| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | firewall: also set up nat reflection rules for redirects with proto all and/o... | Jo-Philipp Wich | 2012-07-09 | 2 | -2/+3 |
| * | firewall: allow incoming ICMPv6 router-advertisement and neighbor-advertiseme... | Jo-Philipp Wich | 2012-06-08 | 2 | -1/+3 |
| * | /etc/functions.sh => /lib/functions.sh | Jo-Philipp Wich | 2012-06-05 | 2 | -2/+2 |
| * | firewall: fix nat reflection after netifd status format change - use /lib/fun... | Jo-Philipp Wich | 2012-05-28 | 2 | -48/+10 |
| * | firewall: rework interface address determination to skip ipv6 addresses | Jo-Philipp Wich | 2012-05-16 | 1 | -9/+19 |
| * | firewall: fix nat reflection after netifd switch (#11460) | Jo-Philipp Wich | 2012-05-16 | 2 | -4/+34 |
| * | minor change: adjust formatting of firewall.config | Mirko Vogt | 2012-04-21 | 1 | -13/+13 |
| * | firewall: revert processing order of redirects and rules, ensures that rules ... | Jo-Philipp Wich | 2012-03-18 | 2 | -4/+4 |
| * | firewall: fix fw__uci_state_del() procedure (#11132) | Jo-Philipp Wich | 2012-03-13 | 2 | -3/+3 |
| * | firewall: allow ICMPv6 type 129 (echo reply) - this fixes basic ICMPv6 in cas... | Jo-Philipp Wich | 2012-02-25 | 2 | -1/+3 |
| * | firewall: bail out if uci is used in firewall include files | Jo-Philipp Wich | 2012-02-23 | 2 | -2/+8 |
| * | iptables: make it possible to dynamically configure built-in statically linke... | Felix Fietkau | 2012-02-22 | 1 | -1/+1 |
| * | firewall: don't filter IPv4 ICMP types (#10928) | Jo-Philipp Wich | 2012-02-07 | 2 | -5/+2 |
| * | firewall: add support for "local" port forwards which target an internal addr... | Jo-Philipp Wich | 2012-01-08 | 2 | -4/+15 |
| * | firewall: - introduce per-section "option enabled" which defaults to "1" - us... | Jo-Philipp Wich | 2011-12-20 | 3 | -2/+11 |
| * | firewall: add DHCPv6 default rule (#10381) | Jo-Philipp Wich | 2011-11-09 | 2 | -1/+13 |
| * | firewall: relocate TCPMSS rules into mangle table, add code to selectively cl... | Jo-Philipp Wich | 2011-10-29 | 4 | -7/+21 |
| * | firewall: do not produce 0.0.0.0/0 if a symbolic masq_src or masq_dest is giv... | Jo-Philipp Wich | 2011-10-27 | 3 | -4/+7 |
| * | firewall: prevent ip6tables -t nat rules (#10265) | Jo-Philipp Wich | 2011-10-23 | 2 | -2/+3 |
| * | firewall: fix another instance of unquoted "*" | Jo-Philipp Wich | 2011-10-22 | 2 | -2/+2 |
| * | firewall: fix possible expansion of "*" when rules with "option src *" are pr... | Jo-Philipp Wich | 2011-10-22 | 2 | -6/+11 |
| * | firewall: do not check for module availability, let iptables fail if a featur... | Jo-Philipp Wich | 2011-10-22 | 2 | -16/+2 |
| * | firewall: make ESTABLISHED,RELATED rules match before INVALID, use conntrack ... | Jo-Philipp Wich | 2011-09-01 | 2 | -9/+9 |
| * | firewall: further tune ICMPv6 default rules according to RFC4890 (#9893) | Jo-Philipp Wich | 2011-08-14 | 3 | -2/+18 |
| * | firewall: prevent redundant rules if multiple ports and multiple icmp types a... | Jo-Philipp Wich | 2011-07-26 | 2 | -8/+17 |
| * | firewall: fix serious bug in state var handling (#9746) | Jo-Philipp Wich | 2011-07-20 | 2 | -3/+3 |
| * | firewall: rework state variable handling, use uci_toggle_state() where applic... | Jo-Philipp Wich | 2011-07-15 | 2 | -18/+25 |
| * | firewall: make sure that -m mac is used with --mac-source, follow up to r27508 | Jo-Philipp Wich | 2011-07-07 | 2 | -2/+2 |
| * | firewall: also correct another variable missed in previous commit | Daniel Dickinson | 2011-07-07 | 1 | -1/+1 |
| * | firewall: fix wrong variable names for protocol command line parameter - were... | Daniel Dickinson | 2011-07-07 | 1 | -2/+2 |
| * | firewall: - solve scoping issues when multiple values are used, thanks Daniel... | Jo-Philipp Wich | 2011-07-06 | 4 | -30/+26 |
| * | firewall: fix udp rules for tcpudp proto rules using src_port and dest_port a... | Daniel Dickinson | 2011-07-06 | 1 | -0/+7 |
| * | firewall: fix port range quirk in previous commit | Jo-Philipp Wich | 2011-07-01 | 1 | -2/+2 |
| * | firewall: properly handle negated ports in nat reflection | Jo-Philipp Wich | 2011-07-01 | 2 | -5/+13 |
| * | firewall: refine default ICMPv6 rules to better conform with RFC4890, do not ... | Jo-Philipp Wich | 2011-06-30 | 1 | -13/+2 |
| * | firewall: restore local port relocation ability from r26617 | Jo-Philipp Wich | 2011-06-30 | 1 | -3/+3 |
| * | firewall: - allow multiple ports, protocols, macs, icmp types per rule - impl... | Jo-Philipp Wich | 2011-06-30 | 6 | -74/+220 |
| * | firewall: ensure that fw_get_subnet4() sets an empty value if no (valid) IPv4... | Jo-Philipp Wich | 2011-06-16 | 1 | -0/+1 |
| * | firewall: allow symbolic names of interfaces and aliases in masq_src and masq... | Jo-Philipp Wich | 2011-06-16 | 3 | -3/+28 |
| * | firewall: explictely mention network in default configuration, makes it less ... | Jo-Philipp Wich | 2011-05-20 | 1 | -0/+2 |
| * | firewall: revert accidential committed changes from r26805 | Jo-Philipp Wich | 2011-05-02 | 1 | -39/+11 |
| * | firewall: provide examples of ssh port relocation on firewall and IPsec passt... | Jo-Philipp Wich | 2011-05-02 | 2 | -11/+61 |
| * | firewall: prevent excessive uci state data aggregation (#9152) | Jo-Philipp Wich | 2011-04-20 | 2 | -1/+3 |
| * | firewall: allow local redirection of ports | Jo-Philipp Wich | 2011-04-12 | 1 | -3/+2 |
| * | firewall: prevent duplicate values in interface state vars | Jo-Philipp Wich | 2011-03-30 | 2 | -2/+5 |
| * | Keep firewall.user during sysupgrades | Travis Kemen | 2011-03-20 | 2 | -0/+3 |
| * | firewall: move include sourcing into a subshell, this makes the firewall init... | Jo-Philipp Wich | 2011-03-02 | 2 | -3/+5 |
| * | firewall: fix rule generation for v4 or v6 only zones (#8955) | Jo-Philipp Wich | 2011-03-01 | 2 | -2/+5 |
| * | firewall: fix wrong rule order if multiple protocols are used | Jo-Philipp Wich | 2011-01-27 | 2 | -4/+4 |
| * | firewall: insert SNAT and DNAT rules according to the order of the configurat... | Jo-Philipp Wich | 2010-10-08 | 3 | -3/+6 |
