Michael Tremer 525ff6d74d firewall: Move the IPS after the NAT marking ...

This is because we might still land in the scenario where Suricata
crashes and NFQUEUE will simply ACCEPT all packets which will terminate
the processing of the mangle table.

Therefore the NFQUEUE rule should be the last one so that we never skip
any of the other processing.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

2024-09-24 08:43:41 +00:00

..

fake-environ

fake-environ: Fix typos

2017-05-18 11:50:15 +01:00

hwdata

hwdata: Update to the latest versions of pci.ids & usb.ids

2024-08-14 09:09:04 +00:00

initscripts

firewall: Move the IPS after the NAT marking

2024-09-24 08:43:41 +00:00

installer

licenses: Remove the braindead GPL acception stage

2024-08-06 16:48:27 +02:00

libsmooth

Early spring clean: Remove trailing whitespaces, and correct licence headers

2022-02-18 23:54:57 +00:00

misc-progs

misc-progs: Fix compilation with GCC 14

2024-08-19 10:01:01 +00:00

pakfire

pakfire: Don't give up mirror search on status code 500

2023-08-25 09:44:38 +00:00

paks

postfix: Update to version 3.9.0

2024-06-04 15:06:34 +02:00

patches

grub: Fix build on riscv64

2024-09-09 15:41:38 +00:00

ppp

Revert "ip-up: Fixes bug12763"

2024-05-19 10:00:34 +02:00

scripts

make.sh: Rewrite how we are looking for rootfiles

2024-07-22 15:21:20 +00:00

setup

setup: Fix compilation issues with GCC 14

2024-08-19 10:01:01 +00:00

squid-accounting

acct.en.pl: Update to use proxy accounting - Bug#12772

2022-02-18 22:09:12 +00:00

stripper

stripper: Strip any PIE executables

2022-07-06 09:57:22 +00:00