shorewall_code

mirror of https://gitlab.com/shorewall/code.git synced 2024-12-01 12:03:40 +01:00

Author	SHA1	Message	Date
Tom Eastep	27a0f0f7a0	Make TRACK_PROVIDERS=Yes the default Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-10 08:46:01 -08:00
Tom Eastep	9ac075fd56	Clear the connection mark in tunneled packets from tracked providers Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-09 17:12:14 -08:00
Tom Eastep	b2604583af	Revert "Clear the connection mark in tunneled packets from tracked providers" This reverts commit `62c6411cb0`.	2018-01-09 17:01:51 -08:00
Tom Eastep	62c6411cb0	Clear the connection mark in tunneled packets from tracked providers Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-09 14:51:57 -08:00
Matt Darfeuille	6badf3ce1a	Update supported Shorewall version Signed-off-by: Matt Darfeuille <matdarf@gmail.com> Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-08 09:08:53 -08:00
Tom Eastep	1bc90beb01	Update copyrights Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-07 15:01:46 -08:00
Tom Eastep	eaccf033c6	Update copyrights for 2018 - Update some header versions to 5.1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-07 14:24:01 -08:00
Tom Eastep	056711d304	Remove anachronistic comment Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-06 13:58:20 -08:00
Tom Eastep	0aa0bebe07	Reword error message - "Invalid action name ..." to "Reserved action name ..." Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-06 13:56:36 -08:00
Tom Eastep	1a68d87c94	Don't enable forwarding in 'clear' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-04 15:39:07 -08:00
Tom Eastep	c518cfaa4a	Allow address variables to work correctly with the 'clear' command Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-03 08:58:28 -08:00
Tom Eastep	196a56ea3c	Permit when firewall stopped when using an ipset for dynamic BL Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-02 13:26:32 -08:00
Tom Eastep	2c3f121835	Don't call setup_dbl() unconditionally Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-02 13:11:31 -08:00
Tom Eastep	18ba5c7311	Don't verify 'conntrack' utility for 'remote-' commands Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-02 11:52:35 -08:00
Tom Eastep	c8774110c6	Correct typo (rootonly => root_only) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-02 11:51:42 -08:00
Tom Eastep	1479e955d4	Add FAQ 106 (startup at boot on Debian) - mention reload as a faster alternative to restart Signed-off-by: Tom Eastep <teastep@shorewall.net>	2018-01-02 08:52:12 -08:00
Tom Eastep	09980cc75e	Use split() in uptodate() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-31 15:59:28 -08:00
Tom Eastep	e0a757ea03	Quit find after finding the first newer file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-31 14:15:45 -08:00
Tom Eastep	550003f0f4	Only look at regular files when running 'find' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-31 14:09:51 -08:00
Tom Eastep	4f50303318	Merge branch '5.1.10' # Conflicts: # Shorewall/lib.cli-std	2017-12-31 14:06:52 -08:00
Tom Eastep	5053999442	Don't run 'find' in the PWD - Also remove -mindepth so as to catch deletions in the directories Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-31 13:33:16 -08:00
Tom Eastep	6b5889177b	Correct startup_error() inadvertent change - Switch ensure_root() back to calling startup_error() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-30 09:24:21 -08:00
Tom Eastep	71f8bad300	Tweak Shared Config doc Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-30 08:44:49 -08:00
Tom Eastep	377c9f5708	Only search files in each CONFIG_PATH directory - no recursion Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-30 08:44:05 -08:00
Tom Eastep	45a164733b	Fix breakage of ipp2p Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-30 08:38:14 -08:00
Tom Eastep	6f82bfe7d1	Handle PROTO '-' in conntrack file processing. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-29 15:54:15 -08:00
Tom Eastep	4e5b98d3d9	Only search files in each CONFIG_PATH directory - no recursion Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-29 15:42:09 -08:00
Tom Eastep	078c781dfa	Allow override of :syn assumption in CT rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-29 15:15:33 -08:00
Tom Eastep	46f68c6dcb	Move adjustment of the protocol in process_conntrack_rule() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-29 13:51:33 -08:00
Tom Eastep	b42678269c	Revert "Add :syn to each TCP entry in the conntrack file" This reverts commit `f861f8da35`.	2017-12-29 13:08:27 -08:00
Tom Eastep	9bd10c0c00	Call fatal_error (not startup_error) when non-root does default compile - Also reword the message	2017-12-29 12:49:43 -08:00
Tom Eastep	f861f8da35	Add :syn to each TCP entry in the conntrack file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-29 12:38:58 -08:00
Tom Eastep	9e3cb27d0a	Use the synchain name in log messages rather than the base chain name Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-28 14:13:50 -08:00
Tom Eastep	5b97800901	Tweak Shared Config doc Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-28 13:26:39 -08:00
Tom Eastep	d8a22d13dd	Allow non-root to run many 'show' commands Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-28 10:49:09 -08:00
Tom Eastep	675e41e6a6	Merge branch 'master' into 5.1.10	2017-12-27 11:15:25 -08:00
Tom Eastep	28f6379956	Fix broken links in the blacklisting article Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 16:57:44 -08:00
Tom Eastep	c9b58e203b	Fix broken links in the blacklisting article Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 16:56:37 -08:00
Tom Eastep	9afe8daae0	Merge branch '5.1.10' # Conflicts: # Shorewall-core/install.sh # Shorewall/install.sh	2017-12-26 15:45:20 -08:00
Tom Eastep	43adcd26a1	Make the /etc and the configfiles .conf files the same Signed-off-by: Tom Eastep <teastep@shorewall.net> # Conflicts: # Shorewall/install.sh	2017-12-26 15:39:26 -08:00
Tom Eastep	65371437b5	Correct installer for case where SHAREDIR != /usr/share/ Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 15:36:38 -08:00
Tom Eastep	cc2022e172	Correct installer for case where SHAREDIR != /usr/share/ Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 15:00:15 -08:00
Tom Eastep	f2a565729f	Replace $PRODUCT with ${PRODUCT} - Also correct one incidence of PRODUCT that should have been $PRODUCT Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 14:00:00 -08:00
Tom Eastep	ea8b2a803a	Make the /etc and the configfiles .conf files the same Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 11:48:33 -08:00
Tom Eastep	16832149ca	Remove unneeded modification of $CONFDIR/$PRODUCT/$PRODUCT.conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 11:35:56 -08:00
Tom Eastep	7edf4918d7	Remove leading ":" from CONFIG_PATH in active shorewall[6].conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 10:27:19 -08:00
Tom Eastep	d3a1dc1e2a	Delete superfluous semicolon. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-25 08:45:42 -08:00
Matt Darfeuille	f68f47d01b	Init: Fix when to compile the firewall on Debian Signed-off-by: Matt Darfeuille <matdarf@gmail.com> Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-25 08:37:00 -08:00
Tom Eastep	b1d1fa862a	Add comment noting that the 'physwild' interface member is currently unused Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-23 10:58:16 -08:00
Tom Eastep	24acf25451	Delete unused find_interfaces_by_option1() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-23 10:53:16 -08:00

... 3 4 5 6 7 ...

15293 Commits