vardir — Shorewall Lite file
/etc/shorewall-lite/vardir 
This file does not exist by default. You may create the file if you
    want to change the directory used by Shorewall Lite to store state
    information, including compiled firewall scripts. By default, the
    directory used is /var/lib/shorewall-lite/.
The file contains a single variable assignment:
VARDIR=directory
where directory is the name of a
    directory. If you add this file, you should copy the files from
    /var/lib/shorewall-lite to the new directory before
    performing a shorewall-lite restart.
Beginning with Shorewall 4.5.2, use of this file is deprecated in
      favor of specifying VARDIR in the shorewallrc file
      used during installation of Shorewall Core. While the name of the
      variable remains VARDIR, the meaning is slightly different. When set in
      shorewallrc, Shorewall Lite, will create a directory under the specified
      path name to hold state information.
Example:
VARDIR=
/opt/var/lib/The state directory for Shorewall Lite will be /opt/var/lib/shorewall-lite/.
When VARDIR is set in /etc/shorewall-lite/vardir, Shorewall Lite
      will save its state in the directory
      specified.
shorewall(8), shorewall-accounting(5), shorewall-actions(5), shorewall-blacklist(5), shorewall-hosts(5), shorewall-interfaces(5), shorewall-ipsec(5), shorewall-maclist(5), shorewall-masq(5), shorewall-nat(5), shorewall-netmap(5), shorewall-params(5), shorewall-policy(5), shorewall-providers(5), shorewall-proxyarp(5), shorewall-route_rules(5), shorewall-routestopped(5), shorewall-rules(5), shorewall.conf(5), shorewall-tcclasses(5), shorewall-tcdevices(5), shorewall-tcrules(5), shorewall-tos(5), shorewall-tunnels(5), shorewall-zones(5)