projects
/
pve-firewall.git
/ history
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
bump version to 5.0.3
[pve-firewall.git]
/
src
/
PVE
/
2023-07-17
Leo Nunner
parser: fix scoped alias resolution
tree
|
commitdiff
2023-06-15
Leo Nunner
fix #4556: api: return scoped IPSets and aliases
tree
|
commitdiff
2023-06-15
Leo Nunner
api: fix scoping for ipset endpoint
tree
|
commitdiff
2023-06-07
Wolfgang Bumiller
change vm/ prefix to guest/ prefix
tree
|
commitdiff
2023-06-07
Leo Nunner
fix #4556: introduce 'dc' and 'vm' prefix for aliases
tree
|
commitdiff
2023-06-07
Leo Nunner
fix #4556: introduce 'dc' and 'vm' prefix for IPSets
tree
|
commitdiff
2023-05-22
Thomas Lamprecht
makefile: convert to use simple parenthesis
tree
|
commitdiff
2023-05-16
Fabian Grünbichler
fix #4730: add safeguards to prevent ICMP type misuse
tree
|
commitdiff
2023-05-16
Fabian Grünbichler
icmp: factor out check for relevant protocols
tree
|
commitdiff
2023-04-11
Thomas Lamprecht
fix variables declared in conditional statement
tree
|
commitdiff
2023-03-13
Alexandre Derumier
Fix #4550 : host options: add nf_conntrack_helpers
tree
|
commitdiff
2023-01-27
Christian Ebner
api: Add optional parameters `since` and `until` for...
tree
|
commitdiff
2022-12-14
Stefan Hrdlicka
cleanup: don't capture "/xx" of CIDR
tree
|
commitdiff
2022-12-14
Stefan Hrdlicka
allow non zero ip address host bits to be entered
tree
|
commitdiff
2022-11-16
Leo Nunner
fix #4268: add 'force' parameter to delete IPSet with...
tree
|
commitdiff
2022-11-16
Thomas Lamprecht
helpers: move over missing lock_vmfw_conf
tree
|
commitdiff
2022-11-16
Thomas Lamprecht
helpers: re-introduce original call site for backward...
tree
|
commitdiff
2022-11-16
Alexandre Derumier
move clone_vmfw_conf && remove_vmfw_conf to a Helpers
tree
|
commitdiff
2022-10-04
Wolfgang Bumiller
whitespace fixup
tree
|
commitdiff
2022-10-04
Leo Nunner
fix #4204: automatically update usages of group when...
tree
|
commitdiff
2022-09-12
Thomas Lamprecht
macros: s/SPICE/SPICEproxy/
tree
|
commitdiff
2022-09-12
Oguz Bektas
fix #4018: add firewall macro for SPICE
tree
|
commitdiff
2022-08-29
Fabian Grünbichler
fix #4175: ignore non-filter ebtables tables
tree
|
commitdiff
2022-08-25
Mira Limbeck
fix invalid vmfw config being interpreted as enabled
tree
|
commitdiff
2022-08-25
Thomas Lamprecht
daemon: code cleanup/shortify
tree
|
commitdiff
2022-08-25
Thomas Lamprecht
whitespace/indentation/line-length cleanup
tree
|
commitdiff
2022-05-15
Thomas Lamprecht
config defaults: macfilter defaults to on
tree
|
commitdiff
2021-10-29
Thomas Lamprecht
fix #3677: follow up: actually handle bucket size and...
tree
|
commitdiff
2021-10-28
Mark Yardley
fix #3677 ipset_get_chains fixed to work with new ipset...
tree
|
commitdiff
2021-08-06
Lorenz Stechauner
fix #2721: remove reject tcp 43 from default drop and...
tree
|
commitdiff
2021-05-26
Stoiko Ivanov
set sysctls on every apply
tree
|
commitdiff
2021-04-22
Aaron Lauterer
fix #967: source: dest: limit length
tree
|
commitdiff
2021-02-22
Mira Limbeck
fix #2358: allow --<opt> in firewall rule config files
tree
|
commitdiff
2020-09-18
Thomas Lamprecht
improve log burst property description
tree
|
commitdiff
2020-09-18
Thomas Lamprecht
various typo fixes
tree
|
commitdiff
2020-09-09
Mira Limbeck
introduce new icmp-type parameter
tree
|
commitdiff
2020-07-01
Stoiko Ivanov
fix #2773: ebtables: keep policy of custom chains
tree
|
commitdiff
2020-05-06
Thomas Lamprecht
Revert "rules: verify referenced security group exists"
tree
|
commitdiff
2020-05-04
Thomas Lamprecht
add dport: factor out ICMP-type validity checking
tree
|
commitdiff
2020-05-04
Thomas Lamprecht
icmp: allow to specify the echo-reply (0) type as integer
tree
|
commitdiff
2020-05-04
Thomas Lamprecht
fix typo: s/ICPM/ICMP/
tree
|
commitdiff
2020-05-04
Thomas Lamprecht
test/simulator: add very basic ICMP type functionallity
tree
|
commitdiff
2020-05-04
Mira Limbeck
fix wrong icmpv6 types
tree
|
commitdiff
2020-05-04
Mira Limbeck
fix iptables-restore failing if icmp-type value > 255
tree
|
commitdiff
2020-05-02
Thomas Lamprecht
d/control: bump pve-cluster dependency for new lock...
tree
|
commitdiff
2020-05-02
Fabian Grünbichler
rules: verify referenced security group exists
tree
|
commitdiff
2020-05-02
Fabian Grünbichler
configs: warn about duplicate ipset entries
tree
|
commitdiff
2020-05-02
Fabian Grünbichler
api/ipsets: parse_cidr before checking for duplicates
tree
|
commitdiff
2020-05-02
Fabian Grünbichler
clone_vmfw_conf: lock new config
tree
|
commitdiff
2020-05-02
Fabian Grünbichler
api: lock configs
tree
|
commitdiff
2020-05-02
Fabian Grünbichler
api: add locking helpers
tree
|
commitdiff
2020-05-02
Fabian Grünbichler
configs: add locking helpers
tree
|
commitdiff
2020-05-02
Mira Limbeck
fix #2686: don't add arp-ip-src filter for dhcp
tree
|
commitdiff
2020-02-05
Christian Ebner
logging: Add missing logmsg for inbound rules
tree
|
commitdiff
2020-01-25
Christian Ebner
macros: add macro for Proxmox Mail Gateway web interface
tree
|
commitdiff
2020-01-09
Thomas Lamprecht
api node: always pass cluster conf to node FW parser
tree
|
commitdiff
2019-12-13
Thomas Lamprecht
grammar fix: s/does not exists/does not exist/g
tree
|
commitdiff
2019-12-03
Christian Ebner
rules: allow connections on port range 60000:60050...
tree
|
commitdiff
2019-11-18
Alexandre Derumier
add synflood protection
tree
|
commitdiff
2019-11-18
Alexandre Derumier
iptables : add raw table support
tree
|
commitdiff
2019-10-22
Thomas Lamprecht
fw schemas: add defaults and improve some descriptions
tree
|
commitdiff
2019-10-22
Thomas Lamprecht
increase default nf_conntrack_max to kernel default
tree
|
commitdiff
2019-08-27
Mira Limbeck
fix use of uninitialized value
tree
|
commitdiff
2019-08-07
Mira Limbeck
only add VM chains if VM firewall is enabled
tree
|
commitdiff
2019-08-07
Fabian Grünbichler
fix indentation/whitspace
tree
|
commitdiff
2019-08-07
Fabian Grünbichler
skip tap rule generation if vmfw is disabled
tree
|
commitdiff
2019-07-12
Christian Ebner
firewall macros: add new Ceph protocol v2 port while...
tree
|
commitdiff
2019-07-12
Thomas Lamprecht
followup code cleanup
tree
|
commitdiff
2019-07-12
Thomas Lamprecht
remove base path of runcommand calls
tree
|
commitdiff
2019-07-10
Thomas Lamprecht
use /usr/sbin as base path
tree
|
commitdiff
2019-07-10
Fabian Grünbichler
ebtables: treat chain deletion as change
tree
|
commitdiff
2019-07-10
Fabian Grünbichler
ebtables: remove PVE chains properly
tree
|
commitdiff
2019-07-03
Fabian Grünbichler
localnet: skip local node for corosync information
tree
|
commitdiff
2019-07-03
Fabian Grünbichler
localnet: simplify code
tree
|
commitdiff
2019-07-03
Fabian Grünbichler
localnet: rename variables
tree
|
commitdiff
2019-07-03
Stefan Reiter
Formatting fixes (trailing whitespace and indentation)
tree
|
commitdiff
2019-07-03
Stefan Reiter
Display corosync rule info on localnet call
tree
|
commitdiff
2019-07-03
Stefan Reiter
Check if corosync.conf exists before calling parser
tree
|
commitdiff
2019-07-02
Fabian Grünbichler
corosync: refactor if conditions
tree
|
commitdiff
2019-07-02
Fabian Grünbichler
corosync: fix multicast detection
tree
|
commitdiff
2019-07-02
Stefan Reiter
Only include multicast rules if transport is udp
tree
|
commitdiff
2019-07-02
Stefan Reiter
Create corosync firewall rules independently of localnet
tree
|
commitdiff
2019-05-28
Thomas Lamprecht
fix CT rule generation with ipfilter set
tree
|
commitdiff
2019-05-16
Christian Ebner
Remove redundant logging of packets passing the tap...
tree
|
commitdiff
2019-05-07
Thomas Lamprecht
followup: do not replace original variable content
tree
|
commitdiff
2019-05-07
Thomas Lamprecht
followup: code cleanup and comment
tree
|
commitdiff
2019-05-07
Alexandre Derumier
fix #2193: arpfilter: CT: remove mask from net ip cidr.
tree
|
commitdiff
2019-04-30
Alexandre Derumier
fix ipv6 PVEFW-reject
tree
|
commitdiff
2019-04-19
Thomas Lamprecht
fix reading host.fw through IPCC interface
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
remove useless unused Data::Dumper uses
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
firewall: split and order modules
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
use IPCC to read FW files if the are backed by pmxcfs
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
remove a level of indirection on FW config parsing
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
make verbose a global state
tree
|
commitdiff
2019-04-01
Thomas Lamprecht
allow to enable/disable and modify cluster wide log...
tree
|
commitdiff
2019-03-31
Thomas Lamprecht
cleanup makefiles, set target dirs per makefile
tree
|
commitdiff
2019-03-30
Thomas Lamprecht
fix Razor macro
tree
|
commitdiff
2019-03-19
Mira Limbeck
add 'log_nf_conntrack' option description
tree
|
commitdiff
2019-03-19
Thomas Lamprecht
followup: minor code style fix
tree
|
commitdiff
2019-03-19
Thomas Lamprecht
followup: use default burst limit of 5
tree
|
commitdiff
next