#  $HeadURL$ $LastChangedRevision$
#
#  Should this machine masquerade? (MASQUERADE_FLAG)
#
#  Set this to 'true' if you have a home network and your contract with
#  your ISP is to connect only *one* machine to the internet (it probably is)
#  and it is *this* machine that will connect to the internet. Otherwise
#  set it to 'false'. There is no default, so you must set it to one
#  or the other. E.g.:
#  
#      MASQUERADE_FLAG=true
#      MASQUERADE_FLAG=false
#
MASQUERADE_FLAG=false

#
#  Which interfaces should not be firewalled? (TRUSTED_NICS)
#
#  Set this to 'lo' if you don't trust anybody. Set it to 'lo eth0'
#  if you have a secure home LAN.  Set it to 'lo wlan0' if you have a
#  secure home WLAN. Set it to 'lo eth0 wlan0' if you have both. You
#  almost certainly do *not* want to put 'ppp0' in the list. Etc. There
#  is no default. E.g.:
#
#      TRUSTED_NICS=lo
#      TRUSTED_NICS="lo eth0 dummy0"
#      TRUSTED_NICS="lo eth0 ath0 dummy0 wlan0 eth1"
#
TRUSTED_NICS="lo vmnet0 dummy0"

#
#  Do you need any special rules? (IPTABLES_CMDS)
#
#  This is an array of calls to iptables. Note it is an array; so you 
#  need to sequence the array index accordingly. The calls are just like
#  normal calls with the following restrictions:
#
#  *) don't specify "-i <iface>"; this will be added automatically
#
#  *) the call must begin "iptables -A ..." or "iptables -I <seqno> ..."; 
#     this is because the 'undo' code in the 0iptables program is 
#     not intelligent enough to handle anything else.
#
#  E.g. Here is a rule to get the XDMCP browser working properly:
#  
#      IPTABLES_CMDS[0]="iptables -A INPUT --protocol udp --sport xdmcp -j ACCEPT"
#