shorewall_code

mirror of https://gitlab.com/shorewall/code.git synced 2025-07-31 10:48:35 +02:00

Author	SHA1	Message	Date
Tom Eastep	51deec115b	Correct handling of wildcard interfaces - chain_base[1] renamed var_base[1] - $chain replaced by $var in renamed functions - replace trailing '+' by '_plus' to provide uniqueness - add sub chain_base() to the Chains module as an identity mapper Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-28 10:39:19 -08:00
Tom Eastep	4393a6c603	Eliminate redundant calls to clear_comment. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-24 12:35:08 -08:00
Tom Eastep	14f8947012	Remove old COMMENT/FORMAT handling Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-24 09:31:20 -08:00
Tom Eastep	15817078b8	Use 'our' for globals to aid debugging. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-23 13:16:54 -08:00
Tom Eastep	41b4485310	Implement ?COMMENT directive Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-22 15:47:03 -08:00
Tom Eastep	71bbc632ce	Handle 'fw' correctly in the SOURCE column of the stoppedrules file. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-11-23 08:35:51 -08:00
Tom Eastep	b89e05740d	Insure that nested zone exclusions go in the proper place in raw PREROUTING Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-11-21 14:49:21 -08:00
Tom Eastep	54dadcc546	Ensure that zone-specific rules come before 'all' rules. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-11-21 14:20:30 -08:00
Tom Eastep	ffcf262de4	Ensure that the 1:1 NAT chain jumps always come last in PREROUTING. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-26 15:46:52 -07:00
Tom Eastep	a223245c01	Don't create classic blacklist chains if no blacklist file. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-12 07:30:34 -07:00
Tom Eastep	ebc4ad2f1e	Add warning message when an OUTPUT stopped rule is ignored due to ADMINISABSENTMINDED Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-05 07:16:40 -07:00
Tom Eastep	3993abad4e	Revert routestopped changes. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-04 17:03:02 -07:00
Tom Eastep	eb854f1dbe	Only process routestopped when stoppedrules does not exist or is empty Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-04 08:46:04 -07:00
Tom Eastep	8e5bd3637d	Implement stoppedrules file (less manpages) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-03 08:44:03 -07:00
Tom Eastep	353915fc8b	Allow ipsets in the routestopped file. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-01 10:52:37 -07:00
Tom Eastep	e2c7284529	Correct handling of 'source' with ADMINISABSENTMINDED=No Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-09-01 08:26:31 -07:00
Tom Eastep	1e11109bb2	Don't combine rules with '-m policy' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-08-16 08:34:30 -07:00
Tom Eastep	b372163122	Enable automatic helper association during 'stop'. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-08-12 08:42:53 -07:00
Tom Eastep	ee28638604	Add HELPERS to rules file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-08-08 07:23:20 -07:00
Tom Eastep	ccf517307e	Handle raw table zones from VSERVERS Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-08-07 14:51:58 -07:00
Tom Eastep	55b527d065	Eliminate a local variable. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-07-15 20:22:19 -07:00
Tom Eastep	1db79a91eb	'rpfilter' option Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-07-15 10:05:32 -07:00
Tom Eastep	1f54d19981	Split add_input_jumps() into two functions - Added add_forward_jump() - Added lots of comments Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-06-09 17:21:59 -07:00
Tom Eastep	a2f32f25c5	Add some comments. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-06-09 06:20:40 -07:00
Tom Eastep	ae66d7d7a5	Eliminate the hideously complex forwarding code in generate_matrix() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-06-08 08:29:36 -07:00
Tom Eastep	63eb0bee5b	Break up and eliminate handle_pio_jumps() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-06-08 07:40:26 -07:00
Tom Eastep	d771c6b2c2	Delete the 'dnat' nat-table chain Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-06-07 13:44:03 -07:00
Tom Eastep	fe7d0730d5	Break up generate_matrix() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-06-07 07:47:33 -07:00
Tom Eastep	170875c7dd	Convert the 'ignore' interface to be multi-valued -Allows 'ignore=1' to only exempt interface from updown processing Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-06-05 07:23:23 -07:00
Tom Eastep	70e4c26df1	Delete a comment Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-05-19 16:46:57 -07:00
Tom Eastep	3d541f50c8	Use "(S)" consistently in column headings. - add synonyms so both the singular and plural forms are accepted. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-05-11 12:42:04 -07:00
Tom Eastep	5d7442e9e9	Correct typo in converted blrules file. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-05-07 12:13:26 -07:00
Tom Eastep	894931731b	Merge branch 'master' of ssh://shorewall.git.sourceforge.net/gitroot/shorewall/shorewall	2012-05-02 07:04:30 -07:00
Tom Eastep	766771d812	Remove absurd test Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-30 07:48:07 -07:00
Tom Eastep	b9e6349994	Add some comments Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-29 09:07:34 -07:00
Tom Eastep	c9b4d3d8c8	Add/improve comments. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-25 09:44:08 -07:00
Tom Eastep	d904a2de86	Search and destroy trailing whitespace Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-24 14:52:57 -07:00
Tom Eastep	f860cd037d	Change a comment in generate_matrix() to acknowledge 'KLUDGEFREE' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-24 13:34:56 -07:00
Tom Eastep	24e2fe4a04	Make options argument to read_a_line manditory Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-14 08:04:28 -07:00
Tom Eastep	42950e53cd	Use logical add rather than arithmetic add for uniformity Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-11 14:28:09 -07:00
Tom Eastep	5ee554708c	Control the proliferation of arguments to read_a_line() by using a bit-mapped single argument. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-04-10 13:51:25 -07:00
Tom Eastep	6ed207aba0	Fix 'dhcp' with 'nets' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-03-31 09:30:29 -07:00
Tom Eastep	fecd091078	Remove %zones{option}{nested} Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-03-13 11:31:13 -07:00
Tom Eastep	e0b360513c	Remove a level of indirection for 'complex' zone flag. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-03-13 09:47:31 -07:00
Tom Eastep	48570227ba	Big cleanup of TOS handling - Validate settings/matches - Allow setting in the tcrules file. - Deprecate /etc/shorewall[6]/tos	2012-03-09 16:16:25 -08:00
Tom Eastep	47453a20f7	Tweak to Run-time gateway variables Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-02-24 09:02:04 -08:00
Tom Eastep	75d5957020	Unify 'dont_' chain flags Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-02-19 14:20:09 -08:00
Tom Eastep	45a1f9df4f	Streamline exclusion of the %vserver% pseudo-interface. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-02-01 10:25:26 -08:00
Tom Eastep	a39f4699dc	Update versions and copyrights Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-01-02 07:43:13 -08:00
Tom Eastep	288c7b06dc	Place sfilter jumps in the option chains Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-12-31 14:47:36 -08:00

1 2 3

137 Commits