +www/pfw/web/manual/table.php www/pfw/web/menu.php www/pfw/web/nat.php www/pfw/web/natedit.php www/pfw/web/options.php +www/pfw/web/print.css www/pfw/web/queue.php www/pfw/web/queueedit.php +www/pfw/web/screen.css www/pfw/web/scrub.php www/pfw/web/scrubedit.php -www/pfw/web/stylesheet.css www/pfw/web/table.php www/pfw/web/tableedit.php www/pfw/web/test.php www/pfw/web/write.php @dirrm www/pfw/bin +@dirrm www/pfw/conf @dirrm www/pfw/lib +@dirrm www/pfw/web/manual @dirrm www/pfw/web @dirrm www/pfw Index: files/pkg-message.in =================================================================== RCS file: /home/ncvs/ports/security/pfw/files/pkg-message.in,v retrieving revision 1.1 diff -u -r1.1 pkg-message.in --- files/pkg-message.in 15 Apr 2005 18:41:09 -0000 1.1 +++ files/pkg-message.in 18 Apr 2005 10:58:03 -0000 @@ -15,7 +15,13 @@ http://httpd.apache.org/docs/howto/auth.html and add authentication accordingly. -If you want to use pfw to update a remote pfw, please read the +4) Add the following line to your httpd.conf: + +Alias /pfw/ "%%PFW_PREFIX%%/web/" + +Restart apache and access pfw as http://localhost/pfw/ + +5) If you want to use pfw to update a remote pfw, please read the documentation in %%PFW_PREFIX%%/bin/pfwctlwrapper.sh.remote. That's it. Pfw is now installed and ready to be used. --- pfw-0.6.patch ends here --- >Release-Note: >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200504181100.j3IB0gFn030575>