shorewall_code

mirror of https://gitlab.com/shorewall/code.git synced 2024-12-03 13:03:12 +01:00

Author	SHA1	Message	Date
Tom Eastep	c5aa17017d	Make zones with multiple interfaces complex Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-10 13:00:58 -07:00
Tom Eastep	051f09c35d	Set the interface routeback option if there are any IP host groups with 'routeback' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-10 10:29:21 -07:00
Tom Eastep	60b8e92dc1	Don't leave unused sfilter chains in the config Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-09 17:09:53 -07:00
Tom Eastep	f5bda84e79	Couple of tweaks	2011-06-09 16:54:32 -07:00
Tom Eastep	76e68bd04b	Jump (don't go) to sfilter1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-09 14:15:29 -07:00
Tom Eastep	e76835504b	Don't move rules from a chain with references Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-09 13:35:49 -07:00
Tom Eastep	251da23cb5	Fix FORWARD with ipsec dest Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-09 09:57:45 -07:00
Tom Eastep	fe0bedacfc	Exempt ipsec from sfilter Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-09 07:40:40 -07:00
Tom Eastep	6f3f49e45a	Apply sfilter to INPUT as well as FORWARD Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-08 09:41:11 -07:00
Tom Eastep	57398c683a	Initiate 4.4.20.2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-07 13:23:27 -07:00
Tom Eastep	deb7d92ded	Correct sfq handle assignment Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-07 13:23:12 -07:00
Tom Eastep	e69f22725f	Add fix inadvertently dropped from 4.4.19.4 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-07 12:50:24 -07:00
Tom Eastep	9c2c562bf5	Correct autorepeat wart Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-07 06:45:50 -07:00
Tom Eastep	cf0275a049	Make FAKE_AUDIT work again	2011-06-06 16:08:29 -07:00
Tom Eastep	642319d706	Change annotated documentation default Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-06 15:40:21 -07:00
Tom Eastep	cfb3d6a801	Merge branch '4.4.20'	2011-06-06 14:09:26 -07:00
Tom Eastep	6136e986cf	Update version to 4.4.20.1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-06 14:08:25 -07:00
Tom Eastep	aabefe91f1	Merge branch '4.4.20'	2011-06-04 08:46:40 -07:00
Tom Eastep	f1cbfab7ac	More blacklist/audit fixes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-04 08:45:23 -07:00
Tom Eastep	653a61a04a	Merge branch '4.4.20'	2011-06-04 07:44:24 -07:00
Tom Eastep	a9c0824a30	Correct BLACKLIST_DISPOSITION=A_xxx with BLACKLIST_LOG_LEVEL Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-04 07:44:07 -07:00
Tom Eastep	aa86b65ec3	Merge branch '4.4.20'	2011-06-02 11:44:15 -07:00
Tom Eastep	254e1ed784	Add 'I' STATE to secmarks Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-02 11:43:55 -07:00
Tom Eastep	c3b56c1e73	Merge branch '4.4.20'	2011-06-02 10:07:03 -07:00
Tom Eastep	561d461a25	Add 'NI' STATE setting in secmarks. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-02 10:06:27 -07:00
Tom Eastep	1e883c2fdf	Merge branch '4.4.20'	2011-06-02 06:47:09 -07:00
Tom Eastep	f9c5b8b0d5	Improve some comments Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-02 06:23:37 -07:00
Tom Eastep	36aee407ef	Merge branch '4.4.20'	2011-06-01 13:01:27 -07:00
Tom Eastep	5f08605adc	Delete some cruft Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-01 12:26:05 -07:00
Tom Eastep	243a09783c	Merge branch '4.4.20'	2011-05-31 15:45:09 -07:00
Tom Eastep	7bf74bb8c9	Add new builtin targets to %builtin_target Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-31 15:43:42 -07:00
Tom Eastep	468ff6efab	First cut at IPSET/Dynamic-zone support in Shorewall6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-31 11:23:43 -07:00
Tom Eastep	8df470b5f5	Version to 4.4.20	2011-05-31 09:30:18 -07:00
Tom Eastep	2f6c5fd260	Set 'bridge-nf-call-ip6?tables' if bridges are configured. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-31 06:59:43 -07:00
Tom Eastep	4f296b62ae	Another fix for auditone	2011-05-30 16:37:56 -07:00
Tom Eastep	e6275ba31d	Fix a bug in auditing Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-30 15:28:00 -07:00
Tom Eastep	d89a915f26	Load IPv6 libraries when processing /etc/shorewall6/params Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-30 13:24:36 -07:00
Tom Eastep	26d08b92c0	Correct use of null value as a hash Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-30 11:38:49 -07:00
Tom Eastep	b0447b8bd3	Remove another MACLIST defect	2011-05-30 08:49:41 -07:00
Tom Eastep	60d33740f6	Fix MACLIST_DISPOSITION defect introduced earlier in this release Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-30 07:59:44 -07:00
Tom Eastep	11c209c55f	Restore access to $Shorewall::Rules::family	2011-05-29 17:22:36 -07:00
Tom Eastep	2852cdeb53	Another attempt at the IPMARK fix	2011-05-29 14:42:23 -07:00
Tom Eastep	a71136fd5a	Rework configuration files for Shorewall and Shorewall6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-29 14:34:18 -07:00
Tom Eastep	243e8f1dbe	Fix check for unreferenced 'sfilter' chain	2011-05-28 08:31:36 -07:00
Tom Eastep	a37dbf76dc	Delete 'sfilter' chain if it isn't referenced Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-27 19:56:54 -07:00
Tom Eastep	1a2c9a08e1	Don't include comment in audit chain rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-27 19:56:04 -07:00
Tom Eastep	bac640e731	Get changes from 4.5.0 branch	2011-05-27 19:42:09 -07:00
Tom Eastep	586a3537bf	Delete 'sfiter' chain if it doesn't have referenes	2011-05-27 19:38:03 -07:00
Tom Eastep	790c96c90a	Version to RC 1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-27 09:11:47 -07:00
Tom Eastep	c6e9de65f1	Prevent duplicate 'filter' rules when combining two interface chains into the same zone forwarding chain. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-05-27 06:43:47 -07:00

1 2 3 4 5 ...

1511 Commits