Tom Eastep
|
4c2f12e645
|
Some whitespace changes
|
2011-06-19 19:08:32 -07:00 |
|
Tom Eastep
|
e4bcc12301
|
Use 'here documents' rather than single quotes.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 18:33:10 -07:00 |
|
Tom Eastep
|
2097d0f4a0
|
Accomodate new syntax of ipset saved commands
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 14:06:42 -07:00 |
|
Tom Eastep
|
46d64e39d1
|
Use correct syntax to create IPv6 ipsets.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 14:04:53 -07:00 |
|
Tom Eastep
|
be6b08f835
|
Be sure to detect IPSET_MATCH before OLD_IPSET_MATCH.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 13:29:10 -07:00 |
|
Tom Eastep
|
d12336ec78
|
Reword 'update' description.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 13:28:17 -07:00 |
|
Tom Eastep
|
ee384d03ce
|
Allow Shorewall-init to save/restore ipset contents
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 10:10:59 -07:00 |
|
Tom Eastep
|
7753f798b0
|
Bump Version to Beta 3
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 10:09:53 -07:00 |
|
Tom Eastep
|
2769b09f64
|
Correct typeos in shorewall and shorwall6
|
2011-06-19 08:39:44 -07:00 |
|
Tom Eastep
|
c264aaae6b
|
Update module versions
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 07:41:26 -07:00 |
|
Tom Eastep
|
4916610033
|
Rename upgrade => update
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-19 07:14:27 -07:00 |
|
Tom Eastep
|
df2f7ec6a5
|
Implement 'upgrade' and delete the '-u' and '-a' options of 'check'.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 17:39:44 -07:00 |
|
Tom Eastep
|
55242d1ed6
|
Add a few comments
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 16:55:00 -07:00 |
|
Tom Eastep
|
d66c7d478e
|
Eliminate expansion of shell variables in the upgraded config file
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 16:33:41 -07:00 |
|
Tom Eastep
|
380443f26d
|
Eliminate %defaults
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 15:44:07 -07:00 |
|
Tom Eastep
|
faeb2da2ba
|
Corrections to Defaults
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 15:38:08 -07:00 |
|
Tom Eastep
|
f93ac02bfc
|
Provide default values for added entries
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 14:50:07 -07:00 |
|
Tom Eastep
|
96f6dc3558
|
More defined => supplied changes
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 13:08:26 -07:00 |
|
Tom Eastep
|
6f2cc31dde
|
Implement .conf file upgrade
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 13:03:55 -07:00 |
|
Tom Eastep
|
e5d8be5aa5
|
Bump version to Beta 2
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 11:23:43 -07:00 |
|
Tom Eastep
|
d23f932ebe
|
Don't generate INPUT hairpin rules
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-18 06:21:36 -07:00 |
|
Tom Eastep
|
f9ee8c494d
|
Exempt wildcard interfaces from sfilter
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-14 06:45:22 -07:00 |
|
Tom Eastep
|
9aedd407cc
|
Quell compiler warnings from Perl 5.14.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-13 06:40:03 -07:00 |
|
Tom Eastep
|
10ae91b600
|
Delete deprecated options from the .conf files
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-12 13:46:26 -07:00 |
|
Tom Eastep
|
8780aff7f2
|
Rename PLAIN->ANNOTATED
|
2011-06-12 09:45:50 -07:00 |
|
Tom Eastep
|
65d4709372
|
Drop IPv6 IPSET support for now
|
2011-06-12 09:14:33 -07:00 |
|
Tom Eastep
|
785bd7c987
|
Apply Tuomo Soini's patch
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-12 07:22:26 -07:00 |
|
Tom Eastep
|
9ab901927f
|
Use supplied() where appropriate
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 16:14:31 -07:00 |
|
Tom Eastep
|
774aac1228
|
Add a supplied() function
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 15:40:55 -07:00 |
|
Tom Eastep
|
b7a3142620
|
Document parameterized default actions
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 15:25:48 -07:00 |
|
Tom Eastep
|
a60fe6e665
|
Allow parameters to be specified to Default Actions in the policy file
and in shorewall.conf.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 14:58:54 -07:00 |
|
Tom Eastep
|
68bf99ec69
|
Parameterize the standard default actions
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 08:34:37 -07:00 |
|
Tom Eastep
|
3dd363677c
|
Implement set_action_param
Export both set_action_params and read_action_param by default
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 08:33:21 -07:00 |
|
Tom Eastep
|
8b6a7a7053
|
Implement read_action_param()
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 07:49:57 -07:00 |
|
Tom Eastep
|
f278d05637
|
Rename action param functions
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 07:46:54 -07:00 |
|
Tom Eastep
|
2549982528
|
Fix DEFAULTS
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 07:23:41 -07:00 |
|
Tom Eastep
|
af1898b17b
|
Document default values for parameters
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-11 07:18:11 -07:00 |
|
Tom Eastep
|
6e6be468a9
|
Support for DEFAULT statements in actions
|
2011-06-10 17:05:09 -07:00 |
|
Tom Eastep
|
32c7d36cd0
|
Make zones with multiple interfaces complex
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-10 15:37:26 -07:00 |
|
Tom Eastep
|
dbd30f981c
|
Set the interface routeback option if there are any IP host groups with 'routeback'
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-10 15:37:09 -07:00 |
|
Tom Eastep
|
8a7ad569e4
|
Don't leave unused sfilter chains in the config
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-09 17:22:48 -07:00 |
|
Tom Eastep
|
3e9a54d404
|
Couple of tweaks
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-09 17:22:34 -07:00 |
|
Tom Eastep
|
a0b0c5bdac
|
Jump (don't go) to sfilter1
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-09 14:24:44 -07:00 |
|
Tom Eastep
|
1399a8ffde
|
Don't move rules from a chain with references
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-09 14:24:38 -07:00 |
|
Tom Eastep
|
9555a552c2
|
Fix FORWARD with ipsec dest
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-09 14:24:08 -07:00 |
|
Tom Eastep
|
71177c3ca3
|
Exempt ipsec from sfilter
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-09 07:27:06 -07:00 |
|
Tom Eastep
|
fa2746d469
|
Apply sfilter to INPUT as well as FORWARD
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-08 09:40:28 -07:00 |
|
Tom Eastep
|
35d1586672
|
Correct sfq handle assignment
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-07 13:58:45 -07:00 |
|
Tom Eastep
|
a3968beb7e
|
Add fix inadvertently dropped from 4.4.19.4
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-07 13:57:52 -07:00 |
|
Tom Eastep
|
0e839f3d7b
|
Initiate 4.4.21
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2011-06-07 09:54:35 -07:00 |
|