Commit Graph

5301 Commits

Author SHA1 Message Date
teastep
c88858382c Allow exclusion lists in Actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2518 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 21:00:33 +00:00
teastep
474e042d47 Update release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2517 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:35:39 +00:00
teastep
f9f3fadd56 Add find_interface_by_mac()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2516 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:07:47 +00:00
teastep
d871e1f163 Set COMMAND=restore in restore-base
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2514 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 17:52:32 +00:00
teastep
af28486e63 Improve wording of OPENVPN server progress message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2512 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 22:59:47 +00:00
teastep
80dd73b9e5 Add openvpnclient and openvpnserver tunnel types
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2511 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 21:57:43 +00:00
teastep
6a087fd50e Add support for exclusion lists in /etc/shorewall/tcrules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2509 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 18:54:11 +00:00
teastep
056dfa1110 Fix typo in release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2506 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:58:35 +00:00
teastep
85bf4377c5 Update release documentation for Shorewall 2.5.2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2505 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:54:03 +00:00
teastep
b4067e7534 Restore ability to exclude a source sub-zone from DNAT, SAME and REDIRECT rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2504 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:31:55 +00:00
teastep
1beb8c15aa Generalize the notion of 'exclude list' in the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2503 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 00:11:08 +00:00
teastep
dee6d1ad0e Rework fix for bug in exclusion list processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2499 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:49:06 +00:00
teastep
a2dca45579 Fix bug in exclusion list processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2498 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:25:49 +00:00
teastep
fb9292eb71 Yet another improvement to rules generated for exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2497 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:21:52 +00:00
teastep
f6565e19a0 More improvements to rules generated for exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2496 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:16:34 +00:00
teastep
0f7def6c67 Improve rules generated for exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2495 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 18:33:51 +00:00
teastep
ef134da4b9 Make -q work with the try command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2494 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 18:30:59 +00:00
teastep
42ee8d0c19 Finally implement exclude lists in rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2493 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 17:35:45 +00:00
teastep
5df7bc0538 Remove sub-zone exclusion feature in preparation for implementing true exclude lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2492 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 16:04:39 +00:00
teastep
e075e8c3e2 Fix 'Packet type match' availability reporting with PKTTYPE=No
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2491 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-14 19:26:17 +00:00
teastep
999c74bf03 Generate an error when 'norfc1918' is specified for an interface with an RFC 1918 IP address
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2489 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-14 16:45:48 +00:00
teastep
ea1bf1a7c8 Make the calling sequence of 'build_exclusion_chain' more rational
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2488 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-13 21:39:34 +00:00
teastep
daef55a295 Back out ill-advised tcrules portlist patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2486 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-12 23:57:35 +00:00
teastep
1625a7c4f3 Allow port lists in tcrules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2484 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-12 22:11:30 +00:00
teastep
370d61970a Add FASTACCEPT option to accept ESTABLISHED/RELATED packets early
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2474 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-11 19:53:07 +00:00
teastep
ed2076a0fc Fix problem with exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2469 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-11 01:40:50 +00:00
teastep
5de0a44eea Modify kernel version patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2465 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-08 18:05:22 +00:00
teastep
46210cd6bb Add kernel version information to 'shorewall dump' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2462 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-08 17:02:08 +00:00
teastep
41142965a1 Add new macros to the spec file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2461 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-07 18:45:40 +00:00
teastep
68b39a07d9 Update for Shorewall 2.5.1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2460 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-07 18:37:15 +00:00
teastep
24dc05e6b7 Fix a couple of bugs
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2459 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-07 00:17:29 +00:00
teastep
e2253d6092 Install the Makefile -- Patch by Cristian Rodriquez
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2458 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-06 16:58:18 +00:00
teastep
39ca0828db Infrastructure for Unified Handling of Exclude Lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2457 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-05 15:52:03 +00:00
teastep
bba152b119 Don't generate redundant ACCEPT rules for DNAT/REDIRECT/SAME
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2456 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-05 14:13:45 +00:00
teastep
f56e907907 Correct typo in /etc/shorewall/policy; Allow "all+" in SOURCE/DEST in /etc/shorewall/rules to enable intra-zone traffic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2454 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-04 20:24:23 +00:00
teastep
2b261424d7 Minor tweak to 'dump'; remove the dynamic blacklist in 'forget'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2451 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-03 20:24:55 +00:00
teastep
1b1af2fc65 Remove some dead code and reduce confusion amoung those who read the code (including me)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2450 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-02 21:06:05 +00:00
teastep
ac1983a5da Large cleanup patch from Tuomo Soini
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2449 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-02 16:46:30 +00:00
teastep
21a7315717 Remove last vestiges of 'nobogons'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2445 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-01 20:43:46 +00:00
teastep
3f748212d6 Globalize shorewall_is_started()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2443 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-01 20:35:28 +00:00
teastep
c66159abee capitalize 'terminator' variable; duplicate PREROUTING connmark logic in OUTPUT
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2441 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-01 17:17:24 +00:00
teastep
c7cb64e4ee Make a couple of more warnings more emphatic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2438 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 17:15:37 +00:00
teastep
54a5a111a6 Make separate_list handle enclosures in a more general way
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2437 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 17:12:04 +00:00
teastep
0a03598d11 Correct anachronistic reference in /etc/shorewall/shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2436 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 16:26:55 +00:00
teastep
0cafde4c74 Correct anachronistic reference in /etc/shorewall/hosts
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2435 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 15:07:48 +00:00
teastep
b828793da9 Recombine the 'status' and 'state' commands
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2434 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-30 21:59:12 +00:00
teastep
86f20a374b Little cleanup of release notes and /sbin/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2431 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 19:06:37 +00:00
teastep
9feb547b6e /sbin/shorewall status rework -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2430 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 18:32:50 +00:00
teastep
48502e75bb Fix 'status' command in /usr/share/shorewall/firewall; try to make release notes clearer
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2429 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 20:22:25 +00:00
teastep
989e1e87a5 Fix syntax error in 'help' file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2428 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:45:59 +00:00
teastep
2a52d3342d Fix Makefile; rename status to dump and create a real status command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2427 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:37:56 +00:00
teastep
5f37ce46bf Fix typo which broke use of arping
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2426 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 22:41:52 +00:00
teastep
5f58eac0f7 Optimize use of 'arping'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2423 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 22:13:25 +00:00
teastep
6c8b63bfe0 Remove dependence on 'which'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 20:30:16 +00:00
teastep
9a42f57a6a Allow 'ipsec' in /etc/shorewall/hosts to work in the presence of dynamic zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2419 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 17:29:20 +00:00
teastep
03c0415eb5 Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2414 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:22:29 +00:00
teastep
dca0b27564 Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2413 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:09:57 +00:00
teastep
f442002d3b Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2412 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:09:57 +00:00
teastep
2a3353ebe7 Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2411 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:05:23 +00:00
teastep
82e50a632f Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2410 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:02:50 +00:00
teastep
b66929a65e Large merge of function from EXPERIMENTAL to HEAD.
1) Elimination of the "shorewall monitor" command.

2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.

3) Support has been added for the arp_ignore interface option.

4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.

5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.

6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).

7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.

8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.

9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.

10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.

11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
teastep
0d56188e7a Add warning about function use in the 'started' extension script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2404 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-24 23:44:19 +00:00
teastep
89eaf99906 Pretty up the output of 'show actions'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2403 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-24 16:49:02 +00:00
teastep
aaecd53a29 Add 'shorewall show actions command'
Make it possible for the 'stopped' extension script to save commands in
the 'restore-tail' file by calling 'run_and_save_command' and
'save_command'


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2401 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-24 16:27:21 +00:00
paulgear
d8a471e7b9 Cleaned up additional rules from Debian package. Got rid of versions
and paths in the header comments, since they're just as likely to be
wrong as not.  Changed all service names to port numbers.  eDonkey is a
big one - i wonder whether it isn't too variable for us to consider
providing a default rule.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2395 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-23 03:09:06 +00:00
paulgear
b6649720cb Adding extra actions provided by Debian package
Do not use yet - these need cleaning


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2394 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-22 23:04:36 +00:00
teastep
f3ea3c7edb Avoid annoying 'ipset:not found' message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2392 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-22 22:24:28 +00:00
teastep
fbabd7d6ef Obviate the need for 'loose'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2389 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-21 19:48:33 +00:00
paulgear
d7f9a22d77 How long have these names been hanging around? :-)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2381 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-20 03:36:31 +00:00
teastep
ca8e5631d3 Make \!<address> work in the SUBNET column of the masq file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2374 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-20 01:10:28 +00:00
teastep
b0e6e3a893 Given the large number of people shooting themselves in the foot with
poorly-written one-to-one NAT rules, I'm changing the shorewall.conf
file to set ADD_IP_ALIASES=No in shorewall.conf. Hopefully, this will
reduce the amount of whining about routing table modification during
"shorewall [re]start".


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2372 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-19 18:41:05 +00:00
teastep
687704eff2 Add 'loose' provider option; add COPY column to providers file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2370 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-18 22:40:26 +00:00
teastep
318e204358 Re-implement MACLIST_TTL
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2358 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-17 22:08:15 +00:00
teastep
c6e3e84352 Disable MACLIST_TTL
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2356 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-17 16:52:21 +00:00
paulgear
7c0e2c8f77 More disabling until i can get a clean build
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2355 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-17 11:37:05 +00:00
paulgear
5c01c1e6cd Disabling the Debian-specific stuff until i can get a clean build
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2354 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-17 06:25:21 +00:00
paulgear
9348d90b3e Correct lintian errors:
E: shorewall: no-template-description shorewall/upgrade_to_14
E: shorewall: unknown-field-in-templates _description
...


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2352 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-16 12:25:14 +00:00
paulgear
44e97f75bb That did not work
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2351 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-16 12:18:32 +00:00
paulgear
794c7919a0 Disabled until i get the autobuild worked out
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2350 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-16 12:17:10 +00:00
paulgear
7ac72d4bb3 Slightly modified versions of Lorenzo's Debian control files for autobuild from CVS
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2349 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-16 11:36:42 +00:00
teastep
1b5ac5c7d3 Make /sbin/shorewall issue a warning whenever startup is disabled
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2348 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-15 20:50:01 +00:00
teastep
57b23fc2ba Update hosts file comments to describe use of ipsets
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2340 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-14 16:31:55 +00:00
paulgear
7d89d6e17e Spelling correction
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2332 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-13 20:27:32 +00:00
teastep
379b58f628 A better patch to avoid blocking DHCP broadcasts during MAC verification
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2330 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-13 15:26:51 +00:00
teastep
ef9d22b647 Avoid blocking DHCP broadcasts during MAC verification
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2327 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-13 14:29:52 +00:00
teastep
d050552a36 Make TCPFLAGS_LOG_LEVEL=ULOG work with iptables-1.3.2.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2322 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-12 00:42:08 +00:00
teastep
7d924c3b82 A couple of little buglets. 1) detect duplicate tracked interface in providers file; 2) don't permit destination interface in PREROUTING marking rule
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2315 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 23:23:45 +00:00
teastep
d11dc2b58a Apply Cristian's patch for default route after reboot
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2305 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 20:12:49 +00:00
paulgear
13c7bcb6d8 Making sure bogons is still up-to-date. The blank lines make it easier
to drop in contrib/iana_reserved/bogons.body.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2288 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 06:57:12 +00:00
paulgear
92b3ee102f Add appropriate README.txt to all branches
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2272 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 06:46:44 +00:00
paulgear
4f8bbb5866 Copy latest development version from Shorewall2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2269 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 06:13:05 +00:00
paulgear
9b865953a3 Missed a few files on the 2.4 branch copy
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2265 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:56:22 +00:00
paulgear
2a19eb8a5a Copy latest 2.4 version from Shorewall2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:55:29 +00:00
paulgear
90dd62e89e Copy latest 2.2 version from STABLE2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2263 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:45:05 +00:00
paulgear
921a7223d4 Copy latest 2.0 code from STABLE2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 04:45:32 +00:00
teastep
ccd528ec8c Shorewall 1.4.10d +
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1216 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-20 15:40:06 +00:00
teastep
d711731678 Fix multiple excluded zone handling in DNAT/REDIRECT
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1181 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-04 15:24:59 +00:00
teastep
7f19ec0c73 Fix another masq file bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1131 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-09 20:46:22 +00:00
teastep
76c135e123 Shorewall-1.4.10a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1129 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-08 20:36:46 +00:00
teastep
6ae5a4eb93 Fix problem in masq file parsing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1124 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-05 20:19:29 +00:00
teastep
97ea8c60d7 Fix problem in masq file parsing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1123 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-05 20:13:24 +00:00
teastep
afee989ee5 Shorewall 1.4.10
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1099 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-31 03:24:02 +00:00
teastep
f67cb1eab8 Fix PROTO fix fix
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1098 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-29 23:29:50 +00:00
teastep
304a502d38 Fix PROTO fix
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1097 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-29 23:24:30 +00:00
teastep
76b5918a13 Fix handling of 'all' or '-' in the PROTO column of an action file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1096 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-29 19:11:51 +00:00
teastep
d116d04fb8 Don't add broadcasts to /0 groups
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1095 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-28 00:52:03 +00:00
teastep
a57c778928 Shorewall 1.4.10 RC3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1094 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-27 23:39:45 +00:00
teastep
b4d0cbd1b1 Don't feed the smurfs
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1093 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-27 22:33:32 +00:00
teastep
3a82d46762 1.4.10 RC2 and fixes for broadcast rejects, ratelimiting and CONTINUE rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1092 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-27 21:16:07 +00:00
teastep
2e80e459bb RC1 and 'detectnets' option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1089 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-23 23:48:30 +00:00
teastep
22df211052 Applied Fr�d�ric LESPEZ's patch for packet marking by user/group id
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1088 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 20:24:56 +00:00
teastep
58ac5fd852 Correct messages generated out of setup_masq()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1087 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 16:59:40 +00:00
teastep
c07e450d5a Refine masq destination list code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1086 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 03:27:03 +00:00
teastep
d362f734d9 Destination exclude list in masq file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1085 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 02:06:56 +00:00
teastep
f22dff0fca Shorewall 1.4.9
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-13 20:54:58 +00:00
teastep
252eaec29a Minor updates for 1.4.9
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1071 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-09 20:20:43 +00:00
teastep
5338cb48b0 Minor updates for 1.4.9
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1070 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-09 20:18:40 +00:00
teastep
8599101182 Shorewall 1.4.9 Beta 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1018 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-29 00:37:09 +00:00
teastep
0c6299465d Fix SNAT handling in DNAT rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@869 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-16 21:52:37 +00:00
teastep
dab17d0783 Update release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@822 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-10 15:27:07 +00:00
teastep
795c791669 Remove backquotes from commands in shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@812 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-08 18:42:25 +00:00
teastep
eeede7f415 Shorewall 1.4.9 Beta 1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@811 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-08 01:01:29 +00:00
teastep
f3fb164a7b Shorewall 1.4.9 Beta 1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@810 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-07 23:28:48 +00:00
teastep
9763f0caf3 Allow actions to be used in other actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@809 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-07 18:15:55 +00:00
teastep
7a7597466d Clean up Action Change
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@806 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-05 20:34:01 +00:00
teastep
94d91cafa4 Clean up Action Change
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@805 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-05 19:19:08 +00:00
teastep
38ae0154ff Improve release notes 'uname' advise
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@803 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-04 18:52:19 +00:00
teastep
90263f43af Add user-defined Actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@801 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-04 02:01:08 +00:00
teastep
5466a7f35b Add MODULE_SUFFIX option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@799 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-01 18:37:41 +00:00
teastep
baa82a4697 Add MODULE_SUFFIX option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@798 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-01 18:30:28 +00:00
teastep
380b8e2ce8 Add MODULE_SUFFIX option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@797 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-01 16:10:08 +00:00
teastep
f9c596a465 Reword desciption of NEWNOTSYN
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@793 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-28 17:39:53 +00:00
teastep
9fde389c31 Log 'norfc1918'
packets out of 'rfc1918' chains


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@792 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-27 18:39:11 +00:00
teastep
a3eaa7f9af Rework ip_forward handling; update release file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@791 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-27 18:24:57 +00:00
teastep
64bd2c9035 One-to-one NAT and updated common.def
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@790 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-24 19:08:43 +00:00
teastep
04372ad48c Shorewall-1.4.8
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@787 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-08 04:19:13 +00:00
teastep
80981e802e Fix NONE policy validation and 'routeback' for wildcard interfaces
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@786 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-08 02:38:30 +00:00
teastep
e147813da0 Shorewall-1.4.8-RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@785 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-01 18:16:39 +00:00
teastep
306ca3718f Correct handling of broadcast addresses in MAC verification
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@784 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-31 15:30:07 +00:00
teastep
c334e92103 Shorewall 1.4.8-RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@783 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-31 15:29:30 +00:00
teastep
f046ea3ab1 Fix route filtering
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@782 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-30 15:42:45 +00:00
teastep
ee51d49233 Correct Debian lockfile usage comment in shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@781 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-27 22:36:22 +00:00
teastep
0f72f92c48 Another fix for <zone>_frwd chains
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@780 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-26 16:22:01 +00:00
teastep
e46c76253c Expand chain naming
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@778 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-25 00:55:58 +00:00
teastep
5448a9cc38 Expand chain naming
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@777 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-25 00:54:01 +00:00
teastep
20a23dc925 Re-add optimization for complex zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@771 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-19 14:57:48 +00:00
teastep
1fd0345510 Re-add optimization for complex zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@769 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-15 18:34:05 +00:00
teastep
ff2b9ce193 Remove 'complex zone' optimization
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@768 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-15 18:17:23 +00:00
teastep
84486d9115 Added BLACKLISTNEWONLY
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@766 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-11 16:13:52 +00:00
teastep
67ad01a56f Added BLACKLISTNEWONLY
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@765 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-11 16:06:00 +00:00
teastep
55ddfb8c78 Fix error handling after 'Unable to determine the routes...'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@764 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-10 03:00:26 +00:00
teastep
97825f937c Clean up QUEUE target code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@763 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-09 22:33:44 +00:00
teastep
c80dacd86a p2pwall integration
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@762 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-09 21:26:08 +00:00
teastep
3d7df0dd62 Correct icmp fix
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@761 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-08 18:45:26 +00:00
teastep
5b54d21d07 Don't use multiport match on ICMP
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@760 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-08 15:07:18 +00:00
teastep
9a51cb0b60 Merge Tuomo Soini's fix for /bin/ash
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@758 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-08 14:53:26 +00:00
teastep
acad75f82f Shorewall 1.4.7
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@755 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-06 22:30:46 +00:00
teastep
8c4ccaed9a RC3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@754 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-06 21:11:34 +00:00
teastep
f30faa416f Fix user/group name and qualified destination
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@752 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-03 14:39:34 +00:00
teastep
1003cd5590 Update RFC1918 to reflect recent IANA allocations
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@751 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-02 15:07:35 +00:00
teastep
5d489f01f9 Change 'logunclean' messages to reflect LOG disposition
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@750 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-02 04:48:30 +00:00
teastep
45e63c15ac Blacklist before DHCP
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@749 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-01 00:07:14 +00:00
teastep
2e4f97175d Correct handling of missing common.def file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@748 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-27 14:54:16 +00:00
teastep
f88241a6f1 Fix rules file processing with missing policy
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@747 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-26 21:34:16 +00:00
teastep
e4bfb8f0f4 1.4.7-RC2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@746 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-22 21:44:33 +00:00
teastep
ddb925c133 Reword error message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@745 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-22 21:44:22 +00:00
teastep
9f14855704 Allow user:group in USER SET column of rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@744 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-19 19:42:05 +00:00
teastep
6074472053 Correct Comment in rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@743 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-18 22:49:34 +00:00
teastep
6a43ad7ecd 1.4.7 RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@742 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-18 22:30:54 +00:00
teastep
35c550990f Add RFC 3330 attribution to 192.0.2.0/24
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@741 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-17 22:22:59 +00:00
teastep
169f057d91 Updates to rfc1918
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@740 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-17 02:22:47 +00:00
teastep
a7a0098114 Fix proxy ARP routes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@739 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-16 19:51:48 +00:00
teastep
a18c573868 Beta 2 plus fix proxy ARP routes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@738 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-16 19:44:49 +00:00
teastep
b119a35e81 Fix for IPV6 addresses and the 'ip' utility
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@737 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-28 21:32:40 +00:00
teastep
bb20363bb2 Fix for IPV6 addresses and the 'ip' utility
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@735 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-28 18:02:59 +00:00
teastep
05c0c27012 Fix adding range of aliases
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@734 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-27 19:53:02 +00:00
teastep
5e8a20b455 Fix adding range of aliases
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@733 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-27 19:37:53 +00:00
teastep
afbe79977e Fix adding range of aliases
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@732 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-27 15:13:03 +00:00
teastep
47b75c3c87 Correct backout of Smart Blacklisting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@729 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-25 02:02:44 +00:00
teastep
29ae535021 Correct backout of Smart Blacklisting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@728 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-25 01:49:34 +00:00
teastep
47c914a86b Fix multiple 'drop/reject' bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@727 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-24 15:36:13 +00:00
teastep
41de5afd06 Decommit per-interface dynamic blacklisting; warnings on 'unclean' dependencies
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@726 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-24 01:24:23 +00:00
teastep
3b0705c223 Snapshot 20030823
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@725 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-23 22:00:27 +00:00
teastep
54569f4782 Userset fix and logging fixes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@724 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-23 18:14:59 +00:00
teastep
3ee26da51c Henry Yang's patch plus fix LOGRATE/ratelimit conflict on rules file logging
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@723 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-22 15:27:08 +00:00
teastep
510a35b46c Allow chains with IP addresses as names -- improved version
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@722 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-21 14:48:49 +00:00
teastep
90b5b607a6 Allow chains with IP addresses as names
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@721 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-21 13:18:51 +00:00
teastep
e58b08c4b7 Redesign Accounting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@720 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-20 16:54:27 +00:00
teastep
b6adee2804 Correct example in rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@719 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-19 22:28:23 +00:00
teastep
b5c9917c79 Add RATE LIMIT column; allow multiple chains in a 'show' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@718 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 15:54:13 +00:00
teastep
fba135aa6e Allow display of multiple chains in 'shorewall show'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@717 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 01:20:37 +00:00
teastep
b32b250743 Allow display of multiple chains in 'shorewall show'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@716 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 00:59:06 +00:00
teastep
52f6ce84ad Keep the natives happy by having no embedded space in column headings
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@715 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-14 21:41:55 +00:00
teastep
b68171cc23 Better fix for generic firewall parsing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@714 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-14 13:57:09 +00:00
teastep
3458f3e0f4 Fix generic firewall parsing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@713 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-14 02:08:51 +00:00
teastep
064557a2e2 Snapshot 20030813
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@712 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-14 02:08:25 +00:00
teastep
d55bcfca0b Rate Limiting in Rules - Part 7
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@711 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 21:31:02 +00:00
teastep
fe4a195b91 Rate Limiting in Rules - Part 6
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@710 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 19:32:12 +00:00
teastep
eb2109e767 Rate Limiting in Rules - Part 5
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@709 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 19:29:15 +00:00
teastep
8d9ec49a6b Rate Limiting in Rules - Part 4
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@708 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 18:51:18 +00:00
teastep
e454c7fe73 Rate Limiting in Rules - Part 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@707 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 18:48:28 +00:00
teastep
ec4c44a162 Rate Limiting in Rules - Part 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@706 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 18:18:30 +00:00
teastep
88dbd252af Rate Limiting in Rules - Part 1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@705 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 17:07:05 +00:00
teastep
552d738579 Allow bridge devices in /etc/shorewall/maclist
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@704 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 00:19:24 +00:00
teastep
6f715d015f Update Release Notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@703 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 22:53:01 +00:00
teastep
b81591abfe Display interface-specific dynamic blacklisting chains in 'shorewall monitor' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@702 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 22:25:45 +00:00
teastep
a1c1785048 Allow degenerate rules; replace 'chain_exists' with 'havechain' in accounting code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@701 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 17:44:23 +00:00
teastep
8080d002b7 Add LAST LIST to accounting file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@700 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 02:19:37 +00:00
teastep
232d55acb9 Add LAST LIST to accounting file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@699 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 02:12:48 +00:00
teastep
ab073a41a4 Added CHAIN declarations
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@698 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 01:36:32 +00:00
teastep
24ed025834 Conditionally create accounting chain
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@697 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 16:22:19 +00:00
teastep
347ed2f629 Conditionally create accounting chain
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@696 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 16:19:36 +00:00
teastep
7cb2d841aa Conditionally create accounting chain
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@695 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 16:12:30 +00:00
teastep
ac8585b68a Complete accounting support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@694 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 16:01:21 +00:00
teastep
1144d736bf Correct bug in accounting file processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@693 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 15:06:23 +00:00
teastep
3c24144487 Add IP accounting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@692 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 01:11:50 +00:00
teastep
edfbafc0cb Snapshot 20030809
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@691 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-09 17:14:58 +00:00
teastep
b235cd19e1 Add arp_filter interface option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@690 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-08 20:55:06 +00:00
teastep
61ba5353e5 Simplify ip_broadcast()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@689 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-07 17:31:47 +00:00
teastep
0f61f36264 Add support for range lists in /etc/shorewall/masq
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@688 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-07 00:05:55 +00:00
teastep
4192870cb2 Add support for range lists in /etc/shorewall/masq
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@687 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-06 23:50:33 +00:00
teastep
c8b9cbfd35 Generic tunnels
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@686 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-06 00:06:44 +00:00
teastep
b2729de062 Fix adding addresses to P-T-P devices
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@683 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-05 15:05:45 +00:00
teastep
3d9d913b4b 1.4.6_2003-731 plus idiot-proofing of the policy file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@682 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-01 02:49:12 +00:00
teastep
4c08cc4780 ADMINISABSENTMINDED Option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@681 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-29 23:04:04 +00:00
teastep
617c0d311e Remove braindead code; prevent 'stop' when 'start' is disabled
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@680 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-28 17:32:41 +00:00
teastep
a7c1270e07 Shorewall 1.4.6_20030727
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@679 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-27 18:17:39 +00:00
teastep
f7ea7cdd41 Snapshot 1.4.6_20030726
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@678 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-26 16:44:38 +00:00
teastep
a63d259b40 Move call to determine_capabilities so that MANGLE_ENABLED is set before it is tested
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@674 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-22 14:25:36 +00:00
teastep
9188253bd4 {
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@670 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-21 22:02:34 +00:00
teastep
50252c7b7e Update comment in rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@668 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-21 17:17:07 +00:00
teastep
e80d8ca732 Shorewall-1.4.6
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@667 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-19 15:07:31 +00:00
teastep
afd7840558 Suppress DHCP message when there are no DHCP rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@666 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-18 23:12:34 +00:00
teastep
c89d302114 Streamline module loading
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@663 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-16 03:22:45 +00:00
teastep
0c8365f7bb Support 2.6 compressed modules; add chain name to policy display in 'check' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@662 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-16 03:07:38 +00:00
teastep
88e1eb7e4d Shorewall 1.4.6 RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@660 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 22:09:33 +00:00
teastep
defe814ca5 More rule processing fixes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@659 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 20:25:03 +00:00
teastep
8dce6e9522 More rule processing fixes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@658 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 20:16:24 +00:00
teastep
528c7b549a More rule processing fixes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@657 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 19:51:25 +00:00
teastep
31f6e580e4 More rule processing fixes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@656 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 19:43:32 +00:00
teastep
94ceb711b7 Fix exclude zone processing in DNAT and REDIRECT rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@655 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 16:44:35 +00:00
teastep
5b03f63961 Fix exclude zone processing in DNAT and REDIRECT rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@654 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 16:20:45 +00:00
teastep
ec86f2c46c Add an example to the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@652 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-08 19:32:36 +00:00
teastep
0b2bfe6e05 Remove reference to MULTIPORT from rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@651 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-08 18:54:40 +00:00
teastep
184390708e Shorewall 1.4.6 Beta2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@649 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-07 14:18:52 +00:00
teastep
cf62edd5ca Add local variable to find_hosts_by_option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@648 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 16:27:40 +00:00
teastep
ed899188f8 Allow address lists in /etc/shorewall/hosts entries
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@647 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 16:10:23 +00:00
teastep
c615aa868a Allow address lists in /etc/shorewall/hosts entries
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@646 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 15:31:26 +00:00
teastep
ceed25dc1c Simplify ip_range slightly
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@645 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 14:34:46 +00:00
teastep
2ec4e96fbd Export smarter ip_range() with the /sbin/shorewall iprange command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@644 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 13:24:23 +00:00
teastep
130c8f95f9 Correct handling of DNS names with embedded '-'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@643 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 00:06:06 +00:00
teastep
0b545b92b7 Correct handling of DNS names with embedded '-'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@642 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 23:41:41 +00:00
teastep
2ab4292383 Add comment to /etc/shorewall/interfaces
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@641 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 21:19:49 +00:00
teastep
045318946f Reword error message to use terminaolgy from documentation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@640 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 20:49:23 +00:00
teastep
3c5dd9167f Remove duplicate pattern in case statement
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@639 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 20:36:03 +00:00
teastep
a4183f21fe Add empty variable for 'call' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@638 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 19:52:34 +00:00
teastep
24d864d427 Fix my application of Simon Matter's Patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@637 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 18:17:40 +00:00
teastep
eee8b28a8e Add undocumented 'call' commands to /sbin/shorewall and /usr/share/shorewall/firewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@636 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 17:56:11 +00:00
teastep
678e23918b Add undocumented 'call' commands to /sbin/shorewall and /usr/share/shorewall/firewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@635 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 17:55:43 +00:00
teastep
17a7a0492d Take care of some ipcalc anomalies
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@634 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 17:41:28 +00:00
teastep
134f5db118 Rename ip_cidr() to ip_vlsm()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@633 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 17:23:53 +00:00
teastep
4f6f76ec72 Added ipcalc command to /sbin/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@632 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 17:14:21 +00:00
teastep
b1b3d09473 Move IP Address Manipulation Functions to /usr/share/shorewall/functions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@631 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 16:24:41 +00:00
teastep
e4fe73b53a Shorewall 1.4.6 Beta 1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@627 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-04 15:32:33 +00:00
teastep
9a6c36c146 Remove requirement for XOR
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@626 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-04 15:08:29 +00:00
teastep
807e808318 Clear original dest when it is 0.0.0.0/0
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@625 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-03 16:12:28 +00:00
teastep
5b9d1f7460 Cleanup of code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@624 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-02 23:12:14 +00:00
teastep
6a1c9df7c9 Fix DNAT[-] destination list handling; add shell validation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@623 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-01 20:29:01 +00:00
teastep
fc1cc9b0eb Fix capability report -- Simon Matter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@622 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-30 14:21:42 +00:00
teastep
06e38b587d SHOREWALL_SHELL parameter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@621 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-28 15:22:22 +00:00
teastep
52bc8bca5e Add MULTIPORT to the list of detected capabilities
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@620 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-28 01:09:12 +00:00
teastep
e3e6e20d81 Add Conntrack Match Capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@619 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-27 21:29:26 +00:00
teastep
7a2cad4d07 Add Conntrack Match Capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@618 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-27 21:02:52 +00:00
teastep
f562fa4836 Correct ip_range handling of CIDR
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@617 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-26 14:29:24 +00:00
teastep
753cf160e4 Replace multiplication by bit shift in decodeaddr()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@616 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-25 19:20:23 +00:00
teastep
08c45deb2e Make new code work on lesser shells
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@613 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-23 23:04:50 +00:00
teastep
8683295810 More tweaking of address manipulation code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@611 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-23 17:51:33 +00:00
teastep
c3eab43a3b Fix addition of IP addresses
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@610 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-23 00:44:53 +00:00
teastep
0b075e78b6 Fix addition of IP addresses
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@609 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-23 00:42:28 +00:00
teastep
9199759921 Reword item in release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@608 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-22 23:10:20 +00:00
teastep
9aaef4d05a Add load-balancing support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@607 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-22 22:56:25 +00:00
teastep
b33ffddc7b Fix label creation for IP address ranges
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@606 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-22 21:22:57 +00:00
teastep
debf41d707 Allow IP ranges with ADD_SNAT_ALIASES=Yes; Fix add_ip_aliases to match proper subnet to add to
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@605 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-22 16:58:33 +00:00
teastep
d6262099c6 Add FIN to accepted flags for NEWNOTSYN
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@604 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-19 20:19:41 +00:00
teastep
ea38e5f72b Refine 'newnotsyn' option handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@602 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 19:55:16 +00:00
teastep
cc9fd2b4ef Refine 'newnotsyn' option handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@601 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 19:49:54 +00:00
teastep
88595aec4f Refine 'newnotsyn' option handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@600 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 19:40:35 +00:00
teastep
045263c704 Refine 'newnotsyn' option handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@599 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 19:24:16 +00:00
teastep
5776740250 Implemented 'newnotsyn' interface option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@598 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 18:49:04 +00:00
teastep
4e39f1e0dd Implemented 'newnotsyn' interface option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@597 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 18:43:41 +00:00
teastep
027e5fcd0f Implemented 'newnotsyn' interface option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@596 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 18:37:37 +00:00
teastep
170c3df6c4 Work around RH7.3 'service' anomaly
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@595 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 18:26:05 +00:00
teastep
ae42fcdbe6 Changes for 1.4.5
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@593 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 00:29:04 +00:00
teastep
3e20e24c98 Clean up /sbin/shorewall TMP_DIR handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@592 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-14 03:24:17 +00:00
teastep
df034f6141 Clean up fix for INCLUDE
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@591 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-14 01:30:32 +00:00
teastep
51a7030fdb Make INCLUDE work in the zones file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@590 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-14 01:22:46 +00:00
teastep
4e26bb4ba4 Back out changes for reject processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@589 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-11 23:57:35 +00:00
teastep
3bb2d171ae Fix REJECT processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@588 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-11 19:46:50 +00:00
teastep
275a8ca33f Don't whine about LOG policy rule; Accept RELATED connections during [re]start
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@587 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-11 01:01:48 +00:00
teastep
1c2f75656d More cleanup
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@585 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-02 22:01:50 +00:00
teastep
70d8293d88 Re-add logging code that was mistakenly deleted
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@584 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-02 19:26:56 +00:00
teastep
2bdcada874 Fix routestopped; minor fix in rules processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@583 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-02 18:08:35 +00:00
teastep
184d7aac40 More cleanup of rules processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@581 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-01 18:14:57 +00:00
teastep
18cfd011c3 A small cleanup of the rules parsing code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@580 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-01 16:51:34 +00:00
teastep
89bb721da4 More ORIGINAL DEST fixes; restore last 'Hits' report
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@579 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-01 03:14:20 +00:00
teastep
e3bafeecaa Make excludehosts work for OUTPUT; correct destination in DNAT rule
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@578 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-31 16:34:17 +00:00
teastep
d9268be1c4 List on original dest; debugging try
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@577 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-31 15:29:14 +00:00
teastep
df6a59cf68 Shorewall-1.4.4b
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@575 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-29 14:43:47 +00:00
teastep
e70a63f267 Shorewall-1.4.4a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@573 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-28 19:20:23 +00:00
teastep
59660f2576 Restore 5-character zone name capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@572 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-27 17:49:13 +00:00
teastep
ba432e10b0 Restore 5-character zone name capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@571 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-27 17:42:43 +00:00
teastep
66337f3cda Restore 5-character zone name capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@570 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-27 17:42:12 +00:00
teastep
535510e8a2 Improve formatting in shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@569 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-22 21:45:04 +00:00
teastep
17868a6cce Changes for 1.4.4
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@568 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-22 20:48:59 +00:00
teastep
09392c88d3 Move DNAT and REDIRECT logging to the nat table
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@567 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-22 20:37:24 +00:00
teastep
e33573eff9 Change LOGMARKER/LOGFORMAT Implementation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@566 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-21 21:36:05 +00:00
teastep
f96c06d949 Remove references to fireparse from shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@565 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-21 14:25:23 +00:00
teastep
c15c93c7d1 Implement REDIRECT-
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@564 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-20 23:27:11 +00:00
teastep
8bf7e8e7b4 Changes for 1.4.3a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@559 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-19 23:28:37 +00:00
teastep
cd271ac59f Changes for 1.4.3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@551 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-18 17:08:27 +00:00
teastep
019fc32d26 Enable loopback interface earlier in startup
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@550 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-16 15:19:57 +00:00
teastep
bbcbbca6b8 Implement LOGMARKER variable
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@546 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-25 16:22:18 +00:00
teastep
882030789d Update change log and release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@545 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-23 01:09:20 +00:00
teastep
554970dcc4 Correct Syntax Error
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@544 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-21 23:04:52 +00:00
teastep
f404c75b2f Add 6to4 tunnel support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@543 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-21 15:12:59 +00:00
teastep
99cb231761 Remove temporary directory at completion of 'add' and 'delete' commands
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@541 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-18 03:09:51 +00:00
teastep
8b5cadbdff Add a catchall rule for old REJECT handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@539 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-16 16:54:46 +00:00
teastep
a7cd930b96 Add comments to REJECT improvement
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@538 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-14 01:01:01 +00:00
teastep
d44564fab8 Improve REJECT processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@537 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-14 00:47:47 +00:00
teastep
ed0bbce737 Correct bug in nexted INCLUDE detection
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@534 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-07 21:20:46 +00:00
teastep
549ca9e84e Change version to 1.4.2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@533 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-07 20:46:10 +00:00
teastep
850f18bea6 Make a more conservative patch to fix the 'traceroute -I' problem
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@531 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-01 14:58:47 +00:00
teastep
e16e47893d Add 'routeback' option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@530 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-01 02:00:37 +00:00
teastep
f16f401910 Limit INCLUDE nest level
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@529 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-29 15:15:05 +00:00
teastep
02a42e2fb0 INCLUDE directive; make 'traceroute -I' work again
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@528 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-29 14:37:50 +00:00
teastep
e7d83205db Correct REJECT actions in common.def
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@527 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-26 16:11:31 +00:00
teastep
b49e944321 Remove trailing white space
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@526 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-24 21:56:31 +00:00
teastep
777202cb11 Remove superfluous -s specification
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@525 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-24 21:55:16 +00:00
teastep
b5d3078fa6 Add intermediate input chain for complex zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@524 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-24 21:02:29 +00:00
teastep
886ad1e547 Add intermediate input chain for complex zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@523 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-24 21:01:53 +00:00
teastep
1a36e13f8c Fix 'check' command shell message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@522 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-23 23:53:10 +00:00
teastep
8377f70bc7 Shorewall 1.4.1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@518 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-22 00:25:40 +00:00
teastep
04d78dc49f Re-allow Z->Z rules/policies
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@517 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 19:49:40 +00:00
teastep
526f0f9eb8 Re-allow Z->Z rules/policies
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@516 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 19:47:19 +00:00
teastep
c56fe6ee49 Clean up rules file comments
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@515 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 19:28:31 +00:00
teastep
cb5d9460b8 Cleanup new policy code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@514 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 19:25:17 +00:00
teastep
e6d9dda852 Cleanup new policy code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@513 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 19:23:03 +00:00
teastep
4f8c8857e4 Improve comments in the policy file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@512 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 05:07:18 +00:00
teastep
6e843ec524 NONE Policy; Allow Intrazone connections; no bounce rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@511 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 04:57:12 +00:00
teastep
5be79ecde7 NONE Policy; Allow Intrazone connections; no bounce rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@510 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 04:14:20 +00:00
teastep
52629f9049 Shorewall 1.4.0
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@504 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-18 01:13:38 +00:00
teastep
8556250875 Only check 'ipchains' module on start
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@498 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-11 15:45:29 +00:00
teastep
8918a72c13 Ignore default route when detecting masq networks; refuse to start with ipchains module loaded
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@497 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-11 14:55:01 +00:00
teastep
0d7c31371a Restore the 'check' command to the comments in the 'firewall' script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@496 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-10 00:47:12 +00:00
teastep
7fab125525 Drop INVALID state packets; rate limit NEWNOTSYN logging
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@495 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-10 00:41:39 +00:00
teastep
e2748d3245 More SHARED_DIR changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@489 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-08 18:01:32 +00:00
teastep
6a478754ac Remove SHARED_DIR from shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@488 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-08 17:55:34 +00:00
teastep
4a173940b2 Add log limiting to 'logdrop' chain and optimize code that deletes temporary rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@486 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-08 15:48:07 +00:00
teastep
c67ef5582c Remove two superfluous calls to determine_zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@484 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-07 00:30:39 +00:00
teastep
09fc5e317a Process params file before shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@482 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-06 23:21:25 +00:00
teastep
aa616f20d6 Remove stale comments from params file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@481 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-05 22:48:36 +00:00
teastep
0f085fcf23 RC1 Changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@480 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-05 18:13:04 +00:00
teastep
4c2b1406de Remove unused function
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@478 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-28 15:33:40 +00:00
teastep
2894700fcf Re-add 'check' -- delete trailing white space
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@475 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-27 22:28:06 +00:00
teastep
a9d201f4f6 Print the name of the ECN file during processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@474 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-25 23:35:22 +00:00
teastep
27318e6785 Add ecn File
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@471 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-25 19:22:35 +00:00
teastep
5f0d26d1b9 Remove 'check' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@470 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-25 16:21:41 +00:00
teastep
99bcc9cc39 Alloc null second column in ecn file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@469 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-24 15:35:50 +00:00
teastep
08ec9ac4e0 Validate interface names in ecn file; confirm additions to ECN control chain; update to Beta2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@468 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-24 15:24:55 +00:00
teastep
dbd20362ff One more comma-separated list tweak
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@467 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-23 15:56:45 +00:00
teastep
5a778540da Tweak the comma-separated list parsing fix
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@466 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-23 14:22:14 +00:00
teastep
f81791505a Update change log
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@465 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-23 14:11:45 +00:00
teastep
21cb22303f 1) Remove trailing white space.
2) Improve detection of white space in comma-separated lists.
3) Fix a typo in the INSTALL file.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@464 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-23 14:10:37 +00:00
teastep
9b98ecbff5 final 1.4.0 Beta1 Changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@461 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-21 22:55:36 +00:00
teastep
fe9b56090c Remove call to undefined function 'validate_bounce_file'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@458 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-21 17:00:10 +00:00
teastep
c4bbfc45d2 Restore hosts file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@457 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-19 23:58:56 +00:00
teastep
6cabdfae5d More 1.3.14 Changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@456 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-19 23:52:03 +00:00
teastep
5fe2bef29e Remove icmp.def; change versions to 1.4
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@449 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-15 00:09:44 +00:00
teastep
5f259f6070 Reflect IANA allocation of 222/8 and 222/8 in the rfc1918 file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@447 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-14 00:22:42 +00:00
teastep
b5c7f91e5a Run user init script before stripping files; improve comment in hosts file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@445 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-13 14:59:34 +00:00
teastep
92fc84ac14 Outbound ICMP no longer unconditionally accepted
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@444 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-11 01:34:52 +00:00
teastep
ef51c04d1d Shorewall 2.0.0 Alpha1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@443 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-08 20:58:44 +00:00
teastep
dfc7974ea0 back out 2.0 patch that inadvertently got into the 1.3 thread
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@437 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-08 20:45:11 +00:00
teastep
f9918b0da8 Correct rule number calculation in 'shorewall add' code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@436 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-08 20:44:00 +00:00
teastep
5b9a57d49e Changes for 1.3.14 RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@430 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-04 16:59:49 +00:00
teastep
5aeecee8ab Add openvpn tunnel support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@426 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-31 19:10:22 +00:00
teastep
4cf3600e5c Update copyrights
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@425 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-31 18:04:57 +00:00
teastep
8894cf869c Remove 'noping' from interfaces examples
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@424 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-29 15:57:11 +00:00
teastep
45879f20f3 Beta 2 update
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@423 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-29 02:56:39 +00:00
teastep
fd37bd4c59 Fix VLAN Broadcast detection
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@422 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-28 14:44:40 +00:00
teastep
bbaaff7218 Document VLAN naming fix
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-27 17:03:43 +00:00
teastep
bf4ccb8d7a Restore support for VLAN devices
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@420 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-27 02:54:43 +00:00
teastep
cd1417ec17 Clean up release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@419 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-26 01:00:22 +00:00
teastep
5642f7e1d4 Update release notes and change log
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@418 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-25 00:15:55 +00:00
teastep
4964497aa3 Allow labels for aliases added under ADD_SNAT_ALIASES; improve masquerade algorithm
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@417 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-24 23:43:22 +00:00
teastep
5b101f3a81 Use the routing table rather than the ip configuration to determine masquerading
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@416 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-24 22:59:49 +00:00
teastep
94c5455c9e Masquerade from all primary subnets when an interface name is in the second column of masq file entry
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@415 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-24 22:47:22 +00:00
teastep
43cc73ef47 Allow creation of an alias label when ADD_IP_ALIASE=Yes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@414 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-24 19:42:23 +00:00
teastep
896c5743ba Add warning about interface names in column 2 of the MASQ file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@413 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-24 16:19:38 +00:00
teastep
1556b73de9 Improve comment in tcrules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@412 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-24 01:20:53 +00:00
teastep
0bd0a3672e Allow specification of marking chain in TC rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@411 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-23 23:18:40 +00:00
teastep
a0cb5de22c Make FORWARDPING=Yes verboten under OLD_PING_HANDLING=No; make 'list' a synonym for 'show' in /sbin/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@410 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-23 01:13:36 +00:00
teastep
a5f8c0595d Remove FORWARDPING from shorewall.donf -- add threats to OLD_PING_HANDLING description
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@408 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-21 02:17:49 +00:00
teastep
2fab4bd133 Remove obsolete 'ping' stuff from released 'interfaces' file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@407 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-21 02:00:16 +00:00
teastep
7fe133fe4a Add OLD_PING_HANDLING option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@406 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-21 00:34:00 +00:00
teastep
3b29150cb2 Fix bug in 'shorewall add' re 'find_interfaces_by_maclist'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@405 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-20 23:06:55 +00:00
teastep
f09342105d Add CLEAR_TC to shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@404 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-15 22:12:24 +00:00
teastep
9a84050227 Release changes for 1.3.13
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@400 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-14 20:20:40 +00:00
teastep
bdcf22b4f8 Add NAT support with remote IPSEC zone; add UDP 4500 to ipsecnat support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@398 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-07 16:26:41 +00:00
teastep
feb0752113 Allow shared files to be moved easily
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@397 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-06 23:01:23 +00:00
teastep
1aa8a8b329 Remove overzealous quoting in RING_BELL
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@396 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-06 19:54:50 +00:00
teastep
a28dac71ec Update release notes comment -- allow '-' in ORIGINAL DEST column for consistency
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@395 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-06 14:12:59 +00:00
teastep
305c43fea2 Fix RFC1918_LOG_LEVEL
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@394 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-01-03 17:48:11 +00:00
teastep
b1fb6bd72c Add CLEAR_TC option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@392 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-31 16:04:31 +00:00
teastep
9ebd6ceaae Exit status 255 from tcclear indicates that Shorewall should not clear tc
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@391 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-31 03:50:05 +00:00
teastep
144c9ab576 Add DNAT- action; 'shorewall check' prints policies
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@390 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-31 01:10:28 +00:00
teastep
36aa2c8e88 Release changes for 1.3.12
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@385 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-28 15:38:03 +00:00
teastep
89efe0c6f6 Beta 3 Release Changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@384 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-22 23:34:26 +00:00
teastep
6ec62fd189 Fix bug in blacklist logging
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@381 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-22 05:26:20 +00:00
teastep
0ca8649e7b Update the releasenotes with info on RFC1918_LOG_LEVEL
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@380 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-21 20:03:23 +00:00
teastep
f918713016 Fix typo in shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@379 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-21 18:18:45 +00:00
teastep
9075f8e0a5 Tone down extension script release notes entry
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@378 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-21 02:40:25 +00:00
teastep
ba5a9df990 Beta 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@377 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-21 01:28:11 +00:00
teastep
ba05611498 Fix bad bug in find_hosts_by_option()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@376 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-20 21:10:53 +00:00
teastep
43b6a8acc8 Change comment on SPT=0 trap
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@375 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-20 01:13:41 +00:00
teastep
1c8b19cfe8 Add headings for the NAT and Mangle tables in the output from 'shorewall status'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@374 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-19 23:35:21 +00:00
teastep
ad6a24aa3f a) fix a silly bug and b) avoid calling separate_list on an already separated list
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@373 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-19 21:30:58 +00:00
teastep
97c6eae79e Release 1.3.12-Beta1 Changes; bug fix from Tuomo Soini
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@372 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-19 20:14:10 +00:00
teastep
c9a1bff975 More Cleanup
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@371 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-18 23:56:34 +00:00
teastep
efb857df9d Fix a couple of bugs in recent changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@370 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-18 21:58:21 +00:00
teastep
852217c510 Break 'run_iptables' into two functions - only run_iptables2 checks for \!
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@369 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-18 21:26:03 +00:00
teastep
fa843d4139 Allow marking packets in the FORWARD chain
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@368 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-16 19:25:20 +00:00
teastep
ede456adf6 Restore fw->fw redirection; Check for SPT=0 in SYN
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@367 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-14 15:44:26 +00:00
teastep
775d9d92ba Add ULOG Support - phase III
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@364 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-13 04:35:04 +00:00
teastep
1220331e35 Add ULOG Support - phase II
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@363 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-13 04:06:24 +00:00
teastep
b9891e08e2 Add ULOG Support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@362 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-13 03:23:46 +00:00
teastep
faa859e84a Added error message for MAC address in rule destination
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@361 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-10 22:48:04 +00:00
teastep
3ce524d2d8 Added "shorewall show classifiers" command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@360 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-10 20:42:19 +00:00
teastep
a9dfbc23ab Update change log and release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@359 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-10 16:58:05 +00:00
teastep
39da3ef60f Remove redundent function - add some comments
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@358 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-10 16:03:26 +00:00
teastep
1fa9316550 Yet another speed improvement
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@357 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-09 02:42:28 +00:00
teastep
46e306eba9 Correct wording of an error message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@356 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-07 23:33:26 +00:00
teastep
14b0682723 More [re]start speedups
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@355 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-07 03:21:32 +00:00
teastep
2528043867 Speed up 'separate_list'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@354 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-06 00:31:49 +00:00
teastep
992cc301a7 Generate error if 'lo' is defined in the interfaces file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@353 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-05 17:29:56 +00:00
teastep
cfee967d46 Update change log and release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@352 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-05 01:24:51 +00:00
teastep
7a1aa39f95 Speed up running of iptables
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@351 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-05 00:18:47 +00:00
teastep
14a20ece71 a) Rewrote 'list_count' to not require 'wc'
b) Turn off trace after error
c) Allow output ICMP unconditionally again


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@350 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-04 23:53:03 +00:00
teastep
0f33d5af0d Refresh also refreshes traffic control/shaping
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@349 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-04 21:17:14 +00:00
teastep
7c5f5279a1 Reflect allocation of 82.0.0.0/8 in rfc1918
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@348 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-04 00:03:01 +00:00
teastep
a237911ebc Release changes for 1.3.11a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@346 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-03 23:59:51 +00:00
teastep
5b3607d575 Add a reference to the Quickstart Guides to the INSTALL file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@345 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-02 20:57:01 +00:00
teastep
94cc75b63a Fix bug in NAT exclusion -- Roger Aich
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@344 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-27 19:16:06 +00:00
teastep
aff32b8269 1.3.11 release changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@338 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-24 19:23:31 +00:00
teastep
9a8d39bdd5 Add reverse GRE rules for PPTP server and clients
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@337 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-24 18:40:51 +00:00
teastep
b420f4dd36 Add TC_ENABLED warning to the tcrules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@336 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-24 15:59:01 +00:00
teastep
35a18313fc Add comments about 'lo' and 'fw->fw' in config files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@335 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-23 18:40:29 +00:00
teastep
dc0c17f075 Minor firewall cleanup
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@334 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-13 00:57:48 +00:00
teastep
871eeffa2c Revise 'all' in rules to never apply to intra-zone traffic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@333 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 19:47:34 +00:00
teastep
9483f891fc Allow 'all' in rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@332 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 19:21:47 +00:00
teastep
0ad28aae80 Correct fw->fw rule catcher
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@331 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 18:24:38 +00:00
teastep
a511b9b485 Check for fw->fw rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@330 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 17:38:40 +00:00
teastep
dad45a396f Adopt some ideas from autoconf regarding shell portability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@329 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 16:46:50 +00:00
teastep
fbebe29b4d Make bell-ringing echo command more robust
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@328 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 15:12:52 +00:00
teastep
18a6aff46a Add some comments in the policy chain creation/population logic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@327 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 03:41:42 +00:00
teastep
530b4ba457 Accomodate bash clones like dash and ash -- install script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@326 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-10 23:25:19 +00:00
teastep
b8f806e625 Accomodate bash clones like dash and ash
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@325 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-10 23:15:53 +00:00
teastep
8c3af56566 Add TCP Flags Checking
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@324 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-10 21:34:20 +00:00
teastep
3354d96ebb 1.3.10 Release Changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@319 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-09 18:06:34 +00:00
teastep
c44cb44f7c Verify interface names in the SOURCE column of /etc/shorewall/tcrules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@318 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-09 15:56:29 +00:00
teastep
507fa8069d Cosmetic cleanup in firewall script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@317 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-03 15:42:23 +00:00
teastep
5ff9d1a888 Clear nat and mangle counters during 'shorewall reset'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@316 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-30 15:56:46 +00:00
teastep
f80e2d972d Automatically create the /var/lib/shorewall directory during 'save' processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@315 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-29 03:24:38 +00:00
teastep
eef8a3dc72 Improve comments in interfaces file re: use of aliases
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@314 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-29 01:36:06 +00:00
teastep
5205780da6 Update scripts to version 10b1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@313 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-24 02:10:28 +00:00
teastep
01a78306cf Update release and changelog files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@312 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-24 00:47:43 +00:00
teastep
0eda4bab27 Conserve space by removing comment decorations
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@311 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-23 16:48:40 +00:00
teastep
a997c16a42 Clean up MAC Verification Code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@310 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-23 15:58:53 +00:00
teastep
d26c6a5e92 Extend 'maclist' to the hosts file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@309 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-23 01:22:48 +00:00
teastep
347fc0da18 Adjust insertion points for dynamic zone rules based on MAC verification
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@308 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-22 18:33:37 +00:00
teastep
c3cce200b9 Add maclist file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@307 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-22 18:17:48 +00:00
teastep
cd555022bf Add MAC verification
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@306 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-22 18:07:52 +00:00
teastep
9f691d20e4 Allow SNAT using primary IP and ADD_SNAT_ALIASES=Yes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@305 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-22 00:13:24 +00:00
teastep
b3cc7636ad Advise against setting ADD_SNAT_ALIASES=Yes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@304 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-21 18:13:49 +00:00
teastep
42d7503984 Give better error message when getting the IP of a down interface
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@303 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-21 18:13:28 +00:00
teastep
05071ca692 Remove some sillyness from the fallback script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@302 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-15 18:22:54 +00:00
teastep
6ad54b6032 Remove backup init files during uninstall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@300 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-15 16:51:09 +00:00
teastep
395f60e729 Fixes for install, uninstall and fallback scripts
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@299 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-15 16:43:34 +00:00
teastep
8ba46705cf Fix uninstall to remove init script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@298 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-15 15:51:01 +00:00
teastep
23f6bb2371 Move the main firewall script to /usr/lib/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@297 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-15 15:00:11 +00:00
teastep
c1d99fe769 Add support for PPTP client and server on the Firewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@295 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-14 22:26:28 +00:00
teastep
912681428b Tone down ipsecnat rules a bit
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@294 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-11 17:19:06 +00:00
teastep
2c41dc5154 Add IPSECNAT tunnel type; correct typo in spec file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@293 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-10 13:29:06 +00:00
teastep
ad21569d2a Update versions to 1.3.9b
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@289 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-09 15:08:50 +00:00
teastep
9c0ad6d495 Fix typo in firewall script (recalculate_interfacess)
Add PATH assignment to the install script
Correct 'functions' file handling in the install script


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@288 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-09 15:05:53 +00:00
teastep
38e5f236dc Remove iptables 1.2.7 hacks
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@286 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-05 16:36:53 +00:00
teastep
ddc90ef2e0 Improve comment in shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@285 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-03 16:28:56 +00:00
teastep
b650f5b0a5 Add PATH to shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@284 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-03 16:13:13 +00:00
teastep
93283cc0a3 Always process config file when running /sbin/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@283 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-03 16:10:25 +00:00
teastep
46328322db Add some comments to the Dynamic Zone code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@282 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-02 01:24:57 +00:00
teastep
93db8120f9 Some optimizations to the Dynamic Zone code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@281 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-01 23:58:48 +00:00
teastep
e55951ba31 Fix typo
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@280 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-01 23:49:17 +00:00
teastep
09285f8c06 Fix rule insertion algorithms for Dynamic Zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@279 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-01 23:43:03 +00:00
teastep
8ff1919657 Correct typo in error message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@278 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-01 23:01:34 +00:00
teastep
73ae96bb64 More fixes for Dynamic Zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@277 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-01 22:27:19 +00:00
teastep
1a0534f5c0 Corrections to Dynamic Zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@276 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-01 21:46:48 +00:00
teastep
129cedbe8f First implementation of dynamic zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@275 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-10-01 20:54:42 +00:00
teastep
a637e72aad Shorewall-1.3.9a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@271 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-30 18:11:25 +00:00
teastep
e7c44ec80e Fix dumb bug in 1.3.9 Tunnel Handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@270 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-30 17:48:20 +00:00
teastep
9e24f2bdd7 Fix typo in release file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-29 21:41:19 +00:00
teastep
85dfee1475 Remove after error exits
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@263 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-29 21:28:44 +00:00
teastep
c665fec5ef Cleanup of 1.3.9 for Bering
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@261 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-29 21:08:25 +00:00
teastep
86d7723602 Fix problems with oddball shells; updated documentation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@260 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-28 00:31:15 +00:00
teastep
f536d805b0 Move fireall, function and version to /usr/lib/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@259 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-27 21:10:21 +00:00
teastep
d2c7e4130e Update changelog for last 1.3.9 changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@258 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-26 21:58:17 +00:00
teastep
de84a5a43e Don't insist on NEW state for odd protocols -- part 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@257 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-26 20:35:25 +00:00
teastep
ccf0e4d598 Don't insist on NEW state for odd protocols
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@256 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-26 20:28:49 +00:00
teastep
f2b2e84808 Add DNS Name support; remove startup_disabled on uninstall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@255 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-24 23:13:36 +00:00
teastep
b1461a478e Only enable startup on initial installation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@251 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-20 00:53:19 +00:00
teastep
7ff49f05b6 Prevent pre-configuration startup; change version to 1.3.9
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@250 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-19 20:40:10 +00:00
teastep
7f249597b6 Fix typo in policy file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@248 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-19 18:36:09 +00:00
teastep
167cf45cea Allow both interface and address on source in rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@247 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-18 23:38:09 +00:00
teastep
7c84739589 Add counter reset time to log displays
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@246 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-17 23:53:46 +00:00
teastep
44f88327be Final changes for 1.3.8
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@244 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-16 17:13:56 +00:00
teastep
87890954b7 Allow RST and ACK packets under NEWNOTSYN=Yes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@238 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-16 16:08:15 +00:00
teastep
53f8743591 Add ICMP and MULTIPORT support to the black list
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@237 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-14 23:40:46 +00:00
teastep
80498aa034 Assume 'multi' if canonical chain exists; add PROTOCOL and PORT columns to the blacklist file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@236 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-14 22:00:52 +00:00
teastep
6ab2415f85 Shorewall 1.3.7c version changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@232 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-02 20:22:07 +00:00
teastep
08eed6d0b4 Second try at DNAT fw ... fix
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@229 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-02 17:39:46 +00:00
teastep
8a090be857 Reword NETNOTSYN description; bring forward 1.3.7b version changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@228 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-01 18:14:40 +00:00
teastep
b3e56a87ea Correct DNAT with 'fw' source; verify interface in masq file entries
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@227 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-01 17:34:59 +00:00
teastep
ff412cba4d Fix for 'shorewall refresh' bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@225 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-27 02:15:48 +00:00
teastep
def9caa806 Replace tab with space in black list message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@219 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-26 20:36:19 +00:00
teastep
429b8e7d38 Check for DHCP before RFC 1918
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@217 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-24 15:09:34 +00:00
teastep
8f4ff3306e NEWNOTSYN option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@216 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-23 18:51:55 +00:00
teastep
cda5cb1d53 Update for 1.3.7a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@214 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-23 18:50:56 +00:00
teastep
2ef1dbf0af Correct rule processing bug in 1.3.7
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@212 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-23 01:55:51 +00:00
teastep
95d02199f9 Release info update for 1.3.7
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@206 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-22 20:25:16 +00:00
teastep
d766536d1c Correction to iptables 1.2.7 workaround
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@205 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-22 13:34:43 +00:00
teastep
bcea92a607 Work around iptables 1.2.7 bugs
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@204 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-19 17:33:22 +00:00
teastep
7af8a1dbb6 Correct ADD_SNAT_ALIASES problem (again)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@203 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-19 14:40:42 +00:00
teastep
646a947b8c Correct ADD_SNAT_ALIASES problem
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@202 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-19 13:56:28 +00:00
teastep
652cadb22c Add loopback class A to rfc1918 file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@201 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-17 22:15:41 +00:00
teastep
6ae0ea8981 Make multiport work with iptables 1.2.7
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@197 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-14 16:01:32 +00:00
teastep
d501ed19ef Update comments in common.def
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@196 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-13 20:51:16 +00:00
teastep
8a8692cf9a More interfaces file comment updates
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@191 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-13 18:51:55 +00:00
teastep
6e5a9253e4 Document broadcast address list
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@190 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-13 15:49:52 +00:00
teastep
3c8515aa6b Remove ICMP.DEF and replace with FORWARDPING option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@189 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-12 17:33:05 +00:00
teastep
befb70c1ec Fix typo in policy file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@188 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-08 17:48:21 +00:00
teastep
9b4f8dae48 Add autostart config for Gentoo Linux
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@187 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-08 17:48:04 +00:00
teastep
f5829523bd Remove 69.0.0.0/8 from rfc1918 file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@186 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-08 14:31:13 +00:00
teastep
0e9e5a4241 Remove extra '-p tcp'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@178 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-06 19:45:49 +00:00
teastep
ed2036ece9 Make 'new not SYN' user-customizable
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@177 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-06 19:06:32 +00:00
teastep
27952f3d4b Final 'New not SYN' implementation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@176 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-06 18:45:13 +00:00
teastep
3428f59895 New technique for dealing with NEW not SYN
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@175 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-05 23:34:46 +00:00
teastep
7b00737a94 Initialize LOGNEWNOTSYN
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@174 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-05 14:43:39 +00:00
teastep
3ae4938cec Update versions to 1.3.6\; Add NEWNOTSYN parameter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@173 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-05 14:40:06 +00:00
teastep
026645036e Config file updates
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@172 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-04 22:55:17 +00:00
teastep
5940dd8815 Fix proxyarp attribute
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@171 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-04 22:54:49 +00:00
teastep
03f2460461 Couple of config file cleanups
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@170 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-08-02 20:58:52 +00:00
teastep
824e684ce6 Clean up config files based on input from the Documentation Group
Correct zone file installation message


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@169 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-31 13:58:53 +00:00
teastep
3ef27280d3 Update for 1.3.5b
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@166 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-30 00:04:10 +00:00
teastep
51c7e767ff Remove lock file when firewall script dies
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@165 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-29 23:53:26 +00:00
teastep
63bc520aa9 Allow host-list in /etc/shorewall/hosts again
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@164 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-29 14:31:50 +00:00
teastep
10b5589304 Shorewall 1.3.5a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@162 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-27 22:14:14 +00:00
teastep
576ee2beee Correct bugs in 1.3.5
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@161 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-27 18:47:09 +00:00
teastep
409216ed72 Improve comments about 'proxyarp' option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@157 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-25 15:31:37 +00:00
teastep
c2b143cba0 Added 'proxyarp' interface option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@156 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-25 15:05:21 +00:00
teastep
f3d8676f16 Add comment to interfaces file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@155 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-24 15:09:04 +00:00
teastep
7ae7fc3089 Protect against MUTEX_TIMEOUT=0
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@154 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-24 15:03:06 +00:00
teastep
1c235e096d Document MUTEX_TIMEOUT in release notes and change log
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@153 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-24 14:34:28 +00:00
teastep
142f3d2960 Document port ranges in the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@151 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-24 03:59:41 +00:00
teastep
b898747dc3 Add MUTEX_TIMEOUT variable
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@150 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-24 03:47:34 +00:00
teastep
b698fe4d6f Leave lock file after timeout
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@149 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-24 01:50:25 +00:00
teastep
621e8df85b Issue message when adding an IP address
Don't die on lockfile timeout


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@148 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-23 23:09:14 +00:00
teastep
1412f0d698 Centralize addition of IP aliases
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@147 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-23 16:26:45 +00:00
teastep
2344570e81 Change Version to 1.3.5
Save counter reset time/date in /var/lib/shorewall/restarted


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@146 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-22 22:31:07 +00:00
teastep
a3ad85d24e Final 1.3.5 changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@145 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-22 01:51:19 +00:00
teastep
90e2520f1c Provide saner behavior WRT the hosts file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@144 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-19 22:51:28 +00:00
teastep
6f25838e23 Update package description in spec file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@143 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-18 13:53:13 +00:00
teastep
92f5a433dd Fix for spec file from Ajay Ramaswamy
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@142 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-18 13:50:01 +00:00
teastep
44e0821f66 Duplicate new checks in start/restart path
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@141 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-18 13:43:51 +00:00
teastep
646a259f2e Improve source/dest checking in 'check'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@140 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-17 21:42:30 +00:00
teastep
13305c45c3 Detect empty source and destination qualifiers
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@139 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-17 18:55:08 +00:00
teastep
ab7cf0e002 Update release notes and change log for 1.3.4
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@137 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-16 16:29:25 +00:00
teastep
ccdbd9faed Allow shell variable expansion in /etc/shorewall/routestopped
Make the HOST(S) column optional in /etc/shorewall/routestopped
Add a 'stopped' user exit


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@132 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-11 16:15:40 +00:00
teastep
45e4750219 Add 'routestopped' file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@131 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-11 00:01:45 +00:00
teastep
0665db84e1 Correct policy file zone validation during [re]start
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@130 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-09 22:39:22 +00:00
teastep
5fb079b6f3 Rename DETECT_IPADDRS to DETECT_DNAT_IPADDRS
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@129 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-09 21:21:28 +00:00
teastep
90b701de4d Implement DETECT_IPADDRS parameter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@128 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-09 15:44:49 +00:00
teastep
350426f983 Undo over zealous tabification
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@126 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-06 14:05:30 +00:00
teastep
e9727a0f4c Remove 221.0.0.0/8 from rfc1918 file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@121 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-06 13:48:07 +00:00
teastep
e899d2a8ab Untabify major files and fix 'hits' bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@114 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-05 22:24:40 +00:00
teastep
ee19fb9ea6 More NAT table Tuning
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@113 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-05 21:57:37 +00:00
teastep
a53f7546bb Correct stupid error in chain name routines
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@112 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-05 16:48:41 +00:00
teastep
66806ff9a2 More release notes updates
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@110 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-05 16:34:22 +00:00
teastep
3621a31b5e Update change log
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@105 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-05 16:04:10 +00:00
teastep
0fd96b0e3e Update version to 1.3.3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@104 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-05 16:01:08 +00:00
teastep
a8c6143943 More NAT table Rework
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@103 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-05 15:56:02 +00:00
teastep
338673c29a Improve handling of PREROUTING for NAT
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@102 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-04 15:41:51 +00:00
teastep
750d40ce03 Fix MULTIPORT port forwarding
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@101 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-03 23:31:50 +00:00
teastep
939750baa2 Fix NAT_BEFORE_RULES=No
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@100 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-30 14:35:32 +00:00
teastep
4bfbc19f47 Enhanced 'hits' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@99 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-29 22:41:30 +00:00
teastep
9d944ee6ef Update the change log and release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@98 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-29 14:23:49 +00:00
teastep
0476fa40c5 Add comment to hosts that interface must be defined
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@97 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-29 13:48:33 +00:00
teastep
6b8a9b8ddf Validate the interfaces in the hosts file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@96 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-28 23:42:00 +00:00
teastep
399aa099ba Correct ICMP Protocol Number in Case Statement
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@93 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-25 16:11:27 +00:00
teastep
90bb5f1b53 Correct RFC1918 Logging
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@92 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-25 14:31:45 +00:00
teastep
1623988384 Validate TARGET column in rfc1918 file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@91 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-21 21:40:36 +00:00
teastep
2bcb33a34d Rename rfc1918 mangle chain
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@90 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-21 17:20:18 +00:00
teastep
115e052f12 Reorganize Tunnel Creation; Automatic 'multi' on wildcard interfaces
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@89 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-21 15:57:01 +00:00
teastep
a9d40f34b3 Reorganize rules file processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@84 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-19 21:51:36 +00:00
teastep
98d57a3733 Correct indentation in check_config()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@83 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-18 19:30:22 +00:00
teastep
8dc9451500 Enable forwarding during clear
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@82 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-18 17:56:00 +00:00
teastep
16a9abc9d8 Flush all chains during clear
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@81 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-18 17:53:24 +00:00
teastep
332352bc6f Correctl duplicate interface message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@80 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-18 15:50:16 +00:00
teastep
d5bfd4e40a Correctly detect duplicate entry in interfaces file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@79 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-18 15:44:17 +00:00
teastep
ce5030ac2b Update changelog
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@78 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-17 18:36:24 +00:00
teastep
38a0ff5486 Fix bug in find_hosts_by_option()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@77 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-17 17:50:45 +00:00
teastep
1cb43c539c Move the 'save' file to /var/lib/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@76 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-16 17:56:45 +00:00
teastep
49944c7d9a Update changelog and release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@75 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-16 14:26:31 +00:00
teastep
1c299919c8 Fix bug in find_interfaces_by_option()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@74 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-15 17:28:46 +00:00
teastep
65e4f035b0 Move firewall, functions and version to /var/lib/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@73 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-15 17:27:41 +00:00
teastep
c06b769a7b Acknowledge Andy Wiggin in the rfc1918 file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@65 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-13 14:13:10 +00:00
teastep
bdb05089e6 Correct an indentation problem in firewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@64 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-12 16:15:26 +00:00
teastep
69220bedfe Cosmetic changes to firewall and shorewall files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@63 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-11 20:14:58 +00:00
teastep
52ef74cfb8 Correct missing argument to packet_log() in the "shorewall status" command.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@62 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-10 16:53:18 +00:00
teastep
d58c3ac29e Include workaround for ICMP bug in firewall script.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@61 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-09 16:30:52 +00:00
teastep
b50d647981 Correct several problems with dynamic rules.
Split NAT and Mangle tables into separate displays.
Add dynamic chain to the 'monitor' display.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@60 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-04 21:08:44 +00:00
teastep
0e4274e027 Update comments in 'shorewall' for new dynamic firewall commands.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@59 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-04 20:58:53 +00:00
teastep
4e1b049250 Improve 'Allow' logic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@58 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-04 20:39:00 +00:00
teastep
aac129f404 Add dynamic drop/reject/allow/save functions.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@57 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-04 20:17:46 +00:00
teastep
5c9562c20a Add 'blacklist' command to /sbin/shorewall.
Correct 'try' command.
Update rfc1918 per Suggestion from Andy Wiggin


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@56 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-04 15:08:50 +00:00
teastep
e8c2fb53dc Correct Comment in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@55 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-03 18:26:00 +00:00
teastep
7b5ec93015 Update to RFC1918 from Andy Wiggin
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@54 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-03 02:48:32 +00:00
teastep
fe1086676a Speed up multiport selection code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@53 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-02 23:14:51 +00:00
teastep
6dfae19e76 Document MULTIPORT in the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@52 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-02 21:29:29 +00:00
teastep
3563a47103 Don't use "-m multiport" if port lists don't have more than one element.
Clarify comments on the MULTIPORT option in shorewall.conf.
Update versions to 1.3.2.
Update release notes and change log.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@51 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-02 19:47:17 +00:00
teastep
ca9c02ce7f Fix problem with double-counting SYN packets.
Avoid superfluous jumps to the policy chain with CONTINUE.
Add reserved networks to rfc1918.
Implement MULTIPORT option for multiport match support.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@50 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-02 17:05:51 +00:00
teastep
16d50cb974 Final Changes for 1.3.1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@47 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-01 00:28:18 +00:00
teastep
44abd1be80 Add rfc1918 file and correct 'all->z CONTINUE' policies
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@43 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-31 14:33:18 +00:00
teastep
5245e3b75a Final 1.3 Updates
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@41 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-30 12:55:47 +00:00
teastep
4c1193e4cd Near complete removal of the 'multi' pseudo-zone
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@31 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 19:04:45 +00:00
teastep
bb65b34210 Update rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@30 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 14:48:11 +00:00
teastep
06146580fa Update rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@29 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 14:17:56 +00:00
teastep
e393e5d4e1 Update rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@28 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 14:16:26 +00:00
teastep
44170128c2 1.3 Beta 2 Snapshot
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@27 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 13:45:23 +00:00
teastep
4f01c2b3ed Final 1.2.13 Update
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@15 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-04 18:38:49 +00:00
teastep
9ba6a48354 Slight cleanup of the ADD_IP_ALIASES change.
Apply the same change to ADD_SNAT_ALIASES.
Add a new 'report' function that prints and logs in a single call.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@14 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-02 22:56:27 +00:00
teastep
d97c5573c6 Cause aliases added under ADD_IP_ALIASES to use the VLSM and Broadcast of
the primary IP address.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@13 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-02 01:34:56 +00:00
teastep
7c78bb16a7 Initial revision
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@10 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-04-30 23:13:15 +00:00