Commit Graph

73 Commits (75941a19ac3c9fea6afaae720d3b1dafc4a63a8e)

Author SHA1 Message Date
Felix Fietkau aaf31c36f1 set default input policy to ACCEPT to bring the firewall behavior closer to the one of previous versions
SVN-Revision: 12766
2008-09-28 16:17:49 +00:00
Felix Fietkau 13abdc0af1 firewall: fix default policies, add a check for duplicate defaults sections and make custom chains more generic
SVN-Revision: 12765
2008-09-28 16:17:37 +00:00
Nicolas Thill d7810ed63e firewall changes: - implement a REJECT policy and enable it by default, reject packets with approriate response (closes: #3970) - cleanup syn_flood and remove logging
SVN-Revision: 12688
2008-09-24 15:10:16 +00:00
Nicolas Thill 2c8010b2dc make the whole iptables/netfiter modular (closes: #3871, #3527)
SVN-Revision: 12649
2008-09-22 15:19:59 +00:00
Steven Barth 954c24c5ed Fixed a typo in the firewall scripts
SVN-Revision: 12616
2008-09-16 22:01:14 +00:00
Steven Barth efb4cebbc6 Fixed a typo in firewall scripts, closes #4000
SVN-Revision: 12613
2008-09-15 18:57:39 +00:00
John Crispin 7f6ee846b7 make uci firewall backwards compatible to the old firewall.user
SVN-Revision: 12408
2008-08-27 19:16:54 +00:00
John Crispin 20216aa44d add proto tcpudp to firewall
SVN-Revision: 12407
2008-08-27 18:54:52 +00:00
John Crispin 9eaae4c61d fix device duplication in firewall if the balancing of ifup and ifdown is broken
SVN-Revision: 12404
2008-08-27 18:31:34 +00:00
John Crispin 924d10d611 make sure uci firewall reverts its states when stopped
SVN-Revision: 12403
2008-08-27 16:48:54 +00:00
John Crispin 146b47b60a fixes uci firewall init order, Signed-off-by: Roberto Riggio
SVN-Revision: 12402
2008-08-27 15:55:21 +00:00
Steven Barth 24c318dfe7 firewall: Added support for port-ranges as firstPort-lastPort to redirect sections
SVN-Revision: 12396
2008-08-27 14:04:52 +00:00
John Crispin 517dfd27e5 adds 5 new chains to the uci firewall that can be used to hook custom rules
SVN-Revision: 12395
2008-08-27 12:03:48 +00:00
John Crispin 4d7f694c43 adds more sanity checks to uci firewall
SVN-Revision: 12392
2008-08-26 11:07:04 +00:00
John Crispin aa6c019c11 use proto instead of protocol in uci firewall
SVN-Revision: 12391
2008-08-26 07:23:29 +00:00
Felix Fietkau 8ab217accc fix some firewall script typos (patch from #3897)
SVN-Revision: 12332
2008-08-17 12:01:01 +00:00
Travis Kemen 64a8d6c405 fix typo, proto should be protocol
SVN-Revision: 12318
2008-08-16 06:33:22 +00:00
John Crispin 7681547293 trigger error if dport is used when no proto is defined
SVN-Revision: 12317
2008-08-15 20:18:13 +00:00
John Crispin c9f2df5cea fixes firewall makefile description
SVN-Revision: 12285
2008-08-11 22:28:52 +00:00
John Crispin 5627667654 uci firewall - make uci firewall default and remove old code - fix up dependencies
SVN-Revision: 12284
2008-08-11 22:27:36 +00:00
John Crispin 43e28bf153 uci_firewall - fixes hotplug.d script
SVN-Revision: 12282
2008-08-11 20:51:51 +00:00
John Crispin 0f5cbca010 uci firewall - remove implicit creation of zones, based on network interfaces
SVN-Revision: 12281
2008-08-11 20:46:17 +00:00
John Crispin 21bbdc24c3 adds a new uci firewall - iptbales and netfilter packages need to be rewrapped when we switch to this firewall as default - there are some examples in the file /etc/config/firewall - iptables-save/restore are still missing - hotplug takes care of adding/removing netdevs during runtime - misisng features ? wishes ? let me know ...
SVN-Revision: 12089
2008-08-04 11:51:58 +00:00