Added grouping functionality. This is not yet finished. It has been added to allow other developers test the functionality before optimizing all the rules to use groups. To use grouping, within an interface or router write: |
|
More...
|
about 20 years ago
|
*** empty log message *** |
|
More...
|
about 20 years ago
|
Added release info. |
|
More...
|
about 20 years ago
|
*** empty log message *** |
|
More...
|
about 20 years ago
|
Made the nat helpers print their real statements instead of always appearing as 'nat'. |
|
More...
|
about 20 years ago
|
Changed two: |
|
More...
|
about 20 years ago
|
Fixed a printf that was giving errors because an argument was not numeric. |
|
More...
|
about 20 years ago
|
Removed the "press return to continue" from the 'debug' mode. |
|
More...
|
about 20 years ago
|
FireHOL now checks that /var/lock/subsys (the dir RH uses for startup services lock files) exists before using it. |
|
More...
|
about 20 years ago
|
Added service WHOIS. |
|
More...
|
about 20 years ago
|
Kernel configuration is now searched in this order: |
|
More...
|
about 20 years ago
|
IMPORTANT: My second kid was born a week ago! |
|
More...
|
about 20 years ago
|
Patch 901194, patch for .spec |
|
More...
|
about 20 years ago
|
*** empty log message *** |
|
More...
|
about 20 years ago
|
Added finer control to control INVALID packets. The default is now not to drop invalid packets globaly, but to drop them as part of the protection statement (i.e. protection invalid). The default full/strong/all protections include the invalid match. |
|
More...
|
about 20 years ago
|
*** empty log message *** |
|
More...
|
about 20 years ago
|
updated policy documentation to reflect that FireHOL cannot be used for "ACCEPT EVERYTHING, DROP EXPLICITLY" type of firewalls. |
|
More...
|
about 20 years ago
|
*** empty log message *** |
|
More...
|
about 20 years ago
|
Removed a tcp-flags match from protection because it was a subset of another one already defined. |
|
More...
|
about 20 years ago
|
*** empty log message *** |
|
More...
|
about 20 years ago
|
Fixed the required commands finder to stop properly when some system command is not found in the system path. |
|
More...
|
about 20 years ago
|
Added: |
|
More...
|
about 20 years ago
|
Updates about the mac parameter. |
|
More...
|
about 20 years ago
|
Minor mac optional rule parameter fix. |
|
More...
|
about 20 years ago
|
Completed the mac optional rule parameter. This was implemented since v1.134 but it was producing rules for both input and output packets. |
|
More...
|
about 20 years ago
|
BUG 891471: Multicast CIDR block is actually 224.0.0.0/4. It extends from 224-239. |
|
More...
|
over 20 years ago
|
*** empty log message *** |
|
More...
|
over 20 years ago
|
Further optimized and reduced PRIVATE_IPS using: http://www.vergenet.net/linux/aggregate/ |
|
More...
|
over 20 years ago
|
Fixed a warning generated incorrectly by the mark helper. |
|
More...
|
over 20 years ago
|
*** empty log message *** |
|
More...
|
over 20 years ago
|