BlueGrey
calm
Elegant
Català-Valencià – Catalan
中文 – Chinese (Simplified)
中文 – Chinese (Traditional)
Česky – Czech
Dansk – Danish
Nederlands – Dutch
English – English
Suomi – Finnish
Français – French
Deutsch – German
עברית – Hebrew
हिंदी – Hindi
Magyar – Hungarian
Bahasa Indonesia – Indonesian
Italiano – Italian
日本語 – Japanese
한국어 – Korean
Македонски – Macedonian
मराठी – Marathi
Norsk – Norwegian
Polski – Polish
Português – Portuguese
Português – Portuguese (Brazil)
Русский – Russian
Slovenčina – Slovak
Slovenščina – Slovenian
Español – Spanish
Svenska – Swedish
Türkçe – Turkish
Українська – Ukrainian
Oëzbekcha – Uzbek
Subversion Repositories
ALCASAR
(root)
/
conf
/
etc
/
alcasar-iptables-local.sh
– Rev 2716
Rev
Go to most recent revision
|
Hide changed files
|
Details
|
Compare with Previous
|
Blame
Filtering Options
From rev
To rev
Max revs
Search history for
Show All
Rev
Age
Author
Path
Log message
Diff
Changes
2716
1866 d 12 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Minor change of the local iptables rule "Allow managers to access ACC from the external network"
/conf/etc/alcasar-iptables-local.sh
2652
1994 d 7 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
/conf/etc/alcasar-iptables-local.sh
2645
1999 d 16 h
rexy
/repos/alcasar/trunk/conf/etc/
- Exemple of a PAT
/conf/etc/alcasar-iptables-local.sh
2621
2061 d 11 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Move SMTP port to a variable for output mails rule in alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-local.sh
2547
2176 d 8 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Add bypass mode compatibility to example "Deny access to protected networks from internal LAN" in alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-local.sh
2538
2182 d 5 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Add two examples in alcasar-iptables-local.sh:
- Deny access to protected networks from internal LAN
- Allow managers to access ACC from the external network
/conf/etc/alcasar-iptables-local.sh
2496
2245 d 8 h
tom.houdayer
/repos/alcasar/trunk/
Replace obsolete "state" iptables module to "conntrack"
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-iptables.sh
2355
2459 d 11 h
tom.houdayer
/repos/alcasar/trunk/
Fix all traceability NFLOG rules by specifying the nfgroup to 1 (since the default group of NFLOG is 1 instead of 0 for ULOG1)
/CHANGELOG
/conf/etc/alcasar-iptables-local.sh
/conf/fail2ban.sh
/scripts/alcasar-iptables-bypass.sh
/scripts/alcasar-iptables.sh
2353
2460 d 12 h
tom.houdayer
/repos/alcasar/trunk/
Fix traceability log due to an omission during the migration from ulog to nflog (Fail2Ban, alcasar-iptables-local-mac-filtered & alcasar-ip-blocked)
/CHANGELOG
/conf/etc/alcasar-iptables-local.sh
/conf/fail2ban.sh
/scripts/alcasar-iptables-bypass.sh
1829
2922 d 11 h
richard
/repos/alcasar/trunk/conf/etc/
- nouveaux commentaires pour préciser l'utilité de ce script
- renommage du fichier d'adresses mac filtrées
--> on devra interfaçer le renseignement de ce fichier dans l'ACC (TODO)
/conf/etc/alcasar-iptables-local-mac-filtered
/conf/etc/alcasar-iptables-local-filtered
/conf/etc/alcasar-iptables-local.sh
1627
3264 d 13 h
franck
/repos/alcasar/trunk/conf/etc/
Correction exemples Iptables
/conf/etc/alcasar-iptables-local.sh
1618
3293 d 13 h
franck
/repos/alcasar/trunk/conf/etc/
Correction coquilles
/conf/etc/alcasar-iptables-local.sh
1581
3335 d 11 h
richard
/repos/alcasar/trunk/
- on garde la liste des @IP en DHCP fixe dans le cas d'une mise à jour
/web/acc/admin/activity.php
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-conf.sh
/web/acc/manager/activity.php
1579
3335 d 15 h
richard
/repos/alcasar/trunk/
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-conf.sh
1522
3408 d 15 h
franck
/repos/alcasar/trunk/conf/etc/
Rajout de filtrage stricts (HTTP + HTTPS uniquement) sur des équipements identifiés.
Surcouche du filtrage de protocole et est actif avec ou sans DNS_FILTERING
/conf/etc/alcasar-iptables-local-filtered
/conf/etc/alcasar-iptables-local.sh
870
4364 d 12 h
richard
/repos/alcasar/trunk/
- ACC : les noms de domaines en exception peuvent être déclaré "affiché" dans la page d'interception
- ajout d'un exemple de PAT dans l'iptables-local
/CHANGELOG
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-file-clean.sh
/web/acc/admin/auth_exceptions.php
/web/acc/admin/net_filter.php
827
4448 d 10 h
franck
/repos/alcasar/trunk/
Modif de proprietes
/conf/etc/alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-qos.sh
/scripts/sbin/alcasar-dg-pureip.sh
826
4448 d 10 h
franck
/repos/alcasar/trunk/
Modif de proprietes
/conf/etc/alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-qos.sh
/scripts/sbin/alcasar-dg-pureip.sh
/scripts/sbin/alcasar-version.sh
759
4562 d 13 h
franck
/repos/alcasar/
dernières modifications avant publication : commentaire @IP serveur SMTP
/conf/etc/alcasar-iptables-local.sh
652
4682 d 12 h
richard
/repos/alcasar/trunk/conf/etc/
/conf/etc
/conf/etc/alcasar-bl-categories-enabled
/conf/etc/alcasar-dns-name
/conf/etc/alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-qos.sh
/conf/etc/alcasar-services