README.md in shutter-0.1.0 vs README.md in shutter-0.2.0
- old
+ new
@@ -1,7 +1,9 @@
# Shutter
+[](http://travis-ci.org/rlyon/shutter)
+
Shutter is a tool that gives system administrators the ability to manage
iptables firewall settings through simple lists instead of complex iptables commands, making it
easier to define host and service firewall setting with configuration management tools. Please note:
This application is currently only tested with Red Hat based distributions. Ubuntu and Debian should
work but are not supported.
@@ -50,11 +52,11 @@
special chain called 'Jail' which is used to insert the jump rules that fail2ban uses to deny
access 'on-the-fly'. To work correctly, you configure fail2ban to use the Jail chain instead of
INPUT. The dynamic rules that fail2ban has created in the jail chain remain persistant when
shutter is 'restored' or reloaded.
-#### To check your firewall you can run:
+#### To show your firewall rules you can run:
$ shutter --save
This command mimics the 'iptables-save' command which prints the rules out to the screen.
This does not modify the firewall settings.
@@ -64,9 +66,16 @@
$ shutter --restore
This command uses 'iptables-restore' under the hood to update the firewall. You can use the '--persist' option
to make the changes permanent and survive reboots. Persist can optionally take an argument which defines the location of the
persist file if it is in a non-standard location.
+
+
+#### To check your current firewall rules generated by 'iptables-save' against the ones shutter will generate, use:
+
+ $ shutter --check
+
+The command will generate 'OK' if the rules and chains match and 'MISMATCH' if there is any variance.
#### Command line options
Usage: shutter [options]
--init Create the initial configuration files.
--reinit Rereate the initial configuration files.