webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-17 14:33:00 +02:00
Code Issues Packages Projects Releases Wiki Activity
8,452 Commits 2 Branches 1 Tag
e497310ee02c7b6f2071bf021f26bc254d97f439
Commit Graph

8452 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Stefan Schantl
e497310ee0 Add "GeoIP Block" to firewall menu. 2015-01-04 13:51:28 +01:00
Stefan Schantl
0909c0d150 Automatically download and update GeoIP Databases. 2015-01-04 13:40:34 +01:00
Stefan Schantl
58c74d0787 lfs/stage2: Add directory for geoip databases. 2015-01-04 13:36:06 +01:00
Stefan Schantl
f2d941436b Rootfile update. 2015-01-04 08:23:53 +01:00
Stefan Schantl
211694e588 firewall: Add support for geoipblock to rules.pl. 2015-01-04 01:05:45 +01:00
Stefan Schantl
593c32275a Move "sub get_geoip_locations" to firewall-lib. 2015-01-04 01:03:21 +01:00
Stefan Schantl
cab02e2a5f Add "GEOIPBLOCK" chains to firewall initscript. 2015-01-04 00:57:23 +01:00
Stefan Schantl
484e01fc37 Add default config file for geoipblock. 2015-01-04 00:56:00 +01:00
Stefan Schantl
2285f9da22 Add xt_geoip_update script. 
This script will download the latest available geoip database, convert
it into a compatible binary format and move it to the correct destination.
 2015-01-04 00:55:17 +01:00
Stefan Schantl
ca842e1822 xt_geoip_build: Script to convert GeoIP CSV into compatible binary databases. 
This is a cleaned up version of the original build script shipped by the
xtables-addons source code.

The following abilities have been removed:
* IPv6 support
* Big Endian
 2015-01-04 00:54:46 +01:00
Stefan Schantl
cc26ba71a1 header.pl: Increase maximum allowed size of hashes. 
The "getcgihash" function only allowed hashes with a maximum size of 512kb, which
was to small for the new geoip-block.cgi. As a result of this some form data
were cut-off and couldn't be processed correctly.
 2015-01-03 20:22:05 +01:00
Stefan Schantl
11ad82532e Language file update for geoip blocking. 2015-01-03 20:20:45 +01:00
Stefan Schantl
91634dbe88 geoip-block.cgi: New CGI for managing geoip blocking. 2015-01-03 20:20:10 +01:00
Stefan Schantl
cebb1b7cb1 general-functions.pl: Add function to get full country name. 
This function will return the full name a country specified by
it's country shortcut. It also will provide some additional names
which are not handled by the perl locale module but are parts of
ISO 3166.
 2015-01-03 20:15:28 +01:00
Stefan Schantl
b8e0573b5c xtables-addons: New package. 
The xtables-addons package provides many additional filter modules for iptables.
Currently we are only building the "geoip" module which can be used to create
firewall rules which will do actions based on the country membership of the senders/targets
address.

In order to build the required kernel modules I had to change build order for
several packages as well.
 2015-01-03 14:07:49 +01:00
Stefan Schantl
72074fcdd2 perl-Text-CSV_XS: New package. 
This perl module is required to convert the provided geoip databases in CSV format into
a useable binary format for the geoip module.
 2015-01-03 14:03:20 +01:00
Stefan Schantl
bf235e962c perl-Locale-Country: Update country codes to version 3.33. 2015-01-03 14:01:43 +01:00
Stefan Schantl
67716b19bb perl-Text-CSV_XS: New package. 
This is a dependency for the xtables-geoip module to convert the only in the cvs
provided geoip list into a compatible binary format.
 2014-12-20 16:02:29 +01:00
Arne Fitzenreiter
f0e77571c0 rootfile updates (kernel, glibc, newt on arm). 2014-11-30 18:43:34 +01:00
Arne Fitzenreiter
fc1e20890b kernel: rootfile updates. 2014-11-30 11:59:29 +01:00
Arne Fitzenreiter
c3efda65df linux-initrd: skip initrd build of pae and rpi kernel. 2014-11-30 09:30:58 +01:00
Arne Fitzenreiter
d70f58f60c samba: fix mode of winbindd_privileged folder. 2014-11-30 09:25:56 +01:00
Arne Fitzenreiter
b3f5e2b2a9 remove more enused patches. 2014-11-30 01:45:15 +01:00
Arne Fitzenreiter
a158cbbb1d kenrel: fix build 2nd try. 2014-11-28 07:27:45 +01:00
Arne Fitzenreiter
cee50e12f6 kernel: fix build. 2014-11-27 07:57:54 +01:00
Arne Fitzenreiter
e40740b2e2 kernel: headers still not build with grsec patch on i586. 2014-11-27 07:48:05 +01:00
Arne Fitzenreiter
9156480159 Merge branch 'seventeen' of git.ipfire.org:/pub/git/ipfire-2.x into seventeen 2014-11-27 07:34:41 +01:00
Arne Fitzenreiter
01e64ad131 kernel: remove obsolete modules and patches. 2014-11-27 07:33:50 +01:00
Michael Tremer
df24f329fd tzdata: Fix build to include leap seconds 2014-11-23 01:16:12 +01:00
Michael Tremer
8b48e20bb3 tzdata: Update to 2014j 2014-11-23 01:01:58 +01:00
Arne Fitzenreiter
302fbdccc2 kernel: update to 3.14.25. 2014-11-22 23:13:49 +01:00
Arne Fitzenreiter
071bb64388 u-boot: update pandaboard config. 2014-11-22 23:13:18 +01:00
Arne Fitzenreiter
be51cfd976 kernel: update multiarm config for pandaboard. 2014-11-22 23:12:28 +01:00
Arne Fitzenreiter
69640b0fcd kernel: fix rpi patches. 2014-11-17 06:31:29 +01:00
Arne Fitzenreiter
557d7459f5 kernel: update to 3.14.24. 2014-11-16 15:49:51 +01:00
Michael Tremer
7764239659 core86: Do all other fancy kernel updating stuff 2014-11-16 14:09:50 +01:00
Michael Tremer
f9921891f4 Merge remote-tracking branch 'origin/seventeen' into seventeen 2014-11-16 11:38:45 +01:00
Michael Tremer
c5a5b13e8e installer: Power off instead of reboot after unattended install 2014-11-16 11:37:47 +01:00
Arne Fitzenreiter
da4529ae51 kernel-pae: update un/install scripts for grub2. 2014-11-16 10:07:33 +01:00
Michael Tremer
a046e8a6ab installer: Only drop to a debug shell after a segmentation fault 2014-11-14 00:03:23 +01:00
Michael Tremer
ade96ba8a5 installer: Fix umounting destination 2014-11-13 23:58:05 +01:00
Michael Tremer
b1c1a58994 Merge remote-tracking branch 'origin/seventeen' into seventeen 2014-11-10 17:36:01 +01:00
Arne Fitzenreiter
817317ed9e kernel: update netdev ledtrigger patch. 2014-11-06 20:16:58 +01:00
Arne Fitzenreiter
f8793c24e6 kernel: disable crashing sensor drivers on arm. 2014-11-06 20:16:24 +01:00
Arne Fitzenreiter
9b7862db33 Merge branch 'seventeen' of git.ipfire.org:/pub/git/ipfire-2.x into seventeen 2014-11-06 00:08:55 +01:00
Arne Fitzenreiter
bcd7a75749 kernel: kirkwood: fix legacy boot patch for dreamplug. 2014-11-06 00:08:13 +01:00
Arne Fitzenreiter
0565657116 flash-images: use third partition again as root. 2014-11-06 00:06:43 +01:00
Michael Tremer
bb75bc3b14 installer: Improve check for serial console option 2014-11-05 23:43:01 +01:00
Timmothy Wilson
851fba0e8d httpscert: Create certificate with SHA256 hash 2014-11-05 22:08:02 +01:00
Arne Fitzenreiter
c0504c5cc5 part/fsresize: fix on systems without initrd. 
/proc/mounts has no correct entry for / on such systems.
Use mount instead.
 2014-11-05 19:08:30 +01:00