| 2013-05-22 |
Jo-Philipp Wich | Limit zone names to 14 bytes
|
commit | commitdiff | tree |
| 2013-05-22 |
Jo-Philipp Wich | Add required ipset declarations for kernels < 3.7
|
commit | commitdiff | tree |
| 2013-05-22 |
Jo-Philipp Wich | Further fixes for zone reloads
|
commit | commitdiff | tree |
| 2013-05-22 |
Jo-Philipp Wich | Only perform selective reload if firewall was already...
|
commit | commitdiff | tree |
| 2013-05-21 |
Jo-Philipp Wich | Fix another crash bug if ipsets are supported but none...
|
commit | commitdiff | tree |
| 2013-05-21 |
Jo-Philipp Wich | Fix rules for custom filter chains
|
commit | commitdiff | tree |
| 2013-05-21 |
Jo-Philipp Wich | Do not print to pipe or close command if nothing was...
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Add missing libip6t_REJECT initialization
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Only initialize extensions we actually use
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Wait for ipsets to appear before continuing
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Restore iptables-save include functionality
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Also add comments for unnamed rules
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Only process selected family for print
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Include iptables command and table name in iptables...
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Add debug prints for policy setting, don't commit ruleset...
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Rename struct fw3_rule_spec to struct fw3_chain_spec...
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Remove now unused fw3_pr_rulespec()
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Remove now unused fw3_format_*() functions
|
commit | commitdiff | tree |
| 2013-05-17 |
Jo-Philipp Wich | Drop iptables-restore and create rules through libiptc...
|
commit | commitdiff | tree |
| 2013-05-13 |
Jo-Philipp Wich | Use libiptc to clear current ruleset
|
commit | commitdiff | tree |
| 2013-05-08 |
Jo-Philipp Wich | Force fsync() after writing statefile
|
commit | commitdiff | tree |
| 2013-05-08 |
Jo-Philipp Wich | Make reload atomic
|
commit | commitdiff | tree |
| 2013-05-06 |
Jo-Philipp Wich | Family "any" is not applicable to ipsets, default to...
|
commit | commitdiff | tree |
| 2013-05-02 |
Jo-Philipp Wich | Simplify ipset external checks and optionally initialize...
|
commit | commitdiff | tree |
| 2013-05-02 |
Jo-Philipp Wich | Check whether ipset exists before referencing it in...
|
commit | commitdiff | tree |
| 2013-05-02 |
Jo-Philipp Wich | Record device-network relation in state file, fix zone...
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Record default policies in state file
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Store ipset storage method and matches in state file...
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Send quit comment in fw3_destroy_ipsets() and initialize...
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Don't track family of ipsets
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Fix parsing of ipset datatypes
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Track ipsets in state file
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Write statefile flags in hexadecimal format
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Allow hex notation in int type options
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Add common fw3_address_to_string() helper function
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Remove referenced to unused FW3_FLAG_DELETED flag
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Remove unused "running" argument form fw3_lookup_ipset()
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Remove unused "running" argument form fw3_lookup_zone()
|
commit | commitdiff | tree |
| 2013-04-30 |
Jo-Philipp Wich | Split runtime and config states, store runtime state...
|
commit | commitdiff | tree |
| 2013-04-09 |
Jo-Philipp Wich | Add support for fwmark matches and targets
|
commit | commitdiff | tree |
| 2013-03-22 |
Jo-Philipp Wich | Increase compatibility to old firewall by initializing...
|
commit | commitdiff | tree |
| 2013-03-22 |
Jo-Philipp Wich | Fix parsing of '*' device and 'all' protocol value
|
commit | commitdiff | tree |
| 2013-03-21 |
Jo-Philipp Wich | Fix DNAT port remapping rules by not emitting 0.0.0...
|
commit | commitdiff | tree |
| 2013-03-19 |
Jo-Philipp Wich | Properly handle deleted zones and ipsets on restarts
|
commit | commitdiff | tree |
| 2013-03-19 |
Jo-Philipp Wich | Accept network names in per-zone subnet option
|
commit | commitdiff | tree |
| 2013-03-19 |
Jo-Philipp Wich | Also read addresses from "ipv6-prefix-assignment" ifstatus...
|
commit | commitdiff | tree |
| 2013-03-19 |
Jo-Philipp Wich | Rework option parsing to support emitting multiple...
|
commit | commitdiff | tree |
| 2013-03-19 |
Jo-Philipp Wich | Implement support for "network" datatype and use it...
|
commit | commitdiff | tree |
| 2013-03-18 |
Jo-Philipp Wich | Do not accept option src_mac for SNAT rules
|
commit | commitdiff | tree |
| 2013-03-14 |
Jo-Philipp Wich | Consolidate and unify argument order for functions
|
commit | commitdiff | tree |
| 2013-03-14 |
Jo-Philipp Wich | Only perform locking for start, stop, restart, reload...
|
commit | commitdiff | tree |
| 2013-03-14 |
Jo-Philipp Wich | Implement reload option for includes to decide whether...
|
commit | commitdiff | tree |
| 2013-03-13 |
Jo-Philipp Wich | Make nat reflection src address configurable by introducing...
|
commit | commitdiff | tree |
| 2013-03-13 |
Jo-Philipp Wich | Emit hotplug calls when flushing / creating zone chains
|
commit | commitdiff | tree |
| 2013-03-13 |
Jo-Philipp Wich | Unify fw3_default and fw3_target enums
|
commit | commitdiff | tree |
| 2013-03-12 |
Jo-Philipp Wich | Track used networks and devices in state file
|
commit | commitdiff | tree |
| 2013-03-12 |
Jo-Philipp Wich | Unify print_chains() implementations in utils.c fw3_pr_rules...
|
commit | commitdiff | tree |
| 2013-03-11 |
Jo-Philipp Wich | Include limits.h to fix compilation against eglibc
|
commit | commitdiff | tree |
| 2013-03-11 |
Jo-Philipp Wich | Rework zone flush logic
|
commit | commitdiff | tree |
| 2013-03-11 |
Jo-Philipp Wich | Change fw3_no_family() macro to take bit field value...
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Cosmetic output changes
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Only run includes and set sysctls if either v4 or v6...
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Introduce fw3_no_family() helper macro and use it
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Remove src_flags and running_src_flags from fw3_zone...
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Don't store zone src_flags in statefile anymore, read...
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Introduce new enum values for zone src policies and...
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Separate running from current state flags in ipset...
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Get rid of redundant fw3_defaults object, instead add...
|
commit | commitdiff | tree |
| 2013-03-10 |
Jo-Philipp Wich | Properly handle per zone user chain rules by fixing...
|
commit | commitdiff | tree |
| 2013-03-08 |
Jo-Philipp Wich | add support for per-zone user chains
|
commit | commitdiff | tree |
| 2013-03-07 |
Jo-Philipp Wich | Support abstract "tcpudp" protocol
|
commit | commitdiff | tree |
| 2013-03-02 |
Jo-Philipp Wich | introduce support for enabled option in zones, forwards...
|
commit | commitdiff | tree |
| 2013-02-28 |
Jo-Philipp Wich | use dup'ed string in fw3_parse_monthdays()
|
commit | commitdiff | tree |
| 2013-02-28 |
Jo-Philipp Wich | generalize enum parsing
|
commit | commitdiff | tree |
| 2013-02-27 |
Jo-Philipp Wich | remove unused notrack chain
|
commit | commitdiff | tree |
| 2013-02-27 |
Jo-Philipp Wich | clear conntrack table on flush
|
commit | commitdiff | tree |
| 2013-02-27 |
Jo-Philipp Wich | cosmetic change in printing of forward rules
|
commit | commitdiff | tree |
| 2013-02-27 |
Jo-Philipp Wich | add debug flag to monitor fw3_pr() calls, set policies...
|
commit | commitdiff | tree |
| 2013-02-22 |
Jo-Philipp Wich | add support for setting sysctls, remove tcp_westwood...
|
commit | commitdiff | tree |
| 2013-02-22 |
Jo-Philipp Wich | run/load includes on start
|
commit | commitdiff | tree |
| 2013-02-22 |
Jo-Philipp Wich | add reload command to selectively rebuild rules (to...
|
commit | commitdiff | tree |
| 2013-02-22 |
Jo-Philipp Wich | add support for includes
|
commit | commitdiff | tree |
| 2013-02-21 |
Jo-Philipp Wich | use hasbit() to test for invert flag of weekdays and...
|
commit | commitdiff | tree |
| 2013-02-21 |
Jo-Philipp Wich | add time match support
|
commit | commitdiff | tree |
| 2013-02-21 |
Jo-Philipp Wich | remove now unsed fw3_free_list() helper
|
commit | commitdiff | tree |
| 2013-02-21 |
Jo-Philipp Wich | remove ip range list hack since fw3_address can now...
|
commit | commitdiff | tree |
| 2013-02-21 |
Jo-Philipp Wich | introduce support for ip ranges
|
commit | commitdiff | tree |
| 2013-02-21 |
Jo-Philipp Wich | unify object freeing
|
commit | commitdiff | tree |
| 2013-02-21 |
Jo-Philipp Wich | rework runtime state tracking
|
commit | commitdiff | tree |
| 2013-02-20 |
Jo-Philipp Wich | only emit zone flush commands if the zone is active...
|
commit | commitdiff | tree |
| 2013-02-20 |
Jo-Philipp Wich | rework ipset removal logic to only purge sets that...
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | print a notification if forwards are skipped due to...
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | do not save state when printing rules
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | introduce global string array for enum names, remove...
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | track used family for ipsets
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | make enum values unique to allow using them in bitfields...
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | convert remaining occurences to hasbit() / setbit(...
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | rename flag fields in structures
|
commit | commitdiff | tree |
| 2013-02-19 |
Jo-Philipp Wich | properly deal with only v4 or only v6 start/stop/restart
|
commit | commitdiff | tree |
| 2013-02-18 |
Jo-Philipp Wich | selectively delete chains in filter and nat tables
|
commit | commitdiff | tree |
| next |
projects / project / firewall3.git / search