Merge commit 'ce4899ded119f3607515cc54252c4bad7224f804'

Conflicts:
	community/gsoc/project_ideas/mtab.mdwn
	contributing.mdwn
	hurd/translator/eth-filter.mdwn
	hurd/translator/socketio.mdwn
	open_issues/exec.mdwn
	open_issues/gnumach_vm_object_resident_page_count.mdwn
	public_hurd_boxen.mdwn

1 files changed, 27 insertions, 1 deletions

diff --git a/hurd/translator/eth-filter.mdwn b/hurd/translator/eth-filter.mdwn
index 4f59b402..b5dc8f8f 100644
--- a/hurd/translator/eth-filter.mdwn
+++ b/hurd/translator/eth-filter.mdwn
@@ -8,7 +8,33 @@ Sections, no Front-Cover Texts, and no Back-Cover Texts.  A copy of the license
 is included in the section entitled [[GNU Free Documentation
 License|/fdl]]."]]"""]]
 
-# IRC, freenode, #hurd, 2013-07-27
+`eth-filter` is a translator that implements a very simple stateless firewall.
+
+
+# Source
+
+[[source_repositories/incubator]], dde
+
+
+# Usage
+
+For instance, to drop any attempt to access port 22:
+
+    # settrans -c /dev/eth0f /hurd/eth-filter -i /dev/eth0 -r "not port 22"
+
+This creates a `/dev/eth0f` device, which is the filtered version of
+`/dev/eth0`.  One can then use `/dev/eth0f` instead of `/dev/eth0`:
+
+    # settrans /servers/socket/2 /hurd/pfinet -i /dev/eth0f [...]
+
+..., or run `dhclient /dev/eth0f`, or similar.
+
+See also Zheng Da's [[user/zhengda/howto]].
+
+
+# Open Issues
+
+## IRC, freenode, #hurd, 2013-07-27
 
 [[!tag open_issue_hurd]]