projects
/
pve-firewall.git
/ search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
complete security group API
2014-04-09
Dietmar Maurer
complete security group API
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
define standard option for security group names
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
correctly verify ipset name
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
IPSet: implement rename API
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
add newline to error message
commit
|
commitdiff
|
tree
2014-04-08
Dietmar Maurer
ipset: implement create/delete API
commit
|
commitdiff
|
tree
2014-04-08
Dietmar Maurer
ipset API: add get/update methods
commit
|
commitdiff
|
tree
2014-04-08
Dietmar Maurer
fix ipset ref test in parse_address_list
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
improve ipset updates
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
ipset: implement delete API, improve parameter verification
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
start API for IPSet
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
ipset: only save ip/network once
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
correctly save ipset data
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
allow icmp port names
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
verify macro parameters when updating a rule using API
commit
|
commitdiff
|
tree
2014-04-04
Dietmar Maurer
fix port parser
commit
|
commitdiff
|
tree
2014-04-04
Dietmar Maurer
add macro descriptions (and API to read them)
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
implement delete parameter for rule update API
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
rule type and action are required parameters
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
simplify check for iprange
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
parse_address_list: add check for ipset references.
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
parse_address_list: only allow one ip range
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
ipset: check kernel version
commit
|
commitdiff
|
tree
2014-04-03
Alexandre Derumier
rename netgroup to ipset
commit
|
commitdiff
|
tree
2014-04-03
Alexandre Derumier
prefix ipset chains with PVEFW-
commit
|
commitdiff
|
tree
2014-04-03
Alexandre Derumier
implemented ipset rules in iptables
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
really save options
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
implement rules API for <vmid>.fw
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
implement rules API for host.fw
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
implement generic rule API class
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
implement option API for cluster.fw
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
start cluster wide firewall API
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
delete trailing white space from 'ipset save' output.
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
avoid multiple calls to ipset_get_chains()
commit
|
commitdiff
|
tree
2014-04-01
Alexandre Derumier
ipset : use only netgroup
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
remove unneccessary iptables code
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
avoid calls to iptables_rule_exist()
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
new method iptables_chain_digest() to compute digest
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
s/rulset/ruleset/
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
avoid calls to iptables_rule_exist
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
allow options and rules section in cluster.fw
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
rename groups.fw to cluster.fw
commit
|
commitdiff
|
tree
2014-03-28
Dietmar Maurer
cleanup ipset code
commit
|
commitdiff
|
tree
2014-03-28
Alexandre Derumier
implement ipset ip/net groups
commit
|
commitdiff
|
tree
2014-03-27
Alexandre Derumier
cleanup ips detection
commit
|
commitdiff
|
tree
2014-03-25
Dietmar Maurer
ignor eadditional arguments when moveto is set
commit
|
commitdiff
|
tree
2014-03-25
Dietmar Maurer
improve parameter verification
commit
|
commitdiff
|
tree
2014-03-25
Dietmar Maurer
cleanup_fw_rule: only copy defined rule properties
commit
|
commitdiff
|
tree
2014-03-25
Dietmar Maurer
do not expand macros on load
commit
|
commitdiff
|
tree
2014-03-25
Dietmar Maurer
improve API
commit
|
commitdiff
|
tree
2014-03-25
Alexandre Derumier
add ips optimizations
commit
|
commitdiff
|
tree
2014-03-25
Alexandre Derumier
add optimize flag
commit
|
commitdiff
|
tree
2014-03-25
Alexandre Derumier
add ips feature v7
commit
|
commitdiff
|
tree
2014-03-21
Dietmar Maurer
code cleanup: use ruleset_generate_rule to generate...
commit
|
commitdiff
|
tree
2014-03-21
Dietmar Maurer
assume rule is enabled if {enable} is not defined
commit
|
commitdiff
|
tree
2014-03-21
Alexandre Derumier
dhcp out rule : use goto instead jump
commit
|
commitdiff
|
tree
2014-03-20
Dietmar Maurer
use enable instead of disable
commit
|
commitdiff
|
tree
2014-03-20
Dietmar Maurer
implement nosmurfs option for hiost firewall
commit
|
commitdiff
|
tree
2014-03-20
Dietmar Maurer
add tcpflags to host.fw example
commit
|
commitdiff
|
tree
2014-03-20
Dietmar Maurer
implement option tcpflags for host firewall
commit
|
commitdiff
|
tree
2014-03-20
Alexandre Derumier
generate_group_rules : fix check of security group
commit
|
commitdiff
|
tree
2014-03-19
Dietmar Maurer
fix dhcp rule
commit
|
commitdiff
|
tree
2014-03-19
Dietmar Maurer
allow to use utf8 encoded comments
commit
|
commitdiff
|
tree
2014-03-19
Dietmar Maurer
switch back to gnu99 std
commit
|
commitdiff
|
tree
2014-03-19
Dietmar Maurer
remove optimization which accepts unrelated traffic
commit
|
commitdiff
|
tree
2014-03-18
Dietmar Maurer
start VM firewall API
commit
|
commitdiff
|
tree
2014-03-18
Dietmar Maurer
start host API
commit
|
commitdiff
|
tree
2014-03-18
Dietmar Maurer
improve security group API
commit
|
commitdiff
|
tree
2014-03-18
Dietmar Maurer
start API
commit
|
commitdiff
|
tree
2014-03-18
Dietmar Maurer
new method load_security_groups()
commit
|
commitdiff
|
tree
2014-03-17
Dietmar Maurer
remove obsolete comment
commit
|
commitdiff
|
tree
2014-03-17
Dietmar Maurer
avoid dependency problems
commit
|
commitdiff
|
tree
2014-03-17
Dietmar Maurer
use signalfd instead of g_unix_signal_add
commit
|
commitdiff
|
tree
2014-03-17
Dietmar Maurer
add option parser and print usage information
commit
|
commitdiff
|
tree
2014-03-15
Dietmar Maurer
add compile time test for log struct size
commit
|
commitdiff
|
tree
2014-03-14
Dietmar Maurer
use gnu11 instead of gnu99 (newer)
commit
|
commitdiff
|
tree
2014-03-14
Dietmar Maurer
improve Makefile clean target
commit
|
commitdiff
|
tree
2014-03-14
Dietmar Maurer
add missing init.d file for pvefw-logger
commit
|
commitdiff
|
tree
2014-03-14
Dietmar Maurer
really stop daemon on write error
commit
|
commitdiff
|
tree
2014-03-14
Dietmar Maurer
additionally log status messages to syslog
commit
|
commitdiff
|
tree
2014-03-14
Dietmar Maurer
use phydev numbers if name lookup fails
commit
|
commitdiff
|
tree
2014-03-14
Dietmar Maurer
improve log format
commit
|
commitdiff
|
tree
2014-03-13
Dietmar Maurer
add simple nflog daemon
commit
|
commitdiff
|
tree
2014-03-12
Alexandre Derumier
fix 110.fw example
commit
|
commitdiff
|
tree
2014-03-10
Dietmar Maurer
add ifupdown helper to setup MASQUERADE on veth device
commit
|
commitdiff
|
tree
2014-03-10
Dietmar Maurer
avoid use of --physdev-is-bridged whenever possible
commit
|
commitdiff
|
tree
2014-03-10
Dietmar Maurer
use correct mac for veth containers
commit
|
commitdiff
|
tree
2014-03-10
Dietmar Maurer
add reminder that we should use ULOG
commit
|
commitdiff
|
tree
2014-03-10
Dietmar Maurer
add documentation for masqueraded setup
commit
|
commitdiff
|
tree
2014-03-07
Dietmar Maurer
do not use multiport for single port range
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
ifupdown.sh: correctly use ifup instead of ifconfig
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
ifupdown.sh: improve error handling
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
add ifupdown helper to create veth devices plugged...
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
update documentation
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
implement allow_bridge_route feature
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
use perl taint mode
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
do not use perl -w
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
use RETURN instead of ACCEPT to allow further processing
commit
|
commitdiff
|
tree
2014-03-06
Dietmar Maurer
only update nf_conntrack_max if firewall is started
commit
|
commitdiff
|
tree
2014-03-05
Dietmar Maurer
plug venet0 chains into PVEFW-INPUT and PVEFW-OUTPUT
commit
|
commitdiff
|
tree
next