Commit Graph

94 Commits

Author SHA1 Message Date
teastep
b66929a65e Large merge of function from EXPERIMENTAL to HEAD.
1) Elimination of the "shorewall monitor" command.

2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.

3) Support has been added for the arp_ignore interface option.

4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.

5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.

6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).

7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.

8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.

9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.

10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.

11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
paulgear
d7f9a22d77 How long have these names been hanging around? :-)
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2381 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-20 03:36:31 +00:00
paulgear
2a19eb8a5a Copy latest 2.4 version from Shorewall2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2264 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:55:29 +00:00
paulgear
90dd62e89e Copy latest 2.2 version from STABLE2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2263 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 05:45:05 +00:00
paulgear
921a7223d4 Copy latest 2.0 code from STABLE2/
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2262 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-09 04:45:32 +00:00
teastep
ccd528ec8c Shorewall 1.4.10d +
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1216 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-20 15:40:06 +00:00
teastep
d711731678 Fix multiple excluded zone handling in DNAT/REDIRECT
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1181 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-03-04 15:24:59 +00:00
teastep
76c135e123 Shorewall-1.4.10a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1129 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-02-08 20:36:46 +00:00
teastep
afee989ee5 Shorewall 1.4.10
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1099 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-31 03:24:02 +00:00
teastep
a57c778928 Shorewall 1.4.10 RC3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1094 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-27 23:39:45 +00:00
teastep
3a82d46762 1.4.10 RC2 and fixes for broadcast rejects, ratelimiting and CONTINUE rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1092 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-27 21:16:07 +00:00
teastep
2e80e459bb RC1 and 'detectnets' option
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1089 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-23 23:48:30 +00:00
teastep
f22dff0fca Shorewall 1.4.9
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1078 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-13 20:54:58 +00:00
teastep
8599101182 Shorewall 1.4.9 Beta 2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1018 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-29 00:37:09 +00:00
teastep
f3fb164a7b Shorewall 1.4.9 Beta 1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@810 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-07 23:28:48 +00:00
teastep
90263f43af Add user-defined Actions
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@801 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-12-04 02:01:08 +00:00
teastep
04372ad48c Shorewall-1.4.8
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@787 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-08 04:19:13 +00:00
teastep
e147813da0 Shorewall-1.4.8-RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@785 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-11-01 18:16:39 +00:00
teastep
c334e92103 Shorewall 1.4.8-RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@783 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-31 15:29:30 +00:00
teastep
acad75f82f Shorewall 1.4.7
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@755 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-06 22:30:46 +00:00
teastep
8c4ccaed9a RC3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@754 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-10-06 21:11:34 +00:00
teastep
e4bfb8f0f4 1.4.7-RC2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@746 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-22 21:44:33 +00:00
teastep
6a43ad7ecd 1.4.7 RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@742 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-18 22:30:54 +00:00
teastep
a18c573868 Beta 2 plus fix proxy ARP routes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@738 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-16 19:44:49 +00:00
teastep
afbe79977e Fix adding range of aliases
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@732 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-27 15:13:03 +00:00
teastep
3b0705c223 Snapshot 20030823
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@725 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-23 22:00:27 +00:00
teastep
54569f4782 Userset fix and logging fixes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@724 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-23 18:14:59 +00:00
teastep
3ee26da51c Henry Yang's patch plus fix LOGRATE/ratelimit conflict on rules file logging
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@723 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-22 15:27:08 +00:00
teastep
064557a2e2 Snapshot 20030813
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@712 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-14 02:08:25 +00:00
teastep
3c24144487 Add IP accounting
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@692 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-10 01:11:50 +00:00
teastep
edfbafc0cb Snapshot 20030809
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@691 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-09 17:14:58 +00:00
teastep
3d9d913b4b 1.4.6_2003-731 plus idiot-proofing of the policy file
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@682 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-08-01 02:49:12 +00:00
teastep
a7c1270e07 Shorewall 1.4.6_20030727
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@679 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-27 18:17:39 +00:00
teastep
f7ea7cdd41 Snapshot 1.4.6_20030726
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@678 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-26 16:44:38 +00:00
teastep
e80d8ca732 Shorewall-1.4.6
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@667 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-19 15:07:31 +00:00
teastep
88e1eb7e4d Shorewall 1.4.6 RC1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@660 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-14 22:09:33 +00:00
teastep
184390708e Shorewall 1.4.6 Beta2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@649 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-07 14:18:52 +00:00
teastep
e4fe73b53a Shorewall 1.4.6 Beta 1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@627 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-07-04 15:32:33 +00:00
teastep
ae42fcdbe6 Changes for 1.4.5
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@593 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-06-18 00:29:04 +00:00
teastep
df6a59cf68 Shorewall-1.4.4b
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@575 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-29 14:43:47 +00:00
teastep
e70a63f267 Shorewall-1.4.4a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@573 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-28 19:20:23 +00:00
teastep
17868a6cce Changes for 1.4.4
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@568 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-22 20:48:59 +00:00
teastep
8bf7e8e7b4 Changes for 1.4.3a
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@559 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-19 23:28:37 +00:00
teastep
cd271ac59f Changes for 1.4.3
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@551 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-05-18 17:08:27 +00:00
teastep
549ca9e84e Change version to 1.4.2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@533 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-04-07 20:46:10 +00:00
teastep
8377f70bc7 Shorewall 1.4.1
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@518 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-22 00:25:40 +00:00
teastep
52629f9049 Shorewall 1.4.0
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@504 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-18 01:13:38 +00:00
teastep
4a173940b2 Add log limiting to 'logdrop' chain and optimize code that deletes temporary rules
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@486 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-08 15:48:07 +00:00
teastep
0f085fcf23 RC1 Changes
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@480 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-03-05 18:13:04 +00:00
teastep
08ec9ac4e0 Validate interface names in ecn file; confirm additions to ECN control chain; update to Beta2
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@468 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-02-24 15:24:55 +00:00