webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-12 20:16:49 +02:00
Code Issues Packages Projects Releases Wiki Activity
6,431 Commits 2 Branches 1 Tag
47cd046aede256dccbd844dc1e580b47d3dd4c45
Commit Graph

1080 Commits

Author SHA1 Message Date
Alexander Marx
7326051edb Forward Firewall: Updated outgoingfw-converter. redesign of the ruletable's defaultrules 2013-08-09 14:15:32 +02:00
Alexander Marx
4d2e7a35d9 Forward Firewall: some textalignment in last rule row 2013-08-09 14:15:32 +02:00
Alexander Marx
a648546338 Forward Firewall: added "default-rules-table" at the end of forward ruletable 2013-08-09 14:15:31 +02:00
Alexander Marx
b044bb0569 Forward Firewall: Bugfixes wrong interface in ruletable,when selecting alias firewall interface 2013-08-09 14:15:31 +02:00
Alexander Marx
fc83b09d43 Forward Firewall: some bugfixes 2013-08-09 14:15:31 +02:00
Alexander Marx
72586f0ff0 Forward Firewall: colorize ip addresses when possible in firewall groups. subnetmask now in cidr format 2013-08-09 14:15:31 +02:00
Alexander Marx
f1934a05ad Forward Firewall: delted subnets from hosts in firewallgroups, colorized all ip-addresses from the firewall-groups if possible. Some minor changes in forwardfw.cgi 2013-08-09 14:15:31 +02:00
Alexander Marx
cb4439f394 Forward Firewall: Bugfix of last commit. Added "Interface" to source or target that uses "Firewall" interfaces 2013-08-09 14:15:31 +02:00
Alexander Marx
d4cb89d2d1 Forward Firewall: When using "Firewall" as source or target, the ruletable looks confusing. Theres "RED" in source and target. Now theres "INTERFACE RED". 2013-08-09 14:15:31 +02:00
root
43d8be093c Forward Firewall: some language changes de.pl and en.pl as well as forwardfw.cgi and fwhost.cgi 2013-08-09 14:15:30 +02:00
Alexander Marx
1a8fde0e84 Forward Firewall: changed some names and added subnets to dropdowns 2013-08-09 14:15:30 +02:00
Alexander Marx
a0fb1099ef Forward Firewall: Design changes 
1) source has a new option "firewall" with dropdown for interfaces
2) source default networks->deleted IPFire, all ip's now in brackets
3) deleted warning message in Target that a mac is not usable
4) changes for "apply" button
5) in ruletable the protocol is now right beneath the ruletype column
6) changed target dropdown "INTERNET" to "RED"
7) renamed OpenVPN N-2N to OpenVPN Net-to-Net
8) set missing default firewall options
9) little changes on the en and de lang files
 2013-08-09 14:15:30 +02:00
Alexander Marx
2af92cf5ac Forward Firewall: added new line at bottom of all ruletables with the "final rule" 2013-08-09 14:15:30 +02:00
Alexander Marx
ac9e77e3ba Forward Firewall: added missing fields to the converters (for dnat) 2013-08-09 14:15:30 +02:00
Alexander Marx
0ac6c61d37 UPNP: changed firewall chain from PORTFW to UPNPFW 2013-08-09 14:15:30 +02:00
Alexander Marx
c12392c0ef Forward Firewall: removed NAT table and txt file. 2013-08-09 14:15:29 +02:00
Alexander Marx
4f3bd0ca20 Forward Firewall: changed layout of "apply-button" (after rules where changed. When using single hosts in rules, the prefix is no longer shown in the ruletable. Default settings for firewall-options changed 2013-08-09 14:15:29 +02:00
Alexander Marx
8442c93764 Forward Firewall: removed dmz from forwardfw.cgi 2013-08-09 14:15:29 +02:00
Alexander Marx
3b2ad4a1bd Forward Firewall: moved "firewall default behaviour" from firewall page to firewall-options page. Some changes in languagefiles de and en. 2013-08-09 14:15:29 +02:00
Alexander Marx
533a2da388 Forward Firewall: reorganised ruletable layout 2013-08-09 14:15:29 +02:00
Alexander Marx
fb0ce57589 Forward Firewall: cleanup unused code 2013-08-09 14:15:28 +02:00
Alexander Marx
d9b691e18e Forward Firewall: added checks if manual ip (src/tgt) is part of a OpenVPN to colour the rules accordingly 2013-08-09 14:15:28 +02:00
Alexander Marx
05d4f131e9 Forward Firewall: Implemented INPUT Firewall (extended external access) 
Now you are able to define INPUT Rules on every interface ip
 2013-08-09 14:15:27 +02:00
Alexander Marx
e1eef9d53e Forward Firewall: BUGFIX: When creating DMZ Rules with MANUAL IP as source and afterwards editing the rule, the rule was copied and not just edited. 
BUGFIX: When using SNAT (outbound) the rule does not seem to work. The NAT_SOURCE chain was on wron position in POSTROUTING
 2013-08-09 14:13:12 +02:00
Alexander Marx
bac7013b21 Forward Firewall: BUGFIX - when using source Protocol and NO target protocol only the target protocol is shown in ruletable.(But rule is applied correctly) 2013-08-09 14:13:12 +02:00
Alexander Marx
04abd8d958 Forward Firewall: bugfix: counter failure when adding one host to more than 1 Group 2013-08-09 14:13:11 +02:00
Alexander Marx
eff2dbf833 Forward Firewall: changed sort-order to Sort::Naturally. This Perl Module will be available since core 68. 2013-08-09 14:13:11 +02:00
Alexander Marx
e3c589276a Forward Firewall: if ipsec rw net is set to green subnet, the rules are colored green instead of purple 2013-08-09 14:13:11 +02:00
Alexander Marx
139a1ab947 Forward Firewall: removed devel-tags 2013-08-09 14:13:11 +02:00
Alexander Marx
6945e46310 Forward Firewall: rewrote portcheck routine in ovpnmain so that checks for portforwardingports are made against /var/ipfire/forward/nat instead of /var/ipfire/portfw/config 2013-08-09 14:13:11 +02:00
Alexander Marx
931e1fed53 Forward Firewall: added some plausi checks. Now it is checked if someone enters an manual ip address that is a openvpn client. 
The colors are set correctly in ruletable when someone enters a manual ip which belongs to an IPsec Network, IPsec Roadwarrior (if iprange set) or openvpn n2n
 2013-08-09 14:13:10 +02:00
Alexander Marx
dc82656bf9 Forward Firewall: 0.9.9.4a - Bugfix typo in firewallscript, DMZ Link on startpage now leads to firewall instead of dmzpinholes 2013-08-09 14:13:10 +02:00
Alexander Marx
08e1c65d85 Forward Firewall: added SNAT multiport support 2013-08-09 14:12:40 +02:00
Alexander Marx
98cee89f94 Forward Firewall: Added multiport support to DNAT/Portforwarding 
Now it is possible to use multiple ports under DNAT when TARGET has no Port, one Port or one Portrange defined
 2013-08-09 14:12:39 +02:00
Alexander Marx
ed618226bb Forward Firewall: little changes in ruletable layout. (Headline) 2013-08-09 14:12:39 +02:00
Alexander Marx
d526a95bf1 Forward Firewall: some changes in en.pl and de.pl. Also adapted "apply" button in fwhosts.cgi 2013-08-09 14:12:39 +02:00
Alexander Marx
bc912c6e0c Forward Firewall: Version 0.9.9.2 
1) Some changes in en.pl
2) DNAT now supports REJECT/DROP rules
3) Bugfix: comma in remark customservicegroup
4) improved installer
 2013-08-09 14:12:39 +02:00
Alexander Marx
e09884e04f Forward Firewall: some fixes: 
1) Counter was not correctly decreased when deleting a network from a customgroup
2) Convert-outgoingfw improved
3) Backup didn't set filepermissions correctly
 2013-08-09 14:12:39 +02:00
Alexander Marx
a60dbb4b6a Forward Firewall: added dmz-converter. 
Also extended backup.pl script to support old backups. Now it is possible to restore old backups into new firewall. On restore, all config files of new firewall will be destroyed and the 4 converters will recreate them.
 2013-08-09 14:12:37 +02:00
Alexander Marx
829697d076 Forward Firewall: enabled Portranges for DNAT 2013-08-09 14:11:58 +02:00
Alexander Marx
82e136591e Forward Firewall: bugfix 
1) When editing a NAT rule, error message "port already used" fixed
 2013-08-09 14:11:57 +02:00
Alexander Marx
f0da8d53d0 Forward Firewall: Version update forwardfw.cgi 2013-08-09 14:11:57 +02:00
Alexander Marx
218b3341b6 Forward Firewall: cleanup of initscript. Fixes double log entries when INPUT is set to REJECT 2013-08-09 14:11:57 +02:00
Alexander Marx
f833ef4660 Forward Firewall: fixed layout of deleted host in custom group 
changed version nr in forwardfw.cgi
 2013-08-09 14:11:57 +02:00
Alexander Marx
6b681c40d2 Forward Firewall: 0.9.8.7 Implemented SNAT/DNAT 
reorganized firewall chains
 2013-08-09 14:11:57 +02:00
Alexander Marx
93b75f31ad Forward Firewall: clean up some files 
Fix iptables loop wirelessctrl
Fix firewall chain order
Fix policies (added comment for statistic)
 2013-08-09 14:11:56 +02:00
Alexander Marx
9efd8d1c7e Forward Firewall: delete old portforwarding from system and fix for wlan-firewall part 1 (loop) 2013-08-09 14:11:56 +02:00
Alexander Marx
a6edca5a89 Forward Firewall: support for SNAT/DNAT in GUI and rules.pl 2013-08-09 14:11:56 +02:00
Alexander Marx
2669161dab Forward Firewall: Added support for DNAT/SNAT to forwardfw.cgi 2013-08-09 14:11:56 +02:00
Alexander Marx
f2ab6fba4a Forward Firewall: 
1) Custom Hosts: now 17 chars can be entered into IP/MAC field
2) Forwardfw: Bugfix: When no alias is set and IPFIRE is selected as target, no target address is recognised
3) Forwardfw: Now source and Target addressfield (manual) are set to 17 chars maxlegth.
4) Converter: Bugfix: When starting converter from commandline, all hosts are entered into groups again.
 2013-08-09 14:11:56 +02:00