hurricos/openwrt-mirror
1
0
Fork 0
mirror of git://git.openwrt.org/openwrt/openwrt.git synced 2025-10-30 21:44:27 -04:00
Code Issues Projects Releases Wiki Activity
19,828 Commits 10 Branches 85 Tags 261 MiB
a31e090255
Commit Graph

11 Commits

Author SHA1 Message Date
Jo-Philipp Wich
f1e7045d30 firewall: further tune ICMPv6 default rules according to RFC4890 (#9893) 
SVN-Revision: 27979
 2011-08-14 00:33:29 +00:00
Jo-Philipp Wich
600a8517ad firewall: fix port range quirk in previous commit 
SVN-Revision: 27335
 2011-07-01 11:50:48 +00:00
Jo-Philipp Wich
df14a48dc9 firewall: properly handle negated ports in nat reflection 
SVN-Revision: 27334
 2011-07-01 11:48:14 +00:00
Jo-Philipp Wich
68a1c8e1e3 firewall: - allow multiple ports, protocols, macs, icmp types per rule - implement "limit" and "limit_burst" options for rules - implement "extra" option to rules and redirects for passing arbritary flags to iptables - implement negations for "src_port", "dest_port", "src_dport", "src_mac", "proto" and "icmp_type" options - allow wildcard (*) "src" and "dest" options in rules to allow specifying "any" source or destination - validate symbolic icmp-type names against the selected iptables binary - properly handle forwarded ICMPv6 traffic in the default configuration 
SVN-Revision: 27317
 2011-06-30 01:31:23 +00:00
Jo-Philipp Wich
7bf84dc4f8 firewall: also establish forward rules when setting up nat reflection, back out early if reflection is disabled 
SVN-Revision: 23201
 2010-10-03 18:11:59 +00:00
Jo-Philipp Wich
a1a31f1831 firewall: don't setup nat reflection if negations are used 
SVN-Revision: 23142
 2010-09-28 11:11:11 +00:00
Jo-Philipp Wich
eb79296cc1 firewall: introduce SNAT support for redirect sections 
SVN-Revision: 22937
 2010-09-05 19:03:17 +00:00
Jo-Philipp Wich
f4ee14e1c3 firewall: add option to disable NAT reflection 
SVN-Revision: 22908
 2010-09-04 17:49:14 +00:00
Jo-Philipp Wich
ca5bf9e291 firewall: - handle NAT reflection in firewall hotplug, solves synchronizing issues on boot - introduce masq_src and masq_dest options to limit zone masq to specific ip ranges, supports multiple subnets and negation 
SVN-Revision: 22888
 2010-09-04 15:49:13 +00:00
Jo-Philipp Wich
5b365822f3 firwall: fix nat reflection for zones covering multiple networks 
SVN-Revision: 22442
 2010-07-31 13:25:56 +00:00
Jo-Philipp Wich
d68e09200e firewall: add basic NAT reflection/NAT loopback support 
SVN-Revision: 22441
 2010-07-31 13:06:14 +00:00