onkelbeh/fwbuilder
1
0
Fork 0
mirror of https://github.com/fwbuilder/fwbuilder synced 2026-03-23 19:57:21 +01:00
Code Issues Releases Wiki Activity
578 Commits 3 Branches 3 Tags
Commit Graph

4 Commits

Author SHA1 Message Date
Vadim Kurland
483dab7051 * Compiler.cpp (Compiler::_expand_addr_recursive): change in the 
algorithm used to decide which interfaces of the host or firewall
object to use in a rule when this host or firewall object is found
in source or destination.
 2008-10-21 02:49:41 +00:00
Vadim Kurland
ef3931f4da * PolicyCompiler_ipt.cpp (singleDstNegation::processNext): fixed 
bug (no #): policy compiler for iptables did not handle correctly
rules where a host that has multiple addresses was a single object
in a rule element and had negation.

* NATCompiler_ipt.cpp (singleObjectNegation::processNext): added
support for single object negation in OSrc and ODst in NAT rules.
This provides for more compact iptables script in the often used
case where single object is used with negation in these elements
of a NAT rule. Other improvements in handling NAT rules with
negation.
 2008-10-18 18:45:02 +00:00
Vadim Kurland
1e245de1bf compiler for iptables works with multiple rule sets 2008-05-30 00:13:13 +00:00
Vadim Kurland
fcfedad398 Initial import into v3 branch 2007-12-25 22:25:59 +00:00