aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* do not generate superfluous chain when 'dnat' used without 'dest'v1.1.11.1-stableKaarle Ritvanen2014-04-161-2/+3
* make 'dnat' and 'out' parameters work togetherKaarle Ritvanen2014-04-161-9/+12
* allow 'dnat' parameter without 'dest'Kaarle Ritvanen2014-04-161-3/+0
* error message for invalid top-level attributesKaarle Ritvanen2014-04-161-0/+4
* default 'after' to relative complement of 'before' in 'imported'v1.1.0Kaarle Ritvanen2014-03-311-4/+12
* include/exclude actions in dnat, snat, and no-track rulesKaarle Ritvanen2014-03-314-17/+25
* default filter action to acceptKaarle Ritvanen2014-03-311-0/+2
* optimize chain selection for related rules (always ACCEPT)Kaarle Ritvanen2014-03-311-8/+6
* distinguish local-destined packets before routing decisionKaarle Ritvanen2014-03-312-14/+18
* make boolean variables workKaarle Ritvanen2014-03-281-2/+2
* rename 'reverse-type' to 'reply-type'v1.0.0Kaarle Ritvanen2014-03-072-4/+4
* awall/json: define telnet serviceLeonardo Arena2014-03-071-0/+1
* properly handle stateless ICMP rulesv0.3.5Kaarle Ritvanen2014-02-282-5/+9
* constrain 'netbios-ns' service to IPv4 onlyv0.3.4Kaarle Ritvanen2013-09-303-88/+121
* create /var/run/awall directory at run-timev0.3.3Kaarle Ritvanen2013-09-112-1/+2
* check correctness of 'action' attributev0.3.2Kaarle Ritvanen2013-08-152-6/+12
* services: correct the name of netbios-ns helperKaarle Ritvanen2013-08-151-1/+1
* split into multiple rules when multiport module's port limit is exceededKaarle Ritvanen2013-08-151-8/+30
* add service definitionsKaarle Ritvanen2013-08-151-1/+4
* ignore ULOG for IPv6 rulesKaarle Ritvanen2013-08-151-4/+8
* add missing '-m helper' to rules when requiredKaarle Ritvanen2013-08-151-1/+1
* allow defining after directive as stringKaarle Ritvanen2013-08-151-1/+3
* fix ratelimiting to work with bursts properlyTimo Teräs2013-08-021-1/+1
* limit packet/connection rate per source IPKaarle Ritvanen2013-08-021-1/+1
* awall/json: define service tftpv0.3.1Leonardo Arena2013-03-091-1/+2
* secure use of connection tracking helpersv0.3.0Kaarle Ritvanen2013-02-192-24/+106
* create /etc/awall/privatev0.2.17Kaarle Ritvanen2013-02-191-0/+1
* allow returning nil from module event functionsv0.2.16Kaarle Ritvanen2013-02-191-2/+4
* use the same mark for all transparent proxy rulesKaarle Ritvanen2013-02-193-70/+87
* ensure that awall's default policies are processed firstKaarle Ritvanen2013-02-193-11/+26
* fixed transparent proxy supportKaarle Ritvanen2013-02-082-27/+57
* detect invalid import referencesKaarle Ritvanen2013-02-081-1/+5
* use connection marking with transparent proxiesKaarle Ritvanen2013-02-084-73/+64
* rewrote code combining zone and address option fragmentsKaarle Ritvanen2013-02-081-15/+19
* overhaul of policy file handlingKaarle Ritvanen2013-02-084-151/+160
* packet logging without filteringKaarle Ritvanen2013-02-082-61/+100
* corrected processing order of module contentsKaarle Ritvanen2013-02-081-6/+11
* copyright and license notice in help textKaarle Ritvanen2013-02-051-1/+6
* included GPL2 license textKaarle Ritvanen2013-01-3121-20/+359
* statistical packet loggingKaarle Ritvanen2013-01-301-4/+20
* deterministic (alphabetical) ordering for tables and chains in ip[6]tables filesKaarle Ritvanen2013-01-301-6/+10
* support for all NFLOG and ULOG optionsv0.2.15Kaarle Ritvanen2013-01-302-4/+27
* combine limit and log chains when possibleKaarle Ritvanen2013-01-301-22/+24
* simplify limit definitionsKaarle Ritvanen2013-01-301-2/+8
* handle limit counts greater than max packet count for xt_recentKaarle Ritvanen2013-01-301-8/+33
* stop using obsolete NOTRACK targetKaarle Ritvanen2013-01-301-1/+1
* improved error handlingKaarle Ritvanen2013-01-305-127/+189
* make to-port attribute optional in tproxy rulesKaarle Ritvanen2013-01-241-2/+2
* transparent proxy modulev0.2.14Kaarle Ritvanen2013-01-241-0/+41
* allow manipulation of option fragments in the middle of Rule.trulesKaarle Ritvanen2013-01-241-2/+8