3638 Commits

Author	SHA1	Message	Date
Tom Eastep	abf57a4d1f	Correct indentation ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-09 09:29:04 -07:00
Tom Eastep	3058f2fb84	Delete code supporting old kernel/iproute2 IPv6 restrictions ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-07 11:02:36 -07:00
Tom Eastep	eb6ae5e186	Correct handling of DYNAMIC_BLACKLIST options ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-05 16:56:29 -07:00
Tom Eastep	941604ad01	Correct issue with updating DBL timeout ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-05 15:41:40 -07:00
Tom Eastep	14e8568d9e	Add the FIREWALL .conf option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-05 15:03:54 -07:00
Tom Eastep	ca7ca4bdfe	Add a 'timeout' option to DYNAMIC_BLACKLIST ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-05 12:56:47 -07:00
Tom Eastep	8d731c81e4	Add 'disconnect' option to ipset-based dynamic blacklisting ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-10-04 09:09:45 -07:00
Tom Eastep	72dbb4c3c3	Handle persistent provider enable/disable correctly ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-30 16:01:04 -07:00
Tom Eastep	bc591ccee4	Don't assume that statistically balanced providers are optional ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-30 14:01:16 -07:00
Tom Eastep	156313edd2	Correctly handle down persistent interface during 'disable' ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-27 11:47:37 -07:00
Tom Eastep	35bd1db7fb	Handle Down or missing interfaces in 'delete_gateway()' ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-27 11:43:26 -07:00
Tom Eastep	792b3b696c	Add ZERO_MARKS option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-26 16:04:26 -07:00
Tom Eastep	fa9ee6d69e	Clear packet marks in PREROUTING and OUTPUT ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-24 15:46:04 -07:00
Tom Eastep	8065e62f12	Support for the 'contiguous' option in TIME columns ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-22 14:22:11 -07:00
Tom Eastep	e81a4788c6	Implement DEFAULT_PAGER in shorewallrc ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-21 10:20:48 -07:00
Tom Eastep	afc212495f	Make POSTROUTING the default chain for CHECKSUM ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-18 08:57:49 -07:00
Tom Eastep	059b1c6c8c	Remove superfluous logic ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-13 11:13:19 -07:00
Tom Eastep	2f75901068	Restore 'use Shorewall::Config(shorewall)' in embedded Perl handling ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-13 09:29:51 -07:00
Tom Eastep	8bb7c2363b	Support '+' after a zone list in the policy files. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-10 10:06:38 -07:00
Tom Eastep	2c90a8bfb5	Allow zone lists in the SOURCE and DEST columns of the policy files ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-09-10 08:47:48 -07:00
Tom Eastep	bb8af36d3f	Minor cleanup in the Rules module ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-31 13:01:49 -07:00
Tom Eastep	4ec2c2087d	Delete obsolete comments ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-29 12:40:28 -07:00
Tom Eastep	31d35e0cbd	Minor cleanup of the Chains module ... - Correct typos - Correct 'P' trace entries - Add parens and comments to calls Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-15 09:22:11 -07:00
Tom Eastep	bcacce7ed0	Rename a variable to avoid confusion ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-14 15:45:24 -07:00
Tom Eastep	646c20491a	Fix indentation ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-14 15:45:00 -07:00
Tom Eastep	fa1173baaa	Correct typo in a comment ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-14 10:24:29 -07:00
Tom Eastep	72e21be89d	Add a handle back to the flow classifier ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-04 11:03:36 -07:00
Tom Eastep	1b1e2c58f9	Allow optional provider interfaces to match a wildcard ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-08-02 15:44:19 -07:00
Tom Eastep	decf9d3b3e	Correct comment formatting in 'trace' output ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-07-30 09:03:19 -07:00
Tom Eastep	a05623f49e	Don't delete duplicate COUNT rules ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-07-30 08:24:53 -07:00
Tom Eastep	0b9cd93769	Default DSCP rules to the POSTROUTING chain ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-07-27 13:59:15 -07:00
Tom Eastep	372359839b	Add 'comment' to alternative input ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-07-24 15:08:55 -07:00
Tom Eastep	a02c745a83	Avoid silly duplicate rules ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-30 17:49:43 -07:00
Tom Eastep	47557aa4f7	Correct additional issues with 'update' ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-18 10:24:52 -07:00
Tom Eastep	93ee4432de	Allow <user>: in USER columns ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-18 09:44:35 -07:00
Tom Eastep	8c543ca6f8	Transfer permissions during file updates ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-16 16:04:32 -07:00
Tom Eastep	e71fb3249a	Add 'dbl' interface option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-15 16:35:41 -07:00
Tom Eastep	ea56d4ed19	Make ipset-based dynamic blacklisting work in the FORWARD chain ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-13 15:02:12 -07:00
Tom Eastep	c65721a139	Correct a warning message ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-13 12:21:16 -07:00
Tom Eastep	cd0837beb5	Avoid run-time Perl diagnostic when validating a null log level ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-09 09:00:12 -07:00
Tom Eastep	cd01df4200	Allow more than 9 interfaces with Simple TC ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-06-07 14:43:37 -07:00
Tom Eastep	7798c52a19	Fix DOCKER=Yes when docker0 is defined and Docker isn't started. ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-05-22 17:50:51 -07:00
Tom Eastep	82169a0bfd	Use 'date' format for compiletime rather than localtime format ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-05-07 13:48:16 -07:00
Tom Eastep	64fb662bb1	Verify Shorewall6 version when compiling for IPv6 ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-05-05 15:22:47 -07:00
Tom Eastep	ce20e5592b	Cross-check core and standard versions during compilation ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-05-05 13:53:26 -07:00
Tom Eastep	590243a787	Add NFLOG as a supported mangle action ... - Also document nflog-parameters - Correct range of nflog groups Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-05-03 11:27:34 -07:00
Tom Eastep	9dd0346987	Apply Paul Gear's patch for Ubuntu 16.04 ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-05-02 07:25:37 -07:00
Tom Eastep	ccfa181a6d	Tweak compile_info_command() ... - Fix comment - use $globals{VERSION} for the version number Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-04-30 14:12:34 -07:00
Tom Eastep	24d40f4cc2	Add VERBOSE_MESSAGES option ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-04-30 08:00:56 -07:00
Tom Eastep	244f2cefe5	Update comment describing info_command() ... Signed-off-by: Tom Eastep <teastep@shorewall.net>	2016-04-29 15:42:48 -07:00