## Sentry Firewall CD-ROM 1.x Configuration File
## Sample "sentry.conf" configuration file.
## Questions/Comments: Obsid@Sentry.net

## I have tried to give a brief description of the setup here, please
## see the documentation at http://www.SentryFirewall.com/ for more
## details.

## All configuration directives are case sensitive. Anything after a '#'
## sign is considered a comment.

##-----------------------------------------------------------------------##
## Networking Support

 ## 'device' Directive Syntax:
 ##    device[#] = [device_name]:[driver_name]:[IP_Address]<|gateway>
 ##    device[#] = [device_name]:[driver_name]:dhcp<|hostname>
 ##    NOTE: 1) <hostname> and <gateway> are optional, but sometimes required.
 ##          2) Please see file: /SENTRY/scripts/cd-config/networking.pl for
 ##             list of supported devices.

 ## 'nameserver' Directive Syntax:
 ##    nameserver = <IP_address>

   ## Examples:
   # device1 = eth0:tulip:192.168.1.50|192.168.1.1
   # device2 = eth1:via-rhine:dhcp
   # nameserver = 192.168.1.10


 ## NOTES: 1) With network devices set up, the following configuration
 ##           syntax is supported(examples):
 ##           fstab = http://<user:passwd@>192.168.1.1/config1/fstab
 ##           fstab = https://<user:passwd@>192.168.1.1/config1/fstab
 ##           fstab = ftp://<user:passwd@>192.168.1.1/config1/fstab
 ##           fstab = sftp://<user:passwd@>192.168.1.1/config1/fstab
 ##           fstab = scp://<user:passwd@>192.168.1.1/config1/fstab

 ##        2) Network device support is only used for system setup.  All
 ##           devices are taken down after setup is complete.  See rc.inet{1,2}
 ##           for more permanent network setup.

 ##        3) The username and password fields are required when retrieving files
 ##           via scp or sftp.  Empty passwords are not permitted.


 ## More networking options:

    ## Proxy Support
    # http_proxy = http://<proxy_server>:<port>/
    # ftp_proxy = http://<proxy_server>:<port>/
    # proxy-user = <proxy_username>
    # proxy-passwd = <proxy_password>

    ## Passive FTP Support
    # passive-ftp = <on|off>  ## Default == off


##-----------------------------------------------------------------------##
## Include directives.

## include = /floppy/config1/sentry.conf
## Or with network support:
## include = ftp://user:pass@192.168.1.1/config/sentry.conf


##-----------------------------------------------------------------------##
## /etc/rc.d boot scripts

# rc.M =
# rc.netdevice = /floppy/config1/rc.netdevice
# rc.inet1 = /floppy/config1/rc.inet1
# rc.inet2 =
# rc.local =
# rc.modules =
# rc.firewall =
# rc.firewall.nat =


##-----------------------------------------------------------------------##
## Common system and configuration files.

# fstab = /floppy/config1/fstab
# ftpusers =
# group =
# hostname =
# hosts =  /floppy/config1/hosts
# hosts.equiv =
# modules.conf =
# openssl.cnf =
# passwd =
# profile =
# resolv.conf = /floppy/config1/resolv.conf
# shadow = /floppy/config1/shadow
# shells =


##-----------------------------------------------------------------------##
## Common daemon configuration files

# gated.conf =
# httpd.conf =
# inetd.conf =
# newsyslog.conf =
# pppoe.conf =
# pptpd.conf =
# proftpd.conf =
# ntp.conf =
# smb.conf =
# snort.conf =
# squid.conf =
# syslog.conf =
# syslog-ng.conf =
# zebra.conf =


##-----------------------------------------------------------------------##
## Place to mount cdrom. If not declared we can still try
## to rely on rc.cdrom to mount the correct cdrom drive.

# cdrom = /dev/hdc


##-----------------------------------------------------------------------##
## /etc/ssh configuration files and host keys.
## If no host keys are specified rc.sshd creates them at
## boot time.  No default host keys are present on the rootdisk,
## for obvious reasons.

# ssh_config =
# sshd_config =
# shosts.equiv =
# ssh_host_key =
# ssh_host_key.pub =
# ssh_host_dsa_key =
# ssh_host_dsa_key.pub =
# ssh_host_rsa_key =
# ssh_host_rsa_key.pub =
# ssh_known_hosts =
# ssh_known_hosts2 =


##-----------------------------------------------------------------------##
## Other Configuration Directives

## Replace user's crontab file(/var/spool/cron/crontabs/).
## Syntax: cron:<USERNAME> = <CRONTAB FILE>

  # Example:
  # cron:root = /floppy/config/crontab_file


## Make symlink called /etc/daemon.conf that points to /root/daemon.conf
## Syntax: dest_file => source_file(file symlink points to)

  ## Examples:
  # /etc/daemon.conf => /root/daemon.conf

  ## Set Timezone(GMT is the default)
  # /etc/localtime => /usr/share/zoneinfo/GMT


## Copy file /floppy/daemon.conf to /etc/daemon.conf
## Syntax: source_file |= dest_file

  # Example:
  # /floppy/daemon.conf |= /etc/daemon.conf
  # OR
  # /etc/daemon.conf = /floppy/daemon.conf

  # This is also possible(with a device set up, see above):
  # /etc/daemon.conf = ftp://<server>/config/daemon.conf





## _EOF_ ##