Subversion Repositories ALCASAR

(root)/conf/etc/alcasar-iptables-local.sh – Rev 2995

Go to most recent revision | Show changed files | Details | Compare with Previous | Blame

Filtering Options

From rev	To rev	Max revs

Search history for

Show All

Clear current filter

Rev	Age	Author	Path	Log message
2995	786 d 11 h	rexy	/repos/alcasar/trunk/conf/etc/	Improve custom firewall rules (multiports)
2994	787 d 6 h	rexy	/repos/alcasar/trunk/	Updating user registration by e-mail - To be continued #4
2993	789 d 6 h	rexy	/repos/alcasar/trunk/	Updating user registration by e-mail - To be continued #3
2989	815 d 8 h	rexy	/repos/alcasar/trunk/conf/etc/	Improve multiport PAT firewall rule
2986	845 d 12 h	rexy	/repos/alcasar/trunk/conf/etc/	Improve firewall rules used in custom configurations
2956	1075 d 9 h	rexy	/repos/alcasar/trunk/	Multi-WAN access with load balancing per user (Thx to Pierre RIVAULT for this great job)
2854	1383 d 7 h	rexy	/repos/alcasar/trunk/	ACC Spanish translation (to be continued)
2833	1419 d 19 h	rexy	/repos/alcasar/trunk/	Improve DNS configuration Bug fix
2740	1777 d 19 h	rexy	/repos/alcasar/trunk/	- nfdump RPM rebuild - wget update
2716	1880 d 8 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Minor change of the local iptables rule "Allow managers to access ACC from the external network"
2652	2008 d 3 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/
2645	2013 d 11 h	rexy	/repos/alcasar/trunk/conf/etc/	- Exemple of a PAT
2621	2075 d 7 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Move SMTP port to a variable for output mails rule in alcasar-iptables-local.sh
2547	2190 d 3 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Add bypass mode compatibility to example "Deny access to protected networks from internal LAN" in alcasar-iptables-local.sh
2538	2196 d 1 h	tom.houdayer	/repos/alcasar/trunk/conf/etc/	Add two examples in alcasar-iptables-local.sh: - Deny access to protected networks from internal LAN - Allow managers to access ACC from the external network
2496	2259 d 4 h	tom.houdayer	/repos/alcasar/trunk/	Replace obsolete "state" iptables module to "conntrack"
2355	2473 d 7 h	tom.houdayer	/repos/alcasar/trunk/	Fix all traceability NFLOG rules by specifying the nfgroup to 1 (since the default group of NFLOG is 1 instead of 0 for ULOG1)
2353	2474 d 8 h	tom.houdayer	/repos/alcasar/trunk/	Fix traceability log due to an omission during the migration from ulog to nflog (Fail2Ban, alcasar-iptables-local-mac-filtered & alcasar-ip-blocked)
1829	2936 d 7 h	richard	/repos/alcasar/trunk/conf/etc/	- nouveaux commentaires pour préciser l'utilité de ce script - renommage du fichier d'adresses mac filtrées --> on devra interfaçer le renseignement de ce fichier dans l'ACC (TODO)
1627	3278 d 9 h	franck	/repos/alcasar/trunk/conf/etc/	Correction exemples Iptables
1618	3307 d 9 h	franck	/repos/alcasar/trunk/conf/etc/	Correction coquilles
1581	3349 d 7 h	richard	/repos/alcasar/trunk/	- on garde la liste des @IP en DHCP fixe dans le cas d'une mise à jour
1579	3349 d 11 h	richard	/repos/alcasar/trunk/
1522	3422 d 11 h	franck	/repos/alcasar/trunk/conf/etc/	Rajout de filtrage stricts (HTTP + HTTPS uniquement) sur des équipements identifiés. Surcouche du filtrage de protocole et est actif avec ou sans DNS_FILTERING
870	4378 d 8 h	richard	/repos/alcasar/trunk/	- ACC : les noms de domaines en exception peuvent être déclaré "affiché" dans la page d'interception - ajout d'un exemple de PAT dans l'iptables-local
827	4462 d 6 h	franck	/repos/alcasar/trunk/	Modif de proprietes
826	4462 d 6 h	franck	/repos/alcasar/trunk/	Modif de proprietes
759	4576 d 9 h	franck	/repos/alcasar/	dernières modifications avant publication : commentaire @IP serveur SMTP
652	4696 d 8 h	richard	/repos/alcasar/trunk/conf/etc/