projects
/
pve-firewall.git
/ history
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
Only include multicast rules if transport is udp
[pve-firewall.git]
/
src
/
2019-07-02
Stefan Reiter
Only include multicast rules if transport is udp
tree
|
commitdiff
2019-07-02
Stefan Reiter
Create corosync firewall rules independently of localnet
tree
|
commitdiff
2019-05-28
Thomas Lamprecht
fix CT rule generation with ipfilter set
tree
|
commitdiff
2019-05-16
Christian Ebner
Remove redundant logging of packets passing the tap...
tree
|
commitdiff
2019-05-07
Thomas Lamprecht
followup: do not replace original variable content
tree
|
commitdiff
2019-05-07
Thomas Lamprecht
followup: code cleanup and comment
tree
|
commitdiff
2019-05-07
Alexandre Derumier
fix #2193: arpfilter: CT: remove mask from net ip cidr.
tree
|
commitdiff
2019-04-30
Alexandre Derumier
fix ipv6 PVEFW-reject
tree
|
commitdiff
2019-04-19
Thomas Lamprecht
fix reading host.fw through IPCC interface
tree
|
commitdiff
2019-04-18
Mira Limbeck
fix #2178: endless loop on ipv6 extension headers
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
remove useless unused Data::Dumper uses
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
firewall: split and order modules
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
use IPCC to read FW files if the are backed by pmxcfs
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
remove a level of indirection on FW config parsing
tree
|
commitdiff
2019-04-17
Thomas Lamprecht
make verbose a global state
tree
|
commitdiff
2019-04-01
Thomas Lamprecht
allow to enable/disable and modify cluster wide log...
tree
|
commitdiff
2019-03-31
Thomas Lamprecht
cleanup makefiles, set target dirs per makefile
tree
|
commitdiff
2019-03-30
Thomas Lamprecht
fix Razor macro
tree
|
commitdiff
2019-03-19
Mira Limbeck
add 'log_nf_conntrack' option description
tree
|
commitdiff
2019-03-19
Thomas Lamprecht
followup: minor code style fix
tree
|
commitdiff
2019-03-19
Thomas Lamprecht
followup: use default burst limit of 5
tree
|
commitdiff
2019-03-19
Christian Ebner
fix: #2123 Logging of user defined firewall rules
tree
|
commitdiff
2019-03-12
Alexandre Derumier
ebtables: test layer2_protocols in an external chain
tree
|
commitdiff
2019-03-12
Alexandre Derumier
ebtables: add arp filtering
tree
|
commitdiff
2019-02-22
Christian Ebner
1891 Add zsh command completion for pve-firewall
tree
|
commitdiff
2019-02-20
Alexandre Derumier
daemon: cleanup '+' character at begin of line
tree
|
commitdiff
2019-02-18
Alwin Antreich
Fix unitialized value $mark in bitwise operation
tree
|
commitdiff
2019-02-05
Alexandre Derumier
log reject : add space after policy REJECT like drop
tree
|
commitdiff
2019-02-04
Thomas Lamprecht
followup: avoid long hash access, use own variable
tree
|
commitdiff
2019-02-04
Christian Ebner
Fix #1606 Add nf_conntrack_allow_invalid option
tree
|
commitdiff
2019-01-25
Wolfgang Bumiller
buildsys: build a dbgsym package
tree
|
commitdiff
2019-01-09
David Limbeck
log and ignore ENOBUFS in nfct_catch
tree
|
commitdiff
2019-01-09
Wolfgang Bumiller
fixup va_arg usage
tree
|
commitdiff
2018-12-13
David Limbeck
add log_nf_conntrack host firewall option
tree
|
commitdiff
2018-12-13
David Limbeck
add conntrack logging via libnetfilter_conntrack
tree
|
commitdiff
2018-12-03
Dominik Csapak
fix #2004: do not allow backwards ranges
tree
|
commitdiff
2018-12-03
Dominik Csapak
fix #2005: only allow ascii port digits
tree
|
commitdiff
2018-11-29
Dominik Csapak
macro: fix return verification failure
tree
|
commitdiff
2018-11-14
Rhonda D'Vine
Fix #1971: display firewall rule properties
tree
|
commitdiff
2018-08-24
Stoiko Ivanov
Fix #1841: ebtables: sort interfaces per guest
tree
|
commitdiff
2018-06-28
Stoiko Ivanov
ebtables: sort guest chains during rulecreation
tree
|
commitdiff
2018-06-18
Thomas Lamprecht
api: host, vm: explicit import raise_param_exc
tree
|
commitdiff
2018-06-18
Wolfgang Bumiller
whitespace fixup
tree
|
commitdiff
2018-06-12
Wolfgang Bumiller
fixup active_chains distinction when deleting chains
tree
|
commitdiff
2018-06-06
Stoiko Ivanov
rename ebtables_enable to ebtables
tree
|
commitdiff
2018-05-29
Wolfgang Bumiller
typo fixup
tree
|
commitdiff
2018-05-29
Stoiko Ivanov
Don't change external ebtables rules
tree
|
commitdiff
2018-05-17
Wolfgang Bumiller
fix PVEFW-FORWARD chain not being used
tree
|
commitdiff
2018-03-29
Wolfgang Bumiller
ebtables_get_chains: deal with empty chains
tree
|
commitdiff
2018-03-28
Wolfgang Bumiller
avoid double spaces in ruleset_addrule
tree
|
commitdiff
2018-03-28
Alexandre Derumier
apply ebtables_ruleset
tree
|
commitdiff
2018-03-28
Alexandre Derumier
compile ebtables rules
tree
|
commitdiff
2018-03-28
Wolfgang Bumiller
/etc/services can also define 'sctp' services
tree
|
commitdiff
2018-03-28
Wolfgang Bumiller
add get_etc_ethertypes
tree
|
commitdiff
2018-03-28
Wolfgang Bumiller
parse_protocol_file: support lines without end comments
tree
|
commitdiff
2018-03-28
Wolfgang Bumiller
split parser out of get_etc_protocols
tree
|
commitdiff
2018-03-12
Fabian Grünbichler
multiport: add explaining comment
tree
|
commitdiff
2018-03-12
Wolfgang Bumiller
fix and improve multiport handling
tree
|
commitdiff
2018-03-08
Wolfgang Bumiller
check multiport limit in port ranges
tree
|
commitdiff
2017-12-07
Wolfgang Bumiller
honor disabled flag on group rules again
tree
|
commitdiff
2017-11-15
Dominik Csapak
sort ipsets so that the digest is consistent
tree
|
commitdiff
2017-10-19
Tom Weber
remove ruleset_generate_match, ruleset_generate_action
tree
|
commitdiff
2017-10-19
Tom Weber
remove unused ruleset_generate_rule_insert
tree
|
commitdiff
2017-10-19
Tom Weber
cleanup parameters to ruleset_generate_rule
tree
|
commitdiff
2017-10-19
Tom Weber
rule_substitude_action, remove ruleset_generate_rule_old
tree
|
commitdiff
2017-10-19
Tom Weber
remove unused ruleset_generate_cmdstr
tree
|
commitdiff
2017-10-19
Tom Weber
implement ipt_rule_to_cmds, ruleset_add_ipt_cmd
tree
|
commitdiff
2017-10-19
Tom Weber
iptables address matching in own subroutine
tree
|
commitdiff
2017-10-19
Tom Weber
eliminate unused nbdport in pve_std_chains_conf
tree
|
commitdiff
2017-10-19
Tom Weber
make $pve_std_chains a copy of $pve_std_chains_conf
tree
|
commitdiff
2017-10-19
Tom Weber
convert string based rule definitions to hashes
tree
|
commitdiff
2017-10-19
Tom Weber
integrate logging into ruleset_addrule
tree
|
commitdiff
2017-10-19
Tom Weber
prepare code for more generic firewall logging
tree
|
commitdiff
2017-10-19
Tom Weber
remove unused $rule_format
tree
|
commitdiff
2017-10-18
Philip Abernethy
Use run_cli_handler instead of deprecated run_cli
tree
|
commitdiff
2017-10-17
Fabian Grünbichler
pvefw-logger: fix typo
tree
|
commitdiff
2017-09-04
Wolfgang Bumiller
Fix #1492: logger: print timestamps only if we have one
tree
|
commitdiff
2017-04-10
Wolfgang Bumiller
log errors encountered by the daemon to syslog
tree
|
commitdiff
2017-04-10
Wolfgang Bumiller
forbid trailing commas in lists
tree
|
commitdiff
2017-02-06
Wolfgang Bumiller
logger: drop gthread dependency
tree
|
commitdiff
2017-02-06
Wolfgang Bumiller
simulator: make lxc/qemu optional
tree
|
commitdiff
2016-12-13
Thomas Lamprecht
fix ambiguous if statements
tree
|
commitdiff
2016-11-29
Wolfgang Bumiller
ipset: don't allow the creation of zero-prefix entries
tree
|
commitdiff
2016-11-29
Wolfgang Bumiller
ipsets: catch zero-prefix entries
tree
|
commitdiff
2016-11-29
Wolfgang Bumiller
improve search for local-network
tree
|
commitdiff
2016-10-06
Wolfgang Bumiller
don't try to apply ports to rules which don't support...
tree
|
commitdiff
2016-10-06
Wolfgang Bumiller
remove redundant checks
tree
|
commitdiff
2016-09-06
Emmanuel Kasper
add multicast DNS to the list of Macros
tree
|
commitdiff
2016-09-05
Dietmar Maurer
add missing parameter descriptions
tree
|
commitdiff
2016-06-03
Dominik Csapak
prevent overwriting ipsets/sec. groups by renaming
tree
|
commitdiff
2016-06-03
Dominik Csapak
fix allowed group name length
tree
|
commitdiff
2016-06-03
Dominik Csapak
make group digest stable
tree
|
commitdiff
2016-06-03
Wolfgang Bumiller
use pve-common's ipv4_mask_hash_localnet
tree
|
commitdiff
2016-05-17
Fabian Grünbichler
fix #972: make PVEFW-FWBR-* rule order stable
tree
|
commitdiff
2016-05-09
Dietmar Maurer
install sysctl file set set rp_filter=2
tree
|
commitdiff
2016-04-21
Fabian Grünbichler
fix #945: add uninitialized check in lxc ipset compilation
tree
|
commitdiff
2016-04-06
Dietmar Maurer
use pve-doc-generator, bump version to 2.0-24
tree
|
commitdiff
2016-04-01
Dietmar Maurer
move option definition to PVE::Firewall
tree
|
commitdiff
2016-04-01
Wolfgang Bumiller
use only the top bit for our accept marks
tree
|
commitdiff
2016-04-01
Dietmar Maurer
add description to DHCPv6 macro
tree
|
commitdiff
next