summaryrefslogtreecommitdiff
path: root/package/network/config
Commit message (Collapse)AuthorAgeFilesLines
...
* netifd: fix IPv6-addresses disappearing due to lifetime-overflowsSteven Barth2013-05-281-2/+2
| | | | SVN-Revision: 36748
* firewall3: update to git headJo-Philipp Wich2013-05-271-8/+9
| | | | | | | | | - allows building without IPv6 support - uses more robust rules to cope with missing libext.a - uses better linking strategy to avoid symbol clashes with older iptables - introduces source compatiblity layer for different libxtables versions SVN-Revision: 36736
* firewall3: update to git headJo-Philipp Wich2013-05-261-2/+2
| | | | | | | | | - allows symbolic notation for src_ip, src_dip and dest_ip options, e.g. option src_ip 'lan' to automatically resolve to "192.168.1.0/24" - automatically infer destination zone for redirects from target ip, this makes 'dest' optional and nat reflection setup more robust - properly support output rules with dest '*' to hook directly into delegate_output - fixes crash when processing rules with unresolved targets SVN-Revision: 36721
* firewall3: update to git headJo-Philipp Wich2013-05-241-3/+3
| | | | | | - fixes linking issues with some toolchains SVN-Revision: 36703
* firewall3: update to git headJo-Philipp Wich2013-05-231-2/+2
| | | | | | | - Use weak references for instantiating libext*.a matches, makes fw3 independant from the compile time features of iptables - Do not leak memory when processing rules with unknown targets or matches SVN-Revision: 36698
* firewall3: Remove abandonend includeSteven Barth2013-05-232-8/+1
| | | | SVN-Revision: 36692
* firewall3: update to git headJo-Philipp Wich2013-05-221-2/+2
| | | | | | | - fix build on Linux < 3.7 - limit zone names to 14 bytes SVN-Revision: 36691
* firewall3: update to git headJo-Philipp Wich2013-05-221-2/+2
| | | | | | | | - fixes reload when firewall is not running already - fixes crash when ipsets are supported but undeclared - fixes handling of per zone user chains on reload SVN-Revision: 36689
* firewall3: update to git headJo-Philipp Wich2013-05-211-2/+2
| | | | | | | - fixes segfault in flush command if ipset support is not available - fixes internal rule generation if custom chains are enabled SVN-Revision: 36686
* firewall3: move libext*.a copying to compile phaseJo-Philipp Wich2013-05-211-2/+2
| | | | SVN-Revision: 36684
* firewall3: update to git headJo-Philipp Wich2013-05-211-3/+14
| | | | | | | * use libiptc and libxtables directly to manage ruleset, iptables-restore is unreliable and prone to race conditions * make ipset integration more reliable SVN-Revision: 36681
* netifd: Unify interface-based routing for IPv4 and IPv6 * Add interface ↵Steven Barth2013-05-171-2/+2
| | | | | | | | option to set routing table for protocol routes * Enabled for IPv6 for source-based filtering, disabled for IPv4 Based on a patch by Kristian Evensen. Thank You. SVN-Revision: 36653
* netifd: Various IPv6 improvements * Add support for IP-in-IPv6 tunnels ↵Steven Barth2013-05-131-2/+2
| | | | | | (DS-Lite) * Use source-based routing for IPv6 to allow multi-wan * Various smaller tunnel setup improvements SVN-Revision: 36627
* netifd: added support for setting up 6rd from DHCPSteven Barth2013-05-132-2/+28
| | | | SVN-Revision: 36626
* firewall3: Remove obsoleted ULA-borderSteven Barth2013-05-132-9/+1
| | | | SVN-Revision: 36624
* firewall3: add wan6 interface to wan-zone by defaultSteven Barth2013-05-131-1/+1
| | | | SVN-Revision: 36623
* firewall: Remove obsoleted ULA-border ruleSteven Barth2013-05-132-20/+1
| | | | SVN-Revision: 36622
* firewall3: update to git headJo-Philipp Wich2013-05-021-2/+2
| | | | | | | - assume "tcp+udp" if no protcol is specified in rules or redirects (#13422, #13386) - add support for fwmark matches and mark setting targets SVN-Revision: 36521
* netifd: update to git head - disables multicast snooping by default on bridgesJo-Philipp Wich2013-04-271-2/+2
| | | | SVN-Revision: 36463
* netifd: update to the latest version, fixes interface reload issues when ↵Felix Fietkau2013-04-251-2/+2
| | | | | | removing the ifname option SVN-Revision: 36424
* firewall3: Make IPv6 ULA-Border generation dynamicSteven Barth2013-04-243-20/+16
| | | | | | This fixes working behind another router which gives out ULAs. SVN-Revision: 36416
* netifd: Improve IPv6-ULA assignment handlingSteven Barth2013-04-221-2/+2
| | | | SVN-Revision: 36383
* netifd: update to latest version, fixes some device handling crashesFelix Fietkau2013-04-151-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 36336
* qos-scripts: add queue length and quantum limit, suggested by dtahtFelix Fietkau2013-04-091-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 36294
* add portmap support to userlandJohn Crispin2013-04-094-2/+95
| | | | | | Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 36284
* add "swconfig list" supportJohn Crispin2013-04-093-0/+41
| | | | | | Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 36282
* netifd: fix route / route6 regression (#13303)Jo-Philipp Wich2013-04-091-2/+2
| | | | SVN-Revision: 36281
* Remove deprecated ip6slaac option * use proto=dhcpv6 with reqprefix=no insteadSteven Barth2013-04-091-19/+0
| | | | SVN-Revision: 36280
* netifd: Bump to latest version * Fix a memory corruption when updating IPv6 ↵Steven Barth2013-04-051-2/+2
| | | | | | prefixes * Fix route sorting order (nbd) * Add support for ip rules (jow) * Implement support for route / route6 table attribute (jow) SVN-Revision: 36196
* netifd: Rewrite IPv6 prefix assignment * Add ip6hint option to specify ↵Steven Barth2013-04-031-2/+2
| | | | | | assigned subprefixes * Add preliminary support for RFC 6603 prefix exclusion SVN-Revision: 36193
* firewall3: update to git headJo-Philipp Wich2013-03-221-2/+2
| | | | | | | * fixes parsing of src/dest '*' * fixes parsing of proto 'all' SVN-Revision: 36111
* firewall3: update to git headJo-Philipp Wich2013-03-211-2/+2
| | | | | | * fixes port remapping rules (#13217) SVN-Revision: 36100
* netifd: Fix adding IPv6 DNS-servers to resolv.confSteven Barth2013-03-201-2/+2
| | | | | | In some cases IPv6 DNS-servers were not added correctly. SVN-Revision: 36095
* firewall3: update to git headJo-Philipp Wich2013-03-191-2/+2
| | | | | | * fixes reload handling of zones and ipsets that are still running but already deleted from the config SVN-Revision: 36092
* firewall3: update to git headJo-Philipp Wich2013-03-191-2/+2
| | | | | | | - support network names in per-zone 'masq_src', 'masq_dest' and 'subnet' options (#13197) - do not allow src_mac option for SNAT rules SVN-Revision: 36090
* firewall3: update to git headJo-Philipp Wich2013-03-141-2/+2
| | | | | | | * Introduce "option reload" for includes to specify whether includes should be processed on reload (e.g. when tapping into internal chains) * Allow "network" and "device" commands while firewall is running (to make them usable in includes) SVN-Revision: 36009
* firewall3: update to git headJo-Philipp Wich2013-03-133-3/+9
| | | | | | | | | | * Adds support for emitting hotplug events when creating and clearing zones (fixes miniupnpd) * Make NAT reflection direction configurable * Map init script stop action to flush * Map init script reload action to reload * Respect init script disabled state in hotplug handler SVN-Revision: 35998
* firewall3: update to git headJo-Philipp Wich2013-03-112-2/+5
| | | | | | | | | | * Fixes compilation against eglibc * Fixes tracking logic when selectively restarting IPv4 or IPv6 firewall * Fixes tracking logic for user chains by differentiating between reloads and restarts * Introduces per-zone user chains {input,output,forwarding,prerouting,postrouting}_$zone_rule * Supports legacy "tcpudp" protocol notation again SVN-Revision: 35969
* Revert "firewall3: update to git head"Jo-Philipp Wich2013-03-082-5/+2
| | | | | | This reverts commit 89969fa333c90fdb217b7289272f3427add107de. SVN-Revision: 35904
* firewall3: update to git headJo-Philipp Wich2013-03-082-2/+5
| | | | | | | - introduce per-zone user chains - support legacy "tcpudp" protocol notation SVN-Revision: 35903
* firewall3: add default config and firewall.userJo-Philipp Wich2013-03-053-0/+208
| | | | SVN-Revision: 35889
* firewall3: update to git head, introduces support for "enabled" optionJo-Philipp Wich2013-03-021-2/+2
| | | | SVN-Revision: 35845
* firewall3: clear contnrack table on flush, set policies to drop during rule ↵Jo-Philipp Wich2013-02-271-2/+2
| | | | | | reload SVN-Revision: 35820
* firewall: fix logging rule regression (#12999)Jo-Philipp Wich2013-02-222-2/+2
| | | | SVN-Revision: 35745
* firewall3: add support for shell script and iptables-restore style includesJo-Philipp Wich2013-02-222-4/+4
| | | | SVN-Revision: 35744
* netifd: only update resolv.conf.auto if changed This avoids logspam under ↵Steven Barth2013-02-221-2/+2
| | | | | | certain conditions. SVN-Revision: 35743
* firewall3: update to git headJo-Philipp Wich2013-02-212-2/+6
| | | | | | | | | - all uci rules are boxed in custom chains now, so a firewall stop leaves user rules intact - properly handle selective ipv4 or ipv6 only firewall start/stop/restart actions - support ip ranges (e.g. option src_ip '!192.168.1.1-192.168.1.100' -> -m iprange ! --src-range 192.168.1.1-192.168.1.100') - support time options (e.g. option weekdays 'Mon Tue Sat' -> -m time --weekdays 1,2,6') SVN-Revision: 35738
* firewall3 - a C implementation of the current firewall scriptsJo-Philipp Wich2013-02-173-0/+70
| | | | SVN-Revision: 35643
* firewall: various enhancementsJo-Philipp Wich2013-02-047-97/+133
| | | | | | | | | | | | - reduce mssfix related log spam (#10681) - separate src and dest terminal chains (#11453, #12945) - disable per-zone custom chains by default, they're rarely used Additionally introduce options "device", "subnet", "extra", "extra_src" and "extra_dest" to allow defining zones not related to uci interfaces, e.g. to match "ppp+" or any tcp traffic to and from a specific port. SVN-Revision: 35484
* netifd: Improved IPv6 featureset * Fix reloading of ula-prefixes * Added ↵Steven Barth2013-02-011-2/+2
| | | | | | support for temporary addresses and routes * Added support for offlink addresses * Improved status-output for assigned prefixes SVN-Revision: 35420
generated by cgit v1.1 at 2024-07-22 10:40:34 +0000