summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2012-10-120.14+pacifica2vyatta/VC6.5R1/i386vyatta/VC6.5R1/amd64debian/0.14+pacifica2pacificaJohn Southworth
2012-10-12new branchJohn Southworth
2012-10-120.14+pacifica1debian/0.14+pacifica1John Southworth
2012-10-12new branchJohn Southworth
2012-06-200.14debian/0.14John Southworth
2012-06-13Remove IPS from zoneJohn Southworth
2012-03-030.13debian/0.13Deepti Kulkarni
2012-03-03new branchDeepti Kulkarni
2012-01-060.12debian/0.12John Southworth
2012-01-06Bugfix: 7712 add zone-policy operational mode commandJohn Southworth
2012-01-06Add function to return zone policy information so that it may be easily ↵John Southworth
queried from the webgui and operational commands
2011-07-070.11debian/0.11Deepti Kulkarni
2011-07-07new branchDeepti Kulkarni
2011-06-160.10debian/0.10Mohit Mehta
2011-06-16Bug 7154 Priority inversion error when deleting zone policyMohit Mehta
* Inverted Zone priorities to comply with new commit implementation. Previously, Zone priorities were: 245 zone-policy/zone/node.tag/from # after firewall, content-inspection 250 zone-policy # after zone-policy/zone/node.tag/from/ Now, Zone priorities look like this: 250 zone-policy # after firewall, content-inspection 251 zone-policy/zone/node.tag/from # after zone-policy This required an in-depth look at all zone-policy templates and all of Zone FW and IPS code to make sure that all of the different combinations of actions under zone-policy still work right. The combination of actions that needed most attention are the ones where actions in one priority are executed in the same commit as actions in other priority. Example "deleting the only interface in a zone and also, modifying firewall ruleset from that zone to another zone and deleting content-inspection from that zone to another zone" vyatta@vDUT-5# compare [edit zone-policy zone dmz] -interface eth0 [edit zone-policy zone lan from dmz] -content-inspection { - enable -} [edit zone-policy zone lan from dmz firewall] >name allow_all_another [edit]
2011-01-100.9debian/0.9Mohit Mehta
2011-01-10Fix Bug 6292 iptables chain-name must be reduced to 28 characters maxMohit Mehta
* change syntax check to limit zone names to 18 chars [10 chars are reserved for underneath zone chain names] and bump zone cfg-version to enable config migration (cherry picked from commit 8c1a5d7f9664fad5488e463d16f7587d7ebb385a)
2010-12-280.8debian/0.8An-Cheng Huang
2010-12-28new branchAn-Cheng Huang
2010-10-190.7debian/0.7Mohit Mehta
2010-10-19add common functions to add/remove jump to localin and localout feature chainsMohit Mehta
2010-10-150.6debian/0.6Mohit Mehta
2010-10-15common functions to add/delete interface to/from v4 and v6 feature zone chainsMohit Mehta
2010-10-130.5debian/0.5Mohit Mehta
2010-10-13move common hashes and create/delete zone chain functions to zone libraryMohit Mehta
2010-10-120.4debian/0.4Mohit Mehta
2010-10-12add content-inspection feature for zonesMohit Mehta
* code to configure content-inspection on a zone-pair basis * COMING UP : as much as possible, move code applicable to firewall and IPS and other future features to ZONE library
2010-10-080.3debian/0.3Mohit Mehta
2010-10-08no directory for op-mode templates so remove install hook for itMohit Mehta
2010-10-070.2debian/0.2Mohit Mehta
2010-10-07fix changelog syntaxMohit Mehta
2010-10-07remove changelog from .gitignoreMohit Mehta
2010-10-07Initial releasedebian/0.1Mohit Mehta
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-19 08:15:27 +0000