webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-10 19:15:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
6,316 Commits 2 Branches 1 Tag
fd4d137dbe29bab16761f5fa90ee200a6725fe19
Commit Graph

551 Commits

Author SHA1 Message Date
Alexander Marx
fd4d137dbe Forward Firewall: deleted outgoingfwmac, is now useless 2013-08-09 14:10:16 +02:00
Alexander Marx
b324de14db Forward Firewall: fix wlan clients now working with forwardfw 2013-08-09 14:08:23 +02:00
Alexander Marx
5d7faa4518 Forward Firewall: First part of adding OUTGOING to th efirewall 2013-08-09 14:08:20 +02:00
Alexander Marx
12dcfbbdbe Forward Firewall: Portfw now working and firewall closed correctly 2013-08-09 14:08:19 +02:00
Alexander Marx
d6bdebd47d Forward Firewall: fixed icmp-types and deleted dmzholes chain 2013-08-09 14:08:17 +02:00
Alexander Marx
0b14d3d9b1 Forward Firewall: fixed portforward rules. Now possible even if firewall in mode1 2013-08-09 14:08:16 +02:00
Alexander Marx
6adcf1569c Forward Firewall: set standard rules for blue in mode 2 2013-08-09 14:08:16 +02:00
Alexander Marx
210ee67b53 Forward Firewall: deleted mode0, added default Mode2 and fixed /etc/init.d/firewall to reload the rules correctly on reload. Also made it possible to create broadcastrules (To drop broadcastpackets) 2013-08-09 14:08:15 +02:00
Alexander Marx
e44fa0792b Forward Firewall: BUGFIX: When editing a rule and changing position, no other changes where saved. 
added the DMZHOLES Rule to init.d/firewall (but chnaged DMZHOLES to FORWARDFW
 2013-08-09 14:08:10 +02:00
Alexander Marx
8dc23ff4fc Forward Firewall: adapted initscripts/firewall and wirelessctrl.c 
Now the Wirelesschains should work with new firewall.
 2013-08-09 14:08:09 +02:00
Alexander Marx
8139398721 Forward Firewall: edited /src/initscripts/init.d/firewall and misc-progs/wirelessctrl.c 
added WIRELESSFORWARD to FORWARDFW (instead of FORWARD) so that rules work
commented out DMZHOLES lines in wirelessctrl.c to get rid of booterrormessages (There's no DMZHOLES anymore)
 2013-08-09 14:08:09 +02:00
Alexander Marx
62fc851166 Forward Firewall: fixed 12 Bugs from forum. 
1) Added more possible chars in remark: : / .
2) Added "Internet" to std networks to be able to define internetaccess
3) When renaming a custom address, the firewallrules get updated
4) Ports are now ignored when using GRE as Protocol
5) When saving a customservice, the cursor is now in first textfield
6) Added a customservices file to installation with predefined services
7) Added ESP as protocol
8) Fixed counterproblem
9) Dropdownboxes for customservices and groups now sorted
10) Firewallrules now sorted in right order
11) fixed a Bug when defining manual address in source and target, the hint message is no longer displayed
12) When defining an external access rule, the last forwardrule was deleted
 2013-08-09 14:08:04 +02:00
Alexander Marx
fd10a52ca2 Forward firewall: commented out line in init.d/firewall that all Forward traffic from green is allowed and put it in rules.pl. Now rules.pl allows this traffic when firewall is set to Mode0 or Mode2 2013-08-09 14:07:15 +02:00
Alexander Marx
6be0579b18 Forward Firewall: replaced Outgoing-Logging with ForwardFW Logging. And changed Options in optionsfw.cgi from outgoing to forward 2013-08-09 14:05:22 +02:00
Alexander Marx
231499fcc8 Forward Firewall: build iso with new firewall 2013-08-09 14:04:38 +02:00
Michael Tremer
111c99ddfa Forward Firewall: applied all changes as diff and added new files. Also deleted c files from xtaccess and setdmzholes. 
Signed-off-by: Alexander Marx <amarx@ipfire.org>

Conflicts:
	config/backup/include
	lfs/configroot
	lfs/usb-stick
 2013-08-09 14:02:02 +02:00
Michael Tremer
9e4cb00b42 tor: Fix path to readhash in initscript. 2013-08-02 10:42:08 +02:00
Michael Tremer
c60301c06a tor: Add necessary firewall rules. 2013-07-31 12:52:40 +02:00
Michael Tremer
27cb780589 tor: Add torctrl binary. 2013-07-31 12:52:26 +02:00
Michael Tremer
b312967ce3 tor: New package. 2013-07-29 21:29:34 +02:00
Michael Tremer
463f9edeb2 network: red: Remove duplicate MRU option. 2013-07-21 20:33:36 +02:00
Stefan Schantl
e4ba53ed59 dnsmasq: Add feature to forward domains to certain DNS servers. 
Fixes #10369.
 2013-07-14 13:43:34 +02:00
Arne Fitzenreiter
65b1608fd2 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2013-07-09 20:08:40 +02:00
Arne Fitzenreiter
02d67e7545 functions.network: change "Not running" message. 
Now it looks like other initskripts.
 2013-07-09 19:09:39 +02:00
Michael Tremer
89baf6d537 ppp: Don't require setting the MTU configuration. 2013-07-09 12:15:07 +02:00
Arne Fitzenreiter
d43bb759b1 functions.network: cleanup dhcp stop script. 2013-07-08 22:32:42 +02:00
Arne Fitzenreiter
29fa14154f functions.network: fix cursor position at status write. 2013-07-08 19:58:11 +02:00
Arne Fitzenreiter
fcfd54ba9b dnsmasq: kill already old instances before start. 2013-07-07 00:10:59 +02:00
Arne Fitzenreiter
57097305a6 Merge remote-tracking branch 'stevee/wlan-client' into next 
Conflicts:
	config/cfgroot/general-functions.pl
 2013-07-06 13:43:51 +02:00
Michael Tremer
3142f133bb New package: keepalived 2013-06-14 13:37:59 +02:00
Michael Tremer
3de19c87ca vlans: Allow RED to be a virtual network device. 2013-06-14 13:10:46 +02:00
Michael Tremer
523b5d1afa Merge remote-tracking branch 'stevee/squid-fast-shutdown' into next 2013-06-11 19:04:12 +02:00
Stefan Schantl
517d02ab1e squid: Speed up the stop process. 
The squid proxy server has been blocked by unresponsive redirectors and it took ages to kill it in the past.

To speed up the shutdown process, we will stop all redirector services at the same time. If the squid service
is still running we will wait up to 30 seconds before a TERM and finaly a KILL signal will be sent.

Fixes #10368.
 2013-06-11 17:53:20 +02:00
Alexander Marx
fcbf5eef0b pre-firewall: added ovpnnat to firewallscript 2013-06-05 22:16:19 +02:00
Stefan Schantl
71ea0d688d Add wireless client for RED to startup process. 
http://wishlist.ipfire.org/wish/wireless-client-on-red
 2013-06-05 19:33:29 +02:00
Alexander Marx
b2e333d4cf Pre-Firewall: added OVPNNAT to POSTROUTING Chain 2013-06-05 18:56:37 +02:00
Michael Tremer
61027579bb Implement wireless client on RED. 
http://wishlist.ipfire.org/wish/wireless-client-on-red

Conflicts:
	doc/language_issues.de
	doc/language_issues.en
	doc/language_issues.es
	doc/language_issues.fr
	doc/language_issues.pl
	doc/language_issues.ru
	src/misc-progs/Makefile
 2013-05-29 18:32:51 +02:00
Michael Tremer
8e133f653c pound: Update initscript. 2013-05-27 21:36:07 +02:00
Michael Tremer
4ae88fc971 lcdproc: Add initscript. 2013-05-27 19:57:26 +02:00
Michael Tremer
4987c2b7fe console: Load right console font for Turkish language. 2013-05-21 21:24:17 +02:00
Michael Tremer
60a4bfc125 vdr: Update initscript. 2013-04-12 13:53:33 +02:00
Arne Fitzenreiter
42cb38607f firewall: fix UPNPFW chain/rules creation order. 2013-03-08 17:31:38 +01:00
Stefan Schantl
31901da1ed Merge branch 'iptables-upnpfw' into core67-merge 2013-03-03 13:57:39 +01:00
Arne Fitzenreiter
8435c437d3 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2013-02-08 15:49:38 +01:00
Arne Fitzenreiter
670d514485 leds: setup alix:1 as heartbeat. 2013-02-07 20:28:11 +01:00
Arne Fitzenreiter
3d9d588481 network-skripts: fix gateway replace in /etc/hosts. 2013-02-07 20:23:01 +01:00
Daniel Weismüller
0aa93f5b11 Delete checkdeaddl.lck file on boot. 
This lock file does only exist, when the system has suddenly
been shut down while update accelerator is optimizing its cache.
 2013-02-07 12:01:53 +01:00
Arne Fitzenreiter
a747603dc5 setclock: fix empty logfile check. 2013-02-02 09:42:05 +01:00
Arne Fitzenreiter
92d75b2ed5 Merge remote-tracking branch 'ummeegge/ovpn-firewall-fixes' into next 2013-01-26 20:14:27 +01:00
Erik Kapfer
c25b6ae66a firewall: Recreate openvpn chains after firewall restart. 
Fixes #10216.
 2013-01-22 20:43:15 +01:00