Commit Graph

827 Commits

Author SHA1 Message Date
teastep
0bf8e6b293 Add '-n' option to the 'try' command and add to help text
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2687 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-15 01:07:12 +00:00
teastep
66e9add7f0 Add -n option to suppress routing table changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2686 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-14 23:01:13 +00:00
teastep
e178cab644 Fix startup error
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2685 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-14 21:04:07 +00:00
teastep
a47ca846fa Finish install/fallback cleanup -- take 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2682 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-14 18:36:55 +00:00
teastep
ae061c61b4 Unconditionally install Makefile
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2681 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-14 18:33:06 +00:00
teastep
e88f0a8ad2 Finish install/fallback cleanup -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2678 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-13 17:24:35 +00:00
teastep
0864c22d26 Finish install/fallback cleanup
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2677 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-13 17:13:35 +00:00
teastep
72c5855827 Eliminate mention of the GATEWAY interface column
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2671 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-12 17:52:01 +00:00
teastep
017027132e Clarify zone types in zones file comments - take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2668 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-12 17:29:46 +00:00
teastep
2224c497cd Clarify zone types in zones file comments
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2665 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-12 17:21:14 +00:00
teastep
c205e70b1f Document nested zone alchemy
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2655 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-09 16:53:01 +00:00
teastep
1d763c84df Fix param handling in restore-base
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2654 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-09 16:52:10 +00:00
teastep
f35c0922c6 remove debugging code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2653 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-09 16:49:36 +00:00
teastep
a7691e8182 Remove E/R policy mention from the Release Notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2652 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-09 13:56:05 +00:00
teastep
819e9dd38f Add SHOREWALL_LIBRARY global variable
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2649 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 22:30:32 +00:00
teastep
6d310db4e5 Fix error handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2648 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 20:57:29 +00:00
teastep
4a1cabd1a5 Correct install.sh re: Makefile
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2634 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-05 20:07:00 +00:00
paulgear
696c0fb2a8 Looks like .install files don't allow comments
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2631 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-04 11:51:26 +00:00
paulgear
15f49ae157 Trying to get Debian build of current HEAD working.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2630 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-04 10:56:09 +00:00
teastep
b663bdf559 More cleanup from the cheif Alchemist
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2627 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-03 00:48:37 +00:00
teastep
d6cf893327 Fix stupid bug in zones file alchemy -- take 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2626 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-02 22:56:35 +00:00
teastep
1905664bca Fix stupid bug in zones file alchemy -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2625 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-02 22:54:27 +00:00
teastep
731c7d121d Fix stupid bug in zones file alchemy
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2624 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-02 22:49:21 +00:00
teastep
f6875e9da7 Alchemy -- zone file style
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2623 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-02 20:46:53 +00:00
teastep
2b2e213fe8 Remove entry from tcdevices
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2621 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-01 23:11:50 +00:00
teastep
611e987cfc Finish integrating tc4shorewall with save/restore/refresh
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2620 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-01 23:00:30 +00:00
teastep
757ebcd164 Make tc4shorewall play nice with save/restore
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2619 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-01 15:16:11 +00:00
teastep
177bdf4070 More install.sh bugs
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2618 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 23:00:24 +00:00
teastep
188ea48bf3 More install.sh bugs
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2617 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 22:59:18 +00:00
teastep
4153741274 More cleanup of tcstart
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2616 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 22:36:52 +00:00
teastep
bf4d887260 Add note about tc4shorewall in release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2615 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 22:30:44 +00:00
teastep
aea76779d2 Fix bugs in rewritten install.sh and fallback.sh
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2614 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 22:21:22 +00:00
teastep
a8f1321713 Update version to 2.5.5
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2613 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 21:59:56 +00:00
teastep
117d5dd083 Rewrite install and fallback
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2612 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 21:58:24 +00:00
teastep
cba33dd4e1 Import tc4shorewall into project
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2611 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 21:31:23 +00:00
teastep
73fa097121 Merge tc4shorewall into Shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2610 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 20:48:22 +00:00
teastep
7ca53ce6b8 More cleanup of Macros
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2607 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 17:03:37 +00:00
teastep
738b45ad9e Update the version number to 3.0 in all files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2606 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 15:27:22 +00:00
teastep
988afa6bf5 Fix another Macro bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2597 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 22:35:19 +00:00
teastep
0d67813fa4 Fix typos in release file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2596 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 20:51:19 +00:00
teastep
41cf21edf4 Update versio to 2.5.4
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2595 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 20:34:15 +00:00
teastep
6a47756293 'shorewall check' now checks the nat and providers files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2594 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 20:29:42 +00:00
teastep
e949e18749 'shorewall check' now checks the proxyarp file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2593 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 17:42:21 +00:00
teastep
124af9a046 'shorewall check' now checks the masq file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2592 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 15:54:29 +00:00
teastep
e783315471 Fix some ghastly bugs in Macros -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2591 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 22:59:01 +00:00
teastep
2448315290 Fix horrible typo in rules file sectioning
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2590 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 22:55:12 +00:00
teastep
fe6cd6d349 Fix some ghastly bugs in Macros
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2589 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 22:51:49 +00:00
teastep
a6c792c731 Remove nonsensical comment
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2588 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 22:17:00 +00:00
teastep
934a6e852f Allow the log tag to act as a generalized parameter to an action extension script -- take 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2587 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 21:58:24 +00:00
teastep
5d8fee4263 Add some real column documentation in macro.template -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2586 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 21:18:49 +00:00
teastep
f8a238c5cf Add some real column documentation in macro.template
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2585 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 21:07:01 +00:00
teastep
6e667fa0c0 Allow the log tag to act as a generalized parameter to an action extension script -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2584 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 20:51:48 +00:00
teastep
b258f29d56 Allow the log tag to act as a generalized parameter to an action extension script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2583 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 20:32:16 +00:00
teastep
433d4303ca Improve comments in the macro template
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2582 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 20:01:04 +00:00
teastep
851cd153d8 Add advice about sections to rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2581 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 00:08:12 +00:00
teastep
6251280295 Add mention of macros in the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2579 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-28 21:44:09 +00:00
teastep
c457976d17 Fix typo in openvpnclient handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2573 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 19:11:46 +00:00
teastep
4d8f983d35 Fix typo in the release file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2570 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 15:10:37 +00:00
teastep
739db31efb Slightly less horrible Hack to make the Tunnels file still work with the sectioned Rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2569 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 14:50:33 +00:00
teastep
2a55b70b32 Horrible Hack to make the Tunnels file still work with the sectioned Rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2568 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 14:39:43 +00:00
teastep
2ac7b97dde Update versions to 2.5.3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2566 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 22:42:35 +00:00
teastep
86c837bf48 Clean up rules file sectioning
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2565 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 22:23:56 +00:00
teastep
0ae1bdfbc1 Restore 'ipp2p' support to the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2564 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 20:11:27 +00:00
teastep
07c152ab35 Section the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2563 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 19:55:05 +00:00
teastep
b800346eea Remove ESTABLISHED policy stuff in preparation for sectioned rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2562 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 17:16:09 +00:00
teastep
36590a52ab Clarify intra-zone changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2559 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-24 22:39:19 +00:00
teastep
8c43bf109e Correct rpm file ownership problem -- Take 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2557 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-24 19:02:09 +00:00
teastep
c9dc582b30 Correct rpm file ownership problem -- Take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2556 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-24 18:50:04 +00:00
teastep
0e87a5013c Correct rpm file ownership problem
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2553 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-24 18:47:30 +00:00
teastep
58e00883c1 More capitalizing global variable names -- take 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2541 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-23 21:35:56 +00:00
teastep
edb36a83b0 More capitalizing global variable names -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2540 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-23 20:50:48 +00:00
teastep
9b91bafe9f More capitalizing global variable names
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2539 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-23 20:41:18 +00:00
teastep
12fcfabe1b Add note about ADMINISABSENDMINDED to routestopped
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2526 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-21 19:34:31 +00:00
teastep
e130bc9f60 Make intra-zone policies more rational
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2522 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 21:39:30 +00:00
teastep
e4433f4b8f Remove documentation for find_interface_by_mac()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2521 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 20:18:08 +00:00
teastep
a77c49a02e Capitalize global variable ALL_POLICY_CHAINS
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2519 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 21:54:57 +00:00
teastep
c88858382c Allow exclusion lists in Actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2518 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 21:00:33 +00:00
teastep
474e042d47 Update release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2517 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:35:39 +00:00
teastep
f9f3fadd56 Add find_interface_by_mac()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2516 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:07:47 +00:00
teastep
d871e1f163 Set COMMAND=restore in restore-base
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2514 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 17:52:32 +00:00
teastep
af28486e63 Improve wording of OPENVPN server progress message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2512 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 22:59:47 +00:00
teastep
80dd73b9e5 Add openvpnclient and openvpnserver tunnel types
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2511 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 21:57:43 +00:00
teastep
6a087fd50e Add support for exclusion lists in /etc/shorewall/tcrules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2509 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 18:54:11 +00:00
teastep
056dfa1110 Fix typo in release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2506 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:58:35 +00:00
teastep
85bf4377c5 Update release documentation for Shorewall 2.5.2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2505 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:54:03 +00:00
teastep
b4067e7534 Restore ability to exclude a source sub-zone from DNAT, SAME and REDIRECT rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2504 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:31:55 +00:00
teastep
1beb8c15aa Generalize the notion of 'exclude list' in the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2503 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 00:11:08 +00:00
teastep
dee6d1ad0e Rework fix for bug in exclusion list processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2499 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:49:06 +00:00
teastep
a2dca45579 Fix bug in exclusion list processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2498 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:25:49 +00:00
teastep
fb9292eb71 Yet another improvement to rules generated for exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2497 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:21:52 +00:00
teastep
f6565e19a0 More improvements to rules generated for exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2496 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 20:16:34 +00:00
teastep
0f7def6c67 Improve rules generated for exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2495 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 18:33:51 +00:00
teastep
ef134da4b9 Make -q work with the try command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2494 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 18:30:59 +00:00
teastep
42ee8d0c19 Finally implement exclude lists in rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2493 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 17:35:45 +00:00
teastep
5df7bc0538 Remove sub-zone exclusion feature in preparation for implementing true exclude lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2492 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 16:04:39 +00:00
teastep
e075e8c3e2 Fix 'Packet type match' availability reporting with PKTTYPE=No
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2491 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-14 19:26:17 +00:00
teastep
999c74bf03 Generate an error when 'norfc1918' is specified for an interface with an RFC 1918 IP address
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2489 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-14 16:45:48 +00:00
teastep
ea1bf1a7c8 Make the calling sequence of 'build_exclusion_chain' more rational
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2488 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-13 21:39:34 +00:00
teastep
daef55a295 Back out ill-advised tcrules portlist patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2486 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-12 23:57:35 +00:00
teastep
1625a7c4f3 Allow port lists in tcrules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2484 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-12 22:11:30 +00:00
teastep
370d61970a Add FASTACCEPT option to accept ESTABLISHED/RELATED packets early
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2474 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-11 19:53:07 +00:00
teastep
ed2076a0fc Fix problem with exclusion lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2469 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-11 01:40:50 +00:00
teastep
5de0a44eea Modify kernel version patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2465 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-08 18:05:22 +00:00
teastep
46210cd6bb Add kernel version information to 'shorewall dump' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2462 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-08 17:02:08 +00:00
teastep
41142965a1 Add new macros to the spec file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2461 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-07 18:45:40 +00:00
teastep
68b39a07d9 Update for Shorewall 2.5.1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2460 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-07 18:37:15 +00:00
teastep
24dc05e6b7 Fix a couple of bugs
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2459 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-07 00:17:29 +00:00
teastep
e2253d6092 Install the Makefile -- Patch by Cristian Rodriquez
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2458 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-06 16:58:18 +00:00
teastep
39ca0828db Infrastructure for Unified Handling of Exclude Lists
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2457 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-05 15:52:03 +00:00
teastep
bba152b119 Don't generate redundant ACCEPT rules for DNAT/REDIRECT/SAME
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2456 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-05 14:13:45 +00:00
teastep
f56e907907 Correct typo in /etc/shorewall/policy; Allow "all+" in SOURCE/DEST in /etc/shorewall/rules to enable intra-zone traffic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2454 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-04 20:24:23 +00:00
teastep
2b261424d7 Minor tweak to 'dump'; remove the dynamic blacklist in 'forget'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2451 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-03 20:24:55 +00:00
teastep
1b1af2fc65 Remove some dead code and reduce confusion amoung those who read the code (including me)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2450 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-02 21:06:05 +00:00
teastep
ac1983a5da Large cleanup patch from Tuomo Soini
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2449 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-02 16:46:30 +00:00
teastep
21a7315717 Remove last vestiges of 'nobogons'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2445 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-01 20:43:46 +00:00
teastep
3f748212d6 Globalize shorewall_is_started()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2443 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-01 20:35:28 +00:00
teastep
c66159abee capitalize 'terminator' variable; duplicate PREROUTING connmark logic in OUTPUT
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2441 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-01 17:17:24 +00:00
teastep
c7cb64e4ee Make a couple of more warnings more emphatic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2438 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 17:15:37 +00:00
teastep
54a5a111a6 Make separate_list handle enclosures in a more general way
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2437 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 17:12:04 +00:00
teastep
0a03598d11 Correct anachronistic reference in /etc/shorewall/shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2436 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 16:26:55 +00:00
teastep
0cafde4c74 Correct anachronistic reference in /etc/shorewall/hosts
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2435 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-31 15:07:48 +00:00
teastep
b828793da9 Recombine the 'status' and 'state' commands
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2434 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-30 21:59:12 +00:00
teastep
86f20a374b Little cleanup of release notes and /sbin/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2431 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 19:06:37 +00:00
teastep
9feb547b6e /sbin/shorewall status rework -- take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2430 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 18:32:50 +00:00
teastep
48502e75bb Fix 'status' command in /usr/share/shorewall/firewall; try to make release notes clearer
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2429 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 20:22:25 +00:00
teastep
989e1e87a5 Fix syntax error in 'help' file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2428 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:45:59 +00:00
teastep
2a52d3342d Fix Makefile; rename status to dump and create a real status command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2427 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:37:56 +00:00
teastep
5f37ce46bf Fix typo which broke use of arping
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2426 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 22:41:52 +00:00
teastep
5f58eac0f7 Optimize use of 'arping'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2423 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 22:13:25 +00:00
teastep
6c8b63bfe0 Remove dependence on 'which'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 20:30:16 +00:00
teastep
9a42f57a6a Allow 'ipsec' in /etc/shorewall/hosts to work in the presence of dynamic zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2419 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 17:29:20 +00:00
teastep
03c0415eb5 Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2414 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:22:29 +00:00
teastep
dca0b27564 Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2413 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:09:57 +00:00
teastep
f442002d3b Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2412 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:09:57 +00:00
teastep
2a3353ebe7 Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2411 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:05:23 +00:00
teastep
82e50a632f Fix errors and omissions in shorewall.spec
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2410 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-26 14:02:50 +00:00
teastep
b66929a65e Large merge of function from EXPERIMENTAL to HEAD.
1) Elimination of the "shorewall monitor" command.

2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.

3) Support has been added for the arp_ignore interface option.

4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.

5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.

6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).

7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.

8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.

9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.

10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.

11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
teastep
0d56188e7a Add warning about function use in the 'started' extension script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2404 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-24 23:44:19 +00:00
teastep
89eaf99906 Pretty up the output of 'show actions'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2403 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-24 16:49:02 +00:00
teastep
aaecd53a29 Add 'shorewall show actions command'
Make it possible for the 'stopped' extension script to save commands in
the 'restore-tail' file by calling 'run_and_save_command' and
'save_command'


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2401 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-24 16:27:21 +00:00
paulgear
d8a471e7b9 Cleaned up additional rules from Debian package. Got rid of versions
and paths in the header comments, since they're just as likely to be
wrong as not.  Changed all service names to port numbers.  eDonkey is a
big one - i wonder whether it isn't too variable for us to consider
providing a default rule.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2395 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-23 03:09:06 +00:00
paulgear
b6649720cb Adding extra actions provided by Debian package
Do not use yet - these need cleaning


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2394 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-22 23:04:36 +00:00
teastep
f3ea3c7edb Avoid annoying 'ipset:not found' message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2392 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-22 22:24:28 +00:00
teastep
fbabd7d6ef Obviate the need for 'loose'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2389 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-21 19:48:33 +00:00
paulgear
d7f9a22d77 How long have these names been hanging around? :-)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2381 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-20 03:36:31 +00:00
teastep
ca8e5631d3 Make \!<address> work in the SUBNET column of the masq file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2374 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-20 01:10:28 +00:00
teastep
b0e6e3a893 Given the large number of people shooting themselves in the foot with
poorly-written one-to-one NAT rules, I'm changing the shorewall.conf
file to set ADD_IP_ALIASES=No in shorewall.conf. Hopefully, this will
reduce the amount of whining about routing table modification during
"shorewall [re]start".


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2372 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-19 18:41:05 +00:00
teastep
687704eff2 Add 'loose' provider option; add COPY column to providers file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2370 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-18 22:40:26 +00:00
teastep
318e204358 Re-implement MACLIST_TTL
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2358 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-17 22:08:15 +00:00
teastep
c6e3e84352 Disable MACLIST_TTL
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2356 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-17 16:52:21 +00:00