Jo-Philipp Wich
a95bb0d75b
firewall3: update to git head
...
* Adds support for emitting hotplug events when creating and clearing zones (fixes miniupnpd)
* Make NAT reflection direction configurable
* Map init script stop action to flush
* Map init script reload action to reload
* Respect init script disabled state in hotplug handler
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35998 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-13 15:46:30 +00:00
Jo-Philipp Wich
13b7b380b2
firewall3: update to git head
...
* Fixes compilation against eglibc
* Fixes tracking logic when selectively restarting IPv4 or IPv6 firewall
* Fixes tracking logic for user chains by differentiating between reloads and restarts
* Introduces per-zone user chains {input,output,forwarding,prerouting,postrouting}_$zone_rule
* Supports legacy "tcpudp" protocol notation again
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35969 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-11 20:52:20 +00:00
Jo-Philipp Wich
1287a5a543
Revert "firewall3: update to git head"
...
This reverts commit 89969fa333c90fdb217b7289272f3427add107de.
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35904 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-08 19:52:18 +00:00
Jo-Philipp Wich
0a093289e6
firewall3: update to git head
...
- introduce per-zone user chains
- support legacy "tcpudp" protocol notation
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35903 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-08 15:27:33 +00:00
Jo-Philipp Wich
58e4a0f346
firewall3: add default config and firewall.user
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35889 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-05 13:45:09 +00:00
Jo-Philipp Wich
4de2e16d3f
firewall3: update to git head, introduces support for "enabled" option
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35845 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-03-02 17:09:33 +00:00
Jo-Philipp Wich
ffd425c151
firewall3: clear contnrack table on flush, set policies to drop during rule reload
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35820 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-27 14:09:37 +00:00
Jo-Philipp Wich
e249d2a240
firewall: fix logging rule regression ( #12999 )
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35745 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-22 13:45:20 +00:00
Jo-Philipp Wich
157ef93d0e
firewall3: add support for shell script and iptables-restore style includes
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35744 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-22 12:45:38 +00:00
Steven Barth
660caa9c81
netifd: only update resolv.conf.auto if changed
...
This avoids logspam under certain conditions.
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35743 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-22 08:56:29 +00:00
Jo-Philipp Wich
7f0500f664
firewall3: update to git head
...
- all uci rules are boxed in custom chains now, so a firewall stop leaves user rules intact
- properly handle selective ipv4 or ipv6 only firewall start/stop/restart actions
- support ip ranges (e.g. option src_ip '!192.168.1.1-192.168.1.100' -> -m iprange ! --src-range 192.168.1.1-192.168.1.100')
- support time options (e.g. option weekdays 'Mon Tue Sat' -> -m time --weekdays 1,2,6')
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35738 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-21 22:33:44 +00:00
Jo-Philipp Wich
bc882ab1f1
firewall3 - a C implementation of the current firewall scripts
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35643 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-17 19:26:52 +00:00
Jo-Philipp Wich
292b4e42b3
firewall: various enhancements
...
- reduce mssfix related log spam (#10681 )
- separate src and dest terminal chains (#11453 , #12945 )
- disable per-zone custom chains by default, they're rarely used
Additionally introduce options "device", "subnet", "extra", "extra_src" and "extra_dest"
to allow defining zones not related to uci interfaces, e.g. to match "ppp+" or any tcp
traffic to and from a specific port.
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35484 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-04 14:38:33 +00:00
Steven Barth
109d4f04b0
netifd: Improved IPv6 featureset
...
* Fix reloading of ula-prefixes
* Added support for temporary addresses and routes
* Added support for offlink addresses
* Improved status-output for assigned prefixes
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35420 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-02-01 12:28:43 +00:00
Felix Fietkau
6e020244db
netifd: update to latest version
...
fixes DNS servers on reload (#12910 )
fixes ubus object race on reload or down/up (#12612 )
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35383 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-29 14:40:04 +00:00
Steven Barth
4693e5f404
netifd: implement IPv6 prefix deprecation according to RFC 6204
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35377 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-29 11:05:22 +00:00
Steven Barth
cfda22b8c6
netifd: remove IPv6 forwarding-sysctl workaround
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35369 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-29 10:13:39 +00:00
Felix Fietkau
3fc753a0b0
netifd: update to latest version, fixes setting addresses/routes on alias interfaces
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35362 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-28 20:35:55 +00:00
Jo-Philipp Wich
1b4e6e5e76
firewall: flush conntrack table after changing interface rules
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35348 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-28 15:53:44 +00:00
Steven Barth
88d95b7acc
netifd: IPv6 sysctl, restart IPv6 in static mode to send RS
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35347 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-28 14:07:27 +00:00
Steven Barth
0f6d7ebb06
netifd: add SLAAC ipv6 value for static-proto
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35346 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-28 13:53:48 +00:00
Felix Fietkau
a62a397d2e
netifd: update to latest version, adds another fix for interface aliases
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35297 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-22 16:05:59 +00:00
Steven Barth
27f1da2569
netifd: Fix a segfault when globals.ula_prefix is empty
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35296 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-22 15:49:42 +00:00
Steven Barth
98901eabf5
netifd: Fix segfaults in IPv6 prefix handling
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35259 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-21 09:21:30 +00:00
Felix Fietkau
9099dc3b63
netifd: update to latest version, fixes alias support
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35251 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-20 15:47:09 +00:00
Jo-Philipp Wich
d5203450e1
netifd: add a band-aid fix for the wifi setup vs. netifd init race by increasing the wait time to five seconds
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35240 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-19 10:13:14 +00:00
Steven Barth
06527bee18
netifd: @aliases use layer 3 devices instead of main devices
...
Fixes dhcpv6 protocol alias
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35187 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-17 08:28:51 +00:00
Steven Barth
ddc921275c
netifd: Introduce native IPv6 prefix-handling
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35167 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-15 13:07:41 +00:00
Jo-Philipp Wich
fdcfda2ae8
netifd: update to git head, adds 64bit counters
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35140 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-13 19:48:52 +00:00
Steven Barth
d2072402f7
firewall: Add ULA site border for IPv6 traffic
...
This prevents private traffic from leaking out to the internet
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35012 3c298f89-4303-0410-b956-a3cf2f4a3e73
2013-01-04 15:59:28 +00:00
Felix Fietkau
be621b6356
netifd: update to latest version, fixes interface error reporting for shell proto handlers
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34741 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-17 22:24:31 +00:00
Felix Fietkau
59de6c0111
netifd: update to latest version, no longer needs the removed jshn_append() shell function
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34734 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-17 14:57:15 +00:00
Felix Fietkau
a9600d7cae
netifd: call /etc/udhcp.user from the netifd dhcp.script
...
This was done previously when dhcp was handled by the network scripts.
So netifd should behave the same.
Signed-off-by: Helmut Schaa <helmut.schaa@googlemail.com>
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34704 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-15 17:19:24 +00:00
John Crispin
cc2dee64f0
[lantiq] move ltq-adsl-tool
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34694 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-15 02:00:39 +00:00
Gabor Juhos
74ee635064
package/swconfig: don't use kernel headers
...
Signed-off-by: Gabor Juhos <juhosg@openwrt.org>
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34679 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-14 12:11:50 +00:00
Felix Fietkau
7d67b79951
netifd: update to latest version, fixes purging old resolv.conf entries after ifdown
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34664 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-13 16:14:41 +00:00
Jo-Philipp Wich
1309ba379e
firewall: fix typo in reflection hotplug script
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34569 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-07 13:08:28 +00:00
Felix Fietkau
ce739282b4
netifd: update to latest version, fixes resolv.conf writes on interface setting changes
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34500 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-05 13:28:56 +00:00
Jo-Philipp Wich
b0ab057b72
firewall: extend nat reflection support
...
- use comment match to keep track of per-network rules
- setup reflection for any interface which is part of a masqueraded zone, not just "wan"
- delete per-network reflection rules if network is brought down
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34472 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-04 15:24:21 +00:00
Mirko Vogt
f456e95ddd
Make ltq-dsl-app compile with an eglibc-based toolchain
...
Signed-Off-By: Frank Meerkötter <frank@meerkoetter.org>
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34468 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-03 12:46:57 +00:00
Steven Barth
0789334c3c
netifd: empty hotplug handler removed
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34465 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-12-03 07:20:44 +00:00
Steven Barth
13a478551d
Remove old IPv6 sysctl-config (deprecated)
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34418 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-11-29 20:14:09 +00:00
Florian Fainelli
331832ea11
[package] netfid: fix build on musl
...
AF_INET* is provided by sys/socket.h
Signed-off-by: Florian Fainelli <florian@openwrt.org>
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34310 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-11-23 20:02:10 +00:00
Jo-Philipp Wich
4d3fffae81
netifd: don't send a default client identifier in DHCP requests if no clientid uci option is given ( #12426 )
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34089 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-11-05 19:28:24 +00:00
Felix Fietkau
606fbaef0b
netifd: update to latest version, fixes adding an alias during config reload for an interface that is already up
...
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@34006 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-30 00:24:31 +00:00
Jo-Philipp Wich
9d344ea65b
ltq-dsl-app: fix offline postinstall for dsl_control
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33901 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-23 19:57:47 +00:00
Hamish Guthrie
a81ef914e0
licensing: Add licensing metadata to many packages
...
Two new variables are introduces to many packages, namely PKG_LICENSE and
PKG_LICENSE_FILES - there may be more than one license applied to packages,
and these are listed in the PKG_LICENSE variable and separated by spaces.
All relevant license files are also added to the PKG_LICENSE_FILES variable,
also space separated.
The licensing metadata is put into the bin/<platform>/packages/Packages file
for later parsing. A script for that is on it's way!
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33861 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-19 15:34:28 +00:00
Felix Fietkau
7569f5db7d
netifd: update to latest version, fixes device cleanup and config reload issues when assigning a device to a different bridge
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33858 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-19 13:51:48 +00:00
Felix Fietkau
5359bc8a68
netifd: enable parallel build
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33832 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-18 00:09:45 +00:00
John Crispin
16ed01db05
[kernel] move lots of kernel related packages to the new system/ folder
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33830 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-17 22:45:58 +00:00
John Crispin
f09f3dbe85
Fix broadcast DHCP client startup option in dhcp.sh
...
Signed-off-by: Hans Dedecker (hans.dedecker at technicolor.com)
Fixes the DHCP request broadcasts replies option parsing
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33826 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-17 21:53:46 +00:00
Felix Fietkau
1f9a31d589
add myself as a maintainer for a few more packages
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33693 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-10 12:49:37 +00:00
Felix Fietkau
abe70b1494
packages: sort network related packages into package/network/
...
git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33688 3c298f89-4303-0410-b956-a3cf2f4a3e73
2012-10-10 12:32:29 +00:00