1773 Commits

Author	SHA1	Message	Date
Tom Eastep	d5290fc881	Correct typo that caused an internal error ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-15 10:11:12 -07:00
Tom Eastep	0b2a8b12c7	Implement Stateless NAT support. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-14 12:01:17 -07:00
Tom Eastep	71480ff647	Validate nets in the netmap file. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-13 15:59:42 -07:00
Tom Eastep	97121116a3	Add rawpost table detection ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-13 11:14:29 -07:00
Tom Eastep	37b08dd991	Merge branch '4.4.22'	2011-08-13 10:48:27 -07:00
Tom Eastep	dec4f4f186	Separate target and targetopts in add_ijump calls. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-13 09:56:14 -07:00
Tom Eastep	b1b323191c	Merge branch '4.4.22'	2011-08-11 20:19:47 -07:00
Tom Eastep	786455b287	Unlink .bak file if no changes to .conf. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-11 20:19:30 -07:00
Tom Eastep	39c71418da	Merge branch '4.4.22'	2011-08-10 09:34:37 -07:00
Tom Eastep	7708c251db	Fix ECN when MANGLE_FORWARD is not available. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-10 09:34:15 -07:00
Tom Eastep	8eff66dcfd	Fix handling or ORIGINAL DEST when CONNTRACK_MATCH is not available ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-10 07:12:13 -07:00
Tom Eastep	67c1fa1e63	Fix old state match	2011-08-08 20:35:55 -07:00
Tom Eastep	8fe064914b	Fix old state match	2011-08-08 20:32:02 -07:00
Tom Eastep	4824c9b8ff	Add QUOTA_MATCH capability ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-08 14:37:47 -07:00
Tom Eastep	b0fe8e1e60	Merge branch '4.4.22'	2011-08-03 07:20:57 -07:00
Tom Eastep	a548bddea8	Remove she-bang from first line of prog.header* ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-03 07:20:34 -07:00
Tom Eastep	679de4ccf6	Apply Orion Poplawski's 'qtnoin' patch ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-02 16:51:49 -07:00
Tom Eastep	50a29f6858	Correct detection of OLD_IPSET_MATCH when LOAD_MODULES_ONLY=No ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-08-02 11:58:54 -07:00
Tom Eastep	ae0cffa588	Fix handling of zone names beginning with 'all'	2011-08-02 09:13:23 -07:00
Tom Eastep	d358285d56	Remove obsolete comment ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-31 11:34:46 -07:00
Tom Eastep	512273fa91	Avoid undefined reference in Shorewall::rules::save_policies ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-30 07:04:42 -07:00
Tom Eastep	42ae3ba581	Cleaner fix for TCP_FLAGS_DISPOSITION ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-30 06:57:18 -07:00
Tom Eastep	d9fe6e7a42	Handle missing TCP_FLAGS_DISPOSITION setting ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-28 15:56:34 -07:00
Tom Eastep	6c025d20c9	Fix Shorewall6 Kernel Version test ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-28 15:53:35 -07:00
Tom Eastep	a992ec594a	Accomodate kernel version 3.0 ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-27 17:03:27 -07:00
Tom Eastep	a18c502796	Correct reference counting in one more place in expand_rule() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-25 07:42:01 -07:00
Tom Eastep	ecd2e2276e	Add some comments and remove extra whitespace ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-25 06:56:05 -07:00
Tom Eastep	215e923562	A little cleanup ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-24 16:17:22 -07:00
Tom Eastep	703bc88bfd	Move merge_rules() back to where it was. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-24 15:06:42 -07:00
Tom Eastep	ac5a6f4471	Cleanup of progress messages ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-24 09:13:46 -07:00
Tom Eastep	f2c9647579	Set empty target in rules created via add_irule() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-24 08:28:43 -07:00
Tom Eastep	e693665be1	Add correct reference counting to merge_rules() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-24 08:03:45 -07:00
Tom Eastep	ea4b8cdb6f	Exempt policy chains from optimization level 8. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-23 16:34:01 -07:00
Tom Eastep	b789d825f8	Unify the setting of $targetref and $jump ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-23 14:47:16 -07:00
Tom Eastep	83e6e2f105	Another fix for reference counting. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-23 13:54:56 -07:00
Tom Eastep	028fc20741	Correct reference accounting when long port lists are split ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-23 07:31:58 -07:00
Tom Eastep	3d616980a6	Don't delete the {target} member in clear_rule_target() but instead set it to '' ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-23 07:30:56 -07:00
Tom Eastep	567993292f	Some efficiency changes ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-22 17:48:14 -07:00
Tom Eastep	5764e7899b	Rename combined chains created by optimization level 8 ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-22 14:12:03 -07:00
Tom Eastep	22463e451d	More efficient method of generating rule strings for comparison ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-22 11:06:29 -07:00
Tom Eastep	1d24f28c83	Rename %special -> %opttype ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-22 11:06:03 -07:00
Tom Eastep	bfd63dcace	Revert LOGLIMIT conversion change ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-22 07:53:30 -07:00
Tom Eastep	2adf2883d5	Revert addition of do_i functions. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-22 07:23:13 -07:00
Tom Eastep	5e190f4e4e	Implement '_i' equivalents of all do_ functions. ... Also implements handling of long port lists in new-format rules. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-22 06:22:52 -07:00
Tom Eastep	0791ea6698	Make 'KLUDGEFREE' a global to make it faster to test. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-21 12:57:20 -07:00
Tom Eastep	4eeb233d95	A little reorg to prepare for moving long port list remediation to the new chain structure. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-20 18:52:20 -07:00
Tom Eastep	705ffbca49	Fix for LOGMARK(<list>) ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-20 17:33:31 -07:00
Tom Eastep	a7ab53e135	Trap '!' in port columns. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-20 15:55:18 -07:00
Tom Eastep	32a8b254a0	Some optimizations in the new rule infrastructure ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-20 15:53:00 -07:00
Tom Eastep	ca655a6f52	Use add_ijump for all jump 'irules'. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-20 07:30:49 -07:00
Tom Eastep	12b5aa687b	More conversion to new rule interface ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-19 11:58:10 -07:00
Tom Eastep	f8be76f471	Make LOGMARK work without a parameter. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-19 11:57:12 -07:00
Tom Eastep	8b56e16bf9	Fix LOGMARK ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-19 06:54:41 -07:00
Tom Eastep	58de3dd3c1	Fix :persistent and :random in /etc/shorewall/masq ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 15:35:07 -07:00
Tom Eastep	346df62cc6	Support long-form iptables options. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 13:47:52 -07:00
Tom Eastep	796f3b6668	Correct cmdlevel settings in irules. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 10:05:39 -07:00
Tom Eastep	1e89074bf8	Correct tracing of nested rules ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 09:46:41 -07:00
Tom Eastep	a80b04bd74	Correct formatting of empty arguments to add_commands ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 09:45:59 -07:00
Tom Eastep	bfd69c33c7	Correctly format empty arguments to add_commands() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 09:19:52 -07:00
Tom Eastep	043fb8757c	Convert Rules.pm infrastructure to use the new rule interface ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 08:29:42 -07:00
Tom Eastep	7aa7cd54c2	Convert Providers.pm to use the new rules interface. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 07:43:25 -07:00
Tom Eastep	3c60f107b7	Convert generate_matrix() to use the new rules interface ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-18 07:24:21 -07:00
Tom Eastep	2efa2796d3	More new rule interface calls in the Misc module ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-17 15:12:58 -07:00
Tom Eastep	b2305ca9cf	Convert Tunnels file to use irules ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-17 11:33:01 -07:00
Tom Eastep	a211f8fd0f	Infrastructure for new rule interface ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-17 10:37:15 -07:00
Tom Eastep	f3f535abac	POC of new rule interface ... Also removed FAKE_AUDIT option Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-17 08:35:09 -07:00
Tom Eastep	950c32d46b	Convert add_commands() calls to the equivalent add_rule() calls. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-16 16:31:29 -07:00
Tom Eastep	03913019d8	Mark DHCP rules for the convenience of move_rules(). ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-16 15:34:57 -07:00
Tom Eastep	27621fa0f9	Impose some structure on setting rule options ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-16 14:46:34 -07:00
Tom Eastep	0f742187ae	Implement intermediate rule representation ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-16 09:41:53 -07:00
Tom Eastep	d1b8d7b953	Make perl modules version-neutral ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-10 15:10:27 -07:00
Tom Eastep	11c580de54	Fix exclusion in IPv6 hosts file. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-09 17:27:09 -07:00
Tom Eastep	e21ff03339	Fix ipsets in IPv6 hosts file ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-09 16:17:35 -07:00
Tom Eastep	fbeddca6a4	Another IPv6 ipset issue (z:!+set in the DEST column) ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-09 15:40:18 -07:00
Tom Eastep	a998476d00	Correct Accounting module version ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-09 07:08:47 -07:00
Tom Eastep	6c802d3353	Tighten up source and dest checking in expand_rule() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-09 07:08:39 -07:00
Tom Eastep	1f30976790	Correct change that tightened editing of IPv6 addresses ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-08 18:34:33 -07:00
Tom Eastep	22f1d1ba89	Another fix for IPv6 and IPSETs ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-08 16:31:35 -07:00
Tom Eastep	a8daff0008	Correct handling of <interface>:+<ipset> in Shorewall6. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-08 15:57:08 -07:00
Tom Eastep	7fa59706c5	Correct TPROXY/IPv6 address fix ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-07 14:50:44 -07:00
Tom Eastep	3f903fe3f1	Allow IPv6 Address as the third argument to TPROXY ... - also update the manpages to describe TPROXY Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-07 06:43:16 -07:00
Tom Eastep	e1d8d71348	Version to 4.4.22 Beta 1 ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-04 09:36:54 -07:00
Tom Eastep	6be8c08673	Create action chain without leading % when possible ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-04 07:48:52 -07:00
Tom Eastep	1536ff4b92	Corrections to dropBcast/allowBcast ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-03 15:58:19 -07:00
Tom Eastep	24deabb03f	Merge branch '4.4.21'	2011-07-03 08:48:27 -07:00
Tom Eastep	9691a8ceb3	Don't collapse '-' and '--' in @actparms ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-03 08:47:53 -07:00
Tom Eastep	029ac610fe	Merge branch '4.4.21'	2011-07-03 07:23:09 -07:00
Tom Eastep	d31e2d67ba	DEFAULTS directive enforces max number of parameters ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-03 07:22:29 -07:00
Tom Eastep	62c62441bb	Eliminate duplicate function definitions ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-03 07:04:52 -07:00
Tom Eastep	d99090978d	Merge branch '4.4.21'	2011-07-03 06:40:08 -07:00
Tom Eastep	5b06e88b3d	Push/Pop comment during action processing ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-03 06:37:41 -07:00
Tom Eastep	7e3f97c154	Prepare for more parameterized actions ... - Export add_commands, incr_cmd_level and decr_cmd_level by default - Move ensure_audit_chain and require_audit from Rules.pm to Chains.pm - Add get_action_logging() function - Export require_capability and have_capability by default Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-03 06:22:51 -07:00
Tom Eastep	ad71faacaa	Correct push_action_params() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-02 17:02:39 -07:00
Tom Eastep	42aa3724af	Trace system calls when debugging ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-02 08:37:57 -07:00
Tom Eastep	4ea8a65cd9	Trace system calls when debugging ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-02 08:27:17 -07:00
Tom Eastep	afa5ea3fd2	Minor tweaks to Config.pm ... - Look for unprintable gunk in lines processed by split_line1() - Modify a comment - replace awkward close/assert statement Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-02 08:10:43 -07:00
Tom Eastep	bd9bf3d43a	Rename & export get_actionchain() -> get_action_chain() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-02 07:02:18 -07:00
Tom Eastep	c309ca3075	Revert "Simplify push_action_params()" ... This reverts commit 89ee25dde2. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-01 16:23:39 -07:00
Tom Eastep	8ab45b4de3	Save current action chain along with params. Add get_action_chain() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-01 16:21:36 -07:00
Tom Eastep	89ee25dde2	Simplify push_action_params() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-07-01 15:38:39 -07:00
Tom Eastep	ea22d79aeb	Update the version of Providers.pm	2011-06-30 18:40:48 -07:00
Tom Eastep	6ff02dbaa3	Make 'fallback' and 'balance' mutually exclusive ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-30 10:00:01 -07:00
Tom Eastep	f09d286738	Correct script generation problem with TPROXY ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-29 20:05:27 -07:00
Tom Eastep	cbeebb6bf8	Bump version to 4.4.21. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-29 11:36:04 -07:00
Tom Eastep	ea038bcecb	Correct regular expression in process_shorewall_conf() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-28 06:42:41 -07:00
Tom Eastep	05103bacd0	Don't expand single-quoted .conf option values ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-26 07:45:09 -07:00
Tom Eastep	0b431aa8c1	Minor tweaks to Config.pm ... - Add/revise comments - Rename $line -> $lineref in expand_variables() - Collapse 3 lines into one in process_shorewall_conf()	2011-06-26 06:50:22 -07:00
Tom Eastep	7507c81882	Remove some whitespace ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-25 21:55:49 -07:00
Tom Eastep	9f37f09b28	Clean up variable expansion: ... 1) Centralize code in function expand_variables() 2) Eliminate %rawconfig 3) Correct logic in update_config_file() - the defect was not observable but the code was clearly silly	2011-06-25 21:08:32 -07:00
Tom Eastep	47c759d93c	Convert %actparms to an array ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-25 11:39:13 -07:00
Tom Eastep	5740b69dc6	Fix another empty parameter list issue	2011-06-25 09:46:58 -07:00
Tom Eastep	19c1f388a7	Modify Debian test in update ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-24 15:01:25 -07:00
Tom Eastep	fb2085b0c3	Support 'update' on Debian ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-24 13:40:32 -07:00
Tom Eastep	ca9276fd7e	Add quotes on deprecated and obsolete options if appropriate ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-24 11:47:34 -07:00
Tom Eastep	129d1739d1	Cosmetic changes ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-24 07:58:46 -07:00
Tom Eastep	7583a5c7a3	Use updated values in configuration verification ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-24 07:22:41 -07:00
Tom Eastep	11b847f3a4	Correct spelling in an error message (FOREWARD -> FORWARD) ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-24 06:22:16 -07:00
Tom Eastep	6f68ed5508	Initiate 4.4.21 RC 1	2011-06-23 16:23:52 -07:00
Tom Eastep	ba9a0016a8	Move update_config_file() to before process_shorewall_conf() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-23 06:37:21 -07:00
Tom Eastep	de7d95e7ff	Rename 'ipset v4' -> 'ipset v5' ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-23 06:36:35 -07:00
Tom Eastep	04d551d8ca	Detect ipset V4 and use its syntax ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-22 16:43:42 -07:00
Tom Eastep	7ef7490cd6	Change the compiler's default for LEGACY_FASTSTART ... - No visible effect since the compiler doesn't use this option	2011-06-22 13:56:17 -07:00
Tom Eastep	1b3d7947b8	Update the .conf file before validating ('update' command) ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-22 12:31:58 -07:00
Tom Eastep	ba7d5fd720	Avoid two-stage processing of shorewall.conf when not updating. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-22 10:56:25 -07:00
Tom Eastep	106ba52362	Change signature of get_action_params ... - Accepts a number of parameters rather than a list - Change action.Drop and action.Reject accordingly - Define correct number of parameter variables in action.Drop and action.Reject Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-22 08:27:01 -07:00
Tom Eastep	62a75cb98d	Fix parameterization of standard default actions. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-22 07:51:42 -07:00
Tom Eastep	b43bee2c62	Streamline PERL in action.Drop and action.Reject ... - Rename read_action_param => get_action_params - Allow it to accept a list of indexes and to return a list Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-22 06:53:15 -07:00
Tom Eastep	bbf853bd1d	Cleaner handling of DEFAULTS in a non-action context ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-22 06:11:20 -07:00
Tom Eastep	ece598288f	Disallow DEFAULTS in the rules file	2011-06-21 21:00:08 -07:00
Tom Eastep	d51ca478bd	Reverse one hunk from empty-parameter fix ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-21 11:45:32 -07:00
Tom Eastep	063e21e69f	Allow an empty parameter list in an action (e.g., "Action()") ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-20 19:45:01 -07:00
Tom Eastep	71d88b93a0	Make IPv6 Dynamic Zone set names unique ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-20 17:22:34 -07:00
Tom Eastep	39e74911d8	Improve generated code ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-20 14:34:26 -07:00
Tom Eastep	44cbfd8f27	Correct defects found while unit testing IPv6 Dynamic Zones ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-20 13:33:25 -07:00
Tom Eastep	119d38c92b	Enable dynamic zones for IPv6 ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-20 10:41:29 -07:00
Tom Eastep	785de281b5	More IPv6 ipset fixes ... - use 'family inet6' rather than 'family ipv6' - Correct one more case of 'iphash' vs 'hash:ip family inet6' - Encapsulate ipset -N into an 'ensure_ipset()' function Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-20 07:43:32 -07:00
Tom Eastep	4c2f12e645	Some whitespace changes	2011-06-19 19:08:32 -07:00
Tom Eastep	e4bcc12301	Use 'here documents' rather than single quotes. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-19 18:33:10 -07:00
Tom Eastep	2097d0f4a0	Accomodate new syntax of ipset saved commands ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-19 14:06:42 -07:00
Tom Eastep	46d64e39d1	Use correct syntax to create IPv6 ipsets. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-19 14:04:53 -07:00
Tom Eastep	be6b08f835	Be sure to detect IPSET_MATCH before OLD_IPSET_MATCH. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-19 13:29:10 -07:00
Tom Eastep	7753f798b0	Bump Version to Beta 3 ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-19 10:09:53 -07:00
Tom Eastep	c264aaae6b	Update module versions ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-19 07:41:26 -07:00
Tom Eastep	4916610033	Rename upgrade => update ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-19 07:14:27 -07:00
Tom Eastep	55242d1ed6	Add a few comments ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-18 16:55:00 -07:00
Tom Eastep	d66c7d478e	Eliminate expansion of shell variables in the upgraded config file ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-18 16:33:41 -07:00
Tom Eastep	380443f26d	Eliminate %defaults ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-18 15:44:07 -07:00
Tom Eastep	faeb2da2ba	Corrections to Defaults ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-18 15:38:08 -07:00
Tom Eastep	f93ac02bfc	Provide default values for added entries ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-18 14:50:07 -07:00
Tom Eastep	96f6dc3558	More defined => supplied changes ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2011-06-18 13:08:26 -07:00