Commit Graph

117 Commits

Author SHA1 Message Date
teastep
51d7faf7c3 More cleanup
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3308 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-17 17:34:34 +00:00
teastep
78a9d450bd Correct typo in 'retreat' patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3307 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-17 17:08:41 +00:00
teastep
8cc91bf428 A couple of minor tweaks
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3306 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-17 17:00:54 +00:00
teastep
bc27bc935f Some hacking on '-p' -- still not ready for prime time
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3302 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-16 21:29:00 +00:00
teastep
005a53046f Correct locking on 'reload' -- Take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3300 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-16 16:49:09 +00:00
teastep
27e36c171f Correct locking on 'reload'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3299 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-16 16:45:25 +00:00
teastep
01e38957e0 Update versions from 3.0 to 3.2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3297 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-16 15:15:43 +00:00
teastep
25c7bad478 Update for 3.1.2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3292 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-15 19:27:57 +00:00
teastep
c882d8cb3d Move '-e' to after 'compile|generate'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3291 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-15 16:35:09 +00:00
teastep
222fb2c10f Change output from 'compile' to the entered name in all cases (do not append /var/lib/shorewall)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3276 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-13 17:08:23 +00:00
teastep
e9423d9c04 Allow remote compiles
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3269 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-12 23:26:37 +00:00
teastep
160e7432e0 Re-add dynamic zone capability -- Take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3265 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-11 23:42:06 +00:00
teastep
248b26a7d8 Re-add dynamic zone capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-11 23:30:33 +00:00
teastep
ee3a9a9456 Add extra-quiet mode using -qq
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-09 17:11:30 +00:00
teastep
cfe0e4ee7b Avoid local exploitability with compile output file. Add 'compile' as a synonym for 'generate'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3254 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-07 22:52:15 +00:00
teastep
ab7c5cdff9 Implement 'reload' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3243 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-07 06:04:16 +00:00
teastep
1898b6cb8a Implement new generate syntax
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3239 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-07 04:05:16 +00:00
teastep
d81f2ca29e First releast of 'shorewall generate'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3237 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-07 01:08:23 +00:00
teastep
835127a4d7 Remove silly repeated shift commands
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3226 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-04 23:34:07 +00:00
teastep
1cb2d888e8 Remove dynamic zone capability from development branch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3196 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-24 21:23:10 +00:00
teastep
5b3fef21a8 Add Limit as a standard action
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3171 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-15 22:42:39 +00:00
teastep
43984b5d10 Remove some redundancy from the output of 'show macros'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3135 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-09 16:06:06 +00:00
teastep
e842bc2190 Add 'reload' command to init scripts
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3130 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-07 22:03:44 +00:00
teastep
7f39d760b7 Add 'ipdecimal' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3114 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-02 23:58:57 +00:00
teastep
609c60f463 Add traffic shaping information to 'dump' output -- Take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3101 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 19:18:15 +00:00
teastep
ec8be6bcac Add traffic shaping information to 'dump' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3100 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 18:24:19 +00:00
teastep
65eeafaba6 Fix safe-start and safe-restart adding support for -q as well
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3093 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-29 19:39:43 +00:00
teastep
c6c28aef54 Deprecate 'show tos' in favor of 'show mangle' -- Take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3088 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-27 23:21:16 +00:00
teastep
7b401c9036 Deprecate 'show tos' in favor of 'show mangle'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3086 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-27 23:09:36 +00:00
teastep
eae01af2fc shorewall show macros -- Take 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3085 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-27 21:11:14 +00:00
teastep
26cf234d04 shorewall show macros -- Take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3084 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-27 21:02:25 +00:00
teastep
ffae7b5646 shorewall show macros
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3083 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-27 20:59:47 +00:00
teastep
d8e1cfb689 Add zone type to 'shorewall show zones' display
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2782 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 14:54:56 +00:00
teastep
84af786df4 Add capabilities report to 'shorewall dump' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2758 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-30 16:54:24 +00:00
teastep
87f27e7206 Remove control character from 'shorewall' script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2695 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-17 03:22:17 +00:00
teastep
0bf8e6b293 Add '-n' option to the 'try' command and add to help text
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2687 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-15 01:07:12 +00:00
teastep
66e9add7f0 Add -n option to suppress routing table changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2686 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-14 23:01:13 +00:00
teastep
738b45ad9e Update the version number to 3.0 in all files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2606 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 15:27:22 +00:00
teastep
ef134da4b9 Make -q work with the try command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2494 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 18:30:59 +00:00
teastep
5de0a44eea Modify kernel version patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2465 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-08 18:05:22 +00:00
teastep
46210cd6bb Add kernel version information to 'shorewall dump' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2462 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-08 17:02:08 +00:00
teastep
2b261424d7 Minor tweak to 'dump'; remove the dynamic blacklist in 'forget'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2451 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-03 20:24:55 +00:00
teastep
ac1983a5da Large cleanup patch from Tuomo Soini
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2449 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-02 16:46:30 +00:00
teastep
3f748212d6 Globalize shorewall_is_started()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2443 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-01 20:35:28 +00:00
teastep
b828793da9 Recombine the 'status' and 'state' commands
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2434 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-30 21:59:12 +00:00
teastep
86f20a374b Little cleanup of release notes and /sbin/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2431 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 19:06:37 +00:00
teastep
9feb547b6e /sbin/shorewall status rework -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2430 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 18:32:50 +00:00
teastep
2a52d3342d Fix Makefile; rename status to dump and create a real status command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2427 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:37:56 +00:00
teastep
6c8b63bfe0 Remove dependence on 'which'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 20:30:16 +00:00
teastep
b66929a65e Large merge of function from EXPERIMENTAL to HEAD.
1) Elimination of the "shorewall monitor" command.

2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.

3) Support has been added for the arp_ignore interface option.

4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.

5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.

6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).

7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.

8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.

9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.

10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.

11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00