webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-18 23:12:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
7,561 Commits 2 Branches 1 Tag
fee04791f40ce7e4d7396fff53e5f2ed4fc5e99d
Commit Graph

3867 Commits

Author SHA1 Message Date
Arne Fitzenreiter
fee04791f4 apache2: update to 2.2.27. 2014-04-04 21:17:08 +02:00
Michael Tremer
025741919a firewall: Fix perl coding error. 
Example:
	my @as = (1, 2, 3);
	foreach my $a (@as) {
		$a += 1;
		print "$a\n";
	}

$a will be a reference to the number in the array and not
copied. Therefore $a += 1 will change the numbers in the
array as well, so that after the loop the content of @as
would be (2, 3, 4).
To avoid that, the number needs to be copied into a new
variable like: my $b = $a; and we are fine.

This caused that the content of the @sources and @destinations
array has been altered for the second run of the loop and
incorrect (i.e. no) rules were created.
 2014-03-31 13:16:26 +02:00
Michael Tremer
c26a9ed25c firewall-policy: Clarify policy rules. 
There are no functional changes here. Everything that
is not explicitely allowed is now forbidden when the
forward policy is "ALLOWED".
 2014-03-30 22:33:58 +02:00
Arne Fitzenreiter
8089b78d9d firewall-policy: fix drop and logging on red0; 2014-03-29 15:06:35 +01:00
Michael Tremer
70c926e75b firewall: Create mangle chain NAT_DESTINATION to silence error messages when updating. 2014-03-27 15:08:17 +01:00
Alexander Marx
a3f2459f8f Firewall: fix Update from core 75 to 76 2014-03-27 15:07:41 +01:00
Michael Tremer
38ca33d110 cups: Fix rootfile. 
Basically, include just everything.
 2014-03-27 11:36:12 +01:00
Arne Fitzenreiter
af433268e0 graphs.pl: fix links position in chrome for android. 2014-03-23 17:39:47 +01:00
Michael Tremer
51cf3f8be5 firewall: rules.pl: Honour time constraints for NAT rules as well. 2014-03-21 13:39:03 +01:00
Michael Tremer
f98bb538e5 firewall: rules.pl: Catch invalid configurations. 2014-03-21 13:33:08 +01:00
Michael Tremer
c0ce920610 firewall: rules.pl: Allow REDIRECT rules. 2014-03-21 13:28:00 +01:00
Alexander Marx
c71499d8d9 Firewall: Rename defaultNetworks to netsettings 2014-03-21 12:51:18 +01:00
Alexander Marx
fd169d0adc Firewall: DNAT - Show right DNAT interface in ruletable 
Now:
When using a hostgroup as source there are all corresponding DNAT
interfaces shown in ruletable depending on the entries in the group.

When in DNAT area "-automatic" is selected, the DNAT interfaces are
shown as IP-Addresses, else they are shown as "ORANGE","GREEN","BLUE"...

BUGFIX: When there is a MAC address used in a sourcegroup, the rules could not be set. Now MAC addresses get allways the public interface as DNAT
 2014-03-21 12:51:09 +01:00
Alexander Marx
4e54e3c6f5 Firewall: Move some functions from rules.pl to firewall-lib.pl 2014-03-21 12:51:04 +01:00
Michael Tremer
d7a14d01e1 firewall: rules.pl: Fix rules with other NAT port. 2014-03-21 12:40:55 +01:00
Arne Fitzenreiter
cec275c9df Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next 2014-03-19 19:07:27 +01:00
Arne Fitzenreiter
b3c0c61132 hostapd: enable CONFIG_ACS for dfs channels. 2014-03-19 19:03:22 +01:00
Arne Fitzenreiter
dea9e7193c core76: add wpa_supplicant to update. 2014-03-19 09:05:37 +01:00
Arne Fitzenreiter
ece72ab98f Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next 2014-03-19 07:23:40 +01:00
Arne Fitzenreiter
f89678de2f hostapd: update to 2.1. 2014-03-19 07:22:49 +01:00
Michael Tremer
b0d9fad3f9 firewall: rules.pl: Add support for auto selection of NAT addresses. 2014-03-18 23:49:23 +01:00
Arne Fitzenreiter
be0d1005fd core76: add tzdata to update. 2014-03-18 07:28:13 +01:00
Arne Fitzenreiter
4f92fd2aeb tzdata: fix rootfile. 2014-03-18 07:20:41 +01:00
Arne Fitzenreiter
607c9d3ae0 Merge branch 'next' of git.ipfire.org:/pub/git/ipfire-2.x into next 2014-03-18 00:22:24 +01:00
Arne Fitzenreiter
e583643a25 kernel: add pcengines apu led support. 2014-03-18 00:21:38 +01:00
Michael Tremer
da7a2208d3 firewall: rules.pl: Code cleanup. 2014-03-17 18:03:00 +01:00
Michael Tremer
5cf8c8c123 firewall: Fix DNAT rules between internal zones. 2014-03-17 17:39:47 +01:00
Michael Tremer
c2a1af7545 firewall: rules.pl: Sanitise source and destination IP addresses. 
Those variables are now empty if source or destination are
unspecified.
 2014-03-17 16:24:23 +01:00
Michael Tremer
2a07aa9d9c dialctrl: Remove defunct script. 2014-03-17 14:17:44 +01:00
Michael Tremer
835a1e2863 tzdata: Update to 2014a. 2014-03-16 16:02:18 +01:00
Michael Tremer
d5e94f72f6 sudo: Update to 1.8.10p1. 2014-03-15 15:08:37 +01:00
Michael Tremer
7e7788ea0b Merge remote-tracking branch 'amarx/BETA3' into next 2014-03-13 15:32:00 +01:00
Michael Tremer
9d870c49eb entropy graph: Remove trend line. 2014-03-13 15:29:53 +01:00
Michael Tremer
84004f0538 Add link to entropy page and show if there is hardware support available. 2014-03-13 15:27:14 +01:00
Alexander Marx
4d81e0f381 VPN Checksubnets: Now the remote subnets (OpenVPN/IPSec) are checked. If they are defined elsewhere, there's a warningmessage displayed 2014-03-13 15:09:01 +01:00
Michael Tremer
014b284e5f beep: Update to 1.3. 2014-03-11 18:03:59 +01:00
Michael Tremer
826c22d66c Merge remote-tracking branch 'amarx/INDEX' into next 2014-03-10 21:35:15 +01:00
Michael Tremer
e9b5ba4179 firewall: Add auxiliary rules for firewall access. 
Rules for accessing the firewall are added when access
to networks (GREEN, BLUE, ...) the firewall resides in is allowed.
 2014-03-10 21:31:20 +01:00
Alexander Marx
e55334753d graphs.pl : fixed layout on Nexus 7 devices "hour-Day-week-month-year" now on top of graph 2014-03-10 12:54:06 +01:00
Michael Tremer
d7050fc04a ipsec: Allow to create firewall rules for IPsec input as well. 2014-03-08 20:55:32 +01:00
Michael Tremer
32c6ebdced firewall: Make ICMP ratelimiting a bit saner again. 2014-03-05 12:31:36 +01:00
Michael Tremer
fa8229546b firewall: Extend rate limiting for ICMP error messages. 
Fixes #10489.
 2014-03-04 14:14:54 +01:00
Michael Tremer
8225c4fc98 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next 2014-03-04 14:14:36 +01:00
Michael Tremer
0bda23f5a1 firewall: Add chain name to logged rules. 
This helps us to debug faster where a packet has been dropped.
 2014-03-04 12:38:13 +01:00
Michael Tremer
3bb4bb3fa1 firewall: Add rate limiting for LOG messages. 
Fixes #10488.
 2014-03-04 12:36:52 +01:00
Arne Fitzenreiter
36c92ab00d kernel: arm-multi: add marvel and allwinner support. 2014-03-04 07:07:31 +01:00
Michael Tremer
c39413f2d5 vdr: Add eepg plugin. 2014-03-03 16:41:13 +01:00
Michael Tremer
d1dee6c1a1 vdr: Add DVBAPI plugin. 2014-03-03 16:31:59 +01:00
Michael Tremer
824dc93601 firewall: Add a trailing space to all log prefixes for better readability. 2014-03-02 22:50:29 +01:00
Michael Tremer
9f80e81072 firewall: rules.pl: Remove unused variable $time_constraints. 2014-03-02 22:46:17 +01:00