pve-firewall.git
2014-05-21 Dietmar MaurerIntroduce new management ipset
2014-05-21 Dietmar Maurerdo not use ctstate in corosync rule
2014-05-20 Dietmar Maurerstart alias support for VMs
2014-05-20 Dietmar Maurerimprove documentation
2014-05-20 Dietmar Maurerdo not log simulate warnings to syslog
2014-05-20 Dietmar Maureradd simulate command for easy testing
2014-05-20 Dietmar Maurermove test code to FirewallSimulator.pm
2014-05-20 Dietmar Maureradd tests for corosync multicast addrtype rules
2014-05-20 Dietmar Maurerdo not enable VM firewall by default
2014-05-20 Dietmar Maureradd tests for default rules
2014-05-20 Dietmar Maurerfwtester: set cluster network to 172.16.1.0/24, host_ip...
2014-05-20 Dietmar Maurerallow tests without cluster.fw and host.fw configuration
2014-05-20 Dietmar Maureralso allow VNC and SPICE traffic inside cluster_network
2014-05-20 Dietmar Maurerdo not use -s for outgoing corosync rules
2014-05-20 Dietmar Maurerimplement setter for cluster_network
2014-05-20 Dietmar Maurerfix regression test for previous commits
2014-05-20 Dietmar Maureruse $accept_action for standard rules
2014-05-20 Dietmar Maureradd standard rules after user rules
2014-05-20 Dietmar Maurerfix corosync rules (restrict to cluster network)
2014-05-20 Dietmar Maurerremove wrong corosync rules using port 9000
2014-05-19 Dietmar Maurerallow API/SSH/SPICE/VNC traffic on local cluster networ...
2014-05-19 Dietmar Maurerremove unused options
2014-05-19 Dietmar Maureradd init function
2014-05-19 Dietmar Maurerdo not restart pvefw-logger with debian triggers
2014-05-19 Dietmar Maureravoid logs by default
2014-05-19 Dietmar Maurerremove unused parameters
2014-05-19 Alexandre Derumierbirectionnal macros cleanups
2014-05-19 Dietmar Maurerchange rule format: use named parameters
2014-05-16 Dietmar Maurerinclude manual page
2014-05-16 Dietmar Maurercleanup firewall service implementation
2014-05-16 Alexandre Derumierbypass PVEFW-VENET-IN|OUT for unfirewalled venet0 ips
2014-05-16 Dietmar Maurerdo not abort if security groups does not exists
2014-05-15 Dietmar Maureradd ipset regression tests
2014-05-15 Dietmar Maurerfwtester: implement ipset testing
2014-05-15 Dietmar Maurerfix blacklist example
2014-05-15 Dietmar Maureradd tests for unconfigured firewall (empty files)
2014-05-15 Dietmar Maureradd group tests for container
2014-05-15 Dietmar Maurerfix security groups for VMs
2014-05-15 Dietmar Maureradd security group tests
2014-05-15 Dietmar Maurerfwtester: add ability to run tests on several zones
2014-05-15 Dietmar Maurercorrectly emit group rules for host
2014-05-15 Dietmar Maurerfwtester: improve rule_match
2014-05-15 Dietmar Maurercorrectly use dest instead of source
2014-05-15 Dietmar Maurerallow GROUP rule without iface
2014-05-15 Dietmar Maurerfwtester: set firewall=1 for test VM interfaces
2014-05-15 Alexandre Derumieronly add tap rules for interface with firewall=1
2014-05-15 Dietmar Maurerfwtester: simplify code with ne bport zone
2014-05-15 Dietmar Maurerimprove error messages
2014-05-14 Dietmar Maurerfwtester: add new zone 'nfwm' to simulate a non-firewal...
2014-05-14 Dietmar Maurerfwtester: do not count ENTER/LEAVE
2014-05-14 Dietmar Maureradd README for fwtester.pl
2014-05-14 Alexandre Derumierfix interface in rules for host-in and host-out
2014-05-14 Dietmar Maureradd tests for host interface match
2014-05-14 Dietmar Maurerfwtester: support dev regex with -i and -o
2014-05-14 Dietmar Maurerfwtester: fix emulation - correctly set phydev_in
2014-05-14 Dietmar Maurerfwtester: add counters for debugging
2014-05-14 Dietmar Maurerfwtester: do not set packet default values
2014-05-14 Alexandre Derumiermove blacklist inside ruleset_chain_add_input_filters
2014-05-14 Alexandre Derumierremove optimize option
2014-05-14 Dietmar Maurerfwtester: implement some useful command line option
2014-05-14 Dietmar Maurerfwtester: implement new 'outside' zone
2014-05-14 Dietmar Maurerfwtester: improve kernel simulation
2014-05-14 Dietmar Maurerdelete trailing whitespace cleanup
2014-05-14 Alexandre Derumierallow multiple spaces in venet0 ip list
2014-05-14 Alexandre Derumierrename link+ to fwln+
2014-05-13 Alexandre Derumierbugfix : allow multiples venet0 ip in 1 container
2014-05-13 Alexandre Derumierinsert PVEFW-IPS after vm rules generation v2
2014-05-13 Dietmar Maureradd Makefile targets for regression tests
2014-05-13 Dietmar Maureradd regression test infrastructure
2014-05-13 Dietmar Maurerallow to read config from test directory
2014-05-13 Dietmar Maureruse PVEFW-VENET-IN/OUT inside PVEFW-INPUT/OUTPUT chains
2014-05-13 Dietmar Maurermove nosmurfs, tcpflags and conntrack established outsi...
2014-05-13 Dietmar Maurerremove dead code
2014-05-13 Dietmar Maureradd PVEFW-VENET-IN && PVEFW-VENET-OUT chains
2014-05-13 Dietmar Maurerremove bridge chains
2014-05-13 Dietmar Maureruse hex digest to avoid url encoding problems
2014-05-13 Dietmar Maureravoid error about undefined array
2014-05-06 Dietmar Maurerset RELEASE to 3.2
2014-05-06 Dietmar Maurerremove allow_bridge_route setting
2014-04-24 Dietmar Maurerfirewall group API: change 'name' to 'group'
2014-04-23 Alexandre Derumieradd global ipset blacklist
2014-04-22 Dietmar Maurergenerate_ipset: skip undefined ipsets
2014-04-22 Dietmar Maurerrename save_rules to save_ipset
2014-04-22 Dietmar Maureralias API: implement rename
2014-04-22 Dietmar Maurerstart API for aliases
2014-04-22 Dietmar Maurercorrectly save aliases
2014-04-22 Dietmar Maurerruleset_generate_vm_rules: use 'warn' instead of 'die'
2014-04-22 Dietmar Maurerruleset_generate_vm_rule: avoid multiple calls to gener...
2014-04-22 Dietmar Maurergenerate_nfqueue: code cleanup
2014-04-22 Dietmar Maurerruleset_generate_rule: update all or nothing
2014-04-22 Alexandre Derumierupdate update_nf_conntrack_max && nf_conntrack_tcp_time...
2014-04-22 Dietmar Maurercode cleanup
2014-04-22 Alexandre Derumieriptables_get_chains : allow bridgevlan vmbrXvY
2014-04-22 Alexandre Derumieroptimize : accept from physical interfaces on bridges
2014-04-22 Alexandre Derumieradd aliases feature
2014-04-18 Dietmar Maureradd README and example to debian package
2014-04-18 Dietmar Maurerfix README
2014-04-18 Dietmar Maureronly allow tcpflafgs and nosmurfs in host.fw
2014-04-18 Dietmar Maurerenable cluster wide rules
2014-04-18 Dietmar Maureradd remaining options to VM API
next