summaryrefslogtreecommitdiffstats
path: root/package/firewall/files/reflection.hotplug
Commit message (Collapse)AuthorAgeFilesLines
* firewall: - allow multiple ports, protocols, macs, icmp types per rule - ↵Jo-Philipp Wich2011-06-301-0/+1
| | | | | | implement "limit" and "limit_burst" options for rules - implement "extra" option to rules and redirects for passing arbritary flags to iptables - implement negations for "src_port", "dest_port", "src_dport", "src_mac", "proto" and "icmp_type" options - allow wildcard (*) "src" and "dest" options in rules to allow specifying "any" source or destination - validate symbolic icmp-type names against the selected iptables binary - properly handle forwarded ICMPv6 traffic in the default configuration SVN-Revision: 27317
* firewall: also establish forward rules when setting up nat reflection, back ↵Jo-Philipp Wich2010-10-031-6/+15
| | | | | | out early if reflection is disabled SVN-Revision: 23201
* firewall: don't setup nat reflection if negations are usedJo-Philipp Wich2010-09-281-0/+3
| | | | SVN-Revision: 23142
* firewall: introduce SNAT support for redirect sectionsJo-Philipp Wich2010-09-051-1/+4
| | | | SVN-Revision: 22937
* firewall: add option to disable NAT reflectionJo-Philipp Wich2010-09-041-0/+4
| | | | SVN-Revision: 22908
* firewall: - handle NAT reflection in firewall hotplug, solves synchronizing ↵Jo-Philipp Wich2010-09-041-1/+1
| | | | | | issues on boot - introduce masq_src and masq_dest options to limit zone masq to specific ip ranges, supports multiple subnets and negation SVN-Revision: 22888
* firwall: fix nat reflection for zones covering multiple networksJo-Philipp Wich2010-07-311-34/+56
| | | | SVN-Revision: 22442
* firewall: add basic NAT reflection/NAT loopback supportJo-Philipp Wich2010-07-311-0/+79
SVN-Revision: 22441
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-19 20:54:26 +0000