onkelbeh/fwbuilder
1
0
Fork 0
mirror of https://github.com/fwbuilder/fwbuilder synced 2025-10-16 07:28:25 +02:00
Code Issues Releases Wiki Activity
4,853 Commits 3 Branches 3 Tags
Commit Graph

190 Commits

Author SHA1 Message Date
Vadim Kurland
99c845d0a8 * getServByName.cpp (getPortByName): see #2268 Making sure all tcp 
and udp port names are recognized on import; also since PIX/ASA
converts udp port numbersin "show run" output to the same names
as if they were tcp, using the same name mapping table.
 2011-03-27 17:44:57 -07:00
Vadim Kurland
efb6398190 * Importer.cpp (pushRule): fixes #2280 Rules created from PIX 
config import showed an icon that indicated non-default
combination of rule options, yet all rule options looked normal
when opened in the editor.
 2011-03-25 23:29:27 -07:00
Vadim Kurland
8023a23dfb * parsers/pix.g (icmp_top_level_command): see #2164 policy rules created from import of ssh, telnet and icmp commands should be on top; build 3510 2011-03-25 19:41:01 -07:00
Vadim Kurland
b89afcc87a * parsers/pix.g (tcp_udp_rule_extended): see #2273 Improvements in 
the parser for PIX/ASA configs to make it recognize object-group
and named object names used to define source port, destination
address or destination port in "access-list ... tcp|udp" rules,
including ambiguous situation when an object-group appears after
source address specification because this group can define either
source port or destination address.
 2011-03-25 15:34:29 -07:00
Vadim Kurland
97061f54f0 fixes #2269 using non-versioned path in the settings .ini file for the GUID 2011-03-23 17:45:11 -07:00
Vadim Kurland
ee35e66818 fixed SF bug 3238026: build 
failure on systems without net-snmp development libraries.
 2011-03-23 16:33:54 -07:00
Vadim Kurland
5a83ec15ff overloaded t error reporting functions in all grammars to make errors appear in the importer log 2011-03-21 19:56:34 -07:00
Vadim Kurland
57ba766183 see #2257 fixed parsing of "name <ipv6> name" line; build 3505 2011-03-20 16:00:16 -07:00
Vadim Kurland
1577bca547 see #2248 fixed handling of named service objects with port op "neq" 2011-03-20 12:24:49 -07:00
Vadim Kurland
d9e5fd7c0a see #2247 better grammar to parse ipv6 addresses. Looks like I was able to build lexer rules to tokenize ipv6 addresses, yay! 2011-03-18 17:20:17 -07:00
Vadim Kurland
c21b5714d2 build 3502 
;
 2011-03-17 12:41:57 -07:00
Vadim Kurland
8485797e41 see #2222 refactored importer into separate module/lib 2011-03-15 17:38:41 -07:00
Vadim Kurland
bc2a25a901 added test files for pix 6, 7 and 8 import; build 3500 2011-03-13 12:42:51 -07:00
Vadim Kurland
7ebdc6c238 see #2207, #2209, fixes #2213 all objects created by compilers are placed in persistent_objects library; CompilerDriver creates and manages persistent_objects lib; changes in libfwbuilder - an object can be a child of only one parent in the tree, method FWObject::add() enforces this and FWObject::findDuplicateLinks() can be used to find objects with multiple parents 2011-03-11 10:11:42 -08:00
Vadim Kurland
676220c633 see #2176 better combination of refex to guess PF config; build 3498 2011-03-08 16:15:04 -08:00
Vadim Kurland
ac257e0f43 build 3497 2011-03-07 18:55:34 -08:00
Vadim Kurland
98a21d7248 build 3496; updated unit test files 2011-03-06 19:21:06 -08:00
Vadim Kurland
9bf118bc12 trying to resolve build problem on windows "/usr/include/net-snmp/*" 2011-03-05 18:52:19 -08:00
Vadim Kurland
85afa6dc8e see #2162 renamed menu item File / Import Firewall; see #2179 button Finish should be disabled while importer is still running 2011-03-05 11:06:22 -08:00
Vadim Kurland
0516ac43e5 build 3493 2011-03-03 21:59:55 -08:00
Vadim Kurland
a164655216 fixing build problems on windows: added "-I .." to make #include work inside wizard subdirectories 2011-03-01 21:11:58 -08:00
Vadim Kurland
a0eb7989ef build 3491 2011-03-01 17:20:44 -08:00
Vadim Kurland
30db079476 fixes #2159; also using macros for discovery druid page numbers 2011-02-27 12:54:08 -08:00
Vadim Kurland
849482d15d see #2153 added page with network zones explanation and widget; not functional yet but wizard navigates to it 2011-02-26 20:26:51 -08:00
Vadim Kurland
1258c4580e new build 3488; see #2147 "ASA Import - some versions are not detected correctly". SEtting version in the created firewall object to the best match of the version found in imported config 2011-02-26 10:45:40 -08:00
Vadim Kurland
e0ac139d78 fixes #2144 GUI crash when user clicks "Import firewall configuration" shortcut button; new build 3487 2011-02-25 17:14:53 -08:00
Vadim Kurland
da776105be see #2139 show warning dialog and offer choice: open file for veiwing read-only or cancel 2011-02-24 10:19:46 -08:00
Vadim Kurland
85dad674bf new build 3485 
* configlets/linux24/shell_functions: see #2130 "unnecessary
output when iptables script runs on the firewall". Ever since I
switched to using "command" to verify that various system
utilities generated script needs are present and can be used, the
scirpt produced extra lines in the log printing full path and
names to /usr/bin/logger, /sbin/ip etc. These lines are
unnecessary and should not be there. This problem was introduced
some time during the work on 4.2.0
 2011-02-22 15:26:06 -08:00
Vadim Kurland
966533a672 see #2113 added pattern for ASA interface descriptions which is different from PIX interface descirptions 2011-02-21 11:33:25 -08:00
Vadim Kurland
926db9b942 see #153 deprecating getInterfaceStr: eliminated use of this function in policy compiler for PIX and IOS ACL 2011-02-20 16:11:29 -08:00
Vadim Kurland
2542b082f3 see #153 #2097 got rid of getInterfaceStr and getInterfaceId in policy and nat compilers for iptables 2011-02-18 18:48:16 -08:00
Vadim Kurland
df39b1d0fd new build 3481 2011-02-17 19:38:26 -08:00
Vadim Kurland
100dca74bb * NATCompiler_pf.cpp (processNext): see #133. MErged code from the 
branch, running tests. Making sure rules that have firewall
object in ODst and interface columnblank end up with rdr command
without "on interface" clause as before.
 2011-02-17 11:50:14 -08:00
Vadim Kurland
ee2204086e new build 3479a 2011-02-16 20:03:44 -08:00
Vadim Kurland
a58445ed16 see #1807, #2104 arrange interface configuration commands in the 
generated scritpt in such order that bridge and carp interfaces
are configured after all other interfaces are done.
 2011-02-16 14:42:06 -08:00
Vadim Kurland
25c1ed5d6b new build 3478 2011-02-16 13:29:09 -08:00
Vadim Kurland
4d9abebb64 new build, reran tests for ipt 2011-02-15 14:29:43 -08:00
Vadim Kurland
b5d57a740b fixes #2092 parameter "stp" is now optional and is controlled by a checkbox in the interface settings dialog 2011-02-14 15:15:23 -08:00
Vadim Kurland
143594ddc7 see 2058 fixed mtu configuration commands generated for FreeBSD in shell script mode 2011-02-14 10:44:04 -08:00
Vadim Kurland
d2217033a4 see @088 need to initialize putty_session and clear it in clear() 2011-02-13 16:57:20 -08:00
Vadim Kurland
5cce2d20ae fixes #2081 upper limit for the mtu value for *BSD interfaces is now 9000 2011-02-12 17:20:22 -08:00
Vadim Kurland
dc67f7c36c new build 3472 2011-02-11 14:59:02 -08:00
Vadim Kurland
a13600adba new build 3471 2011-02-10 15:26:17 -08:00
Vadim Kurland
6dfb33b7b2 new build 3470 2011-02-10 12:55:17 -08:00
Vadim Kurland
b6b881af96 see #1931 Made "Parser error" message appear in bold red font in the importer log 2011-02-09 22:15:07 -08:00
Vadim Kurland
3c966ffc31 see #2064 CARP interfaces are not properly installed on FreeBSD cluster. Need to populate failover group objects with default values when they are created 2011-02-09 14:34:14 -08:00
Vadim Kurland
9292895800 see #2037 
Compile/install wizard should disable "Next" button
after compile phase is done if all firewalls failed to compile
with no errors.

see #2061
Added
bunch of common shell error messages to make sure installer
recognizes them and mark install as a failure even if ssh fails
to pass termination code.
 2011-02-08 20:20:01 -08:00
Vadim Kurland
abcafdd4b3 still working on windows build failure; names for the items in BaseCompiler::termination_status shuld be unique; new build number 3466 2011-02-08 15:26:31 -08:00
Vadim Kurland
8d7fb06891 fixed unit test; new build number 3465 2011-02-08 12:00:11 -08:00
Vadim Kurland
99a0b3d412 fixes #2055 Compiler shows success, but there was a fatal error in the config; the problem affected compilers for all platforms, not only pix 2011-02-07 23:05:27 -08:00