onkelbeh/fwbuilder
1
0
Fork 0
mirror of https://github.com/fwbuilder/fwbuilder synced 2026-03-20 02:07:23 +01:00
Code Issues Releases Wiki Activity
4,058 Commits 3 Branches 3 Tags
Commit Graph

1193 Commits

Author SHA1 Message Date
Vadim Kurland
be38fc57ba see #2058 Ability to configure mtu and metric of regular inetrfaces 2011-02-11 13:00:40 -08:00
Vadim Kurland
04ef96c5fa see #2060 using correct syntax for commands to clear objects and object-groups on PIX 6.3 and other versions 2011-02-10 15:08:32 -08:00
Vadim Kurland
35749e782c fixes #1999 using tool "command" to make sure utilities we need are available and can be accessed either by full path or using PATH env variable; this includes logger as requested in the ticket 2011-02-10 14:53:44 -08:00
Vadim Kurland
c2b41c1f4b see #2071 vlandev missing in the vlan definition (when using rc.conf.local ) 2011-02-10 12:45:49 -08:00
Vadim Kurland
8d97c4ab6e fixes SF bug 3102044 "Colon in (runtime) Address Table name" 2011-02-10 12:12:26 -08:00
Vadim Kurland
c5a0883f32 see #2070 fixing SF bug 3169045 2011-02-10 11:38:44 -08:00
Vadim Kurland
383d9e41d9 see #2069 PF: allow multiple objects in ODst of redirecting nat rule 2011-02-10 11:25:52 -08:00
Vadim Kurland
04a118ac0a see #1979 avoid replacing references to 0/0 (=="any") with references to the newly created network 2011-02-10 11:09:39 -08:00
Vadim Kurland
938a4534f3 see #2067 the tree now shows interface name and label if the label is not empty 2011-02-10 10:55:50 -08:00
Vadim Kurland
2657d3aad6 see #2066 fixed configlet code that retrieves list of existing vlans 2011-02-10 10:09:56 -08:00
Vadim Kurland
02ae23b197 fixes #1915 tooltip shown when mouse is over rule number should be added to the list of suppressed tooltips when "Advanced user mode" is in effect 2011-02-09 14:54:18 -08:00
Vadim Kurland
3c966ffc31 see #2064 CARP interfaces are not properly installed on FreeBSD cluster. Need to populate failover group objects with default values when they are created 2011-02-09 14:34:14 -08:00
Vadim Kurland
77ea506d63 * configlets/freebsd/installer_commands_root: fixes #2065 
"activation commands on FreeBSD and OpenBSD lose script exit
status". Sequence of commands ran by the built-in installer on
*BSD firewalls were losing exit status of the script which meant
installer always declared installation a "success" even when
there were errors.
 2011-02-09 12:33:34 -08:00
Vadim Kurland
9292895800 see #2037 
Compile/install wizard should disable "Next" button
after compile phase is done if all firewalls failed to compile
with no errors.

see #2061
Added
bunch of common shell error messages to make sure installer
recognizes them and mark install as a failure even if ssh fails
to pass termination code.
 2011-02-08 20:20:01 -08:00
Vadim Kurland
1460fef57f fixes #2042 add configlet and shell functions to manage bridge interfaces via shell script on OpenBSD and FreeBSD 2011-02-08 14:10:33 -08:00
Vadim Kurland
78bb5a5ba7 fixes #2054 add support for load anchor command 2011-02-08 11:22:39 -08:00
Vadim Kurland
99a0b3d412 fixes #2055 Compiler shows success, but there was a fatal error in the config; the problem affected compilers for all platforms, not only pix 2011-02-07 23:05:27 -08:00
Vadim Kurland
87c8fcb2ac fixes #1914 Address table object file name is not created properly if user clicks outside Editor panel 2011-02-07 17:50:22 -08:00
Vadim Kurland
e2f05c1e0a see #2049 Installer reports success even if there was an error while creating static routes; new build 3462 2011-02-06 19:34:09 -08:00
Vadim Kurland
a28cdd359a see #1889, #2043 
Added support for bridge interface configuration in BSD.
 2011-02-06 13:10:46 -08:00
Vadim Kurland
47dd932529 see #2039 Installer reports success even if pfctl cant load config file 2011-02-05 20:36:24 -08:00
Vadim Kurland
7532c769a6 see #2038 pfctl error when firewall settings include scrub option for reassembly 2011-02-05 20:23:39 -08:00
Vadim Kurland
9d2eb88522 fixes #2032 (added dhcp inetrfaces to generated rc.conf.local); see #2028 tested basic static routees on FreeBSD in both shell and rc.conf formats 2011-02-04 17:57:01 -08:00
Vadim Kurland
e7083f157c fixes #2026 Compiler can now generate static routing configuration 
in rc.conf format for FreeBSD.
 2011-02-03 16:46:46 -08:00
Vadim Kurland
8fbb48b280 fixes #2021 since rc.conf format is only supported for FreeBSD, the option in the dialog should not be available for other OS 2011-02-03 16:06:13 -08:00
Vadim Kurland
39eaf40722 see #1888, #2020, #2018 rc.conf format of the init script for PF on FreeBSD, includes inetrfaes. addresses, CARP, pfsync and pf initialization 2011-02-02 17:45:36 -08:00
Vadim Kurland
2b2d1e81a9 see #2015 ability to set the name of the initalizatio and .conf files for PF 2011-02-01 20:35:33 -08:00
Vadim Kurland
dd86fcc5e2 see #1890 "Add 
support for configuring static routes on BSD". Implemented support
for simple static routing rules. ECMP and routing via interface
(routing to directly reachable subnets) are not
supported. Generated script preserves static routing entries that
existed before and attempts to recover in case of error. Needs
testing.
 2011-01-31 18:29:20 -08:00
Vadim Kurland
7b0573c478 see #2006 clearing editor panel when data file panel is closed; new build 3455 2011-01-30 14:46:07 -08:00
Vadim Kurland
93b3b12bab see #2000 Added page to the new firewall wizard to let the 
user configure network zones of interfaces when chosen firewall
platform supports network zones (only PIX/ASA right now).
 2011-01-28 16:43:13 -08:00
Vadim Kurland
a8dd192bec see #1983 ASA multiple interfaces have the same security level; using QTableWidget with QSpinBox widgets in the last column to let the user edit secrity levels directly 2011-01-28 13:13:14 -08:00
Vadim Kurland
5ec0e428dd see #1998 update ChangeLog to reflect latest change 2011-01-28 09:58:25 -08:00
Vadim Kurland
eb984a4e39 new build 3452 2011-01-27 22:12:27 -08:00
Vadim Kurland
8e0159f197 see #1996 2011-01-27 19:23:53 -08:00
Vadim Kurland
a67aaacb26 * IOSImporterRun.cpp (run): see #1931 "Update failed import 
behavior". Added meaningful error messages for when policy
importer fails to create firewall object or does not create
interface objects or any rules.
 2011-01-27 13:09:06 -08:00
Vadim Kurland
b3f34b06ac * Rule.cpp (removeRef): fixes #1997 "add removeRef and addRef 
methods to class NATRule". Now undo and redo correctly remove and
restore references to NAT rule sets in NAT rules with action
Branch.
 2011-01-27 11:58:02 -08:00
Vadim Kurland
804189fb75 * Rule.cpp (addRef): fixes #1991 "Undo does not restore object as 
a parameter of policy rule action Branch or Tag after it was
deleted deleted". Now Undo restores references to rule sets and tag
services as arguments of corresponding policy rules, as well as
references to objects configured as interface network zones.
 2011-01-27 11:50:03 -08:00
Vadim Kurland
9cc60050ee see #1987 Deleting object that is used as Network Zone for ASA/PIX interface results in inconsistent behavior. When an object that is used as a network zone of some interface is deleted, it should be removed from that interface configuration as well. 2011-01-27 11:35:24 -08:00
Vadim Kurland
4bba7533c8 see #1995 Crash when compiling a cluster with identical firewalls. Needed to call base class Firewall::init() to create Policy, NAT and Routing objects. The fact that member firewalls are identical as reported in the ticket is a red herring 2011-01-27 11:06:31 -08:00
Vadim Kurland
535b8e27eb see #1994 Crash when compiling a firewall in an imported Library. Compilers reset read-only flags on the firewall and all objects in the tree above it before making any changes to the copy of the tree they work with 2011-01-27 10:54:11 -08:00
Vadim Kurland
cf543d7adf fixes #1992, #1993, see #1994 2011-01-26 21:49:31 -08:00
Vadim Kurland
eb61a51c89 fixes #1989: 
Got rid
of global variables sysfname, tempfname, librespath, respath and
localepath; will now use class Constants to keep this information.
 2011-01-26 13:27:57 -08:00
Vadim Kurland
9b1c98f0f4 fixes #1937 RES_DIR macro is defined twice 2011-01-25 17:09:20 -08:00
Vadim Kurland
71a94277a8 fixes #1985 implement FWObjectDatabase::setPredictableIds as virtual function 2011-01-25 16:38:35 -08:00
Vadim Kurland
2c85c952bf see #1986 Cisco ASA remarks should be truncated to 100 characters or less; truncated remark lines 2011-01-25 11:25:20 -08:00
Vadim Kurland
d331ee7840 fixes #1966 IOSACL: object-group can get name that consists of only suffix 2011-01-24 18:28:48 -08:00
Vadim Kurland
498d9456ca see #1980 Objects from Deleted Objects should not be allowed to be used in rules 2011-01-24 17:09:49 -08:00
Vadim Kurland
7c1108204e see #1958 consistently use "exit" to get out of nested context in pix config 2011-01-24 16:41:34 -08:00
Vadim Kurland
7e7f5509d2 see #1970 ASA Policy - single IPv6 icmp object allowed in rules 2011-01-24 16:33:43 -08:00
Vadim Kurland
5961400eb4 see #1981 ASA / FWSM Policy - Generate warning message if rule will not generate config data 2011-01-24 11:53:22 -08:00