teastep
803720a8cc
Fix restore script generation with RETAIN_ALIASES=Yes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3185 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-20 19:14:36 +00:00
teastep
28e3a4a7ed
Fix security hole in bridge handling; fix bug in NONE intra-zone policy handling
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3182 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-19 23:37:40 +00:00
teastep
0273709c6f
Enable loopback traffic under DISABLE_IPV6
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3172 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-17 01:55:02 +00:00
teastep
5b3fef21a8
Add Limit as a standard action
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3171 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-15 22:42:39 +00:00
teastep
98f828f1c9
Console-friendly shorewall.conf
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3163 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-14 16:18:38 +00:00
teastep
9d61e79412
Make Debian install via the tarball more like the .deb
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3161 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-13 19:42:23 +00:00
teastep
6f4dfe64db
Fix stupid typo that produced a bug in tcrules processing
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3153 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-12 18:52:40 +00:00
teastep
ebf29460f3
Add warning to zones file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3149 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-11 16:13:15 +00:00
teastep
1ed05f0fef
Change CLEAR_TC default to 'Yes'
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3148 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-10 20:11:07 +00:00
teastep
1618941d9e
Add additional migration considerations for 2.0 users
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3141 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-09 23:11:46 +00:00
teastep
523cc8800f
Update README -- Take 2
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3133 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-08 23:26:25 +00:00
teastep
e842bc2190
Add 'reload' command to init scripts
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3130 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-07 22:03:44 +00:00
teastep
7f39d760b7
Add 'ipdecimal' command
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3114 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-02 23:58:57 +00:00
teastep
ec8be6bcac
Add traffic shaping information to 'dump' output
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3100 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 18:24:19 +00:00
teastep
25480f2187
Allow '-' in the ADDRESS/SUBNET column of the blacklist file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3099 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 18:05:13 +00:00
teastep
75a749fdbc
Add more warnings to release notes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3098 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 17:58:24 +00:00
teastep
f6a233c35a
Fix help text for restore. Add -q to help for safe-start and safe-restart
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3095 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-29 21:38:43 +00:00
teastep
65eeafaba6
Fix safe-start and safe-restart adding support for -q as well
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3093 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-29 19:39:43 +00:00
teastep
60a93c5167
Apply Tuomo's patch to clean up tc4shorewall formatting
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3091 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-29 16:51:53 +00:00
teastep
577389464f
Improve bridging instructions in config file comments
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3090 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-28 15:26:06 +00:00
teastep
ffae7b5646
shorewall show macros
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3083 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-27 20:59:47 +00:00
teastep
e2fcae32a4
Merge Cristian's patch
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3051 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-22 22:48:18 +00:00
teastep
06dc3cf91e
Make Shorewall tolerate prehistoric kernels
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3046 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-22 02:27:00 +00:00
teastep
2f83b1bf55
Correct typo in changelog
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3016 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-17 18:49:25 +00:00
teastep
0fcc67230c
Correct interaction between FASTACCEPT and CLAMPMSS
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3013 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-17 18:23:19 +00:00
teastep
76929fb432
Add comment to masq file regarding multi-ISP
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3009 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-16 17:08:09 +00:00
teastep
93210fa3a5
Fix Makefile and make macro substitution smarter
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3000 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-15 18:44:02 +00:00
teastep
2fc06059db
Restore ACCEPT policies to nat, mangle and raw tables during start/stop
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2996 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-13 16:00:17 +00:00
teastep
57b1472275
Update release notes and change log for 3.0.0 Final
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2963 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-04 17:07:58 +00:00
teastep
a835d9dadb
Remove Slackware special case from INSTALL file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2951 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-02 21:40:04 +00:00
teastep
981323b7d6
Fix MACLIST_TABLE=mangle and DHCP
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2946 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-02 15:32:33 +00:00
teastep
c5c38c4a55
Update config files with cmd-owner info
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2940 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-31 21:23:16 +00:00
teastep
08993cfe08
Stop whining about ipt_owner messages under kernel 2.6.14
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2939 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-31 21:06:01 +00:00
teastep
53ae3fc6e0
Suppress 'ambiguous redirect' errors
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2934 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-28 03:18:49 +00:00
teastep
458b20ace7
Fix stupid typo in release notes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2932 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-27 02:00:23 +00:00
teastep
609dc4d82b
Remove Extended mark detection and reporting
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2924 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-24 22:35:05 +00:00
teastep
7630bace28
Remove ROUTE target detections/reporting
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2923 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-24 19:43:53 +00:00
teastep
c2e067e7e8
Fix typo in release notes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2917 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-21 21:12:28 +00:00
teastep
4b97c4584c
Add samples to base package
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2907 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-20 22:10:10 +00:00
teastep
629d7c87d2
Fix cut-and-paste error in arp_ignore processing
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2906 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-19 14:30:13 +00:00
teastep
b20a7b3067
Fix tcp openvpn support
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2901 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-18 15:20:12 +00:00
teastep
3089f6f76a
Update version to 3.0.0 RC1
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2897 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-17 14:09:50 +00:00
teastep
4c014e7f22
Correct spelling of MACLIST_TABLE in shorewall.conf
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2848 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-10 21:35:37 +00:00
teastep
a03de5f61a
Update release notes and change log version to 3.0.0 Beta 1.
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2841 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-09 20:26:37 +00:00
teastep
1af4d541a0
Add TC_ENABLED=Internal
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2836 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-09 15:47:47 +00:00
teastep
1a8f760491
Fix default tc class bug
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2834 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-08 14:57:10 +00:00
teastep
d680528283
Replace TC_ENABLED with TC_SCRIPT
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2829 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-07 22:16:03 +00:00
teastep
cc6caadf41
Make tc class IDs unique across devices
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2819 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-06 22:46:17 +00:00
teastep
3675601597
Update paperwork for recent changes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2817 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-06 20:30:27 +00:00
teastep
79fead0fae
Add IPP2P UDP support -- Take 3
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2795 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 18:46:35 +00:00
teastep
116f96b47e
Flush all mangle chains in refresh
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2788 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 17:04:19 +00:00
teastep
47a34926f4
Better diagnostics when IPP2P match is missing
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2784 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 16:20:30 +00:00
teastep
d8e1cfb689
Add zone type to 'shorewall show zones' display
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2782 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 14:54:56 +00:00
teastep
d05a6e5fc9
Fix ipp2p logging rules
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2773 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-02 16:28:24 +00:00
teastep
2b6a9bb843
Deimplement original 'netnotsyn' handling
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2766 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-01 15:55:41 +00:00
teastep
a7258ce1ff
Rename 'plain' to 'ipv4' in zones file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2759 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-30 17:16:22 +00:00
teastep
84af786df4
Add capabilities report to 'shorewall dump' output
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2758 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-30 16:54:24 +00:00
teastep
96c4d02dbc
Document ADMINISABSENTMINDED/routstopped fix
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2709 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-19 14:17:09 +00:00
teastep
66e9add7f0
Add -n option to suppress routing table changes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2686 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-14 23:01:13 +00:00
teastep
0864c22d26
Finish install/fallback cleanup
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2677 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-13 17:13:35 +00:00
teastep
819e9dd38f
Add SHOREWALL_LIBRARY global variable
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2649 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 22:30:32 +00:00
teastep
6d310db4e5
Fix error handling
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2648 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 20:57:29 +00:00
teastep
4a1cabd1a5
Correct install.sh re: Makefile
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2634 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-05 20:07:00 +00:00
teastep
757ebcd164
Make tc4shorewall play nice with save/restore
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2619 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-01 15:16:11 +00:00
teastep
73fa097121
Merge tc4shorewall into Shorewall
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2610 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 20:48:22 +00:00
teastep
6a47756293
'shorewall check' now checks the nat and providers files
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2594 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 20:29:42 +00:00
teastep
e949e18749
'shorewall check' now checks the proxyarp file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2593 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 17:42:21 +00:00
teastep
124af9a046
'shorewall check' now checks the masq file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2592 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 15:54:29 +00:00
teastep
fe6cd6d349
Fix some ghastly bugs in Macros
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2589 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 22:51:49 +00:00
teastep
b258f29d56
Allow the log tag to act as a generalized parameter to an action extension script
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2583 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 20:32:16 +00:00
teastep
739db31efb
Slightly less horrible Hack to make the Tunnels file still work with the sectioned Rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2569 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 14:50:33 +00:00
teastep
07c152ab35
Section the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2563 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 19:55:05 +00:00
teastep
36590a52ab
Clarify intra-zone changes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2559 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-24 22:39:19 +00:00
teastep
e130bc9f60
Make intra-zone policies more rational
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2522 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 21:39:30 +00:00
teastep
e4433f4b8f
Remove documentation for find_interface_by_mac()
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2521 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 20:18:08 +00:00
teastep
c88858382c
Allow exclusion lists in Actions
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2518 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 21:00:33 +00:00
teastep
f9f3fadd56
Add find_interface_by_mac()
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2516 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:07:47 +00:00
teastep
d871e1f163
Set COMMAND=restore in restore-base
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2514 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 17:52:32 +00:00
teastep
80dd73b9e5
Add openvpnclient and openvpnserver tunnel types
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2511 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 21:57:43 +00:00
teastep
6a087fd50e
Add support for exclusion lists in /etc/shorewall/tcrules
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2509 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 18:54:11 +00:00
teastep
42ee8d0c19
Finally implement exclude lists in rules
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2493 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 17:35:45 +00:00
teastep
999c74bf03
Generate an error when 'norfc1918' is specified for an interface with an RFC 1918 IP address
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2489 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-14 16:45:48 +00:00
teastep
370d61970a
Add FASTACCEPT option to accept ESTABLISHED/RELATED packets early
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2474 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-11 19:53:07 +00:00
teastep
bba152b119
Don't generate redundant ACCEPT rules for DNAT/REDIRECT/SAME
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2456 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-05 14:13:45 +00:00
teastep
2a52d3342d
Fix Makefile; rename status to dump and create a real status command
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2427 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:37:56 +00:00
teastep
6c8b63bfe0
Remove dependence on 'which'
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 20:30:16 +00:00
teastep
b66929a65e
Large merge of function from EXPERIMENTAL to HEAD.
...
1) Elimination of the "shorewall monitor" command.
2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.
3) Support has been added for the arp_ignore interface option.
4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.
5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.
6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).
7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.
8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.
9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.
10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.
11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
paulgear
2a19eb8a5a
Copy latest 2.4 version from Shorewall2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:55:29 +00:00
paulgear
90dd62e89e
Copy latest 2.2 version from STABLE2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2263 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:45:05 +00:00
paulgear
921a7223d4
Copy latest 2.0 code from STABLE2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 04:45:32 +00:00
teastep
ccd528ec8c
Shorewall 1.4.10d +
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1216 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-20 15:40:06 +00:00
teastep
d711731678
Fix multiple excluded zone handling in DNAT/REDIRECT
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1181 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-04 15:24:59 +00:00
teastep
7f19ec0c73
Fix another masq file bug
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1131 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-09 20:46:22 +00:00
teastep
76c135e123
Shorewall-1.4.10a
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1129 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-08 20:36:46 +00:00
teastep
97ea8c60d7
Fix problem in masq file parsing
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1123 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-05 20:13:24 +00:00
teastep
76b5918a13
Fix handling of 'all' or '-' in the PROTO column of an action file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1096 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-29 19:11:51 +00:00
teastep
d116d04fb8
Don't add broadcasts to /0 groups
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1095 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-28 00:52:03 +00:00
teastep
b4d0cbd1b1
Don't feed the smurfs
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1093 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-27 22:33:32 +00:00
teastep
2e80e459bb
RC1 and 'detectnets' option
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1089 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-23 23:48:30 +00:00
teastep
22df211052
Applied Fr�d�ric LESPEZ's patch for packet marking by user/group id
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1088 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 20:24:56 +00:00
teastep
d362f734d9
Destination exclude list in masq file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1085 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 02:06:56 +00:00
teastep
5338cb48b0
Minor updates for 1.4.9
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1070 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-09 20:18:40 +00:00
teastep
0c6299465d
Fix SNAT handling in DNAT rules
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@869 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-16 21:52:37 +00:00
teastep
90263f43af
Add user-defined Actions
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@801 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-04 02:01:08 +00:00
teastep
380b8e2ce8
Add MODULE_SUFFIX option
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@797 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-01 16:10:08 +00:00
teastep
f9c596a465
Reword desciption of NEWNOTSYN
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@793 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-28 17:39:53 +00:00
teastep
9fde389c31
Log 'norfc1918'
...
packets out of 'rfc1918' chains
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@792 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-27 18:39:11 +00:00
teastep
a3eaa7f9af
Rework ip_forward handling; update release file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@791 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-27 18:24:57 +00:00
teastep
64bd2c9035
One-to-one NAT and updated common.def
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@790 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-24 19:08:43 +00:00
teastep
80981e802e
Fix NONE policy validation and 'routeback' for wildcard interfaces
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@786 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-08 02:38:30 +00:00
teastep
c334e92103
Shorewall 1.4.8-RC1
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@783 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-31 15:29:30 +00:00
teastep
f046ea3ab1
Fix route filtering
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@782 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-30 15:42:45 +00:00
teastep
ee51d49233
Correct Debian lockfile usage comment in shorewall.conf
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@781 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-27 22:36:22 +00:00
teastep
0f72f92c48
Another fix for <zone>_frwd chains
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@780 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-26 16:22:01 +00:00
teastep
e46c76253c
Expand chain naming
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@778 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-25 00:55:58 +00:00
teastep
5448a9cc38
Expand chain naming
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@777 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-25 00:54:01 +00:00
teastep
1fd0345510
Re-add optimization for complex zones
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@769 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-15 18:34:05 +00:00
teastep
ff2b9ce193
Remove 'complex zone' optimization
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@768 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-15 18:17:23 +00:00
teastep
67ad01a56f
Added BLACKLISTNEWONLY
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@765 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-11 16:06:00 +00:00
teastep
55ddfb8c78
Fix error handling after 'Unable to determine the routes...'
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@764 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-10 03:00:26 +00:00
teastep
c80dacd86a
p2pwall integration
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@762 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-09 21:26:08 +00:00
teastep
5b54d21d07
Don't use multiport match on ICMP
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@760 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-08 15:07:18 +00:00
teastep
9a51cb0b60
Merge Tuomo Soini's fix for /bin/ash
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@758 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-08 14:53:26 +00:00
teastep
8c4ccaed9a
RC3
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@754 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-06 21:11:34 +00:00
teastep
1003cd5590
Update RFC1918 to reflect recent IANA allocations
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@751 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-02 15:07:35 +00:00
teastep
5d489f01f9
Change 'logunclean' messages to reflect LOG disposition
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@750 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-02 04:48:30 +00:00
teastep
45e63c15ac
Blacklist before DHCP
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@749 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-01 00:07:14 +00:00
teastep
2e4f97175d
Correct handling of missing common.def file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@748 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-27 14:54:16 +00:00
teastep
f88241a6f1
Fix rules file processing with missing policy
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@747 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-26 21:34:16 +00:00
teastep
ddb925c133
Reword error message
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@745 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-22 21:44:22 +00:00
teastep
9f14855704
Allow user:group in USER SET column of rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@744 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-19 19:42:05 +00:00
teastep
6074472053
Correct Comment in rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@743 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-18 22:49:34 +00:00
teastep
169f057d91
Updates to rfc1918
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@740 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-17 02:22:47 +00:00
teastep
a18c573868
Beta 2 plus fix proxy ARP routes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@738 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-16 19:44:49 +00:00
teastep
b119a35e81
Fix for IPV6 addresses and the 'ip' utility
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@737 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-28 21:32:40 +00:00
teastep
afbe79977e
Fix adding range of aliases
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@732 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-27 15:13:03 +00:00
teastep
47c914a86b
Fix multiple 'drop/reject' bug
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@727 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-24 15:36:13 +00:00
teastep
54569f4782
Userset fix and logging fixes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@724 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-23 18:14:59 +00:00
teastep
e58b08c4b7
Redesign Accounting
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@720 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-20 16:54:27 +00:00
teastep
b5c9917c79
Add RATE LIMIT column; allow multiple chains in a 'show' command
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@718 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 15:54:13 +00:00
teastep
fba135aa6e
Allow display of multiple chains in 'shorewall show'
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@717 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 01:20:37 +00:00
teastep
d55bcfca0b
Rate Limiting in Rules - Part 7
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@711 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 21:31:02 +00:00
teastep
e454c7fe73
Rate Limiting in Rules - Part 3
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@707 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 18:48:28 +00:00
teastep
552d738579
Allow bridge devices in /etc/shorewall/maclist
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@704 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 00:19:24 +00:00
teastep
b81591abfe
Display interface-specific dynamic blacklisting chains in 'shorewall monitor' output
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@702 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 22:25:45 +00:00
teastep
a1c1785048
Allow degenerate rules; replace 'chain_exists' with 'havechain' in accounting code
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@701 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 17:44:23 +00:00
teastep
ab073a41a4
Added CHAIN declarations
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@698 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 01:36:32 +00:00
teastep
1144d736bf
Correct bug in accounting file processing
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@693 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 15:06:23 +00:00
teastep
3c24144487
Add IP accounting
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@692 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 01:11:50 +00:00
teastep
b235cd19e1
Add arp_filter interface option
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@690 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-08 20:55:06 +00:00