projects
/
pve-firewall.git
/ shortlog
commit
grep
author
committer
pickaxe
?
search:
re
summary
| shortlog |
log
|
commit
|
commitdiff
|
tree
first ⋅ prev ⋅
next
pve-firewall.git
2014-05-13
Alexandre Derumier
insert PVEFW-IPS after vm rules generation v2
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
add Makefile targets for regression tests
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
add regression test infrastructure
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
allow to read config from test directory
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
use PVEFW-VENET-IN/OUT inside PVEFW-INPUT/OUTPUT chains
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
move nosmurfs, tcpflags and conntrack established outsi...
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
remove dead code
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
add PVEFW-VENET-IN && PVEFW-VENET-OUT chains
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
remove bridge chains
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
use hex digest to avoid url encoding problems
commit
|
commitdiff
|
tree
2014-05-13
Dietmar Maurer
avoid error about undefined array
commit
|
commitdiff
|
tree
2014-05-06
Dietmar Maurer
set RELEASE to 3.2
commit
|
commitdiff
|
tree
2014-05-06
Dietmar Maurer
remove allow_bridge_route setting
commit
|
commitdiff
|
tree
2014-04-24
Dietmar Maurer
firewall group API: change 'name' to 'group'
commit
|
commitdiff
|
tree
2014-04-23
Alexandre Derumier
add global ipset blacklist
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
generate_ipset: skip undefined ipsets
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
rename save_rules to save_ipset
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
alias API: implement rename
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
start API for aliases
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
correctly save aliases
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
ruleset_generate_vm_rules: use 'warn' instead of 'die'
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
ruleset_generate_vm_rule: avoid multiple calls to gener...
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
generate_nfqueue: code cleanup
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
ruleset_generate_rule: update all or nothing
commit
|
commitdiff
|
tree
2014-04-22
Alexandre Derumier
update update_nf_conntrack_max && nf_conntrack_tcp_time...
commit
|
commitdiff
|
tree
2014-04-22
Dietmar Maurer
code cleanup
commit
|
commitdiff
|
tree
2014-04-22
Alexandre Derumier
iptables_get_chains : allow bridgevlan vmbrXvY
commit
|
commitdiff
|
tree
2014-04-22
Alexandre Derumier
optimize : accept from physical interfaces on bridges
commit
|
commitdiff
|
tree
2014-04-22
Alexandre Derumier
add aliases feature
commit
|
commitdiff
|
tree
2014-04-18
Dietmar Maurer
add README and example to debian package
commit
|
commitdiff
|
tree
2014-04-18
Dietmar Maurer
fix README
commit
|
commitdiff
|
tree
2014-04-18
Dietmar Maurer
only allow tcpflafgs and nosmurfs in host.fw
commit
|
commitdiff
|
tree
2014-04-18
Dietmar Maurer
enable cluster wide rules
commit
|
commitdiff
|
tree
2014-04-18
Dietmar Maurer
add remaining options to VM API
commit
|
commitdiff
|
tree
2014-04-18
Dietmar Maurer
add options and log API for VMs
commit
|
commitdiff
|
tree
2014-04-17
Alexandre Derumier
bugfix : ruleset_generate_cmdstr : use -d for destination
commit
|
commitdiff
|
tree
2014-04-15
Dietmar Maurer
complete options API for host.fw
commit
|
commitdiff
|
tree
2014-04-15
Dietmar Maurer
add API for firewall log
commit
|
commitdiff
|
tree
2014-04-15
Dietmar Maurer
correctly initialize std chains
commit
|
commitdiff
|
tree
2014-04-15
Dietmar Maurer
do not set persistent state if firewall is disabled
commit
|
commitdiff
|
tree
2014-04-15
Dietmar Maurer
disable firewall by default
commit
|
commitdiff
|
tree
2014-04-15
Dietmar Maurer
add init script to start firewall
commit
|
commitdiff
|
tree
2014-04-15
Alexandre Derumier
ips : allow --queue-bypass only for kernel 3.10
commit
|
commitdiff
|
tree
2014-04-15
Dietmar Maurer
stop firewall inside update if firewall is disabled...
commit
|
commitdiff
|
tree
2014-04-14
Dietmar Maurer
implement API for cluster.fw policy_in and policy_out...
commit
|
commitdiff
|
tree
2014-04-14
Dietmar Maurer
move host policy setting to cluster.fw
commit
|
commitdiff
|
tree
2014-04-14
Dietmar Maurer
remove option dhcp for host.fw
commit
|
commitdiff
|
tree
2014-04-14
Alexandre Derumier
add tunnable nf_conntrack_tcp_timeout_established value
commit
|
commitdiff
|
tree
2014-04-11
Dietmar Maurer
copy_xxx_with_digest: do not copy undefined values
commit
|
commitdiff
|
tree
2014-04-11
Dietmar Maurer
improve concurrent update handling
commit
|
commitdiff
|
tree
2014-04-10
Dietmar Maurer
correctly encode section comments as utf8
commit
|
commitdiff
|
tree
2014-04-10
Dietmar Maurer
support comments on ipset sections
commit
|
commitdiff
|
tree
2014-04-10
Dietmar Maurer
rules API: protect against concurrent updates
commit
|
commitdiff
|
tree
2014-04-10
Dietmar Maurer
security group API: protect against concurrent updates
commit
|
commitdiff
|
tree
2014-04-10
Dietmar Maurer
define standard option pve-config-digest
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
support comments on group sections
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
correctly save security group rules
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
complete security group API
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
define standard option for security group names
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
correctly verify ipset name
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
IPSet: implement rename API
commit
|
commitdiff
|
tree
2014-04-09
Dietmar Maurer
add newline to error message
commit
|
commitdiff
|
tree
2014-04-08
Dietmar Maurer
ipset: implement create/delete API
commit
|
commitdiff
|
tree
2014-04-08
Dietmar Maurer
ipset API: add get/update methods
commit
|
commitdiff
|
tree
2014-04-08
Dietmar Maurer
fix ipset ref test in parse_address_list
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
improve ipset updates
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
ipset: implement delete API, improve parameter verification
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
start API for IPSet
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
ipset: only save ip/network once
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
correctly save ipset data
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
allow icmp port names
commit
|
commitdiff
|
tree
2014-04-07
Dietmar Maurer
verify macro parameters when updating a rule using API
commit
|
commitdiff
|
tree
2014-04-04
Dietmar Maurer
fix port parser
commit
|
commitdiff
|
tree
2014-04-04
Dietmar Maurer
add macro descriptions (and API to read them)
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
implement delete parameter for rule update API
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
rule type and action are required parameters
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
simplify check for iprange
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
parse_address_list: add check for ipset references.
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
parse_address_list: only allow one ip range
commit
|
commitdiff
|
tree
2014-04-03
Dietmar Maurer
ipset: check kernel version
commit
|
commitdiff
|
tree
2014-04-03
Alexandre Derumier
rename netgroup to ipset
commit
|
commitdiff
|
tree
2014-04-03
Alexandre Derumier
prefix ipset chains with PVEFW-
commit
|
commitdiff
|
tree
2014-04-03
Alexandre Derumier
implemented ipset rules in iptables
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
really save options
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
implement rules API for <vmid>.fw
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
implement rules API for host.fw
commit
|
commitdiff
|
tree
2014-04-02
Dietmar Maurer
implement generic rule API class
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
implement option API for cluster.fw
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
start cluster wide firewall API
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
delete trailing white space from 'ipset save' output.
commit
|
commitdiff
|
tree
2014-04-01
Dietmar Maurer
avoid multiple calls to ipset_get_chains()
commit
|
commitdiff
|
tree
2014-04-01
Alexandre Derumier
ipset : use only netgroup
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
remove unneccessary iptables code
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
avoid calls to iptables_rule_exist()
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
new method iptables_chain_digest() to compute digest
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
s/rulset/ruleset/
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
avoid calls to iptables_rule_exist
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
allow options and rules section in cluster.fw
commit
|
commitdiff
|
tree
2014-03-31
Dietmar Maurer
rename groups.fw to cluster.fw
commit
|
commitdiff
|
tree
2014-03-28
Dietmar Maurer
cleanup ipset code
commit
|
commitdiff
|
tree
next