shorewall_code

mirror of https://gitlab.com/shorewall/code.git synced 2024-12-03 04:53:10 +01:00

Author	SHA1	Message	Date
Tom Eastep	78da975989	Fix a couple of issues with product name - Use $Product rather that addressfamily-dependent logic - Revert unneeded change from 5.2.3.7 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-28 14:24:32 -07:00
Tuomo Soini	be924ff765	Fix http links to point to current project website Also removes deprecated Shorewall6/configfiles/masq Signed-off-by: Tuomo Soini <tis@foobar.fi> Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-27 14:24:37 -07:00
Tom Eastep	2604378646	Add 'help' to the generated script's help text Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-08 13:20:27 -07:00
Tom Eastep	b52a330f41	Replace trace, debug and nolock with options Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-07 17:48:10 -08:00
Tom Eastep	d3de75dd12	Add DOCKER_BRIDGE option Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-07 11:34:23 -08:00
Tom Eastep	639dc86e1b	Merge branch 'master' into 5.2.4 # Conflicts: # Shorewall/Perl/Shorewall/Config.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-06 13:07:00 -08:00
Tom Eastep	fa1aa4b481	Merge branch '5.2.3' # Conflicts: # docs/Introduction.xml	2020-03-06 13:04:18 -08:00
Tom Eastep	9f3534dc1f	Correct Docker-related typos in Compiler.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-04 14:55:52 -08:00
Tom Eastep	f63f0bb2f1	Correct DOCKER code Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-03 14:38:36 -08:00
Tom Eastep	65e101f306	Refine handling of MANGLE_ENABLED=No Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-02 08:21:34 -08:00
Tom Eastep	000f120c61	Improve checking when MANGLE_ENABLED=No in shorewall[6].conf - Fatal error when a feature is used that requires the mangle table Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-01 15:38:28 -08:00
Tom Eastep	f221ca290f	Improve checking when MANGLE_ENABLED=No in shorewall[6].conf - Fatal error when a feature is used that requires the mangle table Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-01 15:07:17 -08:00
Tom Eastep	8b99f8caac	Merge branch 'master' into 5.2.4 # Conflicts: # docs/SharedConfig.xml Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-01 13:50:05 -08:00
Tom Eastep	8b2c79e5ce	Merge branch '5.2.3' into 5.2.4 # Conflicts: # docs/Introduction.xml Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-03-01 13:48:45 -08:00
Tom Eastep	dcde2bfa4a	Correct logic that decides if a reload is necessary during enable Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-02-26 15:22:17 -08:00
Tom Eastep	387b861759	Correct handling of ORIGDEST with OLD_CONNTRACK_MATCH - Also correct detection of OLD_CONNTRACK_MATCH in shorewall6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-02-25 13:08:58 -08:00
Tom Eastep	6798c2f2b0	Accomodate both DOCKER-ISOLATION and DOCKER-ISOLATION-STAGE-* Previously, the code assumed that either DOCKER-ISOLATION or DOCKER-ISOLATION-STAGE-* would exist but not both. That has been corrected	2020-02-24 15:35:50 -08:00
Tom Eastep	e8f49bc9c7	Merge branch '5.2.3'	2020-02-18 11:11:53 -08:00
Tom Eastep	31b558b7f9	Filter out LIBVIRT rules when saving Docker Rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-02-16 10:36:16 -08:00
Tom Eastep	367a5f7d97	Filter out LIBVIRT rules when saving Docker Rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-02-16 10:33:18 -08:00
Tom Eastep	4efac2fda1	Handle essential IPv6-ICMP types when firewall is stopped Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-02-06 15:21:51 -08:00
Tom Eastep	5f50b70618	Merge branch '5.2.3' into 5.2.4 # Conflicts: # docs/SharedConfig.xml Signed-off-by: Tom Eastep <teastep@shorewall.net>	2020-02-06 14:08:33 -08:00
Tom Eastep	7aaa04149e	Merge branch '5.2.3' # Conflicts: # Shorewall/manpages/shorewall-files.xml # docs/SharedConfig.xml	2020-02-01 09:45:33 -08:00
Tom Eastep	08da235896	Correct IPv6 Address Range parsing Previously, such ranges were required to be of the form [<addr1>-<addr2>] rather than the more standard form [<addr1>]-[<addr2>]. In the snat file (and in nat actions), the latter form was actually flagged as an error while in other contexts, it resulted in a less obvious error being raised. With this change, both forms are accepted. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-12-23 10:02:48 -08:00
Tom Eastep	77cad81ba7	Clean up comments Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-12-23 09:59:29 -08:00
Tom Eastep	157abcbd37	Allow NFQUEUE 'bypass' in the policy file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-10-21 14:41:02 -07:00
Tom Eastep	2b7a37e42a	Minor cleanup of the Chains module Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-10-16 11:44:02 -07:00
Tom Eastep	cb56991fee	Merge branch '5.2.3'	2019-09-03 07:45:57 -07:00
Tom Eastep	40f6192e19	Make 'AUTOMAKE=No' the update default Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-08-25 14:20:54 -07:00
Tom Eastep	7051daeb08	Correct handle of multi-queue NFQUEUE when passed to a macro Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-08-25 14:18:54 -07:00
Tom Eastep	a9c42e1eaa	Correct NFQUEUE policy with per-CPU queues Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-08-25 14:18:06 -07:00
Tom Eastep	c127cec76c	Merge branch '5.2.3'	2019-04-14 14:35:09 -07:00
Tom Eastep	6b21135ade	Correct handling of an ipset in the SPORT column Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-04-11 18:37:27 -07:00
Tom Eastep	2f66381a4a	Allow multiple protocols to be specified for a helper - the protocol list is specified in the %helpers hash as an array reference e.g., "[UDP,TCP]". Note that those are protocol numbers, not names. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-04-01 15:14:34 -07:00
Matt Darfeuille	53495ec0a8	Point exclusively to shorewall.org Signed-off-by: Matt Darfeuille <matdarf@gmail.com> Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-03-25 11:35:00 -07:00
Tom Eastep	2f3f6ffa15	Revert "Make $update global in Config.pm" This reverts commit `b9d0821acb`.	2019-03-17 08:02:53 -07:00
Tom Eastep	60f2f3b0d0	Allow variable expansion when processing shorewallrc. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-03-14 20:38:10 -07:00
Tom Eastep	e626b77097	Correct policy zone exclusion handling Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-02-21 09:31:13 -08:00
Matt Darfeuille	d3fcb29f0d	Use proper function name for warning messages Signed-off-by: Matt Darfeuille <matdarf@gmail.com> Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-02-07 10:44:46 -08:00
Tom Eastep	8f42a6a72b	Remove LOAD_HELPERS_ONLY Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-02-03 10:04:19 -08:00
Tom Eastep	0982fec513	Remove superfluous whitespace from Providers.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-02-01 12:44:44 -08:00
Tom Eastep	8dcfd86f3a	Document compiler globals Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-24 08:26:27 -08:00
Tom Eastep	edc9e25f25	Deprecate 'all[+]-' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-23 12:35:07 -08:00
Tom Eastep	9f423412d8	Allow zone exclusion in the policy file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-22 12:35:23 -08:00
Tom Eastep	7f7fef3a4e	Disallow 'all' in a policy zone list Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-21 10:00:36 -08:00
Tom Eastep	b9d0821acb	Make $update global in Config.pm - Only save raw image if we are updating Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-20 11:06:40 -08:00
Tom Eastep	857539c8b1	Update lib.runtime copyright Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-16 13:09:42 -08:00
Tom Eastep	429070d107	Update Chains.pm and Compiler.pm copyrights Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-16 12:28:27 -08:00
Tom Eastep	89725c530f	Change limit of 'wait' option setting to 300 seconds (5 minutes) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-16 11:50:33 -08:00
Tom Eastep	8e5f67797a	Allow INLINE() in the accounting file to accept '+' in inline matches Signed-off-by: Tom Eastep <teastep@shorewall.net>	2019-01-14 14:52:18 -08:00

1 2 3 4 5 ...

4103 Commits