Commit Graph

7567 Commits

Author SHA1 Message Date
Tom Eastep
f09b15b2bd Add 'FORMAT 2' to the macro template file 2009-04-16 12:42:36 -07:00
Tom Eastep
8085bba350 Merge branch 'master' of ssh://teastep@shorewall.git.sourceforge.net/gitroot/shorewall 2009-04-16 12:08:08 -07:00
Tom Eastep
078a639213 Update web site for 4.2.8; fix broken link
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2009-04-16 11:57:27 -07:00
Tom Eastep
98e059a447 Merge branch 'master' of ssh://teastep@shorewall.git.sourceforge.net/gitroot/shorewall 2009-04-14 16:34:32 -07:00
teastep
62b9472711 Clarify the usage of the GATEWAY column when USE_DEFAULT_RT = Yes
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9864 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-14 23:25:53 +00:00
teastep
bd9ea3c47f Make the mss interface option clear
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9863 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-14 23:25:19 +00:00
teastep
905c226f76 Add a connection rate limiting doc
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9862 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-14 23:24:40 +00:00
el_cubano
c861b34d57 Typo fix.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9860 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-14 22:38:54 +00:00
Tom Eastep
eafad3389e Fix Typo in FTP doc
Signed-off-by: Tom Eastep <teastep@users.sourceforge.net>
2009-04-14 15:20:03 -07:00
Tom Eastep
516d361d09 Clarify the usage of the GATEWAY column when USE_DEFAULT_RT = Yes
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2009-04-13 07:26:01 -07:00
Tom Eastep
271c339903 Make the mss interface option clear
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2009-04-12 18:50:33 -07:00
Tom Eastep
b1387eea19 Merge branch 'master' of ssh://teastep@shorewall.git.sourceforge.net/gitroot/shorewall 2009-04-12 14:39:25 -07:00
Tom Eastep
52546657f1 Add a connection rate limiting doc
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2009-04-12 14:38:33 -07:00
teastep
69c99bae2c Add a link in the download page. Improve readability of the LEAF/Bering bullet
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9854 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-12 17:13:37 +00:00
Tom Eastep
61b31af7e1 Merge branch 'master' of ssh://teastep@shorewall.git.sourceforge.net/gitroot/shorewall 2009-04-12 09:42:50 -07:00
Tom Eastep
ebd7a139fa Add a link in the download page. Improve readability of the LEAF/Bering bullet
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2009-04-12 09:24:19 -07:00
teastep
665cce0f20 Update download page to include Ben Montgomery's Ubuntu Repository
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9853 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-12 16:21:08 +00:00
teastep
b5f7d9308d Update the Download page to mention the Git repository
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9852 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-12 16:20:50 +00:00
Tom Eastep
e7c71eecb8 Update download page to include Ben Montgomery's Ubuntu Repository
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2009-04-12 09:19:32 -07:00
Tom Eastep
5c8c4d1306 Update the Download page to mention the Git repository
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2009-04-12 08:49:26 -07:00
teastep
ade958dd51 Add undocumented LOGMARK log level
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9851 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-12 15:22:19 +00:00
teastep
347090da6e Correct netmask generation in tcfilters
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9850 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-12 15:22:00 +00:00
teastep
97e61965c0 Fix another inversion case
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9846 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-11 21:48:34 +00:00
teastep
de037034a5 Bump version to 4.3.9
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9845 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-11 15:31:25 +00:00
teastep
9bfc7b6d99 Tiny optimization.
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9844 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-11 15:28:50 +00:00
teastep
c39fcc4db7 Optimization of log rule code
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9843 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-10 20:36:22 +00:00
teastep
b734d3af31 Fix subtle bug introduced in last commit
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9842 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-10 20:36:09 +00:00
teastep
20cfd0033c Fix a 4.3 bug in expand_rule().
Don't repeat matches on target rule when log chain is used.

Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9841 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-10 19:47:39 +00:00
teastep
28e84a6aba Break up long port lists in jump to logging chain
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9840 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-10 16:31:04 +00:00
teastep
e0040f4011 Small optimizations in expand_rule()
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9837 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-10 16:16:25 +00:00
teastep
ff014f328b Correct usage text
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9836 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-10 16:15:36 +00:00
teastep
8278203e03 Remove one argument from expand_rule()
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9835 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-09 22:21:48 +00:00
teastep
f20013898e Don't use -g when the target might not be terminating
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9834 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-09 20:18:11 +00:00
teastep
ae169f00a7 Implement rules that also log as a separate chain. Preserve original target in logging rules
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9833 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-09 18:45:21 +00:00
teastep
c8b48a9bbd Update man pages to allow interface name in DEST column of notrack file.
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9832 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-08 22:45:51 +00:00
teastep
7d2b410904 Correct rule generation when an interface is specified as the destination of a PREROUTING rule.
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9831 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-08 03:37:15 +00:00
teastep
28b6fd8033 Simplify hashlimit match code
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9830 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 18:15:51 +00:00
teastep
fe16576258 Document the fact that ":<burst>: is optional in LIMIT:BURST
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9829 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 18:15:38 +00:00
teastep
36e0c85f5f Require the Hashlimit Match capability for per-IP rate limiting
Use the current key words in the generated hashlimit match

Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9828 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 17:36:23 +00:00
teastep
cd1f5d3c83 Document the hashlimit feature
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9827 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 17:35:06 +00:00
teastep
c545e65cea First part of 'hashlimit' implemenation
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9826 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 03:23:01 +00:00
teastep
b1e9453c62 The other half of the re-implementation of 'enable/disable_object'
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9825 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 03:22:49 +00:00
teastep
0744df13d6 Reimplement object_enable/disable
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9824 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 03:22:30 +00:00
teastep
b6053d8577 Fix second bug regarding ADD_IP_ALIASES=Yes
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9823 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 03:22:16 +00:00
teastep
eb533d8b00 Make SHOREWALL_COMPILER=perl explicit in shorewall.conf
Send SHOREWALL_COMPILER errors to STDERR

Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9822 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 03:22:02 +00:00
teastep
010680d207 Belatedly update News for Shorewall 4.2.7
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9821 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 03:21:49 +00:00
teastep
749d1c837f Update Documentation Index for "Fool's Firewall" Article
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9820 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-07 03:21:33 +00:00
teastep
b6091361cb Add "The Fool's Firewall" Article
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9814 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-04 21:31:09 +00:00
teastep
2fd359c459 More "Fools Firewall" changes/additions
Signed-off-by: Tom Eastep <teastep@shorewall.net>

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9813 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-04 20:33:06 +00:00
teastep
69bde82800 Add another "Fool's Firewall" Graphic
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9812 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2009-04-04 20:32:30 +00:00