|
|
fbee4a91fd
|
Correct order of optional interface and address variable handling
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-28 10:53:20 -08:00 |
|
|
|
cb7071a213
|
Clarify BLACKLIST_DISPOSITION in shorewall.conf(5)
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-28 10:52:35 -08:00 |
|
|
|
cdf5ad45d5
|
Eliminate the MAPOLDACTIONS option
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-24 12:59:26 -08:00 |
|
|
|
070a67d665
|
Deimplement OPTIMIZE_USE_FIRST
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-24 11:56:20 -08:00 |
|
|
|
9796c58eb2
|
Add OPTIMIZE_MASK constant
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-23 13:15:44 -08:00 |
|
|
|
cabc20957f
|
Delete an unnecessary variable
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-23 09:45:50 -08:00 |
|
|
|
a9a379c5a5
|
Implement INPUT SNAT
Signed-off-by: Tom Eastep <teastep@shorewall.net>
5.1.12-Beta1
|
2018-01-22 16:37:38 -08:00 |
|
|
|
3bf5066f82
|
Document multiple DEST interfaces in the snat file
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-22 11:12:28 -08:00 |
|
|
|
b2c33a0f9a
|
Add snat to the list of manpages
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-22 10:48:58 -08:00 |
|
|
|
64f704a964
|
Improve quoting in the route-balancing logic
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-21 14:46:51 -08:00 |
|
|
|
416224ee05
|
Correct typos and anachronisms in Chains.pm comments
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-21 11:53:58 -08:00 |
|
|
|
92ce1beddc
|
Move read_yesno_with_timeout() to lib.cli-std
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-20 14:26:13 -08:00 |
|
|
|
4d6bf8564e
|
Avoid unnecessary variable expansion
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-20 14:25:42 -08:00 |
|
|
|
fb4b362724
|
Eliminate unnecessary local array
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-20 13:26:10 -08:00 |
|
|
|
97de2be778
|
Change a fatal_error() call with an assertion in add_policy_rules()
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-19 13:39:51 -08:00 |
|
|
|
85cae3c7f8
|
Add parens to improve readability
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-19 12:47:17 -08:00 |
|
|
|
acd425a3c2
|
Remove superfluous logic from validate_portpari1()
- Add comments
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-19 12:46:52 -08:00 |
|
|
|
4e6949f996
|
Document port masquerading
Signed-off-by: Tom Eastep <teastep@shorewall.net>
5.1.11.1
|
2018-01-19 08:55:56 -08:00 |
|
|
|
5d7dcc3122
|
Unify variable style
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-18 13:42:13 -08:00 |
|
|
|
23d498146b
|
Merge branch '5.1.11'
# Conflicts:
# Shorewall/lib.cli-std
|
2018-01-18 13:40:37 -08:00 |
|
|
|
422d0b216a
|
Don't use the -quit option to Busybox find
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-18 13:39:44 -08:00 |
|
|
|
37ecbff23a
|
Merge branch '5.1.11'
# Conflicts:
# Shorewall/lib.cli-std
|
2018-01-18 13:37:52 -08:00 |
|
|
|
491309a78a
|
Don't use the -quit option to Busybox find
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-18 13:36:23 -08:00 |
|
|
|
bc993c384c
|
Don't use the -quit option to Busybox find
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-18 11:34:46 -08:00 |
|
|
|
0e4c1cdac1
|
Init: Correct indentation
Signed-off-by: Matt Darfeuille <matdarf@gmail.com>
Signed-off-by: Tom Eastep <teastep@shorewall.net>
5.1.11-base
|
2018-01-12 10:26:37 -08:00 |
|
|
|
27a0f0f7a0
|
Make TRACK_PROVIDERS=Yes the default
Signed-off-by: Tom Eastep <teastep@shorewall.net>
5.1.11-RC1
|
2018-01-10 08:46:01 -08:00 |
|
|
|
9ac075fd56
|
Clear the connection mark in tunneled packets from tracked providers
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-09 17:12:14 -08:00 |
|
|
|
b2604583af
|
Revert "Clear the connection mark in tunneled packets from tracked providers"
This reverts commit 62c6411cb0.
|
2018-01-09 17:01:51 -08:00 |
|
|
|
62c6411cb0
|
Clear the connection mark in tunneled packets from tracked providers
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-09 14:51:57 -08:00 |
|
|
|
6badf3ce1a
|
Update supported Shorewall version
Signed-off-by: Matt Darfeuille <matdarf@gmail.com>
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-08 09:08:53 -08:00 |
|
|
|
1bc90beb01
|
Update copyrights
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-07 15:01:46 -08:00 |
|
|
|
eaccf033c6
|
Update copyrights for 2018
- Update some header versions to 5.1
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-07 14:24:01 -08:00 |
|
|
|
056711d304
|
Remove anachronistic comment
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-06 13:58:20 -08:00 |
|
|
|
0aa0bebe07
|
Reword error message
- "Invalid action name ..." to "Reserved action name ..."
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-06 13:56:36 -08:00 |
|
|
|
1a68d87c94
|
Don't enable forwarding in 'clear'
Signed-off-by: Tom Eastep <teastep@shorewall.net>
5.1.11-Beta2
|
2018-01-04 15:39:07 -08:00 |
|
|
|
c518cfaa4a
|
Allow address variables to work correctly with the 'clear' command
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-03 08:58:28 -08:00 |
|
|
|
196a56ea3c
|
Permit when firewall stopped when using an ipset for dynamic BL
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-02 13:26:32 -08:00 |
|
|
|
2c3f121835
|
Don't call setup_dbl() unconditionally
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-02 13:11:31 -08:00 |
|
|
|
18ba5c7311
|
Don't verify 'conntrack' utility for 'remote-' commands
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-02 11:52:35 -08:00 |
|
|
|
c8774110c6
|
Correct typo (rootonly => root_only)
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-02 11:51:42 -08:00 |
|
|
|
1479e955d4
|
Add FAQ 106 (startup at boot on Debian)
- mention reload as a faster alternative to restart
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2018-01-02 08:52:12 -08:00 |
|
|
|
09980cc75e
|
Use split() in uptodate()
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2017-12-31 15:59:28 -08:00 |
|
|
|
e0a757ea03
|
Quit find after finding the first newer file
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2017-12-31 14:15:45 -08:00 |
|
|
|
550003f0f4
|
Only look at regular files when running 'find'
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2017-12-31 14:09:51 -08:00 |
|
|
|
4f50303318
|
Merge branch '5.1.10'
# Conflicts:
# Shorewall/lib.cli-std
|
2017-12-31 14:06:52 -08:00 |
|
|
|
5053999442
|
Don't run 'find' in the PWD
- Also remove -mindepth so as to catch deletions in the directories
Signed-off-by: Tom Eastep <teastep@shorewall.net>
5.1.10.2
|
2017-12-31 13:33:16 -08:00 |
|
|
|
6b5889177b
|
Correct startup_error() inadvertent change
- Switch ensure_root() back to calling startup_error()
Signed-off-by: Tom Eastep <teastep@shorewall.net>
5.1.11-Beta1
|
2017-12-30 09:24:21 -08:00 |
|
|
|
71f8bad300
|
Tweak Shared Config doc
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2017-12-30 08:44:49 -08:00 |
|
|
|
377c9f5708
|
Only search files in each CONFIG_PATH directory - no recursion
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2017-12-30 08:44:05 -08:00 |
|
|
|
45a164733b
|
Fix breakage of ipp2p
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2017-12-30 08:38:14 -08:00 |
|
