625
625
# ADMINISABSENTMINDED=[Yes|No]
627
# The value of this variable affects Shorewall's stopped state. When
628
# ADMINISABSENTMINDED=No, only traffic to/from those addresses listed in
629
# shorewall-routestopped(5) is accepted when Shorewall is stopped. When
630
# ADMINISABSENTMINDED=Yes, in addition to traffic to/from addresses in
631
# shorewall-routestopped(5), connections that were active when Shorewall
632
# stopped continue to work and all new connections from the firewall system
633
# itself are allowed. If this variable is not set or is given the empty value
634
# then ADMINISABSENTMINDED=No is assumed.
627
# The value of this variable affects Shorewall's stopped state. The behavior
628
# differs depending on whether shorewall-routestopped(5) or
629
# shorewall-stoppedrules(5) is used:
633
# When ADMINISABSENTMINDED=No, only traffic to/from those addresses
634
# listed in routestopped is accepted when Shorewall is stopped. When
635
# ADMINISABSENTMINDED=Yes, in addition to traffic to/from addresses in
636
# routestopped, connections that were active when Shorewall stopped
637
# continue to work and all new connections from the firewall system
638
# itself are allowed.
642
# If ADMINISABSENTMINDED=No, a warning message is issued and the setting
645
# In addition to connections matching entries in stoppedrules, existing
646
# connections continue to work and all new connections from the firewall
647
# system itself are allowed. To sever all existing connections when the
648
# firewall is stopped, install the conntrack utility and place the
649
# command conntrack -F in the stopped user exit (/etc/shorewall/stopped).
651
# If this variable is not set or is given the empty value then
652
# ADMINISABSENTMINDED=No is assumed.
636
654
IGNOREUNKNOWNVARIABLES=No
added
removed
Samples/three-interfaces/shorewall.conf.annotated
