webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-16 05:53:00 +02:00
Code Issues Packages Projects Releases Wiki Activity
6,404 Commits 2 Branches 1 Tag
c12392c0ef3aa71cda43fe38cfd22e4afab5cc5e
Commit Graph

107 Commits

Author SHA1 Message Date
Alexander Marx
c12392c0ef Forward Firewall: removed NAT table and txt file. 2013-08-09 14:15:29 +02:00
Alexander Marx
4f3bd0ca20 Forward Firewall: changed layout of "apply-button" (after rules where changed. When using single hosts in rules, the prefix is no longer shown in the ruletable. Default settings for firewall-options changed 2013-08-09 14:15:29 +02:00
Alexander Marx
8442c93764 Forward Firewall: removed dmz from forwardfw.cgi 2013-08-09 14:15:29 +02:00
Alexander Marx
3b2ad4a1bd Forward Firewall: moved "firewall default behaviour" from firewall page to firewall-options page. Some changes in languagefiles de and en. 2013-08-09 14:15:29 +02:00
Alexander Marx
533a2da388 Forward Firewall: reorganised ruletable layout 2013-08-09 14:15:29 +02:00
Alexander Marx
fb0ce57589 Forward Firewall: cleanup unused code 2013-08-09 14:15:28 +02:00
Alexander Marx
d9b691e18e Forward Firewall: added checks if manual ip (src/tgt) is part of a OpenVPN to colour the rules accordingly 2013-08-09 14:15:28 +02:00
Alexander Marx
05d4f131e9 Forward Firewall: Implemented INPUT Firewall (extended external access) 
Now you are able to define INPUT Rules on every interface ip
 2013-08-09 14:15:27 +02:00
Alexander Marx
e1eef9d53e Forward Firewall: BUGFIX: When creating DMZ Rules with MANUAL IP as source and afterwards editing the rule, the rule was copied and not just edited. 
BUGFIX: When using SNAT (outbound) the rule does not seem to work. The NAT_SOURCE chain was on wron position in POSTROUTING
 2013-08-09 14:13:12 +02:00
Alexander Marx
bac7013b21 Forward Firewall: BUGFIX - when using source Protocol and NO target protocol only the target protocol is shown in ruletable.(But rule is applied correctly) 2013-08-09 14:13:12 +02:00
Alexander Marx
eff2dbf833 Forward Firewall: changed sort-order to Sort::Naturally. This Perl Module will be available since core 68. 2013-08-09 14:13:11 +02:00
Alexander Marx
e3c589276a Forward Firewall: if ipsec rw net is set to green subnet, the rules are colored green instead of purple 2013-08-09 14:13:11 +02:00
Alexander Marx
931e1fed53 Forward Firewall: added some plausi checks. Now it is checked if someone enters an manual ip address that is a openvpn client. 
The colors are set correctly in ruletable when someone enters a manual ip which belongs to an IPsec Network, IPsec Roadwarrior (if iprange set) or openvpn n2n
 2013-08-09 14:13:10 +02:00
Alexander Marx
dc82656bf9 Forward Firewall: 0.9.9.4a - Bugfix typo in firewallscript, DMZ Link on startpage now leads to firewall instead of dmzpinholes 2013-08-09 14:13:10 +02:00
Alexander Marx
08e1c65d85 Forward Firewall: added SNAT multiport support 2013-08-09 14:12:40 +02:00
Alexander Marx
98cee89f94 Forward Firewall: Added multiport support to DNAT/Portforwarding 
Now it is possible to use multiple ports under DNAT when TARGET has no Port, one Port or one Portrange defined
 2013-08-09 14:12:39 +02:00
Alexander Marx
ed618226bb Forward Firewall: little changes in ruletable layout. (Headline) 2013-08-09 14:12:39 +02:00
Alexander Marx
bc912c6e0c Forward Firewall: Version 0.9.9.2 
1) Some changes in en.pl
2) DNAT now supports REJECT/DROP rules
3) Bugfix: comma in remark customservicegroup
4) improved installer
 2013-08-09 14:12:39 +02:00
Alexander Marx
a60dbb4b6a Forward Firewall: added dmz-converter. 
Also extended backup.pl script to support old backups. Now it is possible to restore old backups into new firewall. On restore, all config files of new firewall will be destroyed and the 4 converters will recreate them.
 2013-08-09 14:12:37 +02:00
Alexander Marx
829697d076 Forward Firewall: enabled Portranges for DNAT 2013-08-09 14:11:58 +02:00
Alexander Marx
82e136591e Forward Firewall: bugfix 
1) When editing a NAT rule, error message "port already used" fixed
 2013-08-09 14:11:57 +02:00
Alexander Marx
f0da8d53d0 Forward Firewall: Version update forwardfw.cgi 2013-08-09 14:11:57 +02:00
Alexander Marx
218b3341b6 Forward Firewall: cleanup of initscript. Fixes double log entries when INPUT is set to REJECT 2013-08-09 14:11:57 +02:00
Alexander Marx
f833ef4660 Forward Firewall: fixed layout of deleted host in custom group 
changed version nr in forwardfw.cgi
 2013-08-09 14:11:57 +02:00
Alexander Marx
6b681c40d2 Forward Firewall: 0.9.8.7 Implemented SNAT/DNAT 
reorganized firewall chains
 2013-08-09 14:11:57 +02:00
Alexander Marx
93b75f31ad Forward Firewall: clean up some files 
Fix iptables loop wirelessctrl
Fix firewall chain order
Fix policies (added comment for statistic)
 2013-08-09 14:11:56 +02:00
Alexander Marx
a6edca5a89 Forward Firewall: support for SNAT/DNAT in GUI and rules.pl 2013-08-09 14:11:56 +02:00
Alexander Marx
2669161dab Forward Firewall: Added support for DNAT/SNAT to forwardfw.cgi 2013-08-09 14:11:56 +02:00
Alexander Marx
f2ab6fba4a Forward Firewall: 
1) Custom Hosts: now 17 chars can be entered into IP/MAC field
2) Forwardfw: Bugfix: When no alias is set and IPFIRE is selected as target, no target address is recognised
3) Forwardfw: Now source and Target addressfield (manual) are set to 17 chars maxlegth.
4) Converter: Bugfix: When starting converter from commandline, all hosts are entered into groups again.
 2013-08-09 14:11:56 +02:00
Alexander Marx
bedb72f3d4 Forward Firewall: moved ruleaction-dropdown from top to target area. 
some layout changes in forwardfw.cgi (when no alias exists, the dropdown after ipfire is not shown)
 2013-08-09 14:11:55 +02:00
Alexander Marx
472136c927 Forward Firewall: Fix ruletimes. Now the timevalues which are entered in the gui are saved to the rulefile. 
Wenn rule.pl is called, the script calculates the difference to UTC time and sets the iptables times accordingly.

With this approach there's no need to save if the times are created in summertime or wintertime.
 2013-08-09 14:11:55 +02:00
Alexander Marx
c773075074 Forward Firewall: Try to implement a timeconverter for Rules. New function timeconvert should convert localtime agains gmtime. 2013-08-09 14:11:54 +02:00
Alexander Marx
f69ea1c7c5 Forward Firewall: New Version 0.9.8.2 2013-08-09 14:11:54 +02:00
Alexander Marx
7874d8200d Forward Firewall: wrong <font> Tag leads to a sidemenu with small font 2013-08-09 14:11:54 +02:00
Alexander Marx
f38e0c4de0 Forward Firewall: added --kerneltz option to timeframe 2013-08-09 14:11:54 +02:00
Alexander Marx
b3f4a4efcf Forward Firewall: Fixed ruletable (view of protocols) 2013-08-09 14:11:54 +02:00
Alexander Marx
a7d7f5a3da Forward Firewall: Added versionnumber on bottom right of firewall. 2013-08-09 14:11:54 +02:00
Alexander Marx
97e2e7b4b7 Forward Firewall: LAyout change: All dropdowns now have same size 2013-08-09 14:09:17 +02:00
Alexander Marx
223d3b1dca Forward Firewall: chnaged "Internet" to "INTERNET" in dropdown (Target) 2013-08-09 14:09:17 +02:00
Alexander Marx
d998784149 Forward Firewall: added an option to firewall-options to show all dropdowns on rulecreation site. 2013-08-09 14:09:17 +02:00
Alexander Marx
8013bd0ac2 Forward Firewall: Changed layout of rulecreation. Now only the dropdowns for configured networks are shown on the site 
Also changed fwhosts.cgi (custom groups) to the same feature
 2013-08-09 14:09:16 +02:00
Alexander Marx
5b375ca7e6 Forward Firewall: added a 1px heigh line after each rule. so the coloured borders are looking better 2013-08-09 14:09:16 +02:00
Alexander Marx
25dd450cba Forward Firewall: Bugfix: Error appending or writing comments in rule 2013-08-09 14:09:15 +02:00
Alexander Marx
d603d1dee0 Forward Firewall: disabled some dev-comments 2013-08-09 14:09:15 +02:00
Alexander Marx
515863e299 Forward Firewall: Some further layout changes. 
1) New textfile for DMZ rules
2) Tablegroups are shown on firewall site
3) Option in firewall-options to disable emtpy ruletables
4) Infotext on P2P-Block site
 2013-08-09 14:08:25 +02:00
Alexander Marx
f832279215 Forward Firewall: minor changes an ruletable 2013-08-09 14:08:24 +02:00
Alexander Marx
6ca0b0f5fb Forward Firewall: made colored borders in ruletable thinner (1px) and changed remarkline 2013-08-09 14:08:24 +02:00
Alexander Marx
af768a7e80 Forward Firewall: removed cellspacing and black lines between rules in ruletable 2013-08-09 14:08:24 +02:00
Alexander Marx
96502a5a67 Forward Firewall: New Firewall-option "show remark in ruletable" 2013-08-09 14:08:24 +02:00
Alexander Marx
289d82ad6e FORWARD Firewall: edited ruletable to look better on IE 2013-08-09 14:08:24 +02:00