webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-11 03:25:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
9,071 Commits 2 Branches 1 Tag
57e527c84a4e3952c7842637e2e4b6f252394de2
Commit Graph

109 Commits

Author SHA1 Message Date
Stefan Schantl
1ed8aedfdb fwhosts.cgi: Fix fw-reload detection when adding new entries to a geoip group. 
Read-in firewall config files for detection if the current group is used
by at least one firewall rule and mark the firewall to need a reload if
neccessary.

Fixes #10771.
 2015-03-15 11:41:50 +01:00
Stefan Schantl
93bfe63d55 Merge branch 'seventeen-geoip' into next-geoip 2015-03-15 11:38:45 +01:00
Alexander Marx
85abeb1376 BUG10753: Fix servicegroups to have only max. 15 services per protocol 2015-02-25 08:09:05 +01:00
Stefan Schantl
4313aa18e9 fwhosts.cgi: Add support for GeoIP groups. 2015-02-08 13:37:06 +01:00
Michael Tremer
b14e0f7d0e Merge remote-tracking branch 'amarx/fw-checksubnet' into next 2014-09-26 12:59:26 +02:00
Michael Tremer
df6649b0fe Merge remote-tracking branch 'amarx/firewall-dnat' into next 
Conflicts:
	config/firewall/rules.pl
 2014-09-26 12:55:55 +02:00
Alexander Marx
d8cc443938 fw-groups: fix language strings 2014-09-19 13:44:20 +02:00
Alexander Marx
3928f52b39 fw-groups: cleanup checksubnets 
Now the checksubnets function from general-functions.pl is used.
 2014-09-05 08:09:54 +02:00
Alexander Marx
48f07c1957 Firewall: make DNAT only accessible from selected source network 
We added RED to the standard networks and now portforwardings are only
useable from the selected source. If selected "all" the portforwarding
can be used from any internal network. Else the access is only grnated
from the selected source network.
 2014-07-18 08:44:45 +02:00
Dominik Hassler
6ace85e360 - bugfix: allow subnets of green/blue/orange/red as network group 2014-07-09 23:51:01 +02:00
Alexander Marx
7fa1b16e5d Firewall: Fix slow generation of host table in firewall groups 2014-05-07 12:13:13 +02:00
Alexander Marx
bc595f0985 Firewall: Bug10513 2014-04-17 12:38:59 +02:00
Alexander Marx
eae92b2baf Firewall: Bug 10514 fixed 2014-04-14 23:16:59 +02:00
Alexander Marx
1ccfb89eab Firewall: fix coloring of internet hosts 2014-04-07 16:53:01 +02:00
Alexander Marx
a72ae687c6 Firewall: Bugfix: Remark in hostgroups and servicegroups was not changeable 
Another Bugfix: Layout of hostgroups was broken when more than 1 vpn
connection is defined. There where dropdownboxes for every vpn
connection instead of only one
 2014-03-17 14:09:17 +01:00
Alexander Marx
dadffbf738 fwhost.cgi: disable "use warnings" 2014-03-13 15:37:33 +01:00
Alexander Marx
40962f9760 Firewall: Bugfix - when creating a new hostgroup, the system checked for existing name in servicegroups instead of hostgroups 2014-03-04 14:40:59 +01:00
Alexander Marx
7429ee78b6 Firewall: Fix oversized Textfields 2014-03-04 14:07:04 +01:00
Alexander Marx
f620fa34df Firewall: Fix Bug 10490 and broken colorization of tables in firewall groups 2014-03-04 11:37:58 +01:00
Alf Høgemark
f8aa06792f cgi-bin: Add title attribute to input type image where missing 
Almost all of <input type="image"... has both an alt and a
title attribute, but some are missing title, and when the icon
is not very clear, it makes it harder to understand what the icon
does. By adding title, the browser displays text when mouse pointer
is over the icon.

Also add missing quotes for alt and title attributes where needed.
 2014-02-19 18:31:02 +01:00
Alexander Marx
726e688235 Firewallgroups: added untranslated string 'name' 2014-01-29 14:32:34 +01:00
Alexander Marx
b985d3160a FIREWALL: changes column title in firewall-groups from IP Address to IP/MAC Address 2014-01-29 14:32:31 +01:00
Alexander Marx
aeefcc9caa Firewall: modified firewall-groups so that they can be empty even if used in rules 
Now one can create a group, use it in a rule and then delete every entry
from the group. (The firewallrule then will be displayed yellow and
disabled).
 2014-01-11 12:13:45 +01:00
Alexander Marx
4d74a20df0 Layout of fwhosts title 2014-01-09 16:26:40 +01:00
Alexander Marx
bc8ecbd6ae Layout changes fwhosts.cgi 2014-01-09 15:05:00 +01:00
Alexander Marx
902a15be1d fifteen-theme: made all tables in firewall-groups themeable 2014-01-07 09:34:01 +01:00
Alexander Marx
49da7d7975 Firewall: added check if firewallrules need to be updated when editing services or servicegroups 2014-01-06 14:18:19 +01:00
Alexander Marx
a8b113e73d Firewall: Now servicegroups and networkgroups can be renamed 2013-12-20 12:10:35 +01:00
Alexander Marx
5f037986b7 Firewall: added JS to automatically select radiobuttons in fwhosts 2013-12-20 12:10:03 +01:00
Alexander Marx
484269ceac FIrewall: Rewrote complete counters for firewall-groups (hosts,networks, network-groups) 2013-12-20 12:09:52 +01:00
Alexander Marx
3a162dc14f Firewall: rebuild complete counter procedure in firewall-groups. This way the counters are on the fly generated and stable. also this is a prequisite to the new option that firewall-servicegroups can be rolled out by installation 2013-12-10 12:21:48 +01:00
Alexander Marx
fe2bae3b74 Firewall: Fix BETA8 - It was not possible to delete single services from servicegroups 2013-12-09 09:33:21 +01:00
Alexander Marx
82b837cff8 Firewall: Added new feature: Now protocols can be added to servicegroups (GRE,AH,ESP,IPIP,IPV6) 2013-12-06 08:47:11 +01:00
Alexander Marx
7db6ad6acb Firewall: appended check of maximum ports per protocol. portranges 100:200 count as 2 ports 2013-11-13 00:34:08 +01:00
Alexander Marx
49192c7b31 Firewall: The maximum of definable services in a servicegroup is limited to 13 per protocol (tcp,udp) because iptables can only handle max 13 services in Multiport 2013-11-13 00:33:46 +01:00
Alexander Marx
f8cbcb7c8a Firewall: Bugfix: When creating a servcie in firewall-groups and selecting a protocol other than icmp, the enty in the ruletable shows correct values PLUS the "all icmp-types" under ICMP. 
Now the ICMP FIeld is emtpy when selecting another protocol than icmp
 2013-11-08 13:41:06 +01:00
Alexander Marx
6d8eb5dec7 Firewall: Renamed directory /var/ipfire/forward to /var/ipfire/firewall 2013-10-24 09:24:12 +02:00
Michael Tremer
0e43079789 firewall: Cleanup rules reloading. 
This has been messed up a lot because there were multiple
files which indicated that a reload is needed; shell commands
were used to create and remove the indicator file; some
functions were duplicated.
 2013-10-22 18:53:48 +02:00
Alexander Marx
c9493d6c4f Firewall: Language changes, JQuery code cleanup 2013-10-17 14:27:41 +02:00
Alexander Marx
86a921ee47 Firewall: Some changes in Strings and languagefiles 2013-10-17 11:27:48 +02:00
Alexander Marx
fda8c915d6 Firewall: Fixed JQuery code for fwhosts. This is BETA2 base 2013-10-16 14:55:20 +02:00
Alexander Marx
ec6fd189ee Firewall: Jquery with errors for michael... 2013-10-15 15:45:51 +02:00
Alexander Marx
bfc84eb153 Firewall: added JavaScript for services (hide icmp-types when no ICMP selected) 2013-10-09 16:20:54 +02:00
Alexander Marx
64e822fb45 Firewall: Bugfix: when deleting services from a servicegroup,it was possible to delete the last service even if the group was used in a rule. 2013-10-08 10:24:56 +02:00
Alexander Marx
2aeb4b256e Firewall: Bugfix: wrong counter when using selfdefinded services in a rule that could not be applied 
Bugfix: When using ICMP-ALL in a rule, the rule was not applied
Bugfix: When using selfdefined services (icmp) and group them together. Then when using these services/groups in a rule and afterwards changing the service, the edited service was not applied
 2013-09-27 10:16:52 +02:00
Alexander Marx
eb95ce89a8 Forward Firewall: ip addresses in firewall-groups (groups) are now colorized 2013-08-14 14:19:36 +02:00
Alexander Marx
b119578f02 Forward Firewall: Now all customhosts are colored correctly in ruletable. Also the ip addresses in firewall-groups (hosts) are colored correctly if they are part of green,orange,blue,openvpn or ipsec 2013-08-14 12:51:21 +02:00
Alexander Marx
0c2cf9e214 Forward Firewall: BUGFIX: when having more than 10 hosts/networks in a firewall-groups group, the table was not shown correctly 2013-08-14 09:06:38 +02:00
Alexander Marx
f195a8d763 Forward Firewall: BUG: when creating a new group in firewall-groups with the same name as an existing group, the line "no rule defined" was added. 
BUG: THe line "no rules defined" is now "no entries in this group".
 2013-08-13 16:00:32 +02:00
Alexander Marx
5bee9a9df5 Forward Firewall: edited GPL-header 2013-08-13 13:47:27 +02:00