onkelbeh/fwbuilder
1
0
Fork 0
mirror of https://github.com/fwbuilder/fwbuilder synced 2026-03-21 10:47:16 +01:00
Code Issues Releases Wiki Activity
571 Commits 3 Branches 3 Tags
Commit Graph

77 Commits

Author SHA1 Message Date
Vadim Kurland
ef3931f4da * PolicyCompiler_ipt.cpp (singleDstNegation::processNext): fixed 
bug (no #): policy compiler for iptables did not handle correctly
rules where a host that has multiple addresses was a single object
in a rule element and had negation.

* NATCompiler_ipt.cpp (singleObjectNegation::processNext): added
support for single object negation in OSrc and ODst in NAT rules.
This provides for more compact iptables script in the often used
case where single object is used with negation in these elements
of a NAT rule. Other improvements in handling NAT rules with
negation.
 2008-10-18 18:45:02 +00:00
Vadim Kurland
1da8f11f24 * PolicyCompiler_ipt.cpp (PolicyCompiler_ipt::compile): fixed 
bug (no #): policy compiler for iptables would crash with
assertion when AddressTable or DNSName object was used in a rule
in pure mangle table ruleset. This can be related to crash
reported in bug #2157121.
 2008-10-14 05:34:42 +00:00
Vadim Kurland
c710c1003d attribute "mangle_table_only" for iptables policy rulesets 2008-10-12 04:03:22 +00:00
Vadim Kurland
0f992a8c4a bug 2148378 2008-10-12 00:57:05 +00:00
Vadim Kurland
149c16f0f9 bug 2154906 2008-10-10 15:41:38 +00:00
Vadim Kurland
42de6ff13e * PolicyCompiler_PrintRule.cpp (PrintRule::_printTarget): fixed 
bug #2141911: "no ULOG for ip6tables". ULOG target has not been
implemented for ip6tables yet, so the compiler should fall back to
LOG target while compiling ipv6 policy.
 2008-10-02 11:31:03 +00:00
Vadim Kurland
c6aa73ff0f * NATCompiler_pix.cpp (mergeNATCmd::processNext): fixed crash in 
compiler for PIX that happened when compiler tried to merge
	"global" commands and some of the interfaces of the firewall had
	dynamic address.
 2008-09-21 10:32:41 +00:00
Vadim Kurland
bbb28ace8e generate unique string id on denand, compiler speed-up x3 2008-09-21 09:39:45 +00:00
Vadim Kurland
243e9b9a90 bug 2090332 2099631 2109432 2109431 2109660 2109675 2008-09-14 03:35:25 +00:00
Vadim Kurland
5ec121152e test case for bug 195431 2008-09-13 17:11:24 +00:00
Vadim Kurland
bb14529ff6 bug with --datestop in fwb_ipt 2008-09-13 16:49:36 +00:00
Vadim Kurland
cfe11f99b4 test for slow compilation 2008-09-09 04:26:38 +00:00
Vadim Kurland
e53a0fd835 fixed cli option in fwbedit usage and man page 2008-09-09 04:21:02 +00:00
Vadim Kurland
7c3fdae4f5 main window and dialogs do not enforce font 2008-08-30 05:05:56 +00:00
Vadim Kurland
2c34e37903 interface dialog layout fix 2008-08-28 05:26:35 +00:00
Vadim Kurland
2c115fa00b bug 2078107 ] IOS ACL compiler issue 2008-08-27 15:23:46 +00:00
Vadim Kurland
148de24d59 changelog, fix in main::usage() 2008-08-23 23:49:17 +00:00
Vadim Kurland
514d417251 bug with --dports = for iptables 1.4.0 2008-08-19 18:55:57 +00:00
Vadim Kurland
8a17010872 changelog record 2008-08-19 04:36:21 +00:00
Vadim Kurland
61601fe1e3 bug 2056510 "Compile time" address tables objects dont work 2008-08-18 01:47:56 +00:00
Vadim Kurland
3304512740 2055984 ] Negate Objects not work 2008-08-18 01:28:00 +00:00
Vadim Kurland
c9f77a00e8 test case for address table 2008-08-16 04:02:05 +00:00
Vadim Kurland
0d1c8ce533 bug 2051629 ] group with dns names are handled as empty 2008-08-16 03:15:39 +00:00
Vadim Kurland
04da684784 2051005 ] install to localhost fails with pam_thinkfinger 2008-08-15 05:49:30 +00:00
Vadim Kurland
db56d1a73c 2047082 ] Beta 3.0 Build 456: IPv4 & IPv6 mixed firewall 2008-08-14 02:07:36 +00:00
Vadim Kurland
4a7c7af704 test cases for OUTPUT in mangle 2008-08-12 17:35:42 +00:00
Vadim Kurland
4aa22fde58 fixed bug 2047992 ] segfault cloning policies in version 3 2008-08-12 16:03:26 +00:00
Vadim Kurland
e0034a2d64 patch for preserving default route 2008-08-12 04:20:50 +00:00
Vadim Kurland
10e82070ae crash in fwb_ipt when interface is in dst and chain is INPUT 2008-07-26 05:42:55 +00:00
Vadim Kurland
46d9e07645 controls to turn ipv6 forwarding on/off for linux,openbsd and freebsd 2008-07-18 22:56:50 +00:00
Vadim Kurland
2a9dfe7664 added test case for missing COMMIT after *mangle 2008-07-18 19:40:34 +00:00
Vadim Kurland
80b389eaf6 fixed bug in fwb_ipt for activation with iptables-restore 2008-07-16 20:13:05 +00:00
Vadim Kurland
65b82d973a one more nat rule for pf 2008-07-07 05:15:25 +00:00
Vadim Kurland
75d30ae964 added -xt option to fwb_iosacl 2008-07-07 04:36:10 +00:00
Vadim Kurland
737069ccf1 fixes in installer dialog 2008-07-06 18:50:00 +00:00
Vadim Kurland
25e6e7de73 test file 2008-07-06 02:45:35 +00:00
Vadim Kurland
6766d917b9 support for tos and dscp matching in ios access lists 2008-07-06 02:35:45 +00:00
Vadim Kurland
ce2508e93a support for tos matching for PF 2008-07-06 02:02:26 +00:00
Vadim Kurland
7304483a30 support for TOS and DSCP matching in iptables 2008-07-06 00:58:56 +00:00
Vadim Kurland
37dda74afa bug 1812388: add srcip,dstip to choices for hashlimit mode 2008-07-05 21:02:05 +00:00
Vadim Kurland
bd91f85ec0 tcpmss in mangle table; record iptables version in generated script 2008-07-03 22:37:08 +00:00
Vadim Kurland
aa2abe50b8 fwb_ipt recognizes ICMP6Service 2008-07-02 02:28:01 +00:00
Vadim Kurland
1ce279e6ff should use "-p ipv6-icmp" for ipv6 rules 2008-06-27 18:52:28 +00:00
Vadim Kurland
873aed4eab should use "-p ipv6-icmp" for ipv6 rules 2008-06-27 18:50:25 +00:00
Vadim Kurland
3315c64c35 support for the "new" module "time" in iptables 2008-06-11 02:55:37 +00:00
Vadim Kurland
07be919f07 checking for unsupported UserService objects in compilers for ipf, iosacl and pix 2008-06-07 03:44:57 +00:00
Vadim Kurland
47a435f7d3 support for userService in compiler for pf 2008-06-07 03:09:38 +00:00
Vadim Kurland
3e10a9b6f5 Support for UserService in compiler for iptables 2008-06-06 02:08:54 +00:00
Vadim Kurland
ece0df1e07 compilers for iptables and pf find branch rulesets even if they belong to a different fw 2008-06-05 20:41:25 +00:00
Vadim Kurland
f6d0d3f66c compilers include error and warning messages in generated scripts and config files 2008-06-05 18:44:13 +00:00