Table 1-2. Files used by Zorp
File | Description |
---|---|
$prefix/bin/zorp-config | This script is to be used by third party proxy modules to find out necessary compilation options. |
$prefix/sbin/zorpctl | This script is used to start, stop and query Zorp instances. It sets up the necessary environment (LD_LIBRARY_PATH and PYTHONPATH) for Zorp to run and uses the information stored in /etc/zorp/instances.conf |
/etc/zorp/instances.conf | Contains startup parameters for Zorp instances. |
/etc/zorp/policy.py | Local firewall policy used by zorp instances running on the given host. |
$prefix/share/man/ | Manual pages for zorp(8), zorpctl(8) and instances.conf(5). |
$prefix/share/zorp/pylib/*.py | Utility classes and proxy wrappers to be used by firewall policies. PYTHONPATH must be set to point to this directory. |
$prefix/share/zorp/policy.boot | Policy boot file used by Zorp at startup. |
$prefix/lib/zorp/libzorp.so | Zorp core library, it's used by all proxy modules and the main zorp binary itself. LD_LIBRARY_PATH must be set so that Zorp can find this library. |
$prefix/lib/zorp/lib*.so | Each proxy module has a corresponding shared object to be loaded on demand. A proxy module named "http" will be loaded from libhttp.so.0. |
This file contains startup parameters for Zorp instances. Empty lines and those beginning with `#' are ignored. Otherwise the first word of each line is taken as the name of an instance. The instance name must be a valid Python identifier, so it should begin with a letter and continue with letters, numbers or underscore.
After the instance identifier, command line arguments for Zorp can be given. They'll be passed to Zorp when the instance is started. The --as command line argument is always passed regardless whether it is listed among parameters or not.
Example 1-1. A sample instances.conf file
zorp_intra --verbose=3 --log-spec ftp.*:8 zorp_dmz --verbose=5 --log-spec http.*:8 |