| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2009-10-02 | 0.13.7-63debian/0.13.7-63 | Stig Thormodsrud | |
| 2009-10-02 | Change syntax exec to syntax pattern. | Stig Thormodsrud | |
| 2009-09-22 | 0.13.7-62debian/0.13.7-62 | Bob Gilligan | |
| 2009-09-22 | Bugfix 4951: Don't fail if IPv6 kernel module is not loaded. | Bob Gilligan | |
| Handle the case where the IPv6 kernel module is not loaded more gracefully. | |||
| 2009-08-31 | 0.13.7-61debian/0.13.7-61 | Mohit Mehta | |
| 2009-08-31 | fix for bug 4794 SIP Helper/ALG module does not translate RTP traffic... | rbays | |
| added new configuration parameters: firewall conntrack-options sip enable-indirect-media firewall conntrack-options sip enable-indirect-signalling (cherry picked from commit 8d73836b37bae1cb8e8211bc483bf55c51241542) | |||
| 2009-08-20 | 0.13.7-60debian/0.13.7-60 | Stephen Hemminger | |
| 2009-08-20 | Add templates for wireless devices | Stephen Hemminger | |
| 2009-08-07 | 0.13.7-59debian/0.13.7-59 | Mohit Mehta | |
| 2009-08-07 | * Fix Bug 3625 Firewall protocol option should have a selection for TCP and UDP | Mohit Mehta | |
| added tcp_udp as a valid protocol value to match both tcp and udp in 1 rule | |||
| 2009-08-06 | 0.13.7-58debian/0.13.7-58 | Mohit Mehta | |
| 2009-08-06 | prevent possible situation where the two iptables rules for match condition | Mohit Mehta | |
| 'recent' have different match conditions by moving code for recent to last (cherry picked from commit 0bd1f3013d93c0cf688cda075a3548fb94e6c6d2) | |||
| 2009-08-05 | 0.13.7-57debian/0.13.7-57 | Mohit Mehta | |
| 2009-08-05 | add tcp_udp as a valid key to hash. feature developer is responsible | Mohit Mehta | |
| for allowing user to use tcp_udp as a valid protocol. currently, this option is planned to be used for NAT and firewall only | |||
| 2009-07-31 | Another attempt to fix 4760. | Stig Thormodsrud | |
| (cherry picked from commit 4dadce6ebca29e6f6d7120a44541fd99034417f2) | |||
| 2009-07-31 | Fix 4683: Firewall Rule number maximum 1024 reached | Stig Thormodsrud | |
| (cherry picked from commit 90fb731c3a846e9a951c6fd1c5f73082e2bcf93a) | |||
| 2009-07-10 | 0.13.7-56debian/0.13.7-56 | Stig Thormodsrud | |
| 2009-07-10 | remove pseudo-ethernet vif | Stephen Hemminger | |
| (cherry picked from commit 8e62427eda81ce7c0f88c4f815a4ca7e3e891e11) | |||
| 2009-06-15 | 0.13.7-55debian/0.13.7-55 | Stig Thormodsrud | |
| 2009-06-15 | Fix negate of firewall group. | Stig Thormodsrud | |
| 2009-06-15 | Firewall groups fail on bootup - change syntax check to commit check. | Stig Thormodsrud | |
| 2009-06-14 | 0.13.7-54debian/0.13.7-54 | Stig Thormodsrud | |
| 2009-06-14 | Fix 4581: Firewall name issue causes failed commit | Stig Thormodsrud | |
| 2009-06-02 | 0.13.7-53debian/0.13.7-53 | Stig Thormodsrud | |
| 2009-06-02 | Change syntax err msg from default-policy to default-action. | Stig Thormodsrud | |
| 2009-06-02 | 0.13.7-52debian/0.13.7-52 | Stig Thormodsrud | |
| 2009-06-02 | Change firewall default-policy to default-action. | Stig Thormodsrud | |
| 2009-06-02 | 0.13.7-51debian/0.13.7-51 | Mohit Mehta | |
| 2009-06-02 | * fix syntax error message | Mohit Mehta | |
| 2009-06-02 | 0.13.7-50debian/0.13.7-50 | Stig Thormodsrud | |
| 2009-06-02 | Make firewall group comp_help more consistent with the rest of the cli. | Stig Thormodsrud | |
| 2009-06-02 | 0.13.7-49debian/0.13.7-49 | Mohit Mehta | |
| 2009-06-02 | * add default value of 1 for 'limit burst' in its node.def | Mohit Mehta | |
| * add comp_help for 'limit rate' * make sure 'limit rate' is not less than 1/time unit | |||
| 2009-05-29 | 0.13.7-48debian/0.13.7-48 | An-Cheng Huang | |
| 2009-05-28 | 0.13.7-47debian/0.13.7-47 | Bob Gilligan | |
| 2009-05-28 | Bugfix 4462: Fix typo in interface name references. | Bob Gilligan | |
| 2009-05-27 | 0.13.7-46debian/0.13.7-46 | Mohit Mehta | |
| 2009-05-27 | explicitly set conntrack table size to 16384 on system boot | Mohit Mehta | |
| 2009-05-22 | remove unused ifrename | Stephen Hemminger | |
| 2009-05-14 | 0.13.7-45debian/0.13.7-45 | Stig Thormodsrud | |
| 2009-05-14 | Fix 4390: Firewall config error: Cannot specify multiple ports when both | Stig Thormodsrud | |
| source and destination ports are specified. | |||
| 2009-05-13 | 0.13.7-44debian/0.13.7-44 | Mohit Mehta | |
| 2009-05-13 | rectify regex check | Mohit Mehta | |
| 2009-05-12 | 0.13.7-43debian/0.13.7-43 | Mohit Mehta | |
| 2009-05-12 | Fix Bug 4394 reject is an invalid action for rules in modify rulesets | Mohit Mehta | |
| * remove reject as an allowed value for action field in modify & ipv6-modify firewall rulesets | |||
| 2009-05-11 | 0.13.7-42debian/0.13.7-42 | Mohit Mehta | |
| 2009-05-11 | Add 'reject' as a configurable value for default-policy | Mohit Mehta | |
| under name and ipv6-name rulesets | |||
| 2009-05-08 | 0.13.7-41debian/0.13.7-41 | Mohit Mehta | |
| 2009-05-08 | Fix Bug 4388 firewall name shouldn't have been set after commit failed | Mohit Mehta | |
| * undo chain setup and refcnt work if chain rule failed during chain creation | |||
| 2009-05-08 | Bugfix 4340: Enable net.netfilter.nf_conntrack_tcp_be_liberal by default. | Bob Gilligan | |
| The parameter in question loosens the "acceptability" check on TCP sequence and ACK numbers in the TCP conntrack module. This allows connection tracking to survive certain cases where packet loss would cause it to loose sync with the TCP endpoints. | |||
 |
index : vyatta-cfg-firewall.git | |
| Configuration templates and scripts for the firewall subsystem. (mirror of https://github.com/vyos/vyatta-cfg-firewall.git) |
| summaryrefslogtreecommitdiff |