shorewall_code

mirror of https://gitlab.com/shorewall/code.git synced 2024-11-28 18:43:30 +01:00

Author	SHA1	Message	Date
Tom Eastep	337a4bd6ec	Use shorter names for dbl exclusion chains Signed-off-by: Tom Eastep <teastep@shorewall.net>	2024-03-02 14:54:45 -08:00
Tom Eastep	91d5dbb7ba	Fix some blacklisting bugs: - src-dst didn't work - typo in shorewall.conf(5) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2024-03-02 13:53:31 -08:00
Tom Eastep	4ca77b109c	Replace bizarre {dbl} encoding (what was I smoking when I wrote that code?) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2024-03-02 10:40:12 -08:00
Tom Eastep	f928b4d6fc	Add a comment Signed-off-by: Tom Eastep <teastep@shorewall.net>	2024-03-02 08:45:46 -08:00
Tom Eastep	a3abafa98b	Add a 'nodbl' option for the hosts file. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2024-03-02 08:33:36 -08:00
Tom Eastep	69f0d4d881	Simon Mater's patch to support gbits and gbps in rate/burst specifications Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-10-09 09:39:01 -07:00
Tom Eastep	34c59dca32	Don't export interface_is_plain() - It was used in a superseded change Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-19 11:38:41 -07:00
Tom Eastep	9aa2a4b704	Use less obscure code to set $call_generate_all_acasts; Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-19 11:20:10 -07:00
Tom Eastep	d363809859	Complete the table documentation at the top of the file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-18 13:44:41 -07:00
Tom Eastep	126c5ccd53	Include administrative host name in status output Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-15 15:16:23 -07:00
Tom Eastep	8d4e79650e	Refactor ALL_ACASTS code Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-11 15:58:59 -07:00
Tom Eastep	b253be8a69	Localize to IPv6 the effect of generating ALL_ACASTS during 'restore' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-11 14:35:17 -07:00
Tom Eastep	4385264dc3	Revert "Delete superfuous 'use' statements" This reverts commit `fe7bb4abca`.	2020-09-11 13:43:14 -07:00
Tom Eastep	6cab1c3c8c	Generate ALL_ACASTS during 'restore' processing Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-11 13:11:44 -07:00
Tom Eastep	fe7bb4abca	Delete superfuous 'use' statements Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-11 12:56:37 -07:00
Tom Eastep	63b477a4de	Clean up ALL_ACASTS generation Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-10 15:59:33 -07:00
Tom Eastep	2166251b97	Correct physwild/wildcard usage Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-10 15:59:16 -07:00
Tom Eastep	9e6aec7687	Correct usage of $physwild, replacing with $wildcard Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-10 13:20:20 -07:00
Tom Eastep	b154803f22	Rename 'noanycast' to 'omitanycast' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-10 09:59:45 -07:00
Tom Eastep	6120eba8f9	Correct generation of code for 'noanycast' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-09 11:51:38 -07:00
Tom Eastep	4253f23d6b	Add 'noanycast' interface option Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-09-07 13:47:56 -07:00
Tom Eastep	0b80856eb6	Correct IPv6 ACK handling in Simple TC Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-08-01 17:10:00 -07:00
Tom Eastep	ac221348c0	Add an SPORT column to the tcpri file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-09 14:15:03 -07:00
Tom Eastep	4b3f9ae1e7	Clean up the connmark implementation Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-07 18:23:39 -07:00
Tom Eastep	89201bd294	Add TC connmark support Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-07 16:44:20 -07:00
Tom Eastep	b617c8d224	Rodrigo Araujo's tc connmark patch Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-07 14:28:21 -07:00
Tom Eastep	4469ddb861	Don't apply the deprecated directory more than once Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-06 15:38:28 -07:00
Tom Eastep	cd5409d633	Take care of '$LOG_LEVEL' during update Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-06 15:38:01 -07:00
Tom Eastep	2f58d4e368	Don't create a zone forwarding chain for local zones Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-06 09:06:03 -07:00
Tom Eastep	628f5f0903	Merge branch 'master' of ssh://server.shorewall.net/home/teastep/shorewall/code	2020-07-05 15:31:03 -07:00
Tom Eastep	ce73c783dc	Avoid Perl diagnostic when updating shorewall[6].conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-05 15:29:34 -07:00
Tom Eastep	e7318459f1	Avoid double colons in the CONFIG_PATH Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-05 15:27:47 -07:00
Tom Eastep	467d41f0cc	Merge branch '5.2.6' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-05 13:23:48 -07:00
Tom Eastep	b761a6eaa0	Call optimize_policy_chains() after doing other ruleset optimization - This insures that ACCEPT policy chains are optimized when EXPAND_POLICIES=No Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-04 10:40:43 -07:00
Tom Eastep	f8b7815375	Call optimize_policy_chains() after doing other ruleset optimization - This insures that ACCEPT policy chains are optimized when EXPAND_POLICIES=No Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-07-04 09:49:28 -07:00
Tom Eastep	3dc14e3575	Work around for Centos 7 iptables bug Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-29 11:27:14 -07:00
Tom Eastep	7ba6ac71e3	Delete blank line Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-28 20:41:21 -07:00
Tom Eastep	10aef23ab1	Correct handling of ";;+" in the snat file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-28 11:03:04 -07:00
Tom Eastep	e3f139bbdb	Add SPORT column to the snat file (FORMAT 2) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-27 14:50:23 -07:00
Tom Eastep	43ac903085	Correct action dport implementation Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-26 16:55:39 -07:00
Tom Eastep	bac493c2c5	Merge branch '5.2.5'	2020-06-26 15:31:51 -07:00
Tom Eastep	3ed1cdec94	Rename the snat PORT column to DPORT Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-26 14:44:00 -07:00
Tom Eastep	e2aeed898d	Add the 'dport' option to the actions file(s) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-15 13:12:06 -07:00
Tom Eastep	2eb1c88555	Omit superfluous test Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-14 15:00:49 -07:00
Tom Eastep	117e9ba5bd	Change kern.err to daemon.err in logger params Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-13 14:29:48 -07:00
Tom Eastep	3ce04a8ef3	Add "zone name too long" error Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-12 12:57:31 -07:00
Tom Eastep	220e89755e	Omit STATE-orientated rules in wildcard policy chains Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-07 20:57:55 -07:00
Tom Eastep	aa47554604	Add 'noupdate' DYNAMIC_BLACKLIST option Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-06 10:14:32 -07:00
Tom Eastep	527533ecb6	Add 'log' option to DYNAMIC_BLACKLIST Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-03 14:28:08 -07:00
Tom Eastep	4ac64a545c	Change log facility to 'daemon' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-06-03 13:49:10 -07:00

1 2 3 4 5 ...

4185 Commits