Subversion Repositories ALCASAR

(root)/conf/etc/alcasar-iptables-local.sh – Rev 2716

Go to most recent revision | Hide changed files | Details | Compare with Previous | Blame

Filtering Options

From rev	To rev	Max revs

Search history for

Show All

Rev	Age	Author	Path	Log message	Changes
2716	1866 d 12 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Minor change of the local iptables rule "Allow managers to access ACC from the external network"	/conf/etc/alcasar-iptables-local.sh
2652	1994 d 7 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/		/conf/etc/alcasar-iptables-local.sh
2645	1999 d 16 h	rexy	/repos/alcasar/trunk/conf/etc/	- Exemple of a PAT	/conf/etc/alcasar-iptables-local.sh
2621	2061 d 11 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Move SMTP port to a variable for output mails rule in alcasar-iptables-local.sh	/conf/etc/alcasar-iptables-local.sh
2547	2176 d 8 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Add bypass mode compatibility to example "Deny access to protected networks from internal LAN" in alcasar-iptables-local.sh	/conf/etc/alcasar-iptables-local.sh
2538	2182 d 5 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Add two examples in alcasar-iptables-local.sh: - Deny access to protected networks from internal LAN - Allow managers to access ACC from the external network	/conf/etc/alcasar-iptables-local.sh
2496	2245 d 8 h	tom.houdayer	/repos/alcasar/trunk/	Replace obsolete "state" iptables module to "conntrack"	/conf/etc/alcasar-iptables-local.sh /scripts/alcasar-iptables.sh
2355	2459 d 11 h	tom.houdayer	/repos/alcasar/trunk/	Fix all traceability NFLOG rules by specifying the nfgroup to 1 (since the default group of NFLOG is 1 instead of 0 for ULOG1)	/CHANGELOG /conf/etc/alcasar-iptables-local.sh /conf/fail2ban.sh /scripts/alcasar-iptables-bypass.sh /scripts/alcasar-iptables.sh
2353	2460 d 12 h	tom.houdayer	/repos/alcasar/trunk/	Fix traceability log due to an omission during the migration from ulog to nflog (Fail2Ban, alcasar-iptables-local-mac-filtered & alcasar-ip-blocked)	/CHANGELOG /conf/etc/alcasar-iptables-local.sh /conf/fail2ban.sh /scripts/alcasar-iptables-bypass.sh
1829	2922 d 11 h	richard	/repos/alcasar/trunk/conf/etc/	- nouveaux commentaires pour préciser l'utilité de ce script - renommage du fichier d'adresses mac filtrées --> on devra interfaçer le renseignement de ce fichier dans l'ACC (TODO)	/conf/etc/alcasar-iptables-local-mac-filtered /conf/etc/alcasar-iptables-local-filtered /conf/etc/alcasar-iptables-local.sh
1627	3264 d 13 h	franck	/repos/alcasar/trunk/conf/etc/	Correction exemples Iptables	/conf/etc/alcasar-iptables-local.sh
1618	3293 d 13 h	franck	/repos/alcasar/trunk/conf/etc/	Correction coquilles	/conf/etc/alcasar-iptables-local.sh
1581	3335 d 11 h	richard	/repos/alcasar/trunk/	- on garde la liste des @IP en DHCP fixe dans le cas d'une mise à jour	/web/acc/admin/activity.php /conf/etc/alcasar-iptables-local.sh /scripts/alcasar-conf.sh /web/acc/manager/activity.php
1579	3335 d 15 h	richard	/repos/alcasar/trunk/		/conf/etc/alcasar-iptables-local.sh /scripts/alcasar-conf.sh
1522	3408 d 15 h	franck	/repos/alcasar/trunk/conf/etc/	Rajout de filtrage stricts (HTTP + HTTPS uniquement) sur des équipements identifiés. Surcouche du filtrage de protocole et est actif avec ou sans DNS_FILTERING	/conf/etc/alcasar-iptables-local-filtered /conf/etc/alcasar-iptables-local.sh
870	4364 d 12 h	richard	/repos/alcasar/trunk/	- ACC : les noms de domaines en exception peuvent être déclaré "affiché" dans la page d'interception - ajout d'un exemple de PAT dans l'iptables-local	/CHANGELOG /conf/etc/alcasar-iptables-local.sh /scripts/alcasar-file-clean.sh /web/acc/admin/auth_exceptions.php /web/acc/admin/net_filter.php
827	4448 d 10 h	franck	/repos/alcasar/trunk/	Modif de proprietes	/conf/etc/alcasar-iptables-local.sh /conf/etc/alcasar-iptables-qos.sh /scripts/sbin/alcasar-dg-pureip.sh
826	4448 d 10 h	franck	/repos/alcasar/trunk/	Modif de proprietes	/conf/etc/alcasar-iptables-local.sh /conf/etc/alcasar-iptables-qos.sh /scripts/sbin/alcasar-dg-pureip.sh /scripts/sbin/alcasar-version.sh
759	4562 d 13 h	franck	/repos/alcasar/	dernières modifications avant publication : commentaire @IP serveur SMTP	/conf/etc/alcasar-iptables-local.sh
652	4682 d 12 h	richard	/repos/alcasar/trunk/conf/etc/		/conf/etc /conf/etc/alcasar-bl-categories-enabled /conf/etc/alcasar-dns-name /conf/etc/alcasar-iptables-local.sh /conf/etc/alcasar-iptables-qos.sh /conf/etc/alcasar-services