@@ -8,64 +8,67 @@ This module is a high-level interface for other powerful filtering modules and D
Example configuration
^^^^^^^^^^^^^^^^^^^^^
Firewall rules are declarative and consist of filters and actions. Filters have ``field operator operand`` notation (e.g. ``qname = example.com``), and may be chained using AND/OR keywords. Actions may or may not have parameters after the action name.
.. code-block:: lua
modules = { 'http', 'daf' }
-- Let's write some daft rules!
-- Block all queries with QNAME = example.com
daf.add 'qname = example.com deny'
-- Filters can be combined using AND/OR...
-- Block all queries with QNAME match regex and coming from given subnet
daf.add 'qname ~ %w+.example.com AND src = 192.0.2.0/24 deny'
-- We also can reroute addresses in response to alternate target