man
8 semanage-node
semanage-node(8) semanage-node(8)
NAME
semanage-node - SELinux Policy Management node mapping tool
SYNOPSIS
semanage node [-h] [-n] [-N] [-S STORE] [ --add -M NETMASK -p PROTOCOL
-t TYPE -r RANGE node | --delete -M NETMASK -p PROTOCOL node |
--deleteall | --extract | --list [-C] | --modify -M NETMASK -p PROTOCOL
-t TYPE -r RANGE node ]
DESCRIPTION
semanage is used to configure certain elements of SELinux policy with-
out requiring modification to or recompilation from policy sources.
semanage node controls the IP address to node type definitions.
OPTIONS
-h, --help
Show this help message and exit
-n, --noheading
Do not print heading when listing the specified object type
-N, --noreload
Do not reload policy after commit
-S STORE, --store STORE
Select an alternate SELinux Policy Store to manage
-C, --locallist
List local customizations
-a, --add
Add a record of the specified object type
-d, --delete
Delete a record of the specified object type
-m, --modify
Modify a record of the specified object type
-l, --list
List records of the specified object type
-E, --extract
Extract customizable commands, for use within a transaction
-D, --deleteall
Remove all local customizations
-M NETMASK, --netmask NETMASK
Network Mask, either in CIDR (/16) or address mask notation
(255.255.0.0, ffff::)
-t TYPE, --type TYPE
SELinux type for the object
-r RANGE, --range RANGE
MLS/MCS Security Range (MLS/MCS Systems only) SELinux Range for
SELinux login mapping defaults to the SELinux user record range.
SELinux Range for SELinux user defaults to s0.
-p PROTO, --proto PROTO
Protocol for the specified port (tcp|udp) or internet protocol
version for the specified node (ipv4|ipv6).
EXAMPLE
Apply type node_t to ipv4 node 127.0.0.2
# semanage node -a -t node_t -p ipv4 -M 255.255.255.255 127.0.0.2
SEE ALSO
selinux(8), semanage(8)
20130617 semanage-node(8)