projects
/
pve-firewall.git
/ history
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅ next
bridge rules : -j ACCEPT for physical interfaces
[pve-firewall.git]
/
PVE
/
Firewall.pm
2014-02-26
Alexandre Derumier
bridge rules : -j ACCEPT for physical interfaces
blob
|
commitdiff
|
raw
2014-02-25
Alexandre Derumier
use RETURN instead ACCEPT for tap-out rules
blob
|
commitdiff
|
raw
|
diff to current
2014-02-25
Dietmar Maurer
implement VM policy option
blob
|
commitdiff
|
raw
|
diff to current
2014-02-25
Dietmar Maurer
implement 'enable' option
blob
|
commitdiff
|
raw
|
diff to current
2014-02-25
Dietmar Maurer
rename chain $bridge to $bridge-FW
blob
|
commitdiff
|
raw
|
diff to current
2014-02-25
Alexandre Derumier
optimize bridge chains
blob
|
commitdiff
|
raw
|
diff to current
2014-02-25
Alexandre Derumier
parse_port_name_number_or_range fix range check
blob
|
commitdiff
|
raw
|
diff to current
2014-02-21
Dietmar Maurer
do not delete PVEFW-INPUT, PVEFW-OUTPUT and PVEFW-FORWA...
blob
|
commitdiff
|
raw
|
diff to current
2014-02-21
Dietmar Maurer
implement simple option parser
blob
|
commitdiff
|
raw
|
diff to current
2014-02-20
Dietmar Maurer
use conntrack instead of state
blob
|
commitdiff
|
raw
|
diff to current
2014-02-20
Dietmar Maurer
allow traffic from lo (PVEFW-INPUT)
blob
|
commitdiff
|
raw
|
diff to current
2014-02-20
Dietmar Maurer
define more macros (converted most shorewall macros)
blob
|
commitdiff
|
raw
|
diff to current
2014-02-20
Dietmar Maurer
use $rule->{dest} instead of $rule->{destination}
blob
|
commitdiff
|
raw
|
diff to current
2014-02-20
Dietmar Maurer
implement macros
blob
|
commitdiff
|
raw
|
diff to current
2014-02-19
Dietmar Maurer
only use --mark for OUT chain
blob
|
commitdiff
|
raw
|
diff to current
2014-02-19
Dietmar Maurer
jump to ACCEPT for IN rules
blob
|
commitdiff
|
raw
|
diff to current
2014-02-19
Dietmar Maurer
improve parser
blob
|
commitdiff
|
raw
|
diff to current
2014-02-19
Dietmar Maurer
use accept mark for security groups
blob
|
commitdiff
|
raw
|
diff to current
2014-02-19
Dietmar Maurer
correctly remove stale chains
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
pass $ruleset instead of $rule
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
check chain name length (max 28 chars)
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
use --comment to store SHA1 signature
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
split compile from apply
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
avoid perl warning
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
enable proc/sys/net/bridge/bridge-nf-call-iptables
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
add MAC filter
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Dietmar Maurer
cleanup chain names
blob
|
commitdiff
|
raw
|
diff to current
2014-02-18
Alexandre Derumier
test if BRIDGEFW-OUT and BRIDGEFW-IN exist
blob
|
commitdiff
|
raw
|
diff to current
2014-02-17
Dietmar Maurer
simplify firewall and use MD5 hash to detect changes
blob
|
commitdiff
|
raw
|
diff to current
2014-02-17
Dietmar Maurer
consider host-IN/OUT chains in iptables_get_chains
blob
|
commitdiff
|
raw
|
diff to current
2014-02-17
Dietmar Maurer
consider security group chains in iptables_get_chains
blob
|
commitdiff
|
raw
|
diff to current
2014-02-14
Dietmar Maurer
implement stop command using new iptables_get_chains
blob
|
commitdiff
|
raw
|
diff to current
2014-02-14
Dietmar Maurer
experimental code to read existing chains and compute...
blob
|
commitdiff
|
raw
|
diff to current
2014-02-14
Dietmar Maurer
fix iptables-restore - correctly add newline after...
blob
|
commitdiff
|
raw
|
diff to current
2014-02-14
Dietmar Maurer
remove shorewall rule compiler
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Dietmar Maurer
use input parameter to feed iptables-restore
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Dietmar Maurer
implement locking
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Dietmar Maurer
remove shorewall specific commands
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Alexandre Derumier
add support for security groups
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Alexandre Derumier
rename ./pvefw enabletaprules -> ./pvefw enablevmfw
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Alexandre Derumier
host firewall support
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Alexandre Derumier
add src and destination range
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Alexandre Derumier
add support for multiport
blob
|
commitdiff
|
raw
|
diff to current
2014-02-13
Alexandre Derumier
basic bridge iptables implementation
blob
|
commitdiff
|
raw
|
diff to current
2012-08-21
Michel Loiseleur
Clarify zone names
blob
|
commitdiff
|
raw
|
diff to current
2012-08-16
Dietmar Maurer
parse protocols and ports
blob
|
commitdiff
|
raw
|
diff to current
2012-08-16
Dietmar Maurer
parse source and destination address lists
blob
|
commitdiff
|
raw
|
diff to current
2012-08-14
Dietmar Maurer
implement workaround for inbound rules with source IP
blob
|
commitdiff
|
raw
|
diff to current
2012-08-10
Dietmar Maurer
describe the problem
blob
|
commitdiff
|
raw
|
diff to current
2012-08-10
Dietmar Maurer
cleanups
blob
|
commitdiff
|
raw
|
diff to current
2012-08-10
Dietmar Maurer
use 'all' instead of 'any'
blob
|
commitdiff
|
raw
|
diff to current
2012-08-10
Dietmar Maurer
use extra zone for physical devices
blob
|
commitdiff
|
raw
|
diff to current
2012-08-09
Dietmar Maurer
use shell variables for zones
blob
|
commitdiff
|
raw
|
diff to current
2012-08-09
Dietmar Maurer
add comments to generated rules file
blob
|
commitdiff
|
raw
|
diff to current
2012-08-09
Dietmar Maurer
read in shorewall macros
blob
|
commitdiff
|
raw
|
diff to current
2012-08-07
Dietmar Maurer
use real vm configs, and write to /etc/shorewall
blob
|
commitdiff
|
raw
|
diff to current
2012-08-06
Dietmar Maurer
generate maclist
blob
|
commitdiff
|
raw
|
diff to current
2012-08-06
Dietmar Maurer
add original zone names as comments
blob
|
commitdiff
|
raw
|
diff to current
2012-08-06
Dietmar Maurer
compile simple rules
blob
|
commitdiff
|
raw
|
diff to current
2012-08-06
Dietmar Maurer
code cleanup
blob
|
commitdiff
|
raw
|
diff to current
2012-08-06
Dietmar Maurer
write real files
blob
|
commitdiff
|
raw
|
diff to current
2012-08-03
Dietmar Maurer
generate example zone and interfaces file
blob
|
commitdiff
|
raw
|
diff to current
2012-08-03
Dietmar Maurer
start example code
blob
|
commitdiff
|
raw
|
diff to current