summaryrefslogtreecommitdiff
path: root/scripts
AgeCommit message (Expand)Author
2011-07-15Fix Bug 7340 Unable to apply modify firewall to interface when zone policy ex...Mohit Mehta
2011-05-20add "two-stage commit" equivalent to previous fix for bug 5227.An-Cheng Huang
2011-05-03modify firewall groups to work with new commitnapa-devAn-Cheng Huang
2011-04-18* Fix Bug 6915 conntrack-hash-size reverts to default after upgradeMohit Mehta
2011-03-07more ipset 6.0 changeAn-Cheng Huang
2010-11-16Updated to change in error location api.Michael Larson
2010-10-30Fix 5247: Firewall groups CLI becomes out of sync with ipset when sets and de...Stig Thormodsrud
2010-10-19add local hook setup/tear for filter table similar to in|out hooksMohit Mehta
2010-10-19use single variable to reference firewall IN and OUT hooksMohit Mehta
2010-10-15missing parenroot
2010-10-15additional errors w/ location of error.root
2010-10-11Use Sys::Syslog to avoid calling logger excessivelyStephen Hemminger
2010-10-01move chain_referenced function to Mgr.pm moduleMohit Mehta
2010-09-21* move count_iptables_rule to Iptables::Mgr and update it's usageMohit Mehta
2010-09-21* separate out post fw hooks for IN, FWD, OUT. Use count_iptables_rule from libMohit Mehta
2010-08-31Fix 6125: iptables errors on boot up of mendocinoStig Thormodsrud
2010-06-12Dont tear down conntrack if the other table is using it.Stig Thormodsrud
2010-06-12Dont create FW_CONNTRACK if it already exists.Stig Thormodsrud
2010-06-11Add support for firewall enable-default-log.Stig Thormodsrud
2010-06-10Infrastruction needed for bug 5583.Stig Thormodsrud
2010-05-17Fix Bug 5588 Add ability to modify conntrack expectation table sizeMohit Mehta
2010-04-09Add VYATTA_PRE_DNAT_HOOK in nat PREROUTING table.Stig Thormodsrud
2010-03-18Fix firewall group parent delete while still referenced.Stig Thormodsrud
2010-03-17Fix 5453: can't delete "address" under "firewall group <> address-group <>"Stig Thormodsrud
2010-03-05Fix firewall conntrack teardown.Stig Thormodsrud
2010-02-15Fix 5227: firewall group config can get out of sync with ipsetStig Thormodsrud
2010-02-02Remove old Xorp templateStephen Hemminger
2009-09-22Bugfix 4951: Don't fail if IPv6 kernel module is not loaded.Bob Gilligan
2009-08-07* Fix Bug 3625 Firewall protocol option should have a selection for TCP and UDPMohit Mehta
2009-07-31Another attempt to fix 4760.Stig Thormodsrud
2009-07-31Fix 4683: Firewall Rule number maximum 1024 reachedStig Thormodsrud
2009-06-14Fix 4581: Firewall name issue causes failed commitStig Thormodsrud
2009-06-02Change firewall default-policy to default-action.Stig Thormodsrud
2009-05-27explicitly set conntrack table size to 16384 on system bootMohit Mehta
2009-05-11Add 'reject' as a configurable value for default-policyMohit Mehta
2009-05-08Fix Bug 4388 firewall name shouldn't have been set after commit failedMohit Mehta
2009-05-08Bugfix 4340: Enable net.netfilter.nf_conntrack_tcp_be_liberal by default.Bob Gilligan
2009-05-05* don't allow user to create a chain that exists in the system. This may beMohit Mehta
2009-05-01* setup table only for specific tree, not both filter and mangleMohit Mehta
2009-04-27outlaw applying firewall to an interface that is defined under a zoneMohit Mehta
2009-04-27Disable firewall debuging by default.Stig Thormodsrud
2009-04-24enable/disable conntrack separately for ipv4/ipv6Stig Thormodsrud
2009-04-24Move setup/teardown out from top-level firewall node.Stig Thormodsrud
2009-04-13Add conntrack and post firewall hooks for IPv6.Bob Gilligan
2009-04-13Fix bug where an empty firewall rule deletes the default drop policy.Stig Thormodsrud
2009-04-13Move firewall "end" processing down to each table.Stig Thormodsrud
2009-04-09Add ability for firename to select default policy.Stig Thormodsrud
2009-04-08Fix faulty search loop.Stig Thormodsrud
2009-04-07Apply interface firewalls to separate VYATTA_(IN|OUT)_HOOK.Stig Thormodsrud
2009-03-27Revert "Allow user configurable default-policy on firewall."Stig Thormodsrud
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-10 08:41:37 +0000