webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 19:15:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
6,371 Commits 2 Branches 1 Tag
dc82656bf97fef330f5f34ee237426fb53d86708
Commit Graph

3398 Commits

Author SHA1 Message Date
Alexander Marx
aff15defbc Forward Firewall: rules for collectd now in firewall-policy instead of /etc/init.d/firewall 2013-08-09 14:13:10 +02:00
Alexander Marx
53f4c74d9b Forward Firewall: some changes in firewall script to make collectd work 2013-08-09 14:13:10 +02:00
Alexander Marx
9468a6f713 Forward Firewall: Firewall Hits graph now with stacked values 2013-08-09 14:13:10 +02:00
Alexander Marx
be9be7cb5b Forward Firewall: enabled /var/ipfire/optionsfw/settings in configroot 2013-08-09 14:13:10 +02:00
Alexander Marx
94ea1f0346 Forward Firewall: fixed firewall hits statistik and extended it to show input,output,forward,newnotsyn and portscan seperately. 2013-08-09 14:13:10 +02:00
Alexander Marx
6f348fcb9d Forward Firewall: edited include file of backup. 2013-08-09 14:13:07 +02:00
Alexander Marx
08e1c65d85 Forward Firewall: added SNAT multiport support 2013-08-09 14:12:40 +02:00
Alexander Marx
98cee89f94 Forward Firewall: Added multiport support to DNAT/Portforwarding 
Now it is possible to use multiple ports under DNAT when TARGET has no Port, one Port or one Portrange defined
 2013-08-09 14:12:39 +02:00
Alexander Marx
bc912c6e0c Forward Firewall: Version 0.9.9.2 
1) Some changes in en.pl
2) DNAT now supports REJECT/DROP rules
3) Bugfix: comma in remark customservicegroup
4) improved installer
 2013-08-09 14:12:39 +02:00
Alexander Marx
e09884e04f Forward Firewall: some fixes: 
1) Counter was not correctly decreased when deleting a network from a customgroup
2) Convert-outgoingfw improved
3) Backup didn't set filepermissions correctly
 2013-08-09 14:12:39 +02:00
Alexander Marx
f7e649ddfb Forward Firewall: some typos in dmz-converter 2013-08-09 14:12:39 +02:00
Alexander Marx
a60dbb4b6a Forward Firewall: added dmz-converter. 
Also extended backup.pl script to support old backups. Now it is possible to restore old backups into new firewall. On restore, all config files of new firewall will be destroyed and the 4 converters will recreate them.
 2013-08-09 14:12:37 +02:00
Alexander Marx
829697d076 Forward Firewall: enabled Portranges for DNAT 2013-08-09 14:11:58 +02:00
Alexander Marx
6be32fe504 Forward Firewall: bugfix: DNAT now correctly creates rules, when customservice defined as target 2013-08-09 14:11:58 +02:00
Alexander Marx
28640b7365 Forward Firewall: fix NAT-rules: iptables rule was not applied correctly in PORTFWACCESS 2013-08-09 14:11:58 +02:00
Alexander Marx
fb61ec6715 Forward Firewall: Bugfix: blue was allowed to connect to everywhere if forward firewall was open 2013-08-09 14:11:57 +02:00
Alexander Marx
8343fd1250 Forward Firewall: Fix converter-outgoingfw. Produced wrong counters while converting 2013-08-09 14:11:57 +02:00
Alexander Marx
54d6863787 Forward Firewall: fixed converter bug: Remark is "0" and Alias ip is taken as ip instead of name 2013-08-09 14:11:57 +02:00
Alexander Marx
6b681c40d2 Forward Firewall: 0.9.8.7 Implemented SNAT/DNAT 
reorganized firewall chains
 2013-08-09 14:11:57 +02:00
Alexander Marx
93b75f31ad Forward Firewall: clean up some files 
Fix iptables loop wirelessctrl
Fix firewall chain order
Fix policies (added comment for statistic)
 2013-08-09 14:11:56 +02:00
Alexander Marx
6397b6e789 Forward Firewall: deleted portfw from buildsystem 2013-08-09 14:11:56 +02:00
Alexander Marx
e800ca53b2 Forward Firewall: delete old Portforwarding from Firewall-menu 2013-08-09 14:11:56 +02:00
Alexander Marx
9efd8d1c7e Forward Firewall: delete old portforwarding from system and fix for wlan-firewall part 1 (loop) 2013-08-09 14:11:56 +02:00
Alexander Marx
a6edca5a89 Forward Firewall: support for SNAT/DNAT in GUI and rules.pl 2013-08-09 14:11:56 +02:00
Alexander Marx
ddcec9d339 Forward Firewall: Firewall sets Internetdevice correctly now (was always red0) 2013-08-09 14:11:56 +02:00
Alexander Marx
f2ab6fba4a Forward Firewall: 
1) Custom Hosts: now 17 chars can be entered into IP/MAC field
2) Forwardfw: Bugfix: When no alias is set and IPFIRE is selected as target, no target address is recognised
3) Forwardfw: Now source and Target addressfield (manual) are set to 17 chars maxlegth.
4) Converter: Bugfix: When starting converter from commandline, all hosts are entered into groups again.
 2013-08-09 14:11:56 +02:00
Alexander Marx
05612a544b Forward Firewall: fix converter for outgoingfw. remarkfield (new) was not implemented here 
fwhosts: Some layout changes in tables (cellspacing='0')
 2013-08-09 14:11:55 +02:00
Alexander Marx
d58677779f Forward Firewall: forgot to delete devel-comment 2013-08-09 14:11:55 +02:00
Alexander Marx
fccf52cf7e Forward Firewall: fixed a bug in convert-outgoingfw. THe hosts are created with wrong amount of fields in hasharray. 
Also fixed a bug which sets wrong firewall mode for FORWARD when outgoing rules are used.
 2013-08-09 14:11:55 +02:00
Alexander Marx
472136c927 Forward Firewall: Fix ruletimes. Now the timevalues which are entered in the gui are saved to the rulefile. 
Wenn rule.pl is called, the script calculates the difference to UTC time and sets the iptables times accordingly.

With this approach there's no need to save if the times are created in summertime or wintertime.
 2013-08-09 14:11:55 +02:00
Alexander Marx
ef6f983b17 Forward Firewall: put rule OUTGOING ACCEPT Related, established into /etc/init.d/firewall 
deleted ACCEPT OUTGOINGFW related,established from POLICYOUT
 2013-08-09 14:11:55 +02:00
Alexander Marx
a0f267b92c Forward Firewall: removed --kerneltz from rules.pl. New function timeconvert in forwardfw.cgiu takes care of timeconversion now 2013-08-09 14:11:55 +02:00
Alexander Marx
f38e0c4de0 Forward Firewall: added --kerneltz option to timeframe 2013-08-09 14:11:54 +02:00
Alexander Marx
8cb1afc817 Forward Firewall: Bugfix: When having more than 1 ICMP rule in a group, the rule is not created. 
Also changed (INPUT) to (Input) in firewall-options
 2013-08-09 14:11:54 +02:00
Alexander Marx
d47bb8a1ad Forward Firewall: Added Firewall-Options for INPUT Policy (DROP/REJECT) and built a new INPUT-POLICY in firewall-policy. 2013-08-09 14:11:09 +02:00
Alexander Marx
223d3b1dca Forward Firewall: chnaged "Internet" to "INTERNET" in dropdown (Target) 2013-08-09 14:09:17 +02:00
Alexander Marx
a615cab30e Forward Firewall: reordered Firewall Menu and changed header.pl to reflect the new menuposition for Blue Access 2013-08-09 14:09:17 +02:00
Alexander Marx
88f18201c7 Forward Firewall: changed menu to show access to blue correctly 2013-08-09 14:09:16 +02:00
Alexander Marx
3f8d9da300 Forward Firewall: reordered 50-firewall.menu 2013-08-09 14:09:16 +02:00
Alexander Marx
3f6bba6dbb Forward Firewall: Forgot to delete a dev-comment 2013-08-09 14:09:15 +02:00
Alexander Marx
31fef6cc2d Forward Firewall: rules.pl supports now DMZ rules. These rules are applied first 2013-08-09 14:09:15 +02:00
Alexander Marx
5aa8edf6f7 Forward Firewall: some changes for ISO 2013-08-09 14:09:12 +02:00
Alexander Marx
30d80ed42a Forward Firewall: added p2p-block.cgi to apache2 2013-08-09 14:08:25 +02:00
Alexander Marx
12a43202a6 Forward Firewall: bugfix converter->default forward mode is now set correctly 
some layout changes
 2013-08-09 14:08:23 +02:00
Alexander Marx
7bf83f9d39 Forward Firewall: moved p2p-block to a seperate cgi and deleted it from forwardfw.cgi 2013-08-09 14:08:22 +02:00
Alexander Marx
6128ded855 Forward Firewall: convert-outgoingfw now supports outgoing rules 2013-08-09 14:08:22 +02:00
Alexander Marx
046d88c2d0 Forward Firewall: outgoing converter is now ble to set default policy correctly 2013-08-09 14:08:22 +02:00
Alexander Marx
c178bf21c1 Forward Firewall: added Policymode for OUTGOING to converterscript 2013-08-09 14:08:21 +02:00
Alexander Marx
aa8647835d Forward Firewall: Finalize integration of OUTGOING into firewall 2013-08-09 14:08:21 +02:00
Alexander Marx
5d7faa4518 Forward Firewall: First part of adding OUTGOING to th efirewall 2013-08-09 14:08:20 +02:00