webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-11 19:55:52 +02:00
Code Issues Packages Projects Releases Wiki Activity
7,561 Commits 2 Branches 1 Tag
fee04791f40ce7e4d7396fff53e5f2ed4fc5e99d
Commit Graph

57 Commits

Author SHA1 Message Date
Alexander Marx
896eb2d693 Firewall: Allow DNAT with target firewall 2014-03-21 12:55:34 +01:00
Alexander Marx
fd169d0adc Firewall: DNAT - Show right DNAT interface in ruletable 
Now:
When using a hostgroup as source there are all corresponding DNAT
interfaces shown in ruletable depending on the entries in the group.

When in DNAT area "-automatic" is selected, the DNAT interfaces are
shown as IP-Addresses, else they are shown as "ORANGE","GREEN","BLUE"...

BUGFIX: When there is a MAC address used in a sourcegroup, the rules could not be set. Now MAC addresses get allways the public interface as DNAT
 2014-03-21 12:51:09 +01:00
Alexander Marx
95cda25924 Firewall: DNAT - always show right red address in dropdown. 
Edited language String in DNAT area: external ip address is now Firewall
Interface
 2014-03-20 23:06:50 +01:00
Alexander Marx
cc77ac2364 Firewall: select right value in DNAT Dropdown 2014-03-18 18:03:52 +01:00
Alexander Marx
1aa5439cf1 Firewall: extend DNAT dropdown with auto,BLUE,ORANGE,GREEN 2014-03-18 18:03:42 +01:00
Alexander Marx
c6df357fd4 Firewall: When delting an OpenVPN or IPSec connection, the rules are only colored yellow and the firewallrules are reloaded automatically 2014-03-13 14:51:28 +01:00
Michael Tremer
323923d912 firewall: Allow remarks in Unicode. 2014-03-05 13:59:28 +01:00
Alexander Marx
65c9b3a508 Firewall: Remarkcheck should now support old firewallrules from converter 2014-03-05 08:13:04 +01:00
Alexander Marx
2610f3930a Firewall: When no manual ip is given on rulecreation and rule is added, there's automatically std_networks "ALL" selected 2014-03-05 08:05:52 +01:00
Michael Tremer
b062a11bbe firewall: Don't colourise MAC addresses. 
Fixes #10491.
 2014-03-05 08:05:52 +01:00
Alexander Marx
9556a0fb95 Firewall: When no manual ip is given, standard networks "all" is selected 2014-03-04 16:11:35 +01:00
Alexander Marx
5a09c99a89 Firewall: Now it is possible to just change the remark in input and outgoing 2014-03-04 16:00:14 +01:00
Alexander Marx
abb3cfcc9e Firewall: FIX allowed chars in remark 2014-03-04 15:44:02 +01:00
Alexander Marx
90c2ce0c20 Firewall: get rid of /32 subnetz when using manual ip addresses 2014-03-04 14:51:20 +01:00
Michael Tremer
3e5e8a4a88 firewall: Fix firewall policy table if only RED, GREEN + BLUE are present. 2014-02-27 20:53:25 +01:00
Alexander Marx
46a6d6c7fc Firewall: fix error when editing a rule and changing remark with invalid chars the rule was destroyed 2014-02-24 19:39:26 +01:00
Alexander Marx
ec56a5393f Firewall: fixed padding-right of lastrule table in ruleoverview 2014-02-24 19:38:43 +01:00
Michael Tremer
fe30713604 firewall.cgi: Fix path to firewall-lib.pl. 2014-02-04 12:48:01 +01:00
Alexander Marx
11e012ef66 NEW THEME: added padding-left to all tables <td> because it looks much better 2014-01-29 14:32:50 +01:00
Alexander Marx
d334d7cb47 Firewall: Bugfix - when using addressgroups with mac addresses in source, the mac rule was not correctly created. 
Further MAC issues: in target area, the manual ip field was target
ip/mac address - changed to IP-Address
Also implemented a plausicheck, if an addressgroup with mac addresses is
used in target area, theres a hint saying that the rule will not be
applied for mac hosts
 2014-01-21 11:55:56 +01:00
Alexander Marx
f5f71c79b7 firewall: some layout changes and new plausi checks for dnat 2014-01-15 16:43:42 +01:00
Stefan Schantl
bfaa69562a Firewall: Hide rule actions when using NAT. 
There is no need to choose a rule action when creating a NAT rule, so this
section can be hidden when "Use NAT" has been checked.
 2014-01-14 22:09:13 +01:00
Alexander Marx
8e7137264b firewall: perl modifications for hiding rule action when nat is used 2014-01-14 21:48:20 +01:00
Alexander Marx
aeefcc9caa Firewall: modified firewall-groups so that they can be empty even if used in rules 
Now one can create a group, use it in a rule and then delete every entry
from the group. (The firewallrule then will be displayed yellow and
disabled).
 2014-01-11 12:13:45 +01:00
Alexander Marx
62f34bba1e Layout changes firewall.cgi 2014-01-09 15:03:27 +01:00
Alexander Marx
8d28e3d092 fifteen-theme: made firewall-tables themeable 2014-01-07 09:27:24 +01:00
Alexander Marx
95e9415ada firewall: Fix colouring when IPsec VPN subnets are denoted in CIDR. 2014-01-06 14:16:53 +01:00
Alexander Marx
d0f8bbc13e Firewall: reaktivated targetport-check. now there's an errromessage in case of wrong portnumber 2014-01-06 13:02:36 +01:00
Alexander Marx
f4d5310dec Firewall: deleted subnet from source and target addresses if manually used 2014-01-06 13:02:14 +01:00
Alexander Marx
f0dc00d80f Firewall: fix last commit. 2014-01-06 13:01:05 +01:00
Alexander Marx
9566c8f52c Firewall: Bugfix - when creating a rule which leads to an error, the rule action (Accept/Drop/Reject) is set to default 2014-01-06 13:01:05 +01:00
Alexander Marx
4234ca5d64 Firewall: cleanup of unused JS variables. 2014-01-05 21:16:12 +01:00
Alexander Marx
0051027b79 Firewall: Bugfix - when creating a SNAT rule and using a service or servicegroup there was an errormessage displayed 2014-01-05 21:15:35 +01:00
Alexander Marx
3c037075d0 Firewall: when DNAT external port is given and dest port is empty, theres now an errormessage displayed 2013-12-20 13:04:56 +01:00
Alexander Marx
ce2dbe92ce Firewall: Bugfix - When editing a DNAT rule and setting prot to "all" the port from previus rule was not resettet 2013-12-20 12:08:43 +01:00
Alexander Marx
3a162dc14f Firewall: rebuild complete counter procedure in firewall-groups. This way the counters are on the fly generated and stable. also this is a prequisite to the new option that firewall-servicegroups can be rolled out by installation 2013-12-10 12:21:48 +01:00
Alexander Marx
0c733ab750 Firewall: Bugfix: Fixed wrong language strings in outgoing FW rules when using std networks or ipfire 2013-12-05 15:16:19 +01:00
Alexander Marx
2be048cedc Firewall: FIxed wrong language strings in outgoing Firewall 2013-12-05 15:16:02 +01:00
Alexander Marx
5558ca2a96 Firewall: fixes commit http://git.ipfire.org/?p=people/amarx/ipfire-2.x.git;a=commitdiff;h=1ed4b214d785ad0538b0a864f43babccd55475b1 
Conflicts:
	html/cgi-bin/firewall.cgi
 2013-12-05 15:12:37 +01:00
Alexander Marx
35ca8e0203 Firewall: Bugfix: Last rule for outgoing showed wrong color, Bugfix:When using a rule with sourceport and afterwards editing this rule to use service or servicegroup, there was an errormessage. 2013-11-21 21:09:22 +01:00
Alexander Marx
a15f7d0dd5 Firewall: Bugfix: the routine to check if a vpn net or host was deleted did not work as expected. Now it even works when source and target contain a vpn host or net 2013-11-13 00:29:44 +01:00
Alexander Marx
d8afe3e2c0 Firewall: fixed colors of target column when using standard networks 
When using RED, OpenVPN-Dyn or IPsec RW as target, the column was not
colored.
 2013-11-13 00:29:21 +01:00
Alexander Marx
7b82bee7c4 Firewall: Bugfix: When creating a rule and using brackets in comment, the rule is denied because of invalid characters in String. But when creating a rule with just valid characters (witjout brackets) and then editing the rule it is possible to use brackets without errormessage. 
Now brackets are allowed.
 2013-11-08 13:40:45 +01:00
Michael Tremer
cb92b363cf Merge remote-tracking branch 'amarx/firewall-fifteen' into fifteen 2013-10-31 15:35:34 +01:00
Michael Tremer
12b901f846 firewall: Fix wrong symbol for variable. 2013-10-31 15:34:40 +01:00
Alexander Marx
11ab2c7d9a Firewall: added IP-Address to dropdown in DNAT part and now all ip-addresses are in brackets 2013-10-30 15:49:21 +01:00
Alexander Marx
68f6312ac5 Firewall: Show IP-Adresses in NAT-Source dropdown 2013-10-30 13:41:33 +01:00
Michael Tremer
c03d4a5e8a firewall: Simplify code which shows the last rule. 
Also change headings of the rule sections.
 2013-10-29 18:45:40 +01:00
Michael Tremer
bee56a2d5d firewall: NAT section: Don't show irrelevant controls. 2013-10-29 16:57:58 +01:00
Alexander Marx
daf400fa4d Firewall: fixed untranslated Strings 2013-10-29 08:34:42 +01:00