| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2018-06-24 | Merge branch 'current' into lithiumlithium | Daniil Baturin | |
| Conflicts: debian/changelog | |||
| 2018-06-22 | T704: add libsnmp-perl to dependencies until the script is rewritten. | Daniil Baturin | |
| 2018-04-20 | Merge pull request #11 from mtudosoiu/current | Daniil Baturin | |
| Task T35 - enable prune-deleted-sets for inet6 family firewall templates | |||
| 2018-04-19 | Task T35 - enable prune-deleted-sets for inet6 family firewall templates | Marian Tudosoiu | |
| 2018-04-17 | Merge pull request #10 from mtudosoiu/current | Daniil Baturin | |
| Task T35 - fixing prune_deleted_sets for inet6 family | |||
| 2018-04-11 | Task T35 - fixing prune_deleted_sets for inet6 family | Marian Tudosoiu | |
| 2018-03-26 | Merge pull request #9 from mtudosoiu/current | Daniil Baturin | |
| Task T35 change to solve port-group issue | |||
| 2018-03-26 | Task T35 - fixing scoping rules | mtudosoiu | |
| 2018-03-23 | Task T35 change to solve port-group issue | Marian Tudosoiu | |
| 2018-03-16 | Merge pull request #8 from mtudosoiu/current | Daniil Baturin | |
| Task T35 place ipv6 groups under global group config tree | |||
| 2018-03-14 | Task T35 place ipv6 groups under group config tree | Marian Tudosoiu | |
| 2018-03-14 | Task T35 place ipv6 groups under group config tree | mtudosoiu | |
| 2018-03-14 | Task T35 place ipv6 groups under group config tree | mtudosoiu | |
| 2018-03-14 | Task T35 place ipv6 groups under group config tree | mtudosoiu | |
| 2018-03-14 | Task T35 place ipv6 groups under group config tree | mtudosoiu | |
| 2018-03-14 | Task T35 place ipv6 groups under group config tree | mtudosoiu | |
| 2018-03-14 | Task T35 place ipv6 groups under group config tree | mtudosoiu | |
| 2018-03-14 | Task T35 change to place ipv6 address-groups and network groups under group ↵ | Marian Tudosoiu | |
| config tree | |||
| 2018-03-12 | Merge pull request #7 from mtudosoiu/current | Daniil Baturin | |
| Task T35 - add support for IPv6 firewall adddress and network groups | |||
| 2018-03-12 | Task T35 add generation of SNMP traps on firewall config changes | Marian Tudosoiu | |
| 2018-03-12 | Task T35 - add support for IPv6 firewall adddress and network groups | Marian Tudosoiu | |
| 2018-03-02 | Merge branch 'current' of https://github.com/vyos/vyatta-cfg-firewall into ↵ | Daniil Baturin | |
| current | |||
| 2018-03-02 | Show uncommited groups and table in policy route rules completion (fixes T572). | Daniil Baturin | |
| 2018-02-23 | Merge pull request #6 from mtudosoiu/current | Daniil Baturin | |
| Bug #T171 fix Open Task T171 Unable to Delte Rule | |||
| 2018-02-19 | Bug #T171 fix Open Task T171 Unable to Delte Rule | mtudosoiu | |
| 2017-09-14 | Revert "Added support for local PBR to gen-interface-policy-templates.pl" | Daniil Baturin | |
| This reverts commit b30b5c66b7d6f4c12c37a642319dd39f8613f74a. | |||
| 2017-04-27 | update the way status of snmpd is called | Kim | |
| 2016-05-20 | Revert "vyatta-cfg-firewall: update nfct commands to use the new syntax" | Kim Hagen | |
| Debian jessie version still uses older syntax This reverts commit 8c08408d1309b2664067b3a793d7df3b24d36cf3. | |||
| 2016-01-24 | 0.14.0+vyos2+current1debian/0.14.0+vyos2+current1 | Kim Hagen | |
| 2015-12-24 | Fix runtime depends. | Thomas Jepp | |
| 2015-12-22 | 0.14.0+vyos2+lithium17debian/0.14.0+vyos2+lithium17 | Daniil Baturin | |
| 2015-12-22 | Remove dead code from the IPset module. | Daniil Baturin | |
| Slightly related to #628. | |||
| 2015-12-16 | Fix build depends. | Thomas Jepp | |
| 2015-12-12 | 0.14.0+vyos2+lithium16debian/0.14.0+vyos2+lithium16 | Alex Harpin | |
| 2015-12-12 | vyatta-cfg-firewall: update network-group check to allow "this" network | Alex Harpin | |
| Update the check for network-groups to allow zero net addresses as they are accepted by the current version of ipset used in VyOS, rejecting only the 0.0.0.0/0 address. This allows the "this" network (0.0.0.0/8) to be used in network-groups. Bug #628 http://bugzilla.vyos.net/show_bug.cgi?id=628 | |||
| 2015-12-12 | vyatta-cfg-firewall: formatting changes for style consistency | Alex Harpin | |
| Update lib/Vyatta/Iptables/AddressFilter.pm, IpSet.pm, Mgr.pm and Rule.pm to maintain style and consistency. | |||
| 2015-11-29 | 0.14.0+vyos2+lithium15debian/0.14.0+vyos2+lithium15 | Alex Harpin | |
| 2015-11-28 | vyatta-cfg-firewall: drop executable permissions on node.defs | Alex Harpin | |
| Drop the executable permissions present on a number of node.defs to remove lintian warnings. | |||
| 2015-11-28 | vyatta-cfg-firewall: check rules for errors before processing them | Alex Harpin | |
| Errors in firewall rules can cause either rules to be overwritten (completely or partially), dropped entirely, or just ending up with an inconsistent state in comparison to the current configuration. This can lead to unpredictable firewall results, which can't even be corrected by deleting all the firewall rules, only a reboot or manual intervention will correct the issue. Checking these rules for consistency in a separate loop before they are applied allows the errors to flagged up and the commit failed before the iptables are touched. Bug #623 http://bugzilla.vyos.net/show_bug.cgi?id=623 | |||
| 2015-11-28 | vyatta-cfg-firewall: formatting changes for style consistency | Alex Harpin | |
| Update scripts/firewall/vyatta-firewall.pl to maintain style and consistency. | |||
| 2015-11-28 | vyatta-cfg-firewall: update nfct commands to use the new syntax | Alex Harpin | |
| Update the nfcft commands to use the new style syntax rather than the old, following the update of conntrack-tools to 1.4.3. | |||
| 2015-10-24 | 0.14.0+vyos2+lithium14debian/0.14.0+vyos2+lithium14 | Alex Harpin | |
| 2015-10-24 | vyatta-cfg-firewall: temporarily disable p2p option in firewall config | Alex Harpin | |
| Both the userspace library and the associated kernel module for the iptables ipp2p match target are currently missing and so this configuration returns an error when used. Disabling this option temporarily until the above issue has been resolved. Bug #602 http://bugzilla.vyos.net/show_bug.cgi?id=602 | |||
| 2015-06-24 | 0.14.0+vyos2+lithium13debian/0.14.0+vyos2+lithium13 | Alex Harpin | |
| 2015-06-24 | vyatta-cfg-firewall: add port 1536 to the initial ct helper chain | Alex Harpin | |
| Add port 1536 to the initial VYATTA_CT_HELPER chain inline with the conntrack sqlnet module change in vyatta-conntrack. Bug #412 http://bugzilla.vyos.net/show_bug.cgi?id=412 | |||
| 2015-06-15 | 0.14.0+vyos2+lithium12debian/0.14.0+vyos2+lithium12 | Alex Harpin | |
| 2015-06-15 | vyatta-cfg-firewall: update dh_gencontrol with new development flag | Alex Harpin | |
| 2015-05-15 | Merge pull request #4 from pasikarkkainen/local-pbr | Daniil Baturin | |
| Bug #252: Add support for local PBR | |||
| 2015-05-14 | Added support for local PBR to gen-interface-policy-templates.pl | Pasi Karkkainen | |
| 2015-05-14 | Added support for local PBR to vyatta-firewall.pl | Pasi Karkkainen | |
 |
index : vyatta-cfg-firewall.git | |
| Configuration templates and scripts for the firewall subsystem. (mirror of https://github.com/vyos/vyatta-cfg-firewall.git) |
| summaryrefslogtreecommitdiff |