Tom Eastep
|
57e913d86e
|
Merge branch '4.5.9'
|
2012-11-18 15:02:46 -08:00 |
|
Tom Eastep
|
a4294658b6
|
Add a capability to use log levels as a target.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-18 14:50:59 -08:00 |
|
Tom Eastep
|
65e1b1c9e7
|
Allow NFLOG as a target
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-18 13:15:24 -08:00 |
|
Tom Eastep
|
a07cfb0885
|
Allow NFLOG as a target
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-18 13:13:43 -08:00 |
|
Tom Eastep
|
c6ffdd67e2
|
Add DROP target to the conntrack file.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-18 11:35:40 -08:00 |
|
Tom Eastep
|
5265cd5bb7
|
Add UNTRACKED match to the secmarks file.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-18 11:01:49 -08:00 |
|
Tom Eastep
|
5712438bcb
|
Eliminate Shell syntax error when a provider and its interface have the same name.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-16 09:50:36 -08:00 |
|
Tom Eastep
|
a2b14c37ed
|
Treat optional interfaces as pseudo-providers.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-16 09:48:21 -08:00 |
|
Tom Eastep
|
b1ffcd8628
|
Apply provider mask in 'routemark' chain.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-14 11:20:30 -08:00 |
|
Tom Eastep
|
34e3e4bf82
|
Merge branch '4.5.9'
|
2012-11-14 11:17:18 -08:00 |
|
Tom Eastep
|
06a4994488
|
Make exclusion work correctly with TPROXY.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-14 11:16:52 -08:00 |
|
Tom Eastep
|
391113dfe3
|
Apply provider mask in 'routemark' chain.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-13 06:55:59 -08:00 |
|
Tom Eastep
|
3c58d2180d
|
Improve the efficiency of tcrule processing.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-13 06:55:35 -08:00 |
|
Tom Eastep
|
32c9e4274f
|
Rename 'mysplit' to 'split_host_list'
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-11 08:42:01 -08:00 |
|
Tom Eastep
|
896d874aab
|
Set VARLIB in the script's initialize() function.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-09 12:29:19 -08:00 |
|
Tom Eastep
|
5fcdfd779c
|
Don't default IPSET to 'ipset'.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-09 08:54:54 -08:00 |
|
Tom Eastep
|
860ee6de27
|
Eliminate nonsensical warning message.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-06 07:36:36 -08:00 |
|
Tom Eastep
|
ec17ea1dee
|
Remove superfluous check
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-03 08:19:46 -07:00 |
|
Tom Eastep
|
2e211bc2b6
|
Correct handling of wildcard interfaces in rules.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-11-03 07:24:41 -07:00 |
|
Tom Eastep
|
5f0b85b5b9
|
Replace a couple of more hard-coded directory names.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-30 09:49:53 -07:00 |
|
Tom Eastep
|
3f1aeb33be
|
Correct mark range with shifted mask.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-26 12:41:06 -07:00 |
|
Tom Eastep
|
e177916c12
|
Implement statistical marking in the tcrules file.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-26 07:10:26 -07:00 |
|
Tom Eastep
|
0387b16983
|
Implement CHECKSUM action in the tcrules file.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-22 15:42:13 -07:00 |
|
Tom Eastep
|
6af16e0cda
|
Allow quotes in parameter to run_iptables()
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-14 13:26:08 -07:00 |
|
Tom Eastep
|
ab7975539c
|
Correct typo in get_params()
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-14 09:30:27 -07:00 |
|
Tom Eastep
|
dfd0692176
|
Omit IPv6-specific code from checkkernelversion() in IPv4 script
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-13 07:28:37 -07:00 |
|
Tom Eastep
|
8b650358d6
|
Don't shout in compiler directives
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-13 07:14:51 -07:00 |
|
Tom Eastep
|
cc90a06958
|
Add RESTORE_ROUTEMARKS option
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-11 07:34:57 -07:00 |
|
Tom Eastep
|
54e066ec3a
|
Re-order logic in add_group_to_zone
- Need to normalize the address prior to comparing it with ALLIP
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-08 08:54:54 -07:00 |
|
Tom Eastep
|
620f88b339
|
Merge branch '4.5.8'
|
2012-10-07 17:41:01 -07:00 |
|
Tom Eastep
|
b7e6b1aa41
|
Allow IP range in the hosts file
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-07 17:40:42 -07:00 |
|
Tom Eastep
|
c84603cdc6
|
Merge branch '4.5.8'
Conflicts:
Shorewall/Perl/Shorewall/Zones.pm
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-07 17:04:27 -07:00 |
|
Tom Eastep
|
e2b029b0ba
|
More hosts file corrections.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-07 17:00:35 -07:00 |
|
Tom Eastep
|
0efc0451c1
|
Allow IP range in the hosts file
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-07 15:59:30 -07:00 |
|
Tom Eastep
|
9dd66fc6ff
|
Allow IP range in the hosts file
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-07 15:55:00 -07:00 |
|
Tom Eastep
|
0c9cc4a233
|
Change the 'dynamic' zone option to 'dynamic_shared'
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-07 09:18:18 -07:00 |
|
Tom Eastep
|
c228668500
|
Implement logic associated with 'dynamic' zone option
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-06 07:52:06 -07:00 |
|
Tom Eastep
|
afaba46aa3
|
Add 'dynamic' zone option.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-06 07:21:49 -07:00 |
|
Tom Eastep
|
1f38a36acf
|
Delete extraneous logic
Signed-off-by: Tom Eastep <teastep@shorewall.net>
Conflicts:
Shorewall/Perl/Shorewall/Zones.pm
|
2012-10-04 09:45:25 -07:00 |
|
Tom Eastep
|
526f72216a
|
Correct handling of dash characters in interface/ipset names.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-04 07:34:41 -07:00 |
|
Tom Eastep
|
642ff1be15
|
Correct handling of dash characters in interface/ipset names.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-02 10:09:23 -07:00 |
|
Tom Eastep
|
92d39dc56d
|
Expunge the g_perllib variable
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-01 06:59:39 -07:00 |
|
Tom Eastep
|
a8e9296473
|
Expunge the g_sbindir variable
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-01 06:55:48 -07:00 |
|
Tom Eastep
|
749e239d15
|
Expunge the g_libexec variable
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-10-01 06:51:36 -07:00 |
|
Tom Eastep
|
30d4ba67cc
|
Revert "Allow '-' in the interface for dynamic zone."
This reverts commit b68b34b820.
|
2012-09-30 16:25:35 -07:00 |
|
Tom Eastep
|
4ef81041be
|
Delete extraneous logic
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-09-30 16:09:34 -07:00 |
|
Tom Eastep
|
b68b34b820
|
Allow '-' in the interface for dynamic zone.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-09-30 16:04:38 -07:00 |
|
Tom Eastep
|
4311dc5ddf
|
Merge branch '4.5.8'
|
2012-09-29 09:03:12 -07:00 |
|
Tom Eastep
|
38faa3e071
|
Correct handling of new ipv6 net syntax in the hosts file.
Signed-off-by: Tom Eastep <teastep@shorewall.net>
|
2012-09-29 09:01:17 -07:00 |
|
Tom Eastep
|
81f92546d8
|
Merge branch '4.5.8'
|
2012-09-29 08:08:00 -07:00 |
|