teastep
72c5855827
Eliminate mention of the GATEWAY interface column
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2671 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-12 17:52:01 +00:00
teastep
c205e70b1f
Document nested zone alchemy
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2655 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-09 16:53:01 +00:00
teastep
a7691e8182
Remove E/R policy mention from the Release Notes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2652 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-09 13:56:05 +00:00
teastep
819e9dd38f
Add SHOREWALL_LIBRARY global variable
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2649 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 22:30:32 +00:00
teastep
6d310db4e5
Fix error handling
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2648 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 20:57:29 +00:00
teastep
4a1cabd1a5
Correct install.sh re: Makefile
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2634 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-05 20:07:00 +00:00
teastep
f6875e9da7
Alchemy -- zone file style
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2623 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-02 20:46:53 +00:00
teastep
611e987cfc
Finish integrating tc4shorewall with save/restore/refresh
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2620 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-01 23:00:30 +00:00
teastep
757ebcd164
Make tc4shorewall play nice with save/restore
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2619 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-01 15:16:11 +00:00
teastep
bf4d887260
Add note about tc4shorewall in release notes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2615 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 22:30:44 +00:00
teastep
7ca53ce6b8
More cleanup of Macros
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2607 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 17:03:37 +00:00
teastep
0d67813fa4
Fix typos in release file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2596 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 20:51:19 +00:00
teastep
6a47756293
'shorewall check' now checks the nat and providers files
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2594 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 20:29:42 +00:00
teastep
e949e18749
'shorewall check' now checks the proxyarp file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2593 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 17:42:21 +00:00
teastep
124af9a046
'shorewall check' now checks the masq file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2592 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 15:54:29 +00:00
teastep
fe6cd6d349
Fix some ghastly bugs in Macros
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2589 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 22:51:49 +00:00
teastep
b258f29d56
Allow the log tag to act as a generalized parameter to an action extension script
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2583 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 20:32:16 +00:00
teastep
4d8f983d35
Fix typo in the release file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2570 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 15:10:37 +00:00
teastep
739db31efb
Slightly less horrible Hack to make the Tunnels file still work with the sectioned Rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2569 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 14:50:33 +00:00
teastep
2ac7b97dde
Update versions to 2.5.3
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2566 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 22:42:35 +00:00
teastep
0ae1bdfbc1
Restore 'ipp2p' support to the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2564 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 20:11:27 +00:00
teastep
07c152ab35
Section the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2563 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 19:55:05 +00:00
teastep
36590a52ab
Clarify intra-zone changes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2559 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-24 22:39:19 +00:00
teastep
e130bc9f60
Make intra-zone policies more rational
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2522 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 21:39:30 +00:00
teastep
e4433f4b8f
Remove documentation for find_interface_by_mac()
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2521 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 20:18:08 +00:00
teastep
c88858382c
Allow exclusion lists in Actions
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2518 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 21:00:33 +00:00
teastep
474e042d47
Update release notes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2517 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:35:39 +00:00
teastep
f9f3fadd56
Add find_interface_by_mac()
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2516 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:07:47 +00:00
teastep
d871e1f163
Set COMMAND=restore in restore-base
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2514 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 17:52:32 +00:00
teastep
80dd73b9e5
Add openvpnclient and openvpnserver tunnel types
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2511 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 21:57:43 +00:00
teastep
6a087fd50e
Add support for exclusion lists in /etc/shorewall/tcrules
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2509 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 18:54:11 +00:00
teastep
056dfa1110
Fix typo in release notes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2506 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:58:35 +00:00
teastep
85bf4377c5
Update release documentation for Shorewall 2.5.2
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2505 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 16:54:03 +00:00
teastep
42ee8d0c19
Finally implement exclude lists in rules
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2493 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 17:35:45 +00:00
teastep
999c74bf03
Generate an error when 'norfc1918' is specified for an interface with an RFC 1918 IP address
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2489 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-14 16:45:48 +00:00
teastep
370d61970a
Add FASTACCEPT option to accept ESTABLISHED/RELATED packets early
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2474 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-11 19:53:07 +00:00
teastep
68b39a07d9
Update for Shorewall 2.5.1
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2460 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-07 18:37:15 +00:00
teastep
f56e907907
Correct typo in /etc/shorewall/policy; Allow "all+" in SOURCE/DEST in /etc/shorewall/rules to enable intra-zone traffic
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2454 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-04 20:24:23 +00:00
teastep
ac1983a5da
Large cleanup patch from Tuomo Soini
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2449 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-02 16:46:30 +00:00
teastep
b828793da9
Recombine the 'status' and 'state' commands
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2434 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-30 21:59:12 +00:00
teastep
86f20a374b
Little cleanup of release notes and /sbin/shorewall
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2431 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 19:06:37 +00:00
teastep
9feb547b6e
/sbin/shorewall status rework -- take 2
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2430 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-29 18:32:50 +00:00
teastep
48502e75bb
Fix 'status' command in /usr/share/shorewall/firewall; try to make release notes clearer
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2429 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 20:22:25 +00:00
teastep
2a52d3342d
Fix Makefile; rename status to dump and create a real status command
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2427 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:37:56 +00:00
teastep
6c8b63bfe0
Remove dependence on 'which'
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 20:30:16 +00:00
teastep
b66929a65e
Large merge of function from EXPERIMENTAL to HEAD.
...
1) Elimination of the "shorewall monitor" command.
2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.
3) Support has been added for the arp_ignore interface option.
4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.
5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.
6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).
7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.
8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.
9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.
10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.
11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
paulgear
2a19eb8a5a
Copy latest 2.4 version from Shorewall2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:55:29 +00:00
paulgear
90dd62e89e
Copy latest 2.2 version from STABLE2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2263 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:45:05 +00:00
paulgear
921a7223d4
Copy latest 2.0 code from STABLE2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 04:45:32 +00:00
teastep
ccd528ec8c
Shorewall 1.4.10d +
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1216 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-20 15:40:06 +00:00