]>
git.ipfire.org Git - people/pmueller/ipfire-2.x.git/log
Alexander Marx [Fri, 12 Apr 2013 10:39:57 +0000 (12:39 +0200)]
Forward Firewall: edited include file of backup.
Alexander Marx [Thu, 11 Apr 2013 15:33:22 +0000 (17:33 +0200)]
Forward Firewall: added SNAT multiport support
Alexander Marx [Thu, 11 Apr 2013 08:50:29 +0000 (10:50 +0200)]
Forward Firewall: Added multiport support to DNAT/Portforwarding
Now it is possible to use multiple ports under DNAT when TARGET has no Port, one Port or one Portrange defined
Alexander Marx [Mon, 8 Apr 2013 13:32:49 +0000 (15:32 +0200)]
Forward Firewall: little changes in ruletable layout. (Headline)
Alexander Marx [Thu, 4 Apr 2013 12:18:04 +0000 (14:18 +0200)]
Forward Firewall: some changes in en.pl and de.pl. Also adapted "apply" button in fwhosts.cgi
Alexander Marx [Thu, 4 Apr 2013 11:02:50 +0000 (13:02 +0200)]
Forward Firewall: Version 0.9.9.2
1) Some changes in en.pl
2) DNAT now supports REJECT/DROP rules
3) Bugfix: comma in remark customservicegroup
4) improved installer
Alexander Marx [Tue, 2 Apr 2013 09:24:22 +0000 (11:24 +0200)]
Forward Firewall: some fixes:
1) Counter was not correctly decreased when deleting a network from a customgroup
2) Convert-outgoingfw improved
3) Backup didn't set filepermissions correctly
Alexander Marx [Tue, 2 Apr 2013 06:43:18 +0000 (08:43 +0200)]
Forward Firewall: some typos in dmz-converter
Alexander Marx [Tue, 2 Apr 2013 03:40:50 +0000 (05:40 +0200)]
Forward Firewall: added dmz-converter.
Also extended backup.pl script to support old backups. Now it is possible to restore old backups into new firewall. On restore, all config files of new firewall will be destroyed and the 4 converters will recreate them.
Alexander Marx [Mon, 1 Apr 2013 04:26:58 +0000 (06:26 +0200)]
Forward Firewall: enabled Portranges for DNAT
Alexander Marx [Sun, 31 Mar 2013 14:18:12 +0000 (16:18 +0200)]
Forward Firewall: bugfix: DNAT now correctly creates rules, when customservice defined as target
Alexander Marx [Wed, 27 Mar 2013 11:36:19 +0000 (12:36 +0100)]
Forward Firewall: fix NAT-rules: iptables rule was not applied correctly in PORTFWACCESS
Alexander Marx [Tue, 26 Mar 2013 07:35:45 +0000 (08:35 +0100)]
Forward Firewall: bugfix
1) When editing a NAT rule, error message "port already used" fixed
Alexander Marx [Fri, 22 Mar 2013 06:55:17 +0000 (07:55 +0100)]
Forward Firewall: Version update forwardfw.cgi
Alexander Marx [Thu, 21 Mar 2013 16:34:30 +0000 (17:34 +0100)]
Forward Firewall: cleanup of initscript. Fixes double log entries when INPUT is set to REJECT
Alexander Marx [Thu, 21 Mar 2013 13:36:29 +0000 (14:36 +0100)]
Forward Firewall: Bugfix: blue was allowed to connect to everywhere if forward firewall was open
Alexander Marx [Thu, 21 Mar 2013 09:35:07 +0000 (10:35 +0100)]
Forward Firewall: Fix converter-outgoingfw. Produced wrong counters while converting
Alexander Marx [Thu, 21 Mar 2013 06:47:28 +0000 (07:47 +0100)]
Forward Firewall: fixed layout of deleted host in custom group
changed version nr in forwardfw.cgi
Alexander Marx [Thu, 21 Mar 2013 06:34:05 +0000 (07:34 +0100)]
Forward Firewall: fixed converter bug: Remark is "0" and Alias ip is taken as ip instead of name
Alexander Marx [Wed, 20 Mar 2013 10:03:29 +0000 (11:03 +0100)]
Forward Firewall: 0.9.8.7 Implemented SNAT/DNAT
reorganized firewall chains
Alexander Marx [Tue, 19 Mar 2013 11:56:38 +0000 (12:56 +0100)]
Forward Firewall: clean up some files
Fix iptables loop wirelessctrl
Fix firewall chain order
Fix policies (added comment for statistic)
Alexander Marx [Tue, 19 Mar 2013 04:39:53 +0000 (05:39 +0100)]
Forward Firewall: deleted portfw from buildsystem
Alexander Marx [Tue, 19 Mar 2013 04:23:54 +0000 (05:23 +0100)]
Forward Firewall: delete old Portforwarding from Firewall-menu
Alexander Marx [Tue, 19 Mar 2013 04:15:20 +0000 (05:15 +0100)]
Forward Firewall: delete old portforwarding from system and fix for wlan-firewall part 1 (loop)
Alexander Marx [Tue, 19 Mar 2013 03:48:23 +0000 (04:48 +0100)]
Forward Firewall: support for SNAT/DNAT in GUI and rules.pl
Alexander Marx [Sun, 17 Mar 2013 12:49:57 +0000 (13:49 +0100)]
Forward Firewall: Added support for DNAT/SNAT to forwardfw.cgi
Alexander Marx [Thu, 14 Mar 2013 15:24:52 +0000 (16:24 +0100)]
Forward Firewall: Firewall sets Internetdevice correctly now (was always red0)
Alexander Marx [Thu, 14 Mar 2013 05:11:28 +0000 (06:11 +0100)]
Forward Firewall:
1) Custom Hosts: now 17 chars can be entered into IP/MAC field
2) Forwardfw: Bugfix: When no alias is set and IPFIRE is selected as target, no target address is recognised
3) Forwardfw: Now source and Target addressfield (manual) are set to 17 chars maxlegth.
4) Converter: Bugfix: When starting converter from commandline, all hosts are entered into groups again.
Alexander Marx [Wed, 13 Mar 2013 07:50:32 +0000 (08:50 +0100)]
Forward Firewall: moved ruleaction-dropdown from top to target area.
some layout changes in forwardfw.cgi (when no alias exists, the dropdown after ipfire is not shown)
Alexander Marx [Wed, 13 Mar 2013 05:02:35 +0000 (06:02 +0100)]
Forward Firewall: fix converter for outgoingfw. remarkfield (new) was not implemented here
fwhosts: Some layout changes in tables (cellspacing='0')
Alexander Marx [Tue, 12 Mar 2013 13:51:34 +0000 (14:51 +0100)]
Forward Firewall: forgot to delete devel-comment
Alexander Marx [Tue, 12 Mar 2013 13:46:16 +0000 (14:46 +0100)]
Forward Firewall: fixed a bug in convert-outgoingfw. THe hosts are created with wrong amount of fields in hasharray.
Also fixed a bug which sets wrong firewall mode for FORWARD when outgoing rules are used.
Alexander Marx [Fri, 8 Mar 2013 07:58:22 +0000 (08:58 +0100)]
Forward Firewall: changes in de languagefile
Alexander Marx [Fri, 8 Mar 2013 07:38:41 +0000 (08:38 +0100)]
Forward Firewall: Fix ruletimes. Now the timevalues which are entered in the gui are saved to the rulefile.
Wenn rule.pl is called, the script calculates the difference to UTC time and sets the iptables times accordingly.
With this approach there's no need to save if the times are created in summertime or wintertime.
Alexander Marx [Thu, 7 Mar 2013 09:01:24 +0000 (10:01 +0100)]
Forward Firewall: put rule OUTGOING ACCEPT Related, established into /etc/init.d/firewall
deleted ACCEPT OUTGOINGFW related,established from POLICYOUT
Alexander Marx [Thu, 7 Mar 2013 06:43:28 +0000 (07:43 +0100)]
Forward Firewall: removed --kerneltz from rules.pl. New function timeconvert in forwardfw.cgiu takes care of timeconversion now
Alexander Marx [Thu, 7 Mar 2013 05:35:03 +0000 (06:35 +0100)]
Forward Firewall: Try to implement a timeconverter for Rules. New function timeconvert should convert localtime agains gmtime.
Alexander Marx [Tue, 5 Mar 2013 10:33:21 +0000 (11:33 +0100)]
Forward Firewall: New Version 0.9.8.2
Alexander Marx [Tue, 5 Mar 2013 10:21:13 +0000 (11:21 +0100)]
Forward Firewall: wrong <font> Tag leads to a sidemenu with small font
Alexander Marx [Tue, 5 Mar 2013 08:47:21 +0000 (09:47 +0100)]
Forward Firewall: added --kerneltz option to timeframe
Alexander Marx [Tue, 5 Mar 2013 05:00:07 +0000 (06:00 +0100)]
Forward Firewall: Fixed ruletable (view of protocols)
Alexander Marx [Mon, 4 Mar 2013 19:56:20 +0000 (20:56 +0100)]
Forward Firewall: Bugfix: When having more than 1 ICMP rule in a group, the rule is not created.
Also changed (INPUT) to (Input) in firewall-options
Alexander Marx [Sun, 3 Mar 2013 19:29:29 +0000 (20:29 +0100)]
Forward Firewall: Added versionnumber on bottom right of firewall.
Alexander Marx [Sun, 3 Mar 2013 19:12:34 +0000 (20:12 +0100)]
Forward Firewall: Updated strongswan patch provided my Michael. (Changes _updown script from FORWARD ACCEPT to RETURN)
Alexander Marx [Sun, 3 Mar 2013 05:12:01 +0000 (06:12 +0100)]
Forward Firewall: Added configoption in Buildsystem -< POLICY2='DROP' (for POLICYIN)
Alexander Marx [Sun, 3 Mar 2013 04:59:42 +0000 (05:59 +0100)]
Forward Firewall: /etc/init.d/firewall now creates POLICYIN
Alexander Marx [Sun, 3 Mar 2013 04:14:22 +0000 (05:14 +0100)]
Forward Firewall: Added Firewall-Options for INPUT Policy (DROP/REJECT) and built a new INPUT-POLICY in firewall-policy.
Alexander Marx [Sat, 2 Mar 2013 11:43:16 +0000 (12:43 +0100)]
Forward Firewall: update _updown on build
Alexander Marx [Sat, 2 Mar 2013 05:11:16 +0000 (06:11 +0100)]
Forward Firewall: deleted outgoingfwmac, is now useless
Alexander Marx [Fri, 1 Mar 2013 09:43:25 +0000 (10:43 +0100)]
Forward Firewall: deleted creation of OVPNFORWARD and the accept rule.
Alexander Marx [Thu, 28 Feb 2013 08:49:45 +0000 (09:49 +0100)]
Forward FIrewall: fixed typo
Alexander Marx [Thu, 28 Feb 2013 07:27:16 +0000 (08:27 +0100)]
Forward Firewall: LAyout change: All dropdowns now have same size
Alexander Marx [Thu, 28 Feb 2013 07:13:13 +0000 (08:13 +0100)]
Forward Firewall: chnaged "Internet" to "INTERNET" in dropdown (Target)
Alexander Marx [Thu, 28 Feb 2013 06:30:24 +0000 (07:30 +0100)]
Forward Firewall: reordered Firewall Menu and changed header.pl to reflect the new menuposition for Blue Access
Alexander Marx [Thu, 28 Feb 2013 05:05:32 +0000 (06:05 +0100)]
Forward Firewall: added an option to firewall-options to show all dropdowns on rulecreation site.
Alexander Marx [Wed, 27 Feb 2013 13:23:20 +0000 (14:23 +0100)]
Forward Firewall: Changed layout of rulecreation. Now only the dropdowns for configured networks are shown on the site
Also changed fwhosts.cgi (custom groups) to the same feature
Alexander Marx [Wed, 27 Feb 2013 04:35:41 +0000 (05:35 +0100)]
Forward Firewall: Some changes in langagefiles and layout in fwhosts.cgi
Alexander Marx [Tue, 26 Feb 2013 14:33:27 +0000 (15:33 +0100)]
Forward Firewall: changed menu to show access to blue correctly
Alexander Marx [Tue, 26 Feb 2013 13:40:16 +0000 (14:40 +0100)]
FOrward Firewall: Typo
Alexander Marx [Tue, 26 Feb 2013 13:34:30 +0000 (14:34 +0100)]
Forward Firewall: removed some text in p2p-block and changed dropdown to radiobutton in optionsfw
Alexander Marx [Tue, 26 Feb 2013 12:41:23 +0000 (13:41 +0100)]
Forward Firewall: reordered 50-firewall.menu
Alexander Marx [Tue, 26 Feb 2013 05:16:14 +0000 (06:16 +0100)]
Forward Firewall: added a 1px heigh line after each rule. so the coloured borders are looking better
Alexander Marx [Mon, 25 Feb 2013 20:40:09 +0000 (21:40 +0100)]
Forward Firewall: Forgot to delete a dev-comment
Alexander Marx [Mon, 25 Feb 2013 20:25:53 +0000 (21:25 +0100)]
Forward Firewall: Bugfix: Error appending or writing comments in rule
Alexander Marx [Mon, 25 Feb 2013 12:56:48 +0000 (13:56 +0100)]
Forward Firewall: rules.pl supports now DMZ rules. These rules are applied first
Alexander Marx [Mon, 25 Feb 2013 12:22:43 +0000 (13:22 +0100)]
Forward Firewall: disabled some dev-comments
Alexander Marx [Mon, 25 Feb 2013 12:11:13 +0000 (13:11 +0100)]
Forward Firewall: some changes for ISO
Alexander Marx [Mon, 25 Feb 2013 12:03:54 +0000 (13:03 +0100)]
Forward Firewall: Some further layout changes.
1) New textfile for DMZ rules
2) Tablegroups are shown on firewall site
3) Option in firewall-options to disable emtpy ruletables
4) Infotext on P2P-Block site
Alexander Marx [Sat, 23 Feb 2013 19:28:47 +0000 (20:28 +0100)]
Forward Firewall: added p2p-block.cgi to apache2
Alexander Marx [Sat, 23 Feb 2013 05:33:15 +0000 (06:33 +0100)]
Forward Firewall: minor changes an ruletable
Alexander Marx [Sat, 23 Feb 2013 05:21:42 +0000 (06:21 +0100)]
Forward Firewall: made colored borders in ruletable thinner (1px) and changed remarkline
Alexander Marx [Fri, 22 Feb 2013 12:04:30 +0000 (13:04 +0100)]
Forward Firewall: removed cellspacing and black lines between rules in ruletable
Alexander Marx [Fri, 22 Feb 2013 10:27:30 +0000 (11:27 +0100)]
Forward Firewall: New Firewall-option "show remark in ruletable"
Alexander Marx [Fri, 22 Feb 2013 09:12:59 +0000 (10:12 +0100)]
FORWARD Firewall: edited ruletable to look better on IE
Alexander Marx [Fri, 22 Feb 2013 09:01:27 +0000 (10:01 +0100)]
Forward Firewall: added newlines between groups in tablerule
Alexander Marx [Fri, 22 Feb 2013 08:50:22 +0000 (09:50 +0100)]
Forward Firewall: show default policy left aligned
Alexander Marx [Fri, 22 Feb 2013 08:33:05 +0000 (09:33 +0100)]
Forward Firewall: fixed Table in servicegroups and hostgroups
Alexander Marx [Fri, 22 Feb 2013 08:12:25 +0000 (09:12 +0100)]
Forward Firewall: added color for target "internet" (RED)
Alexander Marx [Fri, 22 Feb 2013 07:28:48 +0000 (08:28 +0100)]
Forward Firewall: added default option SHOWCOLOR to options and refined default behaviour of firewall in forwardfw.cgi
Alexander Marx [Fri, 22 Feb 2013 05:43:11 +0000 (06:43 +0100)]
Forward Firewall: Some minor changes in Language file timeframe:->timeframe
Alexander Marx [Fri, 22 Feb 2013 05:25:26 +0000 (06:25 +0100)]
FOrward Firewall: Minor Layout changes
Alexander Marx [Thu, 21 Feb 2013 20:53:52 +0000 (21:53 +0100)]
Forward Firewall: bugfix converter->default forward mode is now set correctly
some layout changes
Alexander Marx [Thu, 21 Feb 2013 15:40:47 +0000 (16:40 +0100)]
Forward Firewall: fix wlan clients now working with forwardfw
Alexander Marx [Thu, 21 Feb 2013 14:00:03 +0000 (15:00 +0100)]
Forward Firewall: changes in rule layout. new Option in firewall-options: it is now possible to select if the colors are shown in ruletable
Alexander Marx [Thu, 21 Feb 2013 09:26:55 +0000 (10:26 +0100)]
Forward Firewall: moved p2p-block to a seperate cgi and deleted it from forwardfw.cgi
Alexander Marx [Thu, 21 Feb 2013 08:34:07 +0000 (09:34 +0100)]
Forward Firewall: convert-outgoingfw now supports outgoing rules
Alexander Marx [Tue, 19 Feb 2013 15:30:41 +0000 (16:30 +0100)]
Forward Firewall: Bugfix: on update of network or hostst and changing remark to invalid value, the remark was saved
Alexander Marx [Tue, 19 Feb 2013 14:41:03 +0000 (15:41 +0100)]
FORWARD FIREWALL: Some Typos in language Files
Alexander Marx [Tue, 19 Feb 2013 14:24:24 +0000 (15:24 +0100)]
FORWARD FIREWALL: added remark in custom networks
Alexander Marx [Tue, 19 Feb 2013 05:48:00 +0000 (06:48 +0100)]
Forward Firewall: outgoing converter is now ble to set default policy correctly
Alexander Marx [Tue, 19 Feb 2013 05:34:48 +0000 (06:34 +0100)]
Forward Firewall: added Policymode for OUTGOING to converterscript
Alexander Marx [Tue, 19 Feb 2013 05:29:32 +0000 (06:29 +0100)]
Forward Firewall: some exentions for remarks
Alexander Marx [Mon, 18 Feb 2013 20:20:51 +0000 (21:20 +0100)]
Forward Firewall: Fixed typo
Alexander Marx [Mon, 18 Feb 2013 20:13:07 +0000 (21:13 +0100)]
Forward Firewall: added remark field to custom hosts and host table
Alexander Marx [Mon, 18 Feb 2013 15:10:42 +0000 (16:10 +0100)]
Forward Firewall: Fix 80,81,83 (Forum)
Apply Button now on group and rule site
remark can be delted
- and . are allowed in Hostname
Alexander Marx [Mon, 18 Feb 2013 11:28:30 +0000 (12:28 +0100)]
Forward Firewall: when creating a second group of services, the cached port and protocol from first group are shown in table
Alexander Marx [Mon, 18 Feb 2013 09:41:19 +0000 (10:41 +0100)]
Forward Firewall: Finalize integration of OUTGOING into firewall
Alexander Marx [Mon, 18 Feb 2013 04:36:18 +0000 (05:36 +0100)]
Forward Firewall: Fixed Firewall-options (preselection of new Dropdown) for outgoing firewall default behaviour (DROp/REJECT)
Alexander Marx [Sun, 17 Feb 2013 20:53:18 +0000 (21:53 +0100)]
FORWARD Firewall: integrating OUTGOING Firewall Part 2
Alexander Marx [Sun, 17 Feb 2013 12:58:35 +0000 (13:58 +0100)]
Forward Firewall: First part of adding OUTGOING to th efirewall