webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-15 05:22:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
7,443 Commits 2 Branches 1 Tag
fb5132aa57e40e52aa0571020d26c12236f48310
Commit Graph

3819 Commits

Author SHA1 Message Date
Michael Tremer
824dc93601 firewall: Add a trailing space to all log prefixes for better readability. 2014-03-02 22:50:29 +01:00
Michael Tremer
9f80e81072 firewall: rules.pl: Remove unused variable $time_constraints. 2014-03-02 22:46:17 +01:00
Michael Tremer
d98aa95a55 firewall: rules.pl: Replace some hardcoded chain names. 2014-03-02 22:44:26 +01:00
Michael Tremer
7bb66417fa Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2014-03-02 22:38:09 +01:00
Michael Tremer
1c3044d72c firewall: Resurrect port forwardings with different external ports. 2014-03-02 22:35:27 +01:00
Michael Tremer
292cad90f7 firewall: Telnet uses TCP 2014-03-02 20:48:58 +01:00
Michael Tremer
0e53d8a991 firewall: Make OpenVPN access also possible when INPUT policy is REJECT. 2014-03-02 20:40:00 +01:00
Michael Tremer
6e87f0aa53 firewall: Allow accessing port forwardings from internal networks. 2014-03-02 20:37:44 +01:00
Arne Fitzenreiter
cbc492f516 apache2: update to 2.2.26. 2014-03-02 19:44:26 +01:00
Arne Fitzenreiter
239f8188e2 rootfile updates. 2014-03-02 19:39:42 +01:00
Michael Tremer
8f4f4634df firewall: rules.pl: Refactored entire script. 2014-03-02 18:23:28 +01:00
Michael Tremer
b05ec50ac9 firewall: rules.pl: Cleanup time constraints generation. 2014-03-01 20:20:56 +01:00
Michael Tremer
6178953be5 firewall: rules.pl: Cleanup rule generation. 
Various perl coding errors that have been suppressed by "no warnings uninitialized"
have been fixed and lots of helper variables have been introduced to make
it much more clearer what the code is actually doing.
 2014-03-01 19:54:14 +01:00
Michael Tremer
a2b3eba9f5 general-functions.pl: Fix wrong perl syntax. 2014-03-01 18:23:52 +01:00
Michael Tremer
1f9e7b53b7 firewall: rules.pl: Remove $command and introduce $IPTABLES. 2014-03-01 18:19:09 +01:00
Michael Tremer
8531b94ae0 firewall: rules.pl: Remove command line args parsing and rest from old debugging mode. 2014-03-01 18:07:39 +01:00
Michael Tremer
68d1eb1017 firewall: rules.pl: Introduce a more slink debugging mode. 2014-03-01 18:04:40 +01:00
Michael Tremer
97ab0569bd firewall: rules.pl: Fix some coding style. 2014-03-01 17:54:22 +01:00
Michael Tremer
b57edbd8ec firewall: rules.pl: Remove totally bloated debug mode. 2014-03-01 17:49:22 +01:00
Michael Tremer
2513ae737d firewall: Allow access to the entire GREEN/BLUE/ORANGE subnets. 
This includes the firewall itself as well.
 2014-03-01 16:04:01 +01:00
Michael Tremer
60fb533157 firewall: rules.pl: Don't reload custom firewall rules here. 2014-03-01 15:01:58 +01:00
Arne Fitzenreiter
82a4a102f3 Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next 2014-02-28 07:04:45 +01:00
Arne Fitzenreiter
6887597c04 kernel: enable rts5139 driver. 2014-02-28 07:02:14 +01:00
Alexander Marx
800077a689 Firewall: Skip rules on boot when red has no ip 2014-02-27 19:42:47 +01:00
Michael Tremer
b18dba57de Merge remote-tracking branch 'alfh/feature_graph_constant_color' into next 2014-02-27 13:37:53 +01:00
Michael Tremer
df6b9ebfbc openvpn: Provide a basic set of configuration settings. 
These are the defaults as in the CGI script, but when you don't
set up the roadwarrior server, the configuration file remains
empty and the openvpnctrl binary will end itself because it cannot
read a proper configuration.
 2014-02-27 13:32:13 +01:00
Michael Tremer
c9cd26f200 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2014-02-27 13:14:02 +01:00
Michael Tremer
a8d1d049c6 Revert "Firewall: Fix errormessages on rulecreation when red has no IP" 
This reverts commit f942937c29.

This completely destroys external access rules and is therefore
reverted.
 2014-02-26 20:02:24 +01:00
Alf Høgemark
e06986e853 qos and process graphs: avoid random colors 
For the graphs for qos classes, and for process
count and memory usage, the colors change on
each page reload, since the colors are currently
totally random.

This change uses defined color indexes, 15 different
ones, that should be enough for qos at least, and is
enough for processes on my setup. This makes
the colors consistent between page loads, so it makes
it easier to monitor changes.

Perhaps one should define 30 different colors meant
to be used for graphing, then one could avoid random
colors also for the sensor graphs, and make it less
likely to get color collision for the process graphs
as well. Defining 30 such colors is not part of this
change.
 2014-02-26 18:48:05 +01:00
Arne Fitzenreiter
329e9c465a kernel: enable cgroups and fix some accounting settings. 2014-02-26 18:06:49 +01:00
Arne Fitzenreiter
ce81f1eb3e kernel: enable pci modules in arm multiarch kernel. 2014-02-26 18:00:44 +01:00
Arne Fitzenreiter
adce3f96fc Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2014-02-26 17:59:53 +01:00
Michael Tremer
69776cc42f apache: Update cipher suite that is used for the web user interface. 
Taken from here with exception of RC4.
  https://wiki.mozilla.org/Security/Server_Side_TLS#Apache
 2014-02-26 15:01:29 +01:00
Arne Fitzenreiter
78f10eafe0 strongswan: no padlock on arm. 2014-02-26 09:37:12 +01:00
Michael Tremer
66f6b279b0 Reload all firewall rules when /etc/init.d/firewall reload is executed. 2014-02-25 12:23:09 +01:00
Alexander Marx
f942937c29 Firewall: Fix errormessages on rulecreation when red has no IP 2014-02-24 19:39:39 +01:00
Alexander Marx
97bf45e516 Firewall: delete -i red0 from DNAT rules 2014-02-24 19:38:57 +01:00
Michael Tremer
585df65af1 Fix relocating NTP binaries. 2014-02-24 19:37:20 +01:00
Alexander Marx
525204e00f Firewall: modified DNAT and SNAT rulecreation 2014-02-24 11:54:27 +01:00
Stefan Schantl
37013b3a47 Add missing default values for firewall options of the new firewall. 
The new firewall uses some new options which can be configured on the optionsfw page in the WUI.
In the past these settings where missing on updated systems.
 2014-02-23 22:30:56 +01:00
Michael Tremer
582fa15555 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2014-02-21 11:56:52 +01:00
Michael Tremer
27b2adbf4f ntp: Update to 4.2.6p5. 2014-02-21 11:54:14 +01:00
Arne Fitzenreiter
1b8327f50e kernel: update to 3.10.31. 2014-02-20 23:37:22 +01:00
Michael Tremer
cc21b588df firewall: Remove rule that allows access to everything. 2014-02-20 13:03:28 +01:00
Michael Tremer
bcf1a62476 firewall: Fix proper check for BLUE and ORANGE devices. 2014-02-20 13:01:48 +01:00
Michael Tremer
1271a8b45e core76: Add update accelerator script to updater. 2014-02-19 20:47:12 +01:00
Michael Tremer
bbb3a931fa Merge remote-tracking branch 'alfh/feature_updxlrator' into next 2014-02-19 20:46:21 +01:00
Michael Tremer
bc05155ac0 strongswan: Update to 5.1.2rc1. 2014-02-18 15:16:08 +01:00
Michael Tremer
6d3c8250fe Merge remote-tracking branch 'alfh/feature_langfixes' into next 2014-02-17 16:28:23 +01:00
Michael Tremer
b631481bc5 Revert "perl-PDF-Create: New package" 
This reverts commit e7f5c0465b.
 2014-02-17 16:17:45 +01:00