Commit Graph

509 Commits

Author SHA1 Message Date
teastep
d7235590da Fix DETECT_DNAT_IPADDRS=No bug; more config file comment improvements
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3786 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-04-12 20:29:13 +00:00
teastep
e0a506151f Remove traffic shaping reconfiguration from 'shorewall refresh'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3782 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-04-10 22:52:10 +00:00
teastep
503aeea7df Fix compilation failure on LEAF Bearing -- second pass; correct awkward wording in shorewall.conf comments
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3781 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-04-10 21:16:02 +00:00
teastep
e0cc8f0480 Phase II of breaking marks into two smaller marks
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3773 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-04-05 02:08:33 +00:00
teastep
25f6c5c1cc Detect extended connmark capabilities and fix mktempdir bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3771 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-04-04 19:45:42 +00:00
teastep
f39537bc90 Add support for explicit routing rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3763 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-04-02 15:17:41 +00:00
teastep
b2d401a3ca Fix 'routeback' with bridge ports
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3744 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-28 18:14:40 +00:00
teastep
a15f3e25c8 Fix SAME/ADD_SNAT_ALIASES bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3735 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-25 16:58:08 +00:00
teastep
80e08e57e8 Add IMPLICIT_CONTINUE option to shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3723 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-24 00:05:09 +00:00
teastep
ab7b1eac9e Fix try with effective verbosity = 0
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3721 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-23 23:26:41 +00:00
teastep
f0372d9209 Add 'logdrop' and 'logreject' commands for dynamic blacklisting with logging
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3715 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-23 16:37:45 +00:00
teastep
1a2fb62b67 Add 'refreshed' extension script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3664 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-13 00:50:29 +00:00
teastep
f03167870a Remove SUBSYSLOCK code from default and debian footers
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3663 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-12 22:18:00 +00:00
teastep
04e112d306 Fix Makefile and 'shorewall start f'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3657 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-12 00:00:22 +00:00
teastep
714b3c39e3 Make 'compile' output distribution-neutral
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3641 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-09 22:55:28 +00:00
teastep
100bd5683d Update for 3.2.0 Beta 1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3639 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-09 21:10:32 +00:00
teastep
eb4055f521 Add additional modules to /etc/shorewall/modules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3636 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-09 16:40:21 +00:00
teastep
35f737054a Fix syntax error in validate_policy() when duplicate policy detected
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3618 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-02 23:58:56 +00:00
teastep
be01fd09e1 Install shorecap in /usr/share/shorewall; add debian program header/footer; pretty up RedHat program header
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3617 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-02 23:31:27 +00:00
teastep
17f21b2f05 Avoid 'delete_nat doesn't exist' Errors
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3612 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-01 17:53:45 +00:00
teastep
37cec67ff9 Add redhat support to 'compile -d'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3610 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-01 16:46:19 +00:00
judas_iscariote
19a248d750 1. remove svn:executable property of some files.
2. put the French docs in it's own branch.



git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3609 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-03-01 02:00:43 +00:00
teastep
f3b86ee2c5 Fix restore if 'set --' used in an extension script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3588 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-26 17:10:16 +00:00
teastep
7454e8331a Fix routing when IP address in GATEWAY column of providers file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3586 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-26 01:47:50 +00:00
teastep
3e6eaa38b3 Restore SUBSYSLOCK functionality
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3550 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-23 15:50:53 +00:00
teastep
ce34cc4f35 Correctly (if inelegantly) handle interfaces named 'inet'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3514 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-21 16:46:21 +00:00
teastep
adfbc8434c Run extension scripts at run-time as always
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3509 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-20 22:28:47 +00:00
teastep
3d48928a9e Resolve merge conflicts in release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3491 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-18 15:22:03 +00:00
teastep
2f5eb26fcd Restore log messages
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3488 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-15 15:43:32 +00:00
teastep
231845e6d9 Add -t option to timestamp progress messages
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3487 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-15 15:20:17 +00:00
teastep
4e9c8698f5 Correct Makefile
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3485 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-14 16:36:29 +00:00
teastep
a54526e93a Avoid superfluous MAC validation rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3484 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-13 23:32:18 +00:00
teastep
fd082e81c9 Change tcpsyn to tcp:syn
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3483 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-13 17:57:42 +00:00
teastep
a42f0514de Add 'tcpsyn'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3480 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-12 20:45:57 +00:00
teastep
0e6e03940f Correct typo in help file ('help drop')
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3476 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-11 15:03:48 +00:00
teastep
bb9c22cfe0 Add shorecap
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3467 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-10 19:33:31 +00:00
teastep
e1535337d4 Fix and document 'check -e'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3466 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-10 18:45:05 +00:00
teastep
afcb4aa504 Fix TC match for bridge ports
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3453 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-08 22:33:13 +00:00
teastep
f0728b5e50 Implement bi-directional macro support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3444 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-04 20:57:38 +00:00
teastep
3482a47db0 Avoid iptables errors when allow/drop/reject run when Shorewall not started
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3442 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-04 17:14:46 +00:00
teastep
688983eafa Fix GATEWAY (again) and add version checking between compiled programs and library
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3428 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-03 21:26:58 +00:00
teastep
97eaf708d3 Remove special exclusion syntax for DNAT/REDIRECT/SAME
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3423 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-02 17:35:28 +00:00
teastep
ead2959c3d Update release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-02-01 23:43:12 +00:00
teastep
fc29c70f38 Apply Ed Suominen's patch to tcrules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3413 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-31 20:02:17 +00:00
teastep
315d8a92b4 Fix QUEUE in the ESTABLISHED section
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3399 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-29 18:02:42 +00:00
teastep
8f0e3ace6b Apply Tuomo Soini's Noecho patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3393 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-27 19:59:27 +00:00
teastep
5eecd59292 Make Shorewall quieter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3356 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-23 01:41:24 +00:00
teastep
8806388b53 Split compiler and firewall into separate files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3349 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-22 16:29:33 +00:00
teastep
3cef6a2a9b Fix 'check' but in setup_masq
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3346 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-22 02:35:15 +00:00
teastep
49cb3fa6c6 Add the -p option to the compile command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3311 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-17 23:27:54 +00:00
teastep
9325925aef Merge Fabio Longerai's LENGTH patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3296 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-15 22:54:12 +00:00
teastep
b027081e5b Add error checking to compiled scripts
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3283 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-14 18:35:50 +00:00
teastep
7ba6cf7200 Allow interface name in the SUBNET column with -e
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3278 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-13 20:33:16 +00:00
teastep
222fb2c10f Change output from 'compile' to the entered name in all cases (do not append /var/lib/shorewall)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3276 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-13 17:08:23 +00:00
teastep
e9423d9c04 Allow remote compiles
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3269 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-12 23:26:37 +00:00
teastep
248b26a7d8 Re-add dynamic zone capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-11 23:30:33 +00:00
teastep
ee3a9a9456 Add extra-quiet mode using -qq
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-09 17:11:30 +00:00
teastep
183c4287ae Update release documentation for 3.1.0
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3247 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2006-01-07 17:33:10 +00:00
teastep
1f4e3572d9 Fix logging with mapped standard actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3194 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-24 15:39:58 +00:00
teastep
408a8a3968 Finish wildcard port support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3189 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-21 04:20:16 +00:00
teastep
803720a8cc Fix restore script generation with RETAIN_ALIASES=Yes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3185 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-20 19:14:36 +00:00
teastep
28e3a4a7ed Fix security hole in bridge handling; fix bug in NONE intra-zone policy handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3182 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-19 23:37:40 +00:00
teastep
0273709c6f Enable loopback traffic under DISABLE_IPV6
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3172 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-17 01:55:02 +00:00
teastep
5b3fef21a8 Add Limit as a standard action
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3171 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-15 22:42:39 +00:00
teastep
98f828f1c9 Console-friendly shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3163 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-14 16:18:38 +00:00
teastep
9d61e79412 Make Debian install via the tarball more like the .deb
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3161 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-13 19:42:23 +00:00
teastep
6f4dfe64db Fix stupid typo that produced a bug in tcrules processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3153 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-12 18:52:40 +00:00
teastep
ebf29460f3 Add warning to zones file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3149 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-11 16:13:15 +00:00
teastep
1ed05f0fef Change CLEAR_TC default to 'Yes'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3148 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-10 20:11:07 +00:00
teastep
1618941d9e Add additional migration considerations for 2.0 users
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3141 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-09 23:11:46 +00:00
teastep
523cc8800f Update README -- Take 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3133 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-08 23:26:25 +00:00
teastep
e842bc2190 Add 'reload' command to init scripts
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3130 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-07 22:03:44 +00:00
teastep
7f39d760b7 Add 'ipdecimal' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3114 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-02 23:58:57 +00:00
teastep
ec8be6bcac Add traffic shaping information to 'dump' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3100 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 18:24:19 +00:00
teastep
25480f2187 Allow '-' in the ADDRESS/SUBNET column of the blacklist file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3099 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 18:05:13 +00:00
teastep
75a749fdbc Add more warnings to release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3098 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-12-01 17:58:24 +00:00
teastep
f6a233c35a Fix help text for restore. Add -q to help for safe-start and safe-restart
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3095 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-29 21:38:43 +00:00
teastep
65eeafaba6 Fix safe-start and safe-restart adding support for -q as well
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3093 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-29 19:39:43 +00:00
teastep
60a93c5167 Apply Tuomo's patch to clean up tc4shorewall formatting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3091 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-29 16:51:53 +00:00
teastep
577389464f Improve bridging instructions in config file comments
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3090 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-28 15:26:06 +00:00
teastep
ffae7b5646 shorewall show macros
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3083 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-27 20:59:47 +00:00
teastep
e2fcae32a4 Merge Cristian's patch
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3051 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-22 22:48:18 +00:00
teastep
06dc3cf91e Make Shorewall tolerate prehistoric kernels
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3046 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-22 02:27:00 +00:00
teastep
2f83b1bf55 Correct typo in changelog
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3016 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-17 18:49:25 +00:00
teastep
0fcc67230c Correct interaction between FASTACCEPT and CLAMPMSS
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3013 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-17 18:23:19 +00:00
teastep
76929fb432 Add comment to masq file regarding multi-ISP
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3009 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-16 17:08:09 +00:00
teastep
93210fa3a5 Fix Makefile and make macro substitution smarter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@3000 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-15 18:44:02 +00:00
teastep
2fc06059db Restore ACCEPT policies to nat, mangle and raw tables during start/stop
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2996 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-13 16:00:17 +00:00
teastep
57b1472275 Update release notes and change log for 3.0.0 Final
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2963 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-04 17:07:58 +00:00
teastep
a835d9dadb Remove Slackware special case from INSTALL file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2951 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-02 21:40:04 +00:00
teastep
981323b7d6 Fix MACLIST_TABLE=mangle and DHCP
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2946 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-11-02 15:32:33 +00:00
teastep
c5c38c4a55 Update config files with cmd-owner info
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2940 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-31 21:23:16 +00:00
teastep
08993cfe08 Stop whining about ipt_owner messages under kernel 2.6.14
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2939 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-31 21:06:01 +00:00
teastep
53ae3fc6e0 Suppress 'ambiguous redirect' errors
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2934 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-28 03:18:49 +00:00
teastep
458b20ace7 Fix stupid typo in release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2932 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-27 02:00:23 +00:00
teastep
609dc4d82b Remove Extended mark detection and reporting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2924 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-24 22:35:05 +00:00
teastep
7630bace28 Remove ROUTE target detections/reporting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2923 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-24 19:43:53 +00:00
teastep
c2e067e7e8 Fix typo in release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2917 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-21 21:12:28 +00:00
teastep
4b97c4584c Add samples to base package
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2907 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-20 22:10:10 +00:00
teastep
629d7c87d2 Fix cut-and-paste error in arp_ignore processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2906 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-19 14:30:13 +00:00
teastep
b20a7b3067 Fix tcp openvpn support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2901 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-18 15:20:12 +00:00
teastep
3089f6f76a Update version to 3.0.0 RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2897 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-17 14:09:50 +00:00
teastep
4c014e7f22 Correct spelling of MACLIST_TABLE in shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2848 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-10 21:35:37 +00:00
teastep
a03de5f61a Update release notes and change log version to 3.0.0 Beta 1.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2841 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-09 20:26:37 +00:00
teastep
1af4d541a0 Add TC_ENABLED=Internal
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2836 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-09 15:47:47 +00:00
teastep
1a8f760491 Fix default tc class bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2834 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-08 14:57:10 +00:00
teastep
d680528283 Replace TC_ENABLED with TC_SCRIPT
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2829 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-07 22:16:03 +00:00
teastep
cc6caadf41 Make tc class IDs unique across devices
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2819 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-06 22:46:17 +00:00
teastep
3675601597 Update paperwork for recent changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2817 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-06 20:30:27 +00:00
teastep
79fead0fae Add IPP2P UDP support -- Take 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2795 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 18:46:35 +00:00
teastep
116f96b47e Flush all mangle chains in refresh
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2788 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 17:04:19 +00:00
teastep
47a34926f4 Better diagnostics when IPP2P match is missing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2784 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 16:20:30 +00:00
teastep
d8e1cfb689 Add zone type to 'shorewall show zones' display
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2782 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-04 14:54:56 +00:00
teastep
d05a6e5fc9 Fix ipp2p logging rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2773 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-02 16:28:24 +00:00
teastep
2b6a9bb843 Deimplement original 'netnotsyn' handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2766 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-10-01 15:55:41 +00:00
teastep
a7258ce1ff Rename 'plain' to 'ipv4' in zones file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2759 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-30 17:16:22 +00:00
teastep
84af786df4 Add capabilities report to 'shorewall dump' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2758 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-30 16:54:24 +00:00
teastep
96c4d02dbc Document ADMINISABSENTMINDED/routstopped fix
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2709 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-19 14:17:09 +00:00
teastep
66e9add7f0 Add -n option to suppress routing table changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2686 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-14 23:01:13 +00:00
teastep
0864c22d26 Finish install/fallback cleanup
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2677 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-13 17:13:35 +00:00
teastep
819e9dd38f Add SHOREWALL_LIBRARY global variable
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2649 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 22:30:32 +00:00
teastep
6d310db4e5 Fix error handling
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2648 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-08 20:57:29 +00:00
teastep
4a1cabd1a5 Correct install.sh re: Makefile
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2634 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-05 20:07:00 +00:00
teastep
757ebcd164 Make tc4shorewall play nice with save/restore
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2619 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-09-01 15:16:11 +00:00
teastep
73fa097121 Merge tc4shorewall into Shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2610 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-31 20:48:22 +00:00
teastep
6a47756293 'shorewall check' now checks the nat and providers files
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2594 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 20:29:42 +00:00
teastep
e949e18749 'shorewall check' now checks the proxyarp file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2593 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 17:42:21 +00:00
teastep
124af9a046 'shorewall check' now checks the masq file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2592 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-30 15:54:29 +00:00
teastep
fe6cd6d349 Fix some ghastly bugs in Macros
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2589 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 22:51:49 +00:00
teastep
b258f29d56 Allow the log tag to act as a generalized parameter to an action extension script
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2583 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 20:32:16 +00:00
teastep
739db31efb Slightly less horrible Hack to make the Tunnels file still work with the sectioned Rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2569 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-27 14:50:33 +00:00
teastep
07c152ab35 Section the rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2563 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 19:55:05 +00:00
teastep
36590a52ab Clarify intra-zone changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2559 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-24 22:39:19 +00:00
teastep
e130bc9f60 Make intra-zone policies more rational
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2522 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 21:39:30 +00:00
teastep
e4433f4b8f Remove documentation for find_interface_by_mac()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2521 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-18 20:18:08 +00:00
teastep
c88858382c Allow exclusion lists in Actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2518 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 21:00:33 +00:00
teastep
f9f3fadd56 Add find_interface_by_mac()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2516 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 20:07:47 +00:00
teastep
d871e1f163 Set COMMAND=restore in restore-base
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2514 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-17 17:52:32 +00:00
teastep
80dd73b9e5 Add openvpnclient and openvpnserver tunnel types
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2511 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 21:57:43 +00:00
teastep
6a087fd50e Add support for exclusion lists in /etc/shorewall/tcrules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2509 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-16 18:54:11 +00:00
teastep
42ee8d0c19 Finally implement exclude lists in rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2493 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-15 17:35:45 +00:00
teastep
999c74bf03 Generate an error when 'norfc1918' is specified for an interface with an RFC 1918 IP address
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2489 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-14 16:45:48 +00:00
teastep
370d61970a Add FASTACCEPT option to accept ESTABLISHED/RELATED packets early
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2474 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-11 19:53:07 +00:00
teastep
bba152b119 Don't generate redundant ACCEPT rules for DNAT/REDIRECT/SAME
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2456 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-05 14:13:45 +00:00
teastep
2a52d3342d Fix Makefile; rename status to dump and create a real status command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2427 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-28 14:37:56 +00:00
teastep
6c8b63bfe0 Remove dependence on 'which'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2421 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-27 20:30:16 +00:00
teastep
b66929a65e Large merge of function from EXPERIMENTAL to HEAD.
1) Elimination of the "shorewall monitor" command.

2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.

3) Support has been added for the arp_ignore interface option.

4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.

5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.

6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).

7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.

8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.

9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.

10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.

11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
paulgear
2a19eb8a5a Copy latest 2.4 version from Shorewall2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:55:29 +00:00
paulgear
90dd62e89e Copy latest 2.2 version from STABLE2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2263 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:45:05 +00:00
paulgear
921a7223d4 Copy latest 2.0 code from STABLE2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 04:45:32 +00:00
teastep
ccd528ec8c Shorewall 1.4.10d +
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1216 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-20 15:40:06 +00:00
teastep
d711731678 Fix multiple excluded zone handling in DNAT/REDIRECT
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1181 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-04 15:24:59 +00:00
teastep
7f19ec0c73 Fix another masq file bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1131 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-09 20:46:22 +00:00
teastep
76c135e123 Shorewall-1.4.10a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1129 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-08 20:36:46 +00:00
teastep
97ea8c60d7 Fix problem in masq file parsing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1123 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-05 20:13:24 +00:00
teastep
76b5918a13 Fix handling of 'all' or '-' in the PROTO column of an action file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1096 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-29 19:11:51 +00:00
teastep
d116d04fb8 Don't add broadcasts to /0 groups
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1095 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-28 00:52:03 +00:00
teastep
b4d0cbd1b1 Don't feed the smurfs
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1093 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-27 22:33:32 +00:00
teastep
2e80e459bb RC1 and 'detectnets' option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1089 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-23 23:48:30 +00:00
teastep
22df211052 Applied Fr�d�ric LESPEZ's patch for packet marking by user/group id
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1088 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 20:24:56 +00:00
teastep
d362f734d9 Destination exclude list in masq file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1085 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-22 02:06:56 +00:00
teastep
5338cb48b0 Minor updates for 1.4.9
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1070 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-09 20:18:40 +00:00
teastep
0c6299465d Fix SNAT handling in DNAT rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@869 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-16 21:52:37 +00:00
teastep
90263f43af Add user-defined Actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@801 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-04 02:01:08 +00:00
teastep
380b8e2ce8 Add MODULE_SUFFIX option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@797 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-01 16:10:08 +00:00
teastep
f9c596a465 Reword desciption of NEWNOTSYN
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@793 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-28 17:39:53 +00:00
teastep
9fde389c31 Log 'norfc1918'
packets out of 'rfc1918' chains


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@792 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-27 18:39:11 +00:00
teastep
a3eaa7f9af Rework ip_forward handling; update release file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@791 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-27 18:24:57 +00:00
teastep
64bd2c9035 One-to-one NAT and updated common.def
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@790 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-24 19:08:43 +00:00
teastep
80981e802e Fix NONE policy validation and 'routeback' for wildcard interfaces
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@786 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-08 02:38:30 +00:00
teastep
c334e92103 Shorewall 1.4.8-RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@783 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-31 15:29:30 +00:00
teastep
f046ea3ab1 Fix route filtering
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@782 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-30 15:42:45 +00:00
teastep
ee51d49233 Correct Debian lockfile usage comment in shorewall.conf
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@781 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-27 22:36:22 +00:00
teastep
0f72f92c48 Another fix for <zone>_frwd chains
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@780 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-26 16:22:01 +00:00
teastep
e46c76253c Expand chain naming
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@778 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-25 00:55:58 +00:00
teastep
5448a9cc38 Expand chain naming
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@777 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-25 00:54:01 +00:00
teastep
1fd0345510 Re-add optimization for complex zones
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@769 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-15 18:34:05 +00:00
teastep
ff2b9ce193 Remove 'complex zone' optimization
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@768 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-15 18:17:23 +00:00
teastep
67ad01a56f Added BLACKLISTNEWONLY
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@765 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-11 16:06:00 +00:00
teastep
55ddfb8c78 Fix error handling after 'Unable to determine the routes...'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@764 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-10 03:00:26 +00:00
teastep
c80dacd86a p2pwall integration
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@762 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-09 21:26:08 +00:00
teastep
5b54d21d07 Don't use multiport match on ICMP
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@760 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-08 15:07:18 +00:00
teastep
9a51cb0b60 Merge Tuomo Soini's fix for /bin/ash
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@758 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-08 14:53:26 +00:00
teastep
8c4ccaed9a RC3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@754 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-06 21:11:34 +00:00
teastep
1003cd5590 Update RFC1918 to reflect recent IANA allocations
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@751 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-02 15:07:35 +00:00
teastep
5d489f01f9 Change 'logunclean' messages to reflect LOG disposition
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@750 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-02 04:48:30 +00:00
teastep
45e63c15ac Blacklist before DHCP
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@749 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-01 00:07:14 +00:00
teastep
2e4f97175d Correct handling of missing common.def file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@748 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-27 14:54:16 +00:00
teastep
f88241a6f1 Fix rules file processing with missing policy
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@747 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-26 21:34:16 +00:00
teastep
ddb925c133 Reword error message
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@745 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-22 21:44:22 +00:00
teastep
9f14855704 Allow user:group in USER SET column of rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@744 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-19 19:42:05 +00:00
teastep
6074472053 Correct Comment in rules file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@743 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-18 22:49:34 +00:00
teastep
169f057d91 Updates to rfc1918
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@740 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-17 02:22:47 +00:00
teastep
a18c573868 Beta 2 plus fix proxy ARP routes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@738 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-16 19:44:49 +00:00
teastep
b119a35e81 Fix for IPV6 addresses and the 'ip' utility
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@737 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-28 21:32:40 +00:00
teastep
afbe79977e Fix adding range of aliases
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@732 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-27 15:13:03 +00:00
teastep
47c914a86b Fix multiple 'drop/reject' bug
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@727 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-24 15:36:13 +00:00
teastep
54569f4782 Userset fix and logging fixes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@724 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-23 18:14:59 +00:00
teastep
e58b08c4b7 Redesign Accounting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@720 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-20 16:54:27 +00:00
teastep
b5c9917c79 Add RATE LIMIT column; allow multiple chains in a 'show' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@718 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 15:54:13 +00:00
teastep
fba135aa6e Allow display of multiple chains in 'shorewall show'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@717 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 01:20:37 +00:00
teastep
d55bcfca0b Rate Limiting in Rules - Part 7
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@711 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 21:31:02 +00:00
teastep
e454c7fe73 Rate Limiting in Rules - Part 3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@707 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 18:48:28 +00:00
teastep
552d738579 Allow bridge devices in /etc/shorewall/maclist
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@704 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 00:19:24 +00:00
teastep
b81591abfe Display interface-specific dynamic blacklisting chains in 'shorewall monitor' output
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@702 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 22:25:45 +00:00
teastep
a1c1785048 Allow degenerate rules; replace 'chain_exists' with 'havechain' in accounting code
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@701 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 17:44:23 +00:00
teastep
ab073a41a4 Added CHAIN declarations
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@698 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-11 01:36:32 +00:00
teastep
1144d736bf Correct bug in accounting file processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@693 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 15:06:23 +00:00
teastep
3c24144487 Add IP accounting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@692 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 01:11:50 +00:00
teastep
b235cd19e1 Add arp_filter interface option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@690 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-08 20:55:06 +00:00
teastep
61ba5353e5 Simplify ip_broadcast()
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@689 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-07 17:31:47 +00:00
teastep
4192870cb2 Add support for range lists in /etc/shorewall/masq
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@687 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-06 23:50:33 +00:00
teastep
c8b9cbfd35 Generic tunnels
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@686 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-06 00:06:44 +00:00
teastep
b2729de062 Fix adding addresses to P-T-P devices
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@683 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-05 15:05:45 +00:00
teastep
4c08cc4780 ADMINISABSENTMINDED Option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@681 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-29 23:04:04 +00:00
teastep
617c0d311e Remove braindead code; prevent 'stop' when 'start' is disabled
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@680 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-28 17:32:41 +00:00
teastep
a7c1270e07 Shorewall 1.4.6_20030727
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@679 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-27 18:17:39 +00:00
teastep
f7ea7cdd41 Snapshot 1.4.6_20030726
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@678 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-26 16:44:38 +00:00
teastep
afd7840558 Suppress DHCP message when there are no DHCP rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@666 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-18 23:12:34 +00:00
teastep
0c8365f7bb Support 2.6 compressed modules; add chain name to policy display in 'check' command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@662 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-16 03:07:38 +00:00
teastep
5b03f63961 Fix exclude zone processing in DNAT and REDIRECT rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@654 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 16:20:45 +00:00
teastep
2ec4e96fbd Export smarter ip_range() with the /sbin/shorewall iprange command
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@644 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 13:24:23 +00:00
teastep
130c8f95f9 Correct handling of DNS names with embedded '-'
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@643 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-06 00:06:06 +00:00
teastep
4f6f76ec72 Added ipcalc command to /sbin/shorewall
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@632 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-05 17:14:21 +00:00
teastep
9a6c36c146 Remove requirement for XOR
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@626 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-04 15:08:29 +00:00
teastep
6a1c9df7c9 Fix DNAT[-] destination list handling; add shell validation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@623 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-01 20:29:01 +00:00
teastep
fc1cc9b0eb Fix capability report -- Simon Matter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@622 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-30 14:21:42 +00:00
teastep
06e38b587d SHOREWALL_SHELL parameter
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@621 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-28 15:22:22 +00:00
teastep
52bc8bca5e Add MULTIPORT to the list of detected capabilities
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@620 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-28 01:09:12 +00:00
teastep
e3e6e20d81 Add Conntrack Match Capability
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@619 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-27 21:29:26 +00:00
teastep
9aaef4d05a Add load-balancing support
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@607 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-22 22:56:25 +00:00
teastep
debf41d707 Allow IP ranges with ADD_SNAT_ALIASES=Yes; Fix add_ip_aliases to match proper subnet to add to
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@605 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-22 16:58:33 +00:00
teastep
027e5fcd0f Implemented 'newnotsyn' interface option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@596 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 18:37:37 +00:00
teastep
170c3df6c4 Work around RH7.3 'service' anomaly
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@595 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 18:26:05 +00:00
teastep
ae42fcdbe6 Changes for 1.4.5
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@593 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 00:29:04 +00:00
teastep
51a7030fdb Make INCLUDE work in the zones file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@590 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-14 01:22:46 +00:00
teastep
4e26bb4ba4 Back out changes for reject processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@589 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-11 23:57:35 +00:00
teastep
3bb2d171ae Fix REJECT processing
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@588 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-11 19:46:50 +00:00
teastep
d9268be1c4 List on original dest; debugging try
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@577 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-31 15:29:14 +00:00
teastep
df6a59cf68 Shorewall-1.4.4b
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@575 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-29 14:43:47 +00:00
teastep
e70a63f267 Shorewall-1.4.4a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@573 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-28 19:20:23 +00:00
teastep
09392c88d3 Move DNAT and REDIRECT logging to the nat table
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@567 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-22 20:37:24 +00:00
teastep
e33573eff9 Change LOGMARKER/LOGFORMAT Implementation
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@566 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-21 21:36:05 +00:00
teastep
c15c93c7d1 Implement REDIRECT-
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@564 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-20 23:27:11 +00:00
teastep
8bf7e8e7b4 Changes for 1.4.3a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@559 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-19 23:28:37 +00:00
teastep
bbcbbca6b8 Implement LOGMARKER variable
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@546 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-25 16:22:18 +00:00
teastep
882030789d Update change log and release notes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@545 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-23 01:09:20 +00:00
teastep
e16e47893d Add 'routeback' option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@530 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-01 02:00:37 +00:00
teastep
02a42e2fb0 INCLUDE directive; make 'traceroute -I' work again
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@528 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-29 14:37:50 +00:00
teastep
e7d83205db Correct REJECT actions in common.def
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@527 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-26 16:11:31 +00:00