2014-03-29 10:57:08 -06:00
|
|
|
# IPv4 Specific Configuration File
|
2014-03-30 10:16:22 -06:00
|
|
|
#
|
|
|
|
|
|
|
|
# Allow everything over loopback (lo/127.0.0.0/8)
|
|
|
|
# Good idea to keep this turned on, but if you so wish to,
|
|
|
|
# you can disable it here.
|
2014-03-30 10:40:28 -06:00
|
|
|
# Values: no | yes (default)
|
|
|
|
AllowAllv4Loopback="yes"
|
|
|
|
|
|
|
|
# Very early on rules to allow for trusted machines to access
|
|
|
|
# this machine. Rather important and helps keep you from getting
|
|
|
|
# locked out should the firewalling rules go bad.
|
2014-03-30 10:53:31 -06:00
|
|
|
#
|
|
|
|
# IMPORTANT: Hosts put in the trusted file will have complete
|
|
|
|
# and unfettered access to the host, ignoring all other rules.
|
|
|
|
#
|
2014-03-30 12:18:26 -06:00
|
|
|
# Config file: ipv4/trusted.conf
|
2014-03-30 10:40:28 -06:00
|
|
|
# Values: no | yes (default)
|
2014-03-30 12:18:26 -06:00
|
|
|
EnableTrustedv4Hosts="yes"
|
|
|
|
|
|
|
|
# Enable MSS clamping to work around MTU size issues
|
|
|
|
# on network links such as PPPoE and wireless
|
|
|
|
# Config file: ipv4/mss-clamp.conf
|
2014-03-30 13:18:45 -06:00
|
|
|
# Values: no | yes (default)
|
|
|
|
Enablev4MSSClamp="yes"
|
|
|
|
|
|
|
|
# Use /etc/resolv.conf as source for DNS servers that we communicate
|
|
|
|
# with as a client. If you turn this off (recommended if on static IP),
|
|
|
|
# then you will need to manually define the DNS servers you use.
|
|
|
|
# Without conntrack rules allowing established/related, DNS traffic may
|
|
|
|
# be blocked and cause issues.
|
|
|
|
# Values: no | yes (default)
|
|
|
|
DNSClientUsev4ResolvConf="yes"
|
|
|
|
ResolvConfv4File="/etc/resolv.conf"
|
|
|
|
|
2014-03-30 13:36:55 -06:00
|
|
|
# Uncomment below if you set above to no. You can still manually define your servers
|
|
|
|
# here if you want. Useful at times.
|
|
|
|
# Values: space separated IP list of DNS servers
|
2014-03-30 13:18:45 -06:00
|
|
|
#DNSClientManualv4Servers=""
|