% NFTFWLS(1) | Nftfw documentation
nftfwls - list nftfw blacklist database
| nftfwls [-h] [-c config] [-p yes|no ] [**-a |-r | -m | -i | -n | -w | -q | -v **]
nftfwls displays the status of the database storing the state of the nftfw firewall. The default output only displays the IP addresses found in /etc/nftfw/blacklist.d. The -a option shows all entries in the database, and ignores the contents of the blacklist.d directory. HTML output is also possible.
nftfwls 'pretty prints' a table with these headings:
If the geoip2 country database is available, the IP address is preceded by the ISO two letter country code of te site where the IP is located.
Text output uses the Python 'prettytable' module. When piping the output into another program, it's helpful to remove the column separators, adding -n option make this happen.
The -w option selects HTML output. It prints an HTML table suitable for inclusion on a web page. Classes in the table allow styling.
If the geoip2 country database is available, the IP address is preceded by the ISO two letter country code of te site where the IP is located. Mouse over the code to get the full country name.
-h, --help
: Prints brief usage information.
-w, --web
: Print output as an HTML table, enabling integration into a web page.
**-a **, --all
: Prints all the informarion in the database, ignoring entries in blacklist.d
**-p **, --pattern_split yes|no
: If 'yes', splits the pattern column at any comma, making separate lines for entries with more than one stored pattern; if 'no' prints a single line for the pattern column. The pattern_split value in the config.ini file sets the usual default value.
-r, --reverse
: Reverse sorting order
-m, --matchcount
: Sort by match count
-i, --incidents
: Sort by incidents
-n, --noborder
: Don't print a border to the table.
**-c **, --config CONFIG
: Supply a configuration file, overriding any values from the default system settings.
-q, --quiet
: Suppress printing of errors and information messages to the terminal, syslog output remains active. Terminal output is suppressed when the output is not directed to a terminal
-v, --verbose
: Change the default logging settings to INFO to show all errors and information messages.
Files can be located in / or /usr/local.
/etc/nftfw
: Location of control files
/var/lib/nftfw/
: Location of build, install, lock file and sqlite3 databases storing file positions and blacklist information
See GitHub Issues: https://github.com/pcollinson/nftfw/issues
Peter Collinson (huge credit to the ideas from Patrick Cherry's work for the firewall for the Symbiosis hosting system).
nft(1), nftfw(1), nftfwedit(1), nftfwadm(1), nftfw-config(5), nftfw-files(5)