dumalogiya
/
openwrt
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
21,751 Commits
2 Branches
0 Tags
653 MiB
v19.07.3_mercusys_ac12_duma
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '48db59fab7'
${ noResults }
Commit Graph

15 Commits (48db59fab785ce881e154d83115de86d284fce5d)

Author SHA1 Message Date
Jo-Philipp Wich 4127e73b84 firewall: also set up nat reflection rules for redirects with proto all and/or no src_dport set 
SVN-Revision: 32652
 12 years ago
Jo-Philipp Wich 963a0cd98b firewall: fix nat reflection after netifd status format change - use /lib/functions/network.sh - simplify nat reflection code 
SVN-Revision: 31936
 12 years ago
Jo-Philipp Wich 329d18a25c firewall: rework interface address determination to skip ipv6 addresses 
SVN-Revision: 31755
 12 years ago
Jo-Philipp Wich 82fc13d3c2 firewall: fix nat reflection after netifd switch (#11460) 
SVN-Revision: 31754
 12 years ago
Jo-Philipp Wich f1e7045d30 firewall: further tune ICMPv6 default rules according to RFC4890 (#9893) 
SVN-Revision: 27979
 13 years ago
Jo-Philipp Wich 600a8517ad firewall: fix port range quirk in previous commit 
SVN-Revision: 27335
 13 years ago
Jo-Philipp Wich df14a48dc9 firewall: properly handle negated ports in nat reflection 
SVN-Revision: 27334
 13 years ago
Jo-Philipp Wich 68a1c8e1e3 firewall: - allow multiple ports, protocols, macs, icmp types per rule - implement "limit" and "limit_burst" options for rules - implement "extra" option to rules and redirects for passing arbritary flags to iptables - implement negations for "src_port", "dest_port", "src_dport", "src_mac", "proto" and "icmp_type" options - allow wildcard (*) "src" and "dest" options in rules to allow specifying "any" source or destination - validate symbolic icmp-type names against the selected iptables binary - properly handle forwarded ICMPv6 traffic in the default configuration 
SVN-Revision: 27317
 13 years ago
Jo-Philipp Wich 7bf84dc4f8 firewall: also establish forward rules when setting up nat reflection, back out early if reflection is disabled 
SVN-Revision: 23201
 14 years ago
Jo-Philipp Wich a1a31f1831 firewall: don't setup nat reflection if negations are used 
SVN-Revision: 23142
 14 years ago
Jo-Philipp Wich eb79296cc1 firewall: introduce SNAT support for redirect sections 
SVN-Revision: 22937
 14 years ago
Jo-Philipp Wich f4ee14e1c3 firewall: add option to disable NAT reflection 
SVN-Revision: 22908
 14 years ago
Jo-Philipp Wich ca5bf9e291 firewall: - handle NAT reflection in firewall hotplug, solves synchronizing issues on boot - introduce masq_src and masq_dest options to limit zone masq to specific ip ranges, supports multiple subnets and negation 
SVN-Revision: 22888
 14 years ago
Jo-Philipp Wich 5b365822f3 firwall: fix nat reflection for zones covering multiple networks 
SVN-Revision: 22442
 14 years ago
Jo-Philipp Wich d68e09200e firewall: add basic NAT reflection/NAT loopback support 
SVN-Revision: 22441
 14 years ago