teastep
851cd153d8
Add advice about sections to rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2581 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-29 00:08:12 +00:00
teastep
6251280295
Add mention of macros in the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2579 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-28 21:44:09 +00:00
teastep
0ae1bdfbc1
Restore 'ipp2p' support to the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2564 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 20:11:27 +00:00
teastep
07c152ab35
Section the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2563 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-26 19:55:05 +00:00
teastep
f56e907907
Correct typo in /etc/shorewall/policy; Allow "all+" in SOURCE/DEST in /etc/shorewall/rules to enable intra-zone traffic
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2454 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-04 20:24:23 +00:00
teastep
ac1983a5da
Large cleanup patch from Tuomo Soini
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2449 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-08-02 16:46:30 +00:00
teastep
b66929a65e
Large merge of function from EXPERIMENTAL to HEAD.
...
1) Elimination of the "shorewall monitor" command.
2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.
3) Support has been added for the arp_ignore interface option.
4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.
5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.
6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).
7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.
8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.
9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.
10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.
11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
paulgear
2a19eb8a5a
Copy latest 2.4 version from Shorewall2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:55:29 +00:00
paulgear
90dd62e89e
Copy latest 2.2 version from STABLE2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2263 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:45:05 +00:00
paulgear
921a7223d4
Copy latest 2.0 code from STABLE2/
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 04:45:32 +00:00
teastep
94d91cafa4
Clean up Action Change
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@805 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-05 19:19:08 +00:00
teastep
90263f43af
Add user-defined Actions
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@801 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-04 02:01:08 +00:00
teastep
c80dacd86a
p2pwall integration
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@762 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-09 21:26:08 +00:00
teastep
9f14855704
Allow user:group in USER SET column of rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@744 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-19 19:42:05 +00:00
teastep
6074472053
Correct Comment in rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@743 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-18 22:49:34 +00:00
teastep
54569f4782
Userset fix and logging fixes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@724 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-23 18:14:59 +00:00
teastep
90b5b607a6
Allow chains with IP addresses as names
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@721 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-21 13:18:51 +00:00
teastep
b6adee2804
Correct example in rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@719 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-19 22:28:23 +00:00
teastep
b5c9917c79
Add RATE LIMIT column; allow multiple chains in a 'show' command
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@718 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-15 15:54:13 +00:00
teastep
e454c7fe73
Rate Limiting in Rules - Part 3
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@707 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 18:48:28 +00:00
teastep
ec4c44a162
Rate Limiting in Rules - Part 2
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@706 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 18:18:30 +00:00
teastep
88dbd252af
Rate Limiting in Rules - Part 1
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@705 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-13 17:07:05 +00:00
teastep
50252c7b7e
Update comment in rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@668 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-21 17:17:07 +00:00
teastep
ec86f2c46c
Add an example to the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@652 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-08 19:32:36 +00:00
teastep
0b2bfe6e05
Remove reference to MULTIPORT from rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@651 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-08 18:54:40 +00:00
teastep
9aaef4d05a
Add load-balancing support
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@607 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-22 22:56:25 +00:00
teastep
89bb721da4
More ORIGINAL DEST fixes; restore last 'Hits' report
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@579 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-01 03:14:20 +00:00
teastep
d9268be1c4
List on original dest; debugging try
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@577 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-31 15:29:14 +00:00
teastep
c15c93c7d1
Implement REDIRECT-
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@564 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-20 23:27:11 +00:00
teastep
c56fe6ee49
Clean up rules file comments
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@515 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-21 19:28:31 +00:00
teastep
09fc5e317a
Process params file before shorewall.conf
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@482 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-06 23:21:25 +00:00
teastep
21cb22303f
1) Remove trailing white space.
...
2) Improve detection of white space in comma-separated lists.
3) Fix a typo in the INSTALL file.
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@464 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-23 14:10:37 +00:00
teastep
6cabdfae5d
More 1.3.14 Changes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@456 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-19 23:52:03 +00:00
teastep
5fe2bef29e
Remove icmp.def; change versions to 1.4
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@449 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-15 00:09:44 +00:00
teastep
ef51c04d1d
Shorewall 2.0.0 Alpha1
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@443 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-08 20:58:44 +00:00
teastep
144c9ab576
Add DNAT- action; 'shorewall check' prints policies
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@390 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-31 01:10:28 +00:00
teastep
89efe0c6f6
Beta 3 Release Changes
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@384 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-22 23:34:26 +00:00
teastep
1220331e35
Add ULOG Support - phase II
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@363 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-12-13 04:06:24 +00:00
teastep
9483f891fc
Allow 'all' in rules
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@332 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-11-11 19:21:47 +00:00
teastep
f2b2e84808
Add DNS Name support; remove startup_disabled on uninstall
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@255 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-24 23:13:36 +00:00
teastep
167cf45cea
Allow both interface and address on source in rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@247 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-09-18 23:38:09 +00:00
teastep
142f3d2960
Document port ranges in the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@151 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-24 03:59:41 +00:00
teastep
1412f0d698
Centralize addition of IP aliases
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@147 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-23 16:26:45 +00:00
teastep
646a259f2e
Improve source/dest checking in 'check'
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@140 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-07-17 21:42:30 +00:00
teastep
6dfae19e76
Document MULTIPORT in the rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@52 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-06-02 21:29:29 +00:00
teastep
4c1193e4cd
Near complete removal of the 'multi' pseudo-zone
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@31 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 19:04:45 +00:00
teastep
bb65b34210
Update rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@30 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 14:48:11 +00:00
teastep
06146580fa
Update rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@29 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 14:17:56 +00:00
teastep
e393e5d4e1
Update rules file
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@28 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 14:16:26 +00:00
teastep
44170128c2
1.3 Beta 2 Snapshot
...
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@27 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2002-05-18 13:45:23 +00:00