shorewall_code

mirror of https://gitlab.com/shorewall/code.git synced 2024-11-23 08:03:11 +01:00

Author	SHA1	Message	Date
Tom Eastep	7edf4918d7	Remove leading ":" from CONFIG_PATH in active shorewall[6].conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-26 10:27:19 -08:00
Tom Eastep	b1d1fa862a	Add comment noting that the 'physwild' interface member is currently unused Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-23 10:58:16 -08:00
Tom Eastep	24acf25451	Delete unused find_interfaces_by_option1() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-23 10:53:16 -08:00
Tom Eastep	229c47ac6c	Don't delete options that are to be ignored from %options - specifying some options can have side-effects that cause $interfaceref->{options}{$option} to be accessed Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-23 10:47:22 -08:00
Tom Eastep	38de9c1732	Make wildcard/option checks order-independent WRT the options Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-23 10:24:08 -08:00
Tom Eastep	17f4fd7cd2	Initialize $physwild to $wildcard Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-22 15:42:16 -08:00
Tom Eastep	cfd02c1bb6	More $minroot changes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-22 13:58:38 -08:00
Tom Eastep	19b7601c72	Improve handling of wildcard interfaces and options Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-22 13:43:45 -08:00
Tom Eastep	5a8e9cd0a3	Correct $minroot logic Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-22 09:08:27 -08:00
Tom Eastep	b5a6067588	Describe default interval and decay for rate estimator policing filters Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-20 09:04:52 -08:00
Tom Eastep	45468af2d2	Correct ingress policing for later releases of iproute2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-18 11:52:19 -08:00
Tom Eastep	4ab8e1f0a2	Remove PSH from the FIN action Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-05 15:25:54 -08:00
Tom Eastep	821d72093a	Rename DEFAULTACTION_SECTION to POLICYACTION_SECTION. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-02 16:25:15 -08:00
Tom Eastep	42d5d13780	Retain proto setting when switching inline <-> noinline Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-02 13:40:41 -08:00
Tom Eastep	7121a0f1b1	Disallow a protocol on the Reject Action Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-02 12:58:05 -08:00
Tom Eastep	ab12d63a4f	Change 'default action' to 'policy action' in comments and messages Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-02 12:55:17 -08:00
Tom Eastep	6ba1d5413b	Allow a protocol to be associated with an action Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-02 11:24:08 -08:00
Tom Eastep	4fc572f664	Exit the IPv6 AllowICMPs chain if packet isn't ipv6-icmp Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-01 14:50:17 -08:00
Tom Eastep	138e64c54a	Improve the documentation surrounding DNS names. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-12-01 09:25:20 -08:00
Tom Eastep	b04b65cac8	Clear counters in all tables during 'reset' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-30 14:31:59 -08:00
Tom Eastep	5dcb684efc	Don't be specific when deleting IPv6 balanced/fallback default routes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-28 15:26:17 -08:00
Tom Eastep	3e87e5004a	Merge branch 'master' of ssh://git.code.sf.net/p/shorewall/code	2017-11-27 09:36:13 -08:00
Roberto C. Sánchez	c89b113a61	Fix typos	2017-11-26 15:39:59 -05:00
Tom Eastep	7289175070	Chop first config dir if non-root or if compiling for export. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-23 09:57:12 -08:00
Tom Eastep	a9373d727b	Use logical interface names in the samples. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-22 09:40:15 -08:00
Tom Eastep	528b473f6b	Add some additional documentation to the Config module Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-22 08:41:37 -08:00
Tom Eastep	d22210c074	Set g_export before calling get_config() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-14 13:46:41 -08:00
Tom Eastep	f411f7dd31	Remove redundant test Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-14 10:45:10 -08:00
Tom Eastep	502e98eb9f	Add Redfish console to the IPMI macro Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-14 10:44:54 -08:00
Tom Eastep	f73bad440d	Don't verify IP and SHOREWALL_SHELL when compiling/checking for test Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-14 10:02:15 -08:00
W. van den Akker	23bc019a82	Add OpenWRT options. Signed-off-by: W. van den Akker <wvdakker@wilsoft.nl> Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-14 09:00:46 -08:00
Tom Eastep	9d299ef866	Don't verify IP and SHOREWALL_SHELL setting when compiling for export Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-14 08:50:05 -08:00
Tom Eastep	2a9272ccd1	Clean up RAs involving "\|" Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-14 08:26:17 -08:00
Tom Eastep	130ddff9de	Correct a typo in an error message - Includes cosmetic changes to Providers.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-10 11:25:52 -08:00
Tom Eastep	9cf298482d	Merge branch '5.1.8'	2017-11-09 12:59:59 -08:00
Tom Eastep	c5a586aa37	Allow [...] around gateway address in the providers file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-09 12:20:01 -08:00
Tom Eastep	832418585a	Don't make persistent routes and rules dependent on autosrc. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-08 09:46:25 -08:00
Tom Eastep	605f61fb3c	Don't make persistent routes and rules dependent on autosrc. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-08 09:45:59 -08:00
Tom Eastep	8dfa0be611	Add shorewall-logging(5) Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-02 15:26:14 -07:00
Tom Eastep	ef8b85fc3e	Implement support for logging in the SNAT file Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-11-02 12:44:42 -07:00
Tom Eastep	2b5613026a	Merge branch '5.1.8'	2017-10-25 09:14:20 -07:00
Tom Eastep	c7c318c0e7	Align columns in actions.std Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-25 09:13:37 -07:00
Tom Eastep	d1976189aa	Correct a couple of typos in the manpages Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-22 12:59:31 -07:00
Tom Eastep	6b4905c2c0	Replace 'tcp' with '6' in action.TCPFlags Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-20 12:33:36 -07:00
Tom Eastep	774b707352	Inline Multicast when Address Type Match is available Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-20 12:01:41 -07:00
Tom Eastep	c3bd58827f	Align columns in actions.std Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-20 11:44:10 -07:00
Tom Eastep	b35f1112f4	Allow 'noinline' in /etc/shorewall[6]/actions to override 'inline' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-20 09:19:50 -07:00
Tom Eastep	a0eb91cb90	Inline the Broadcast action when ADDRTYPE match is available Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-20 08:49:14 -07:00
Tom Eastep	77d9eeb915	Eliminate extra parameter editing of TPROXY parameter list. - Clarify syntax for actions with multiple parameters Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-19 13:08:12 -07:00
Tom Eastep	17838c1443	Add TCPMSS to the allowed mangle actions. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2017-10-19 12:58:38 -07:00

1 2 3 4 5 ...

7590 Commits