webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 19:15:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
6,327 Commits 2 Branches 1 Tag
f69ea1c7c59cdeb664cbc93eae60a538191ed44b
Commit Graph

2918 Commits

Author SHA1 Message Date
Alexander Marx
dc33c23b1f Forward Firewall: Updated strongswan patch provided my Michael. (Changes _updown script from FORWARD ACCEPT to RETURN) 2013-08-09 14:11:52 +02:00
Alexander Marx
36e9534f24 Forward Firewall: Added configoption in Buildsystem -< POLICY2='DROP' (for POLICYIN) 2013-08-09 14:11:09 +02:00
Alexander Marx
dafaa41427 Forward Firewall: update _updown on build 2013-08-09 14:11:07 +02:00
Alexander Marx
ec329c0699 Forward FIrewall: fixed typo 2013-08-09 14:09:17 +02:00
Alexander Marx
d998784149 Forward Firewall: added an option to firewall-options to show all dropdowns on rulecreation site. 2013-08-09 14:09:17 +02:00
Alexander Marx
5aa8edf6f7 Forward Firewall: some changes for ISO 2013-08-09 14:09:12 +02:00
Alexander Marx
4e62b47f33 FORWARD Firewall: integrating OUTGOING Firewall Part 2 2013-08-09 14:08:20 +02:00
Alexander Marx
5d7faa4518 Forward Firewall: First part of adding OUTGOING to th efirewall 2013-08-09 14:08:20 +02:00
Alexander Marx
7bd9d462de Forward Firewall: Deleted MODE0 from WEB Interface and added a table for DMZ-Rules. 2013-08-09 14:08:15 +02:00
Alexander Marx
4b147d950b Forward Firewall: deleted symlink to outgoingfwctrl from lfs/initscripts 2013-08-09 14:08:14 +02:00
Alexander Marx
99e698d033 Forward Firewall: Minor changes... 
1) improved convert-outgoingfw. source was wrong when tun+ interface
2) target had always a ":" in ruletable
3) convert-outgoingfw bugfix: ports where not cleared for next rule
 2013-08-09 14:08:12 +02:00
Alexander Marx
27f4a6b159 Forward Firewall: added converters for old exaccess rules and old rules from outgoingfw and old firewallgroups. 
Also fixed a Bug: Day SUN was not checked when in rule-edit mode
 2013-08-09 14:08:11 +02:00
Alexander Marx
7f9d1c3969 Forward Firewall: added p2protocols to /var/ipfire/forward/ for p2pblocking options 2013-08-09 14:08:10 +02:00
Alexander Marx
bc32972572 Forward Firewall: set standard config for Firewall 2013-08-09 14:08:10 +02:00
Alexander Marx
9dafa928db Forward Firewall: Deleted /var/ipfire/outgoing from configroot and aaded default values to /var/ipfire/optionsfw/settings 2013-08-09 14:08:08 +02:00
Alexander Marx
62fc851166 Forward Firewall: fixed 12 Bugs from forum. 
1) Added more possible chars in remark: : / .
2) Added "Internet" to std networks to be able to define internetaccess
3) When renaming a custom address, the firewallrules get updated
4) Ports are now ignored when using GRE as Protocol
5) When saving a customservice, the cursor is now in first textfield
6) Added a customservices file to installation with predefined services
7) Added ESP as protocol
8) Fixed counterproblem
9) Dropdownboxes for customservices and groups now sorted
10) Firewallrules now sorted in right order
11) fixed a Bug when defining manual address in source and target, the hint message is no longer displayed
12) When defining an external access rule, the last forwardrule was deleted
 2013-08-09 14:08:04 +02:00
Alexander Marx
af8bc0d0a8 Forward Firewall: added a customservices file with default values 2013-08-09 14:07:15 +02:00
Alexander Marx
c0ec19967e Forward Firewall: fixed default entries in /var/ipfire/optionsfw/settings. 2013-08-09 14:07:15 +02:00
Alexander Marx
231499fcc8 Forward Firewall: build iso with new firewall 2013-08-09 14:04:38 +02:00
Michael Tremer
111c99ddfa Forward Firewall: applied all changes as diff and added new files. Also deleted c files from xtaccess and setdmzholes. 
Signed-off-by: Alexander Marx <amarx@ipfire.org>

Conflicts:
	config/backup/include
	lfs/configroot
	lfs/usb-stick
 2013-08-09 14:02:02 +02:00
Michael Tremer
7323724196 squid: Fix two security issues. 
* CVE-2013-4115
* CVE-2013-4123

http://www.squid-cache.org/Versions/v3/3.1/changesets/
 2013-08-07 22:15:31 +02:00
Arne Fitzenreiter
726a85b8c1 samba: update to 3.6.17. 2013-08-06 15:01:26 +02:00
Arne Fitzenreiter
45aef0dd28 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2013-08-01 22:28:32 +02:00
Arne Fitzenreiter
426270e730 tor: fix permissions. 2013-08-01 22:27:37 +02:00
Michael Tremer
7f532e3725 strongswan: Update to 5.1.0. 2013-08-01 19:38:50 +02:00
Michael Tremer
ae99d423b9 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into strongswan-next 2013-08-01 18:24:03 +02:00
Michael Tremer
6869929e9a arm: Don't require distutils. 
We don't have that module shipped and we don't really
need it for arm either.
 2013-07-31 18:06:05 +02:00
Michael Tremer
295649ff27 tor: Configuration file updates. 2013-07-30 21:39:50 +02:00
Michael Tremer
ce33eb3e3b arm: New package. 
Resource monitor for tor.
 2013-07-29 21:29:34 +02:00
Michael Tremer
b312967ce3 tor: New package. 2013-07-29 21:29:34 +02:00
Michael Tremer
6b0a04c0f8 strongswan: Update to 5.1.0rc1. 2013-07-20 17:36:53 +02:00
Michael Tremer
4f64e2090f Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into strongswan-next 2013-07-20 12:51:26 +02:00
Arne Fitzenreiter
6666897c5c transmission: update to 2.81. 2013-07-19 18:19:40 +02:00
Michael Tremer
3d454690b7 vdr: Disable debugging logging. 
3 is default and includes a lot of debugging output which
leads to really heavy IO with installations with a lot of
channels (satellite mainly).

http://www.vdr-wiki.de/wiki/index.php/VDR_Optionen
 2013-07-18 13:06:42 +02:00
Michael Tremer
15fbfae627 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into strongswan-next 2013-07-17 17:45:40 +02:00
Arne Fitzenreiter
b5c00b8654 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2013-07-16 23:05:00 +02:00
Arne Fitzenreiter
9c55c65e05 dnsforward: add config to iso and updater. 2013-07-16 22:58:13 +02:00
Michael Tremer
5e9b7dd2c3 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into strongswan-next 2013-07-16 22:00:14 +02:00
Michael Tremer
15be554282 strongswan: Enable EAP authentication algorithms. 2013-07-16 20:54:28 +02:00
Michael Tremer
25848b36da squidclamav: Fix permissions of /etc/squidclamav.conf. 
The file must not be executable, but writeable by anybody
in the group nobody.
 2013-07-16 19:44:57 +02:00
Michael Tremer
f4dd02f2b6 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into strongswan-next 2013-07-16 12:04:00 +02:00
Arne Fitzenreiter
648e0d0368 usb-modeswitch-data: update to 20130610. 2013-07-16 00:57:33 +02:00
Arne Fitzenreiter
3770a2abd1 usb-modeswitch: update to 1.2.6. 2013-07-16 00:56:17 +02:00
Arne Fitzenreiter
3e862ce4f9 Merge remote-tracking branch 'stevee/proxy-squidclamav' into next 
Conflicts:
	config/cfgroot/general-functions.pl
 2013-07-15 20:49:23 +02:00
Arne Fitzenreiter
774df2479d Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2013-07-15 20:36:53 +02:00
Arne Fitzenreiter
a0fa489f2f snort: update to 2.9.5. 
add VRT/GPLv2 community rules.
fix wrong oinkcode warning if no oinkcode is needed.
 2013-07-15 17:05:44 +02:00
Arne Fitzenreiter
1043cb0ae9 oinkmaster: add vrt community-rules support. 2013-07-15 17:03:53 +02:00
Michael Tremer
8b9b6c0164 squid: Increase FDs to 65536 (#10387). 2013-07-15 14:35:07 +02:00
Michael Tremer
82efdd4f22 strongswan: Update to 5.1.0dr2. 2013-07-14 12:58:38 +02:00
Michael Tremer
bf9a484fb8 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into strongswan-next 2013-07-14 12:48:29 +02:00