]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5e3067c) | patch
initscripts/suricata: Rework creation of firewall rules.
authorStefan Schantl <stefan.schantl@ipfire.org>
Thu, 25 Apr 2019 17:31:48 +0000 (19:31 +0200)
committerArne Fitzenreiter <arne_f@ipfire.org>
Fri, 26 Apr 2019 05:46:15 +0000 (07:46 +0200)
commit9cf253e150078852877f5ee530aeb3408fa4216b
treea9730ea2ee3faf72b1feb70d2f01a374b77747b8tree | snapshot
parent5e3067cb52bdb613a193c2c0280e07d10c30f6decommit | diff
initscripts/suricata: Rework creation of firewall rules.

The script now will use the previously introduced seperate firewall chains called
IPS_INPUT, IPS_FORWARD and IPS_OUTPUT.

The commit also creates an AND connection between the choosen network zones in the UI and
the final firwall rules.

Fixes #12062.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
src/initscripts/system/suricata diff | blob | blame | history
IPFire 2.x development tree