summaryrefslogtreecommitdiff
path: root/package/firewall/files/uci_firewall.sh
Commit message (Collapse)AuthorAgeFilesLines
* firewall: fix zone defaultsFelix Fietkau2009-10-111-2/+19
| | | | SVN-Revision: 18028
* firewall: do not process rules in reverseFelix Fietkau2009-10-101-1/+1
| | | | SVN-Revision: 18015
* firewall: fix MSS issue affection RELATED new connections (closes: #5173)Nicolas Thill2009-09-271-3/+3
| | | | SVN-Revision: 17762
* firewall: add sanity checks to zone default rules (patch from #5459)Felix Fietkau2009-09-241-3/+3
| | | | SVN-Revision: 17713
* firewall: emit hotplug events for interface add/removeFelix Fietkau2009-08-261-0/+2
| | | | SVN-Revision: 17415
* firewall: add icmp_type option to specify the icmp type in rule sections, ↵Jo-Philipp Wich2009-08-031-0/+3
| | | | | | bump pkg revision (#5554) SVN-Revision: 17115
* fix typo in the uci firewall scriptFlorian Fainelli2009-05-261-1/+1
| | | | SVN-Revision: 16076
* firewall: automatically set up NOTRACK rules to disable connection tracking ↵Felix Fietkau2009-05-141-13/+43
| | | | | | for zones that have no masquerading, no conntrack and no forwarding from/to other zones with masq/conntrack SVN-Revision: 15855
* firewall: process custom rules after forwardings and redirects, this ↵Jo-Philipp Wich2009-04-191-2/+2
| | | | | | actually allows blocking traffic to certain hosts and other rules SVN-Revision: 15278
* firewall: don't clear the mangle table at startup or stop - it doesn't use ↵Felix Fietkau2009-01-201-4/+0
| | | | | | it and clearing it breaks qos SVN-Revision: 14114
* firewall: introduce drop_invalid option to allow disabling the invalid state ↵Jo-Philipp Wich2009-01-161-7/+10
| | | | | | match SVN-Revision: 14061
* firewall: allow multiple interfaces to be part of one zone, fix the sanity ↵Felix Fietkau2009-01-161-30/+47
| | | | | | checks for that SVN-Revision: 14058
* firewall: clear the MSSFIX rulesFelix Fietkau2009-01-021-0/+1
| | | | SVN-Revision: 13826
* Unify portrange-support in firewall rule generator fixes #4404Steven Barth2009-01-011-0/+10
| | | | SVN-Revision: 13791
* disable the MSS fixup hack by default (most ISPs don't require this as a ↵Felix Fietkau2008-12-311-1/+4
| | | | | | workaround for MTU problems, only some do). this should give a nice speedup for routing on standard-compliant ISPs SVN-Revision: 13788
* fixes firewall for trunk, custom chains were never reched, as policies apply ↵John Crispin2008-10-141-3/+3
| | | | | | beforehand SVN-Revision: 12978
* fixes firewall rule generation. forwarding rules were inserted in input ↵John Crispin2008-09-281-3/+6
| | | | | | chains, fixes #4028 SVN-Revision: 12768
* custom chains were never reached on DROP/REJECT policy, fixes #4004 #4029John Crispin2008-09-281-3/+3
| | | | SVN-Revision: 12767
* firewall: fix default policies, add a check for duplicate defaults sections ↵Felix Fietkau2008-09-281-18/+34
| | | | | | and make custom chains more generic SVN-Revision: 12765
* firewall changes: - implement a REJECT policy and enable it by default, ↵Nicolas Thill2008-09-241-28/+52
| | | | | | reject packets with approriate response (closes: #3970) - cleanup syn_flood and remove logging SVN-Revision: 12688
* Fixed a typo in the firewall scriptsSteven Barth2008-09-161-1/+1
| | | | SVN-Revision: 12616
* Fixed a typo in firewall scripts, closes #4000Steven Barth2008-09-151-1/+1
| | | | SVN-Revision: 12613
* make uci firewall backwards compatible to the old firewall.userJohn Crispin2008-08-271-2/+9
| | | | SVN-Revision: 12408
* add proto tcpudp to firewallJohn Crispin2008-08-271-38/+51
| | | | SVN-Revision: 12407
* fix device duplication in firewall if the balancing of ifup and ifdown is brokenJohn Crispin2008-08-271-2/+9
| | | | SVN-Revision: 12404
* make sure uci firewall reverts its states when stoppedJohn Crispin2008-08-271-0/+1
| | | | SVN-Revision: 12403
* fixes uci firewall init order, Signed-off-by: Roberto RiggioJohn Crispin2008-08-271-2/+2
| | | | SVN-Revision: 12402
* firewall: Added support for port-ranges as firstPort-lastPort to redirect ↵Steven Barth2008-08-271-0/+17
| | | | | | sections SVN-Revision: 12396
* adds 5 new chains to the uci firewall that can be used to hook custom rulesJohn Crispin2008-08-271-1/+16
| | | | SVN-Revision: 12395
* adds more sanity checks to uci firewallJohn Crispin2008-08-261-0/+4
| | | | SVN-Revision: 12392
* use proto instead of protocol in uci firewallJohn Crispin2008-08-261-5/+5
| | | | SVN-Revision: 12391
* fix some firewall script typos (patch from #3897)Felix Fietkau2008-08-171-2/+3
| | | | SVN-Revision: 12332
* fix typo, proto should be protocolTravis Kemen2008-08-161-1/+1
| | | | SVN-Revision: 12318
* trigger error if dport is used when no proto is definedJohn Crispin2008-08-151-0/+4
| | | | SVN-Revision: 12317
* uci firewall - make uci firewall default and remove old code - fix up ↵John Crispin2008-08-111-0/+285
dependencies SVN-Revision: 12284
generated by cgit v1.1 at 2024-11-03 15:31:00 +0000