webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-28 11:43:25 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fixed outgoingfw logging in DROP_ format to be ignored by kernel filter

Browse Source 
Remove option for outgoing fw mode 1 to log allowed packages (was not
intended to be available)
This commit is contained in:
Maniacikarus
2008-06-23 22:09:40 +02:00
parent 46f41ca799
commit 5248512439
3 changed files with 13 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
config/outgoingfw/outgoingfw.pl
View File

@@ -167,9 +167,9 @@ foreach $configentry (sort @configs)
if ($configline[9] eq "aktiv") { if ($configline[9] eq "aktiv") {
if ($DEBUG) { if ($DEBUG) {
print "$CMD -m limit --limit 10/minute -j LOG --log-prefix 'OUTGOINGFW '\n"; print "$CMD -m limit --limit 10/minute -j LOG --log-prefix 'DROP_OUTGOINGFW'\n";
} else { } else {
system("$CMD -m limit --limit 10/minute -j LOG --log-prefix 'OUTGOINGFW '"); system("$CMD -m limit --limit 10/minute -j LOG --log-prefix 'DROP_OUTGOINGFW'");
} }
} }
@@ -214,7 +214,7 @@ if ($P2PSTRING) {
if ( $outfwsettings{'POLICY'} eq 'MODE1' ) { if ( $outfwsettings{'POLICY'} eq 'MODE1' ) {
if ( $outfwsettings{'MODE1LOG'} eq 'on' ) { if ( $outfwsettings{'MODE1LOG'} eq 'on' ) {
$CMD = "/sbin/iptables -A OUTGOINGFW -o $netsettings{'RED_DEV'} -m limit --limit 10/minute -j LOG --log-prefix 'OUTGOINGFW '"; $CMD = "/sbin/iptables -A OUTGOINGFW -o $netsettings{'RED_DEV'} -m limit --limit 10/minute -j LOG --log-prefix 'DROP_OUTGOINGFW'";
if ($DEBUG) { if ($DEBUG) {
print "$CMD\n"; print "$CMD\n";
} else { } else {

1
config/rootfiles/updater/filelists/core15
View File

@@ -8,6 +8,7 @@ srv/web/ipfire/cgi-bin/pakfire.cgi
srv/web/ipfire/cgi-bin/qos.cgi srv/web/ipfire/cgi-bin/qos.cgi
srv/web/ipfire/cgi-bin/network.cgi srv/web/ipfire/cgi-bin/network.cgi
srv/web/ipfire/cgi-bin/graphs.cgi srv/web/ipfire/cgi-bin/graphs.cgi
srv/web/ipfire/cgi-bin/outgoingfw.cgi
var/ipfire/langs var/ipfire/langs
var/ipfire/graphs.pl var/ipfire/graphs.pl
var/ipfire/outgoing/bin/outgoingfw.pl var/ipfire/outgoing/bin/outgoingfw.pl

10
html/cgi-bin/outgoingfw.cgi
View File

@@ -485,7 +485,15 @@ END
<td width='20%' align='right'>$Lang::tr{'source ip'}: <img src='/blob.gif' /> <td width='20%' align='right'>$Lang::tr{'source ip'}: <img src='/blob.gif' />
<td width='30%' align='left'><input type='text' name='SIP' maxlength='15' value='$outfwsettings{'SIP'}' /> <td width='30%' align='left'><input type='text' name='SIP' maxlength='15' value='$outfwsettings{'SIP'}' />
<tr><td width='20%' align='right'>$Lang::tr{'logging'}: <tr><td width='20%' align='right'>$Lang::tr{'logging'}:
<td width='30%' align='left'><select name='LOG'><option value='$Lang::tr{'active'}' $selected{'LOG'}{$Lang::tr{'active'}}>$Lang::tr{'active'}</option><option value='$Lang::tr{'inactive'}' $selected{'LOG'}{$Lang::tr{'inactive'}}>$Lang::tr{'inactive'}</option></select></td> END
;
if ($outfwsettings{'POLICY'} eq 'MODE1'){
print "<td width='30%' align='left'><input type='text' name='LOG' maxlength='10' value='$Lang::tr{'inactive'}' readonly='true' /></td>";
}
else{
print "<td width='30%' align='left'><select name='LOG'><option value='$Lang::tr{'active'}' $selected{'LOG'}{$Lang::tr{'active'}}>$Lang::tr{'active'}</option><option value='$Lang::tr{'inactive'}' $selected{'LOG'}{$Lang::tr{'inactive'}}>$Lang::tr{'inactive'}</option></select></td>";
}
print <<END
<td width='20%' align='right' /> <td width='20%' align='right' />
<td width='30%' align='left' /> <td width='30%' align='left' />
<tr><td width='20%' align='right'>$Lang::tr{'destination ip'}: <img src='/blob.gif' /> <tr><td width='20%' align='right'>$Lang::tr{'destination ip'}: <img src='/blob.gif' />