Projet

Général

Profil

Paste
Télécharger au format
Statistiques
| Branche: | Révision:

root / spec @ ac0af4aa

# Date Auteur Commentaire
ac0af4aa 2020-11-19 03:16 Nacho Barrientos

Allow tables to add comments to $log_prefix
ef3e9ad6 2020-11-18 15:25 duritong

Merge pull request #8 from cernops/ai5973

Allow raw sets and dashes in set names
7bb485c5 2020-11-16 09:19 Nacho Barrientos

Allow dashes in set names
9f0498e3 2020-11-16 09:16 Nacho Barrientos

Relax nftables::set::type making it optional

This is needed in case nftables::set is passed raw configuration via
source or content.
70727742 2020-11-16 04:50 Nacho Barrientos

Add a parameter to control the fate of discarded packets
0cf43fdf 2020-11-15 16:37 duritong

Merge pull request #4 from cernops/dhcp6

Add classes encapsulating rules for DHCPv6 client traffic (in/out)
37b2a3b7 2020-11-15 13:41 Nacho Barrientos

Add class nftables::services::dhcpv6_client
883389dc 2020-11-15 10:51 duritong

Merge pull request #5 from cernops/custom_log_prefix

Allow customising the log prefix
ed827383 2020-11-15 04:44 Nacho Barrientos

Allow customising the log prefix
20b96360 2020-11-13 09:57 Nacho Barrientos

Add support for named sets
e4c32222 2020-11-13 09:55 Nacho Barrientos

Use concat for table conf generation

This way other components of the module will be able to add extra stuff
to the table definitions like sets.
18ec6f48 2020-11-05 16:43 tr

Fix rulenames which includes an index

The rulename has a regex pattern `[/^[a-zA-Z0-9_]+-[a-zA-Z0-9_]+(\d+)?$/]`
which allows an index at the end of the rulename (with a delimiter).
This is split later with `$data = split($rulename, '')` but the content...
248ef9d5 2020-10-28 14:40 tr

Add basic ip6 nat chains
fd0eaeca 2020-10-24 06:02 tr

Add class bridges

Allow traffic from any bridge to itself by default
b3a7a6dd 2020-10-23 13:46 tr

Allow to inject custom rules
b171ac7f 2020-10-20 12:55 mh

fix offenses
e17693e3 2020-10-20 08:29 Steve Traylen

New parameter out_all, default false

In order to allow all outbound traffic a parameter is
added to enable a simple `allow` entry on the out chain.

Default is false so backwards compatible.

If true all the other out_bound rules (ntp, ...) will be disabled...
01d8a819 2020-10-16 10:29 tr

Styling to make tests green
ece9be27 2020-10-15 17:44 tr

Do PDK convert
3d29a6eb 2020-08-31 06:13 tr

Add a rule to create snat
a0d5c724 2020-08-31 06:12 tr

Test masquerade default proto
2a3b45ec 2020-08-31 05:38 tr

Add a define for masquerading
a5205d2f 2020-08-31 05:01 tr

Extract the dnat spec tests
351a88fb 2020-08-30 10:49 tr

Add a define for ipv4 dnat
af544fea 2020-08-30 09:15 tr

Create a special ingoing chain for all ingoing fwd rules
f02562f2 2020-08-30 07:18 tr

Stop and mask firewalld service
8f5d09ec 2020-08-30 07:07 tr

Linting
9ae64df9 2020-08-30 07:07 tr

Add spec tests for a DNAT
95b1259b 2020-08-30 07:07 tr

Add spec tests for ip nat prerouting
d78c1613 2020-08-30 07:07 tr

Add spec tests for router functionality
605d5fde 2020-08-30 07:07 tr

Add spec tests for ip nat chain policies
c8e93806 2020-08-30 06:09 tr

Fix nat hooks
5bd849ba 2020-08-30 06:09 tr

Rename to snake cases
422b6851 2020-08-30 05:44 tr

Add spec tests for ip-nat
6f38efff 2020-08-30 05:43 tr

Rename spec filter to inet-filter
5df9303f 2020-08-30 05:24 tr

Replace filter with inet-filter
8efbdf9a 2020-08-29 19:05 tr

Refactoring
e89da898 2020-08-29 14:31 tr

Linting
f34dae00 2020-08-29 14:14 tr

Spec tests for default rules
3ccc62ae 2020-08-29 13:52 tr

Add spec tests for default chains
be6aa569 2020-08-29 13:25 tr

Add spec tests for filter chains
5acb554a 2020-08-29 12:06 tr

Write some spec tests for init class
64134e4e 2020-08-29 11:17 tr

Add spec tests it should compile