summaryrefslogtreecommitdiff
path: root/templates/firewall/name
AgeCommit message (Collapse)Author
2009-07-31Fix 4683: Firewall Rule number maximum 1024 reachedStig Thormodsrud
(cherry picked from commit 90fb731c3a846e9a951c6fd1c5f73082e2bcf93a)
2009-06-15Firewall groups fail on bootup - change syntax check to commit check.Stig Thormodsrud
2009-06-02Change syntax err msg from default-policy to default-action.Stig Thormodsrud
2009-06-02Change firewall default-policy to default-action.Stig Thormodsrud
2009-06-02* fix syntax error messageMohit Mehta
2009-06-02* add default value of 1 for 'limit burst' in its node.defMohit Mehta
* add comp_help for 'limit rate' * make sure 'limit rate' is not less than 1/time unit
2009-05-13rectify regex checkMohit Mehta
2009-05-11Add 'reject' as a configurable value for default-policyMohit Mehta
under name and ipv6-name rulesets
2009-05-05* don't allow user to create a chain that exists in the system. This may beMohit Mehta
either vyatta/user defined chains or system chains such as INPUT, OUTPUT etc. * don't allow user to create chains with name starting from 'VZONE'. This is reserved for zone chains created by us.
2009-05-01* setup table only for specific tree, not both filter and mangleMohit Mehta
as we teardown table only for the tree that was in the CLI * remove 'next' statement for removed for loop * fix Bug 4244 - Committing firewall changes breaks WAN Load-balancing (WLB) we only delete chains that are configured under firewall and don't touch chains that might be owned by other features such as zone based firewall, WLB * remove unused code, code cleanup
2009-04-24Move setup/teardown out from top-level firewall node.Stig Thormodsrud
Add refcnts to know when to teardown.
2009-04-13Move firewall "end" processing down to each table.Stig Thormodsrud
Fix bug for global enable/disable of conntrack.
2009-04-09Add ability for firename to select default policy.Stig Thormodsrud
2009-03-27Revert "Allow user configurable default-policy on firewall."Stig Thormodsrud
Further test identified a problem. The patch is broken if a packet must do both an in & out filter. This reverts commit 754d0f4d855a59020afa20ad8867218708b5c978.
2009-03-27Allow user configurable default-policy on firewall.Stig Thormodsrud
2009-03-26* add 'redirect' to Valid ICMPv6 TypesMohit Mehta
* add comp_help for ICMPv4 type-name
2009-02-27Prevent ';' from being used in a firewall name.Stig Thormodsrud
2009-02-26Add allow/comp_help to firewall action.Stig Thormodsrud
2009-02-25Use single quote around $VAR(@).Stig Thormodsrud
2009-02-25Revert "Make sure to quote $VAR(@)."Stig Thormodsrud
This reverts commit c5595b67948166f65c8ea2c1ce1890b9aa27fd3d.
2009-02-24Make sure to quote $VAR(@).Stig Thormodsrud
2009-02-24Limit firewall name to 29 characters since that is the iptables/ip6tablesStig Thormodsrud
limit.
2009-02-23Add "ipv6-modify" firewall configuration sub-tree.Bob Gilligan
2009-02-12Merge branch 'jenner' of http://git.vyatta.com/vyatta-cfg-firewall into jennerStig Thormodsrud
2009-02-12Add allow values for firewall groups.Stig Thormodsrud
2009-02-12no need to use loop to echo allowed valuesMohit Mehta
2009-02-12better off storing icmp type-names than depend on iptables helpMohit Mehta
2009-02-10Change sudo usage to be more consistent.Stig Thormodsrud
2009-02-06Add validation of group type.Stig Thormodsrud
2009-02-02Add 1st pass of firewall group support (ipset netfilter moduleStig Thormodsrud
integration).
2009-01-30Fix Bug 2741 ENH: filter based on ICMP Type/code by nameMohit Mehta
2009-01-26Fix Bug 2474 https://bugzilla.vyatta.com/show_bug.cgi?id=2474Mohit Mehta
2009-01-16- Fix Bug 2223 Add rate rate limiting / burst limiting functions to the ↵Mohit Mehta
Vyatta firewall - Fix help strings for time-based firewall nodes
2009-01-14Fix Bug 3653 Add the ability to configure time-based firewall rulesMohit Mehta
- make available the option to use time with startdate and stopdate
2009-01-13Fix Bug 3653 Add the ability to configure time-based firewall rulesMohit Mehta
2008-12-22Fix 2563: Add firewall-rule specific disable configuration parameter.Stig Thormodsrud
2008-12-20Fix 3626: Not all protocol numbers are accepted in firewall rules.Stig Thormodsrud
2008-12-09Cleanup firewall templates for readability. Update help strings to reflect ↵Bob Gilligan
IPv4.
2008-12-03add ipp2p config optionsAn-Cheng Huang
2008-08-21fix for bug 3604: add fragment matching optionsAn-Cheng Huang
2008-08-07fix for bug 2224: add "recent" matchingAn-Cheng Huang
2008-05-19allow firewall rule to match inbound IPsec packets.An-Cheng Huang
2008-05-13add "inspect" action (maps to QUEUE) so "custom" traffic-filter for IPSAn-Cheng Huang
can be defined in "firewall".
2008-04-09Fix Bug 3069 Help strings should be standardizedMohit Mehta
- help strings standardized for vyatta-cfg-firewall
2008-02-08merge address range into addressAn-Cheng Huang
2008-02-08fix for bug 2789: merge port configuration options.An-Cheng Huang
2008-02-01fix for bug 2528: collapse source/destination "address" and "network".An-Cheng Huang
2008-02-01fix for bug 2591: update help textAn-Cheng Huang
2008-01-31convert templates to new syntaxAn-Cheng Huang
2007-12-10Initial setup of vyatta-cfg-firewall package.Bob Gilligan
generated by cgit v1.2.3 (git 2.39.1) at 2025-09-02 13:09:03 +0000