foomuuri - Man Page

multizone bidirectional nftables firewall

Synopsis

foomuuri [OPTION] [COMMAND]

Description

Foomuuri is a firewall generator for nftables based on the concept of zones. It is suitable for all systems from personal machines to corporate firewalls, and supports advanced features such as a rich rule language, IPv4/IPv6 rule splitting, dynamic DNS lookups, a D-Bus API and FirewallD emulation for NetworkManager’s zone support.

Options

--help

display this help and exit

--version

output version information and exit

Commands

start

load configuration files, generate new ruleset and load it to kernel

start-or-good

same as start but fallback to previous “good” ruleset if loading fails

stop

remove ruleset from kernel

check

load configuration files and verify syntax

list

list active ruleset currently loaded to kernel

list zone-zone

list active ruleset for zone-zone currently loaded to kernel

list macro

list all known macros

Files

Foomuuri reads configuration files from /etc/foomuuri/*.conf. See full documentation for configuration syntax.

Authors

Kim B. Heino, b@bbbs.net, Foobar Oy

Bug Reports

Submit bug reports <https://github.com/FoobarOy/foomuuri/issues>

See Also

Full documentation <https://github.com/FoobarOy/foomuuri/wiki>

Info

May 17, 2023 Foomuuri 0.20 User Manual