| 2013-05-21 |
Jo-Philipp... | Do not print to pipe or close command if nothing was... |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Add missing libip6t_REJECT initialization |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Only initialize extensions we actually use |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Wait for ipsets to appear before continuing |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Restore iptables-save include functionality |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Also add comments for unnamed rules |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Only process selected family for print |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Include iptables command and table name in iptables... |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Add debug prints for policy setting, don't commit rules... |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Rename struct fw3_rule_spec to struct fw3_chain_spec... |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Remove now unused fw3_pr_rulespec() |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Remove now unused fw3_format_*() functions |
commit | commitdiff | tree | snapshot |
| 2013-05-17 |
Jo-Philipp... | Drop iptables-restore and create rules through libiptc... |
commit | commitdiff | tree | snapshot |
| 2013-05-13 |
Jo-Philipp... | Use libiptc to clear current ruleset |
commit | commitdiff | tree | snapshot |
| 2013-05-08 |
Jo-Philipp... | Force fsync() after writing statefile |
commit | commitdiff | tree | snapshot |
| 2013-05-08 |
Jo-Philipp... | Make reload atomic |
commit | commitdiff | tree | snapshot |
| 2013-05-06 |
Jo-Philipp... | Family "any" is not applicable to ipsets, default to... |
commit | commitdiff | tree | snapshot |
| 2013-05-02 |
Jo-Philipp... | Simplify ipset external checks and optionally initializ... |
commit | commitdiff | tree | snapshot |
| 2013-05-02 |
Jo-Philipp... | Check whether ipset exists before referencing it in... |
commit | commitdiff | tree | snapshot |
| 2013-05-02 |
Jo-Philipp... | Record device-network relation in state file, fix zone... |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Record default policies in state file |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Store ipset storage method and matches in state file... |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Send quit comment in fw3_destroy_ipsets() and initializ... |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Don't track family of ipsets |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Fix parsing of ipset datatypes |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Track ipsets in state file |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Write statefile flags in hexadecimal format |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Allow hex notation in int type options |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Add common fw3_address_to_string() helper function |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Remove referenced to unused FW3_FLAG_DELETED flag |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Remove unused "running" argument form fw3_lookup_ipset() |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Remove unused "running" argument form fw3_lookup_zone() |
commit | commitdiff | tree | snapshot |
| 2013-04-30 |
Jo-Philipp... | Split runtime and config states, store runtime state... |
commit | commitdiff | tree | snapshot |
| 2013-04-09 |
Jo-Philipp... | Add support for fwmark matches and targets |
commit | commitdiff | tree | snapshot |
| 2013-03-22 |
Jo-Philipp... | Increase compatibility to old firewall by initializing... |
commit | commitdiff | tree | snapshot |
| 2013-03-22 |
Jo-Philipp... | Fix parsing of '*' device and 'all' protocol value |
commit | commitdiff | tree | snapshot |
| 2013-03-21 |
Jo-Philipp... | Fix DNAT port remapping rules by not emitting 0.0.0... |
commit | commitdiff | tree | snapshot |
| 2013-03-19 |
Jo-Philipp... | Properly handle deleted zones and ipsets on restarts |
commit | commitdiff | tree | snapshot |
| 2013-03-19 |
Jo-Philipp... | Accept network names in per-zone subnet option |
commit | commitdiff | tree | snapshot |
| 2013-03-19 |
Jo-Philipp... | Also read addresses from "ipv6-prefix-assignment" ifsta... |
commit | commitdiff | tree | snapshot |
| 2013-03-19 |
Jo-Philipp... | Rework option parsing to support emitting multiple... |
commit | commitdiff | tree | snapshot |
| 2013-03-19 |
Jo-Philipp... | Implement support for "network" datatype and use it... |
commit | commitdiff | tree | snapshot |
| 2013-03-18 |
Jo-Philipp... | Do not accept option src_mac for SNAT rules |
commit | commitdiff | tree | snapshot |
| 2013-03-14 |
Jo-Philipp... | Consolidate and unify argument order for functions |
commit | commitdiff | tree | snapshot |
| 2013-03-14 |
Jo-Philipp... | Only perform locking for start, stop, restart, reload... |
commit | commitdiff | tree | snapshot |
| 2013-03-14 |
Jo-Philipp... | Implement reload option for includes to decide whether... |
commit | commitdiff | tree | snapshot |
| 2013-03-13 |
Jo-Philipp... | Make nat reflection src address configurable by introdu... |
commit | commitdiff | tree | snapshot |
| 2013-03-13 |
Jo-Philipp... | Emit hotplug calls when flushing / creating zone chains |
commit | commitdiff | tree | snapshot |
| 2013-03-13 |
Jo-Philipp... | Unify fw3_default and fw3_target enums |
commit | commitdiff | tree | snapshot |
| 2013-03-12 |
Jo-Philipp... | Track used networks and devices in state file |
commit | commitdiff | tree | snapshot |
| 2013-03-12 |
Jo-Philipp... | Unify print_chains() implementations in utils.c fw3_pr_... |
commit | commitdiff | tree | snapshot |
| 2013-03-11 |
Jo-Philipp... | Include limits.h to fix compilation against eglibc |
commit | commitdiff | tree | snapshot |
| 2013-03-11 |
Jo-Philipp... | Rework zone flush logic |
commit | commitdiff | tree | snapshot |
| 2013-03-11 |
Jo-Philipp... | Change fw3_no_family() macro to take bit field value... |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Cosmetic output changes |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Only run includes and set sysctls if either v4 or v6... |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Introduce fw3_no_family() helper macro and use it |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Remove src_flags and running_src_flags from fw3_zone... |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Don't store zone src_flags in statefile anymore, read... |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Introduce new enum values for zone src policies and... |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Separate running from current state flags in ipset... |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Get rid of redundant fw3_defaults object, instead add... |
commit | commitdiff | tree | snapshot |
| 2013-03-10 |
Jo-Philipp... | Properly handle per zone user chain rules by fixing... |
commit | commitdiff | tree | snapshot |
| 2013-03-08 |
Jo-Philipp... | add support for per-zone user chains |
commit | commitdiff | tree | snapshot |
| 2013-03-07 |
Jo-Philipp... | Support abstract "tcpudp" protocol |
commit | commitdiff | tree | snapshot |
| 2013-03-02 |
Jo-Philipp... | introduce support for enabled option in zones, forwards... |
commit | commitdiff | tree | snapshot |
| 2013-02-28 |
Jo-Philipp... | use dup'ed string in fw3_parse_monthdays() |
commit | commitdiff | tree | snapshot |
| 2013-02-28 |
Jo-Philipp... | generalize enum parsing |
commit | commitdiff | tree | snapshot |
| 2013-02-27 |
Jo-Philipp... | remove unused notrack chain |
commit | commitdiff | tree | snapshot |
| 2013-02-27 |
Jo-Philipp... | clear conntrack table on flush |
commit | commitdiff | tree | snapshot |
| 2013-02-27 |
Jo-Philipp... | cosmetic change in printing of forward rules |
commit | commitdiff | tree | snapshot |
| 2013-02-27 |
Jo-Philipp... | add debug flag to monitor fw3_pr() calls, set policies... |
commit | commitdiff | tree | snapshot |
| 2013-02-22 |
Jo-Philipp... | add support for setting sysctls, remove tcp_westwood... |
commit | commitdiff | tree | snapshot |
| 2013-02-22 |
Jo-Philipp... | run/load includes on start |
commit | commitdiff | tree | snapshot |
| 2013-02-22 |
Jo-Philipp... | add reload command to selectively rebuild rules (to... |
commit | commitdiff | tree | snapshot |
| 2013-02-22 |
Jo-Philipp... | add support for includes |
commit | commitdiff | tree | snapshot |
| 2013-02-21 |
Jo-Philipp... | use hasbit() to test for invert flag of weekdays and... |
commit | commitdiff | tree | snapshot |
| 2013-02-21 |
Jo-Philipp... | add time match support |
commit | commitdiff | tree | snapshot |
| 2013-02-21 |
Jo-Philipp... | remove now unsed fw3_free_list() helper |
commit | commitdiff | tree | snapshot |
| 2013-02-21 |
Jo-Philipp... | remove ip range list hack since fw3_address can now... |
commit | commitdiff | tree | snapshot |
| 2013-02-21 |
Jo-Philipp... | introduce support for ip ranges |
commit | commitdiff | tree | snapshot |
| 2013-02-21 |
Jo-Philipp... | unify object freeing |
commit | commitdiff | tree | snapshot |
| 2013-02-21 |
Jo-Philipp... | rework runtime state tracking |
commit | commitdiff | tree | snapshot |
| 2013-02-20 |
Jo-Philipp... | only emit zone flush commands if the zone is active... |
commit | commitdiff | tree | snapshot |
| 2013-02-20 |
Jo-Philipp... | rework ipset removal logic to only purge sets that... |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | print a notification if forwards are skipped due to... |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | do not save state when printing rules |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | introduce global string array for enum names, remove... |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | track used family for ipsets |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | make enum values unique to allow using them in bitfield... |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | convert remaining occurences to hasbit() / setbit(... |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | rename flag fields in structures |
commit | commitdiff | tree | snapshot |
| 2013-02-19 |
Jo-Philipp... | properly deal with only v4 or only v6 start/stop/restart |
commit | commitdiff | tree | snapshot |
| 2013-02-18 |
Jo-Philipp... | selectively delete chains in filter and nat tables |
commit | commitdiff | tree | snapshot |
| 2013-02-17 |
Jo-Philipp... | record used zone chains in state file |
commit | commitdiff | tree | snapshot |
| 2013-02-17 |
Jo-Philipp... | destroy ipsets on explicit stop and flush, but not... |
commit | commitdiff | tree | snapshot |
| 2013-02-17 |
Jo-Philipp... | add missing fclose() in previous commit |
commit | commitdiff | tree | snapshot |
| 2013-02-17 |
Jo-Philipp... | separate state and lock files, use state file informati... |
commit | commitdiff | tree | snapshot |
| 2013-02-17 |
Jo-Philipp... | initial commit |
commit | commitdiff | tree | snapshot |
|
projects / oweals / firewall3.git / shortlog