65 Commits

Author	SHA1	Message	Date
Tom Eastep	77e83f0afd	Eliminate the CHAIN_SCRIPTS option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-11-29 16:33:23 -08:00
Tom Eastep	414c5c7b0c	Change default shorewall6.conf settings. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-11-22 09:05:04 -08:00
Tom Eastep	14e8568d9e	Add the FIREWALL .conf option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-05 15:03:54 -07:00
Tom Eastep	ed48eed0c6	Change order of options in .conf files. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-02 15:14:31 -07:00
Tom Eastep	792b3b696c	Add ZERO_MARKS option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-26 16:04:26 -07:00
Tom Eastep	24d40f4cc2	Add VERBOSE_MESSAGES option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-04-30 08:00:56 -07:00
Tom Eastep	62880bdf1b	Don't populate PAGER in the sample config files. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-03-02 13:04:47 -08:00
Tom Eastep	90d254f0c3	Add PAGER option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-03-02 08:32:49 -08:00
Tom Eastep	46434e45b6	Change to IP_FORWARDING=keep in shorewall6.conf files ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-12-02 11:28:04 -08:00
Tom Eastep	72d4637c22	Replace LEGACY_RESTART with RESTART ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-10-12 11:45:58 -07:00
Tom Eastep	8bed5c9d65	Drop support for the IPSECFILE option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-08-03 10:11:52 -07:00
Tom Eastep	037e92a60e	Eliminate some config options ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-08-01 14:28:12 -07:00
Tom Eastep	f40373d60c	Update config file version and copyrights ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-07-28 10:50:19 -07:00
Tom Eastep	fa7248c58c	Add the LEGACY_RESTART option. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-07-27 09:19:52 -07:00
Tom Eastep	cecc81ce82	Update .service files ... - make the .214 versions the default and remove the ones name *.214 - Add 'ExecReload' to all but Shorewall-init - Create Debian-specific versions with /etc/default rather than /etc/sysconfig	2015-07-26 10:58:03 -07:00
Tom Eastep	3d325431ff	Change Default IPv6 .conf to specify INLINE_MATCHES=No ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-07-06 14:49:20 -07:00
Tom Eastep	7c9155a6e8	Update man pages and .conf files for WORKAROUNDS ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2015-06-06 07:56:14 -07:00
Tom Eastep	8fb73026c8	Replace SAVE_COUNTERS with the -C command option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-11-01 09:37:57 -07:00
Tom Eastep	3454e10525	Add SAVE_COUNTERS option. ... - Also implement recover command Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-10-30 08:57:56 -07:00
Tom Eastep	cbcb1ff7e1	Add SAVE_IPSETS to shorewall6.conf. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-09-28 11:37:24 -07:00
Tom Eastep	580e00dabd	Implement LOG_BACKEND option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-09-24 15:26:13 -07:00
Tom Eastep	dcc2fb27c5	Apply Tuomo Soini's whitespace patch ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-05-19 14:18:48 -07:00
Tom Eastep	b3cd9ab15a	Default to LOAD_HELPERS_ONLY=Yes ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-04-12 11:05:28 -07:00
Tom Eastep	fdc391cf49	Change all *.conf files to reflect ZONE2ZONE=- ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-04-11 20:44:15 -07:00
Tom Eastep	cea237620a	Change USE_DEFAULT_RT default to 'Yes'. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-03-09 07:42:22 -07:00
Tom Eastep	2dbcd36a9c	Implement BASIC_FILTERS ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2014-02-04 16:34:03 -08:00
Tom Eastep	33c5893bdb	Implement INLINE_MATCHES ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-12-14 13:35:01 -08:00
Tom Eastep	67603c5eb3	Implement REJECT_ACTION ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-09-01 09:14:10 -07:00
Tom Eastep	aabb22a50f	Add the TRACK_RULES option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-07-24 07:22:51 -07:00
Tom Eastep	5ad69aa650	Add CHAIN_SCRIPTS option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-04-21 07:30:31 -07:00
Tom Eastep	b5ea4067e4	Implement USE_RT_NAMES ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-03-24 10:56:38 -07:00
Tom Eastep	252dd9b676	Correct SUBSYSLOCK setting in shorewall6.conf ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-02-28 07:45:17 -08:00
Tom Eastep	f44becdee1	Rename BLACKLIST_LOGLEVEL to BLACKLIST_LOG_LEVEL for consistent naming. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-02-12 07:47:02 -08:00
Tom Eastep	fc73c3934b	Replace BLACKLISTNEWONLY with BLACKLIST ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-01-30 08:00:47 -08:00
Tom Eastep	6403f4959d	Implement UNTRACKED SECTION ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-01-24 15:42:01 -08:00
Tom Eastep	c2bc74cdfe	Add INVALID section to the rules file. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2013-01-24 08:33:59 -08:00
Tom Eastep	c26db29244	Implement DEFER_DNS_RESOLUTION	2013-01-13 13:23:38 -08:00
Tom Eastep	ebe4267c49	Rename IGNOREOLDCAPVERSIONS to WARNOLDCAPVERSION ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-27 09:58:45 -08:00
Tom Eastep	8bb6f81dc5	Rename IGNOREOLDCAPS to IGNOREOLDCAPVERSIONS ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-27 08:54:22 -08:00
Tom Eastep	ef0102e9f1	Add the 'IGNOREOLDCAPS' option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-26 15:48:08 -08:00
Tom Eastep	8a0abab4cc	Rename 'ALLOWUNKNOWNVARIABLES' to 'IGNOREUNKNOWNVARIABLES' ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-12 11:51:31 -08:00
Tom Eastep	903e25a91a	Add ALLOWUNKNOWNVARIABLES to the sample configurations. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-12-04 09:04:34 -08:00
Tom Eastep	cc90a06958	Add RESTORE_ROUTEMARKS option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-10-11 07:34:57 -07:00
Tom Eastep	50bd1d6398	Add AUTOHELPER option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-08-12 07:25:11 -07:00
Tom Eastep	72307df6d2	Replace the AUTOHELPERS option with the HELPERS option. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-08-03 10:53:20 -07:00
Tom Eastep	833e54c9c3	Rename the notrack file to conntrack ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-08-02 11:02:17 -07:00
Tom Eastep	735b7c2cf5	Add support for nfacct ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-07-28 11:21:16 -07:00
Tom Eastep	1db79a91eb	'rpfilter' option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-07-15 10:05:32 -07:00
Tom Eastep	5b891f1072	Remove quotes from GEOIPDIR setting ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-05-25 07:05:38 -07:00
Tom Eastep	d8ec051114	Load the geoip cc's dynamically. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2012-05-20 08:59:59 -07:00