shorewall_code

Author	SHA1	Message	Date
Tom Eastep	eaafeb8c2b	Add --hashlimit-htable-expire if the units are minutes or larger	2010-02-17 06:43:52 -08:00
Tom Eastep	375160d733	Avoid duplicate SFQ class numbers	2010-02-17 06:43:16 -08:00
Tom Eastep	167b29c2c5	Bump module version in Compiler.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 14:24:52 -08:00
Tom Eastep	8aaf4aab3a	Don't create log chain for 'RETURN' rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 14:24:00 -08:00
Tom Eastep	4546394531	Cosmetic changes to Compiler.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 14:07:35 -08:00
Tom Eastep	5d08d51fe5	Add $remote_fs to Required-Start and Required-Stop for Debian Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 08:39:50 -08:00
Tom Eastep	12d3420a5d	Detect FLOW_FILTER when LOAD_HELPERS_ONLY=No	2010-02-14 10:34:19 -08:00
Tom Eastep	0624451537	Fix for OLD_HL_MATCH. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-14 07:22:12 -08:00
Tom Eastep	5e9ecf1491	Update version of Config module	2010-02-13 11:00:34 -08:00
Tom Eastep	50d246c8be	A little cleanup of compiler.pl Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-13 10:03:32 -08:00
Tom Eastep	ec95e5b32c	Document fix for rate limiting of NAT rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-13 09:11:14 -08:00
Tom Eastep	1258149e0e	Don't apply rate limiting twice in NAT rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-13 07:21:27 -08:00
Tom Eastep	ea5a6c79bc	Bump CAPVERSION	2010-02-11 16:22:47 -08:00
Tom Eastep	5a96771e07	Start 4.4.8 Beta 1	2010-02-11 15:46:57 -08:00
Tom Eastep	757fea7467	Update documentation regarding FLOW_FILTER Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-11 14:35:12 -08:00
Tom Eastep	b35f20b403	Avoid CAPVERSION bump to implement FLOW_FILTER detection Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-11 07:29:41 -08:00
Tom Eastep	b8c195f570	Accurately detect 'flow' availability Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-10 14:50:26 -08:00
Tom Eastep	b1c64913b4	Reformat column header in tcinterfaces	2010-02-10 12:00:17 -08:00
Tom Eastep	433fc385bc	'bridge' implies 'routeback' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-09 14:04:36 -08:00
Tom Eastep	21d4c8ba21	Document workaround for lack of 'flow' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-08 10:03:10 -08:00
Tom Eastep	46e2afcf16	Ignore TYPE if old distro Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-08 07:13:20 -08:00
Tom Eastep	b45a70f98a	Make 'nosmurfs' work correctly on IPv6 with Address Type Match Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-08 07:12:58 -08:00
Tom Eastep	18d03a61f5	Make 'nosmurfs' work with Address Type Match on IPv6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-07 08:43:31 -08:00
Tom Eastep	11a2ec9f7c	Update version to 4.4.7	2010-02-05 16:40:48 -08:00
Tom Eastep	e64af57cae	Give smurf logging chain a fixed name. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 16:04:59 -08:00
Tom Eastep	f4e175f149	Fix IPv6 'nosmurfs'. Make 'nosmurfs' logging more efficient. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 15:03:15 -08:00
Tom Eastep	97f3e5b8de	Clear known problems. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 07:18:55 -08:00
Tom Eastep	52880a8822	Clean up generate_matrix() fix. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 06:57:51 -08:00
Tom Eastep	9d288241da	Fix issues in generate_matrix(). Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 19:42:54 -08:00
Tom Eastep	096fb29203	DEBUG and PURGE -- take 2. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 13:57:50 -08:00
Tom Eastep	1d8a7ad09f	Clear DEBUG and PURGE shell variables Delete a blank line Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 13:55:29 -08:00
Tom Eastep	753eb97667	Update version to 4.4.7 RC2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 10:30:53 -08:00
Tom Eastep	ede17e2da0	Set ADD_IP_ALIASES=No in all shorewall.conf files. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 08:16:41 -08:00
Tom Eastep	dd60f04a9f	Work around lack of MARK Target support	2010-02-01 16:22:57 -08:00
Tom Eastep	58f6e57286	Update known problems	2010-02-01 16:19:36 -08:00
Tom Eastep	d354560863	Finish last change. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-01 14:25:51 -08:00
Tom Eastep	f0d101605b	Don't try to combine nat chains that include '-s'. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-01 14:24:07 -08:00
Tom Eastep	1981372c94	Make search for "-j ACCEPT" a little tighter Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-31 08:27:30 -08:00
Tom Eastep	f2709dd525	Correct release notes to match implementation Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-30 20:31:39 -08:00
Tom Eastep	3d39a47582	Set $have_ipsec after completing parse of the hosts file. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-30 07:26:35 -08:00
Tom Eastep	659f774451	Sort %detect_capability for easier verification. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-29 13:09:53 -08:00
Tom Eastep	9d2decd26d	Modify determine_capabilities to use detect_capability() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-29 10:38:22 -08:00
Tom Eastep	b8ec2be516	Clean up handling of %detect_capability Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-28 16:39:45 -08:00
Tom Eastep	ecc7861115	Validate LOAD_HELPERS_ONLY before detecting capabilities. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-28 08:05:24 -08:00
Tom Eastep	ebd847ef70	Don't display capabilties if they have not been determined Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-28 08:04:54 -08:00
Tom Eastep	05f2bb4b3a	Correction to last patch. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 17:52:27 -08:00
Tom Eastep	103a1660bc	Update release notes for RC 1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 12:57:47 -08:00
Tom Eastep	9d25318d80	Fix detection of HASHLIMIT_MATCH on old kernels. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 12:53:31 -08:00
Tom Eastep	be117f6638	Remove traffic shaping modules from 'helpers' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 10:37:42 -08:00
Tom Eastep	2069855e44	Restore module loader to lib.base (it is needed by shorecap). Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 10:09:12 -08:00
Tom Eastep	846715b009	Remove module loading code from lib.base Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 09:58:14 -08:00
Tom Eastep	54456de888	Update module versions Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 09:01:00 -08:00
Tom Eastep	c05c1a6f50	Update version to 4.4.7 RC1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 06:58:44 -08:00
Tom Eastep	1556002b54	A couple of tweaks to the LOAD_HELPERS_ONLY optimization change. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 15:59:31 -08:00
Tom Eastep	fb007bc1c7	Bump version to Beta 4	2010-01-25 12:25:01 -08:00
Tom Eastep	9408a114c6	Don't load unused modules when LOAD_HELPERS_ONLY=Yes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 10:50:49 -08:00
Tom Eastep	d933aa602b	Eliminate 'ORIGINAL_POLICY_MATCH' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 08:13:22 -08:00
Tom Eastep	90b68a05de	Don't export %capabilities Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 07:56:16 -08:00
Tom Eastep	bfdc6719c1	Fix DropBcasts() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-24 12:16:15 -08:00
Tom Eastep	e14d48c2cf	Bump version to 4.4.7-Beta3 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-22 16:46:29 -08:00
Tom Eastep	0d63182ab4	Fix ambiguous syntax in Config.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-22 16:44:45 -08:00
Tom Eastep	199a50e1c7	Update version to 4.4.7 Beta 2 Add problems corrected to the release notes. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-22 10:35:27 -08:00
Tom Eastep	8def4d03c3	Document LOAD_HELPERS_ONLY=Yes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 20:17:25 -08:00
Tom Eastep	8f85c75264	Implement LOAD_HELPERS_ONLY for IPv6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:49:44 -08:00
Tom Eastep	efc43b1b24	Add implementation of LOAD_HELPERS_ONLY Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:49:35 -08:00
Tom Eastep	a248acb4d4	Add LOAD_HELPERS_ONLY Option Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:49:23 -08:00
Tom Eastep	4303ad0a3e	Add Module Helpers File Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:48:24 -08:00
Tom Eastep	10fe25050f	Add TC_PRIOMAP fix to change log Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 10:39:40 -08:00
Tom Eastep	a7d4207bf5	Add TC_PRIOMAP to shorewall*.conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 10:38:32 -08:00
Tom Eastep	6b9afd6a82	Remove "-common" from installer messages Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-19 08:28:08 -08:00
Tom Eastep	9788e057bf	Correct filenames in install.sh -- Take 2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 09:29:14 -08:00
Tom Eastep	1716995d75	Correct filenames in install.sh Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 09:20:09 -08:00
Tom Eastep	5cc2edf15a	Add the new tc files to the repository Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 09:03:05 -08:00
Tom Eastep	8798d3cdb4	Install tcinterfaces and tcpri Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 07:39:36 -08:00
Tom Eastep	4453bb7dc8	More updates from 4.5	2010-01-17 16:18:44 -08:00
Tom Eastep	eb790c6d89	Add IPMARK and TPROXY modules to load list	2010-01-17 15:51:19 -08:00
Tom Eastep	e119037dea	Make 'is_isable()' work with 'lo'	2010-01-17 15:38:20 -08:00
Tom Eastep	f072c10b18	Set version to 4.4.7 Beta1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 09:10:48 -08:00
Tom Eastep	957de4b057	Add new options to shorewall[6].conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:50:32 -08:00
Tom Eastep	146a738e4c	Document TPROXY Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:20:15 -08:00
Tom Eastep	f4102417ff	Shorewall::Config changes for TPROXY from 4.5 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:15:14 -08:00
Tom Eastep	07cdb8ca82	Backport TPROXY from 4.5 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:12:44 -08:00
Tom Eastep	47007c5dbd	Allow protocol to be expressed in octal or hex Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 14:20:47 -08:00
Tom Eastep	aad8ea837a	Allow port numbers to be specified in Hex Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 14:00:47 -08:00
Tom Eastep	5ec7759d81	Don't pass an undefined value to fatal_error when numeric conversion fails. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 12:35:18 -08:00
Tom Eastep	fddb85189e	Update release documents for functionality backported from 4.5. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 11:32:50 -08:00
Tom Eastep	4bf0b8e1dd	Add new configuration options and optimization changes from 4.5 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 09:53:53 -08:00
Tom Eastep	d5cc302ad9	Start 4.4.7 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 08:11:13 -08:00
Tom Eastep	45d975cb45	Final editing of release notes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-14 08:25:32 -08:00
Tom Eastep	6e998edd48	Correct typo -- TC_EXPORT -> TC_EXPERT Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-14 07:48:19 -08:00
Tom Eastep	ebf1e55609	Version to 4.4.6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 15:38:19 -08:00
Tom Eastep	1f1812b786	Document mDNS change in the release notes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 13:24:24 -08:00
Tom Eastep	bffe8ce4c6	Add multicast address to mDNS macro Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 13:20:07 -08:00
Tom Eastep	79f8031267	Add IGMP to the mDNS macro. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 13:03:34 -08:00
Tom Eastep	b8b7555ff9	Add "[ <device> ]" to "show tc" usage syntax Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 12:28:20 -08:00
Tom Eastep	880cd269c7	More mark geometry misses Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 12:16:40 -08:00
Tom Eastep	72de96760f	One more 0xFF -> $globals{TC_MASK} fix Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 12:11:00 -08:00
Tom Eastep	890cbfbd5d	Document TRACK_PROVIDERS change in the release notes. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 10:59:34 -08:00
Tom Eastep	10c5630786	A few more instances of TC_MASK Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 10:50:14 -08:00
Tom Eastep	555133fa3c	Bump version to 4.4.6-Beta2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 10:14:31 -08:00

1 2 3 4 5 ...

2737 Commits