firewall/ipt-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
123 Commits 1 Branch 0 Tags 754 KiB
9fd36a8236
Commit Graph

73 Commits

Author SHA1 Message Date
Christoph
9fd36a8236 Add support for MNDP and mDNS traffic. 2025-02-16 18:48:22 +01:00
Christoph
71e01e8413 logging_ipv[46].conf: add missing parameter 'log_blocked_ip'. 2025-02-15 10:59:53 +01:00
Christoph
aab8585d90 Fix error creating 'smtpd_additional_listen_port_arr'. 2025-01-27 23:10:29 +01:00
Christoph
877814caf0 Add support for aditional smtp ports - OUT AND IN. 2025-01-27 22:15:40 +01:00
Christoph
f0e15b992b Fix error for not firewalled interfaces. 2024-12-24 17:16:35 +01:00
Christoph
e7311a3963 Add Prometheus Service 2024-11-05 17:21:05 +01:00
Christoph
830f48ff61 Add support for logging CGI script user. 2024-09-14 01:15:52 +02:00
Christoph
bbabeeab27 Add support for PGP/GPG Key server.. 2024-07-24 17:14:04 +02:00
Christoph
1062208237 ip6t-firewall-server,ipt-firewall-server: move 'Loopback device generally allowed' to an earlier point in the script. 2024-04-08 21:07:51 +02:00
Christoph
d857756be7 ip6t-firewall-server: add '(end of firewall)' to the last reject rule. 2024-04-06 03:20:27 +02:00
Christoph
e6566bafeb Some changes in per IP Connection Limit. 2024-04-04 18:57:36 +02:00
Christoph
2532b116b8 Support user settings for sourvce IP connection limit - ff. 2024-04-04 18:34:28 +02:00
Christoph
ff098ac058 Add rule to prevent LX containers from firewalld on host system. 2023-05-02 20:45:27 +02:00
Christoph
486789c6b5 Add support for MatterMost (MM) service. 2023-01-24 17:42:27 +01:00
ckubu
9f016b1776 Add support for routing networks through wireguard connections. 2022-08-12 01:16:53 +02:00
ckubu
0831f26891 Add support for WireGuard VPN Service. 2022-08-11 10:43:04 +02:00
Christoph
2d07d39a55 allow those ssh ports out, which are also allowed for incoming traffic. 2021-10-26 11:02:59 +02:00
Christoph
c78edd01be Drop traffic on extern interfaces iinto private networks. 2021-09-02 12:07:25 +02:00
Christoph
c65e0102ae ipt-firewall-server/ip6t-firewall-server: change order for 'Restrict Service/Net to..'. 2021-08-20 01:33:47 +02:00
Christoph
5ec7c9bcea Add support for dhclient. 2021-01-11 19:59:08 +01:00
Christoph
e1047e9c47 Some more or less minor changes.. 2020-10-30 15:00:46 +01:00
Christoph
c8b7e9b0f5 change rules and location of rules for 'Allow forwarding (private) IPs'. 2020-10-30 11:59:38 +01:00
Christoph
96b3e162fe Fix error droping ICMP packets. fix error dropping private networks. 2020-10-29 12:55:59 +01:00
Christoph
bcdee40228 Changing rules for protection against several ddos attacks. 2020-10-28 20:57:08 +01:00
Christoph
498b34741c Add support for Portforwarding TCP/UDP using socat. 2020-06-03 14:10:27 +02:00
Christoph
53de5746cf Support Streaming via YouTube. 2020-05-17 17:56:23 +02:00
Christoph
c695a63372 ip6t-firewall-server,ipt-firewall-server: add rtp port for jibri (jitsi client) service. 2020-05-17 04:20:13 +02:00
Christoph
fbe1089099 add support for Jibri Streamin/Recording. 2020-05-16 13:42:22 +02:00
Christoph
df10be0d45 Add support fpr Jitsi Meet Authentication agains dovecot. 2020-04-26 10:16:32 +02:00
Christoph
dcbe4605bc Add outgoing ports needed by jitsi service (discover public address fronm stun services). 2020-04-23 15:12:29 +02:00
Christoph
450a9d5dcf Adjust support for TURN Server (NC App Talk). 2020-03-21 18:43:45 +01:00
Christoph
9f2764c0ae Add support for NCs Talk app with own stun/turn server. 2020-03-21 12:57:11 +01:00
Christoph
9d8983713c Adjust firewall scripts to support Jitsi Video Conferencing Service. 2020-03-17 22:59:01 +01:00
Christoph
5ea1b0acbd DNS 'ANY' request uses TCP port. So allow DNS TCP requests for 'resolver_allowed_network_arr'. 2020-02-19 14:03:16 +01:00
Christoph
1fc3da67f8 ip6t-firewall-server: fix error at 'allow_local_service' - separator was wrong. 2019-09-22 23:39:44 +02:00
Christoph
e292be4141 Support local service from given extern network 2019-09-04 01:11:31 +02:00
Christoph
051e7da995 Add support for (local) dovecot auth service. 2019-09-03 17:54:46 +02:00
Christoph
f87f7bbda0 Support multiple networks for access to local resolver - forgot iptables scripts. 2019-09-03 03:52:54 +02:00
ckubu
1b35830610 Add support for XMPP (Jabber Prosody) Service 2019-09-02 01:05:22 +02:00
Christoph
2665010eb3 support Resolver for specified (local) network. Part 2 2019-09-01 20:59:38 +02:00
ckubu
142778c718 Support local NTP Server. 2019-09-01 17:29:54 +02:00
Christoph
57d09ba98d Add file 'conf/default_ports.conf'. Remove file 'conf/ports.conf'. 2019-06-30 15:29:07 +02:00
Christoph
b3347d273d Merge branch 'master' of git.oopen.de:firewall/ipt-server 2019-05-20 15:54:14 +02:00
Christoph
f4b74813d2 Fix error at section 'Special TCP Ports OUT'. 2019-05-20 15:53:56 +02:00
Christoph
55bd9d4335 Fix error forwarding private networks. 2019-05-19 18:30:18 +02:00
Christoph
dc91143e39 Fix error reading IPv4/IPv6 ban list. 2019-05-12 17:10:39 +02:00
Christoph
9444e0ae12 Allow GIT port (9418) out. 2019-03-13 16:04:59 +01:00
Christoph
c6de143b1e Reorganize ports for services, rename 'default_ports.conf' to 'ports.conf'. 2019-03-09 15:42:24 +01:00
Christoph
4967e6549d New: allow_all_outgoing_traffic (true/false) 2019-03-07 19:31:12 +01:00
Christoph
7c8e98198e Fis some error, adjust docu. 2019-03-07 18:15:16 +01:00