Configuration

Oververview

Dfirewall configuration has a uniqui static file at /etc/default/dfirewall that holds some basics variable that will point the right locations for DATA, CONF, PID, LOG, CACHE and SPOOL, those variables are global used by dfirewall scripts and web interface.

At DFIREWALL_CONF/config.db you may find dfirewall configuration sqlite3 database, where it holds all dfirewall configurations. All config consists of a set of variables separeted by sections.

These are the current available sections:
apcontrol - captive portal related configs
ddns - ddns related configurations
dhcp - isc-dhcp-server configurations
firewall - iptables firewall rules
internal - config not often changed
main - miscelaneous configuration
proxy - both tranparent and authenticated squid proxies instances

On a fresh install you may use "dfw-tool config setup" to run a basic configuration setup, this should be set before any try of config handle.

After debian package upgrade or install, you should inssue "dfw-tool config check" to verify missing or new configurations added.

You may alter any config using dfw-tool command tool as show below, ou throught web interface. The only sections you may not change through web interface are ddns and internal sections ones.
$ sudo dfw-tool config change SECTION CONFIG_NAME NEW_VALUE

All configuration can be seen using following command or through web interface
$ sudo dfw-tool config list

After altering any config is advisable to reload configuration
$ sudo dfw-tool config reload

All variable are paired with current machine name (hostname), so if you change machine name, a new set of config will be created inside config.db. If are going to change hostname, first you need to change hostname refrence inside config.db. This is usefull if you are copying config.db from one server to another.
$ source /etc/default/dfirewall
$ sqlite3 $DFIREWALL_CONF/config.db "update config set hostname='iobiinfrlp01'"