onkelbeh/fwbuilder
1
0
Fork 0
mirror of https://github.com/fwbuilder/fwbuilder synced 2026-03-22 11:17:31 +01:00
Code Issues Releases Wiki Activity
573 Commits 3 Branches 3 Tags
Commit Graph

52 Commits

Author SHA1 Message Date
Vadim Kurland
2095091b80 * PolicyCompiler_PrintRule.cpp (PrintRule::_printTimeInterval): 
fixed bug #2180556: "broken support for the "old" time module for
iptables". Compiler generated incorrect parameters for the "time"
module for versions <1.4.0
 2008-10-19 20:05:38 +00:00
Vadim Kurland
ef3931f4da * PolicyCompiler_ipt.cpp (singleDstNegation::processNext): fixed 
bug (no #): policy compiler for iptables did not handle correctly
rules where a host that has multiple addresses was a single object
in a rule element and had negation.

* NATCompiler_ipt.cpp (singleObjectNegation::processNext): added
support for single object negation in OSrc and ODst in NAT rules.
This provides for more compact iptables script in the often used
case where single object is used with negation in these elements
of a NAT rule. Other improvements in handling NAT rules with
negation.
 2008-10-18 18:45:02 +00:00
Vadim Kurland
1da8f11f24 * PolicyCompiler_ipt.cpp (PolicyCompiler_ipt::compile): fixed 
bug (no #): policy compiler for iptables would crash with
assertion when AddressTable or DNSName object was used in a rule
in pure mangle table ruleset. This can be related to crash
reported in bug #2157121.
 2008-10-14 05:34:42 +00:00
Vadim Kurland
c710c1003d attribute "mangle_table_only" for iptables policy rulesets 2008-10-12 04:03:22 +00:00
Vadim Kurland
0f992a8c4a bug 2148378 2008-10-12 00:57:05 +00:00
Vadim Kurland
42de6ff13e * PolicyCompiler_PrintRule.cpp (PrintRule::_printTarget): fixed 
bug #2141911: "no ULOG for ip6tables". ULOG target has not been
implemented for ip6tables yet, so the compiler should fall back to
LOG target while compiling ipv6 policy.
 2008-10-02 11:31:03 +00:00
Vadim Kurland
bbb28ace8e generate unique string id on denand, compiler speed-up x3 2008-09-21 09:39:45 +00:00
Vadim Kurland
5ec121152e test case for bug 195431 2008-09-13 17:11:24 +00:00
Vadim Kurland
bb14529ff6 bug with --datestop in fwb_ipt 2008-09-13 16:49:36 +00:00
Vadim Kurland
cfe11f99b4 test for slow compilation 2008-09-09 04:26:38 +00:00
Vadim Kurland
e53a0fd835 fixed cli option in fwbedit usage and man page 2008-09-09 04:21:02 +00:00
Vadim Kurland
148de24d59 changelog, fix in main::usage() 2008-08-23 23:49:17 +00:00
Vadim Kurland
514d417251 bug with --dports = for iptables 1.4.0 2008-08-19 18:55:57 +00:00
Vadim Kurland
8a17010872 changelog record 2008-08-19 04:36:21 +00:00
Vadim Kurland
c9f77a00e8 test case for address table 2008-08-16 04:02:05 +00:00
Vadim Kurland
0d1c8ce533 bug 2051629 ] group with dns names are handled as empty 2008-08-16 03:15:39 +00:00
Vadim Kurland
04da684784 2051005 ] install to localhost fails with pam_thinkfinger 2008-08-15 05:49:30 +00:00
Vadim Kurland
db56d1a73c 2047082 ] Beta 3.0 Build 456: IPv4 & IPv6 mixed firewall 2008-08-14 02:07:36 +00:00
Vadim Kurland
4a7c7af704 test cases for OUTPUT in mangle 2008-08-12 17:35:42 +00:00
Vadim Kurland
4aa22fde58 fixed bug 2047992 ] segfault cloning policies in version 3 2008-08-12 16:03:26 +00:00
Vadim Kurland
e0034a2d64 patch for preserving default route 2008-08-12 04:20:50 +00:00
Vadim Kurland
10e82070ae crash in fwb_ipt when interface is in dst and chain is INPUT 2008-07-26 05:42:55 +00:00
Vadim Kurland
46d9e07645 controls to turn ipv6 forwarding on/off for linux,openbsd and freebsd 2008-07-18 22:56:50 +00:00
Vadim Kurland
2a9dfe7664 added test case for missing COMMIT after *mangle 2008-07-18 19:40:34 +00:00
Vadim Kurland
80b389eaf6 fixed bug in fwb_ipt for activation with iptables-restore 2008-07-16 20:13:05 +00:00
Vadim Kurland
737069ccf1 fixes in installer dialog 2008-07-06 18:50:00 +00:00
Vadim Kurland
7304483a30 support for TOS and DSCP matching in iptables 2008-07-06 00:58:56 +00:00
Vadim Kurland
37dda74afa bug 1812388: add srcip,dstip to choices for hashlimit mode 2008-07-05 21:02:05 +00:00
Vadim Kurland
bd91f85ec0 tcpmss in mangle table; record iptables version in generated script 2008-07-03 22:37:08 +00:00
Vadim Kurland
aa2abe50b8 fwb_ipt recognizes ICMP6Service 2008-07-02 02:28:01 +00:00
Vadim Kurland
1ce279e6ff should use "-p ipv6-icmp" for ipv6 rules 2008-06-27 18:52:28 +00:00
Vadim Kurland
873aed4eab should use "-p ipv6-icmp" for ipv6 rules 2008-06-27 18:50:25 +00:00
Vadim Kurland
3315c64c35 support for the "new" module "time" in iptables 2008-06-11 02:55:37 +00:00
Vadim Kurland
3e10a9b6f5 Support for UserService in compiler for iptables 2008-06-06 02:08:54 +00:00
Vadim Kurland
ece0df1e07 compilers for iptables and pf find branch rulesets even if they belong to a different fw 2008-06-05 20:41:25 +00:00
Vadim Kurland
f6d0d3f66c compilers include error and warning messages in generated scripts and config files 2008-06-05 18:44:13 +00:00
Vadim Kurland
b73ef65f91 updated test file 2008-06-05 17:51:45 +00:00
Vadim Kurland
2e2135bcbf updated test cases; testing xslt transformations that add TagService objects 2008-06-04 22:46:06 +00:00
Vadim Kurland
c508393261 support for --weekdays in fwb_ipt per bug 1914371 "iptables 1.4.0" 2008-06-02 22:22:11 +00:00
Vadim Kurland
0457709b97 support for multiple rule sets in PF 2008-05-30 22:00:45 +00:00
Vadim Kurland
d36c466b8c can insert NetworkIPv6 into "Network" system group 2008-05-30 02:51:31 +00:00
Vadim Kurland
1e245de1bf compiler for iptables works with multiple rule sets 2008-05-30 00:13:13 +00:00
Vadim Kurland
89a70b537a added rules to test negation with ipv6 2008-05-29 05:17:55 +00:00
Vadim Kurland
08a8e20052 nat and ipv6 in fwb_ipt 2008-05-27 18:12:58 +00:00
Vadim Kurland
848bc7b926 refactored InetAddr class, removed Inet6Addr class 2008-05-24 04:30:31 +00:00
Vadim Kurland
79551708e2 ipv6 support in compiler for iptables 2008-05-22 18:12:16 +00:00
Vadim Kurland
568c0ca1b6 getting rid of getAddress() and getNetmask methods, using getAddressPtr() and getNetmaskPtr(). Tested and debugged GUI and compiler for iptables 2008-05-19 02:58:20 +00:00
Vadim Kurland
badd1d6397 support for ipv6 in compiler for ipt 2008-05-18 02:50:43 +00:00
Vadim Kurland
c52a266bb0 merging -r102:HEAD from branch rule-element-action 2008-05-03 03:46:18 +00:00
Vadim Kurland
f5cebe98e2 merge -r62:HEAD from branch inet-addr-changes 2008-04-26 19:13:45 +00:00