summaryrefslogtreecommitdiffstats
path: root/rules/iptables.in
Commit message (Collapse)AuthorAgeFilesLines
* iptables: bump version to 1.6.0 and update compile switchesAndreas Geisenhainer2016-04-121-0/+8
| | | | | | Signed-off-by: Andreas Geisenhainer <Andreas.Geisenhainer@atsonline.de> [mol: add more configure options] Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* Add persistant iptable-rules via systemdGavin Schenk2016-04-111-0/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Supports ipv4 and ipv6 and both options can be selected in menuconfig by IPTABLES_IPV6_SYSTEMD_UNIT and/or IPTABLES_IPV4_SYSTEMD_UNIT If you select IPTABLES_IPV4_SYSTEMD_UNIT a systemd unit is started on multiuser.target that set the iptable rules from file: /etc/iptables/rules.v4 If you select IPTABLES_IPV6_SYSTEMD_UNIT a systemd unit is started on multiuser.target that set the iptable rules from the file: /etc/iptables/rules.v6 The Package provides empty files. If you want to add custom rules, you have to provide your own files. The rule files can be generated with the utils iptables-save ip6tables-save from the iptables package. Example: Generating a rule file, that drops port 5000 on interface eth0 for ipv4 1.) iptables -A INPUT -i eth0 -p TCP --dport 5000 -j DROP 2.) iptables-save > /etc/iptables/rules.v4 The basic idea was taken from https://github.com/gronke/systemd-iptables written by Stefan Grönke <stefan@gronke.net> in 2015. Signed-off-by: Gavin Schenk <g.schenk@eckelmann.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: use '<sym> = no' for module symbolsMichael Olbrich2013-04-141-1/+1
| | | | | | '!<sym>' is wrong, because it expands to y for <sym>=m Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* libnfnetlink: Add new packageBart vdr. Meulen2012-05-311-0/+7
| | | | | | | | | libngnetlink provides a generic messaging infrastructure for in-kernel netfilter subsystemsor redirecting network packets into userspace Signed-off-by: Bart vdr. Meulen <bartvdrmeulen@gmail.com> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: Add option to build and install libipqBernhard Walle2012-05-231-0/+7
| | | | | Signed-off-by: Bernhard Walle <bernhard@bwalle.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: clean upJan Luebbe2012-03-121-65/+11
| | | | | | | | | | | | | | | The ip(6)tables-* tools are only links to xtables-multi, so leaving them out doesn't save much space. Only four options are left now: IPTABLES_IPV4 IPTABLES_IPV6 IPTABLES_INSTALL_TOOLS IPTABLES_INSTALL_IPTABLES_APPLY iptables-apply is kept separate as it depends on bash. Signed-off-by: Jan Luebbe <jlu@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: version bump 1.4.8 -> 1.4.12Robert Schwebel2011-07-291-11/+8
|
* iptables: depend on kernel-header instead of kernelMichael Olbrich2011-06-241-1/+1
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [iptables] add missing dependenciesMichael Olbrich2011-01-161-0/+2
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [iptables] version bump to 1.4.5Marc Kleine-Budde2009-11-041-24/+28
| | | | | | adopted to the new ip{,6}tables-multi tool Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de>
* [iptables] add installation of iptables-applyMarc Kleine-Budde2009-04-191-0/+4
| | | | | | Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10307 33e552b5-05e3-0310-8538-816dae2090ed
* [iptables] add installation of iptables-xmlMarc Kleine-Budde2009-04-191-1/+1
| | | | | | Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10306 33e552b5-05e3-0310-8538-816dae2090ed
* * iptablesJuergen Beisert2009-04-091-333/+49
| | | | | | | | | - version bump - install procedure reworked and fixed - IPv6 is an option now git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10277 33e552b5-05e3-0310-8538-816dae2090ed
* * rules/*.in:Marc Kleine-Budde2008-10-281-0/+1
| | | | | | | added SECTION git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@8983 33e552b5-05e3-0310-8538-816dae2090ed
* * iptables: version bump, removed non-existing extensionsRobert Schwebel2008-08-271-329/+0
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@8797 33e552b5-05e3-0310-8538-816dae2090ed
* * add missing "help"Michael Olbrich2008-06-041-0/+1
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@8318 33e552b5-05e3-0310-8538-816dae2090ed
* * change bool to tristate .in Files from H to MHenning Steffen2008-06-041-101/+5
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@8312 33e552b5-05e3-0310-8538-816dae2090ed
* * help texts h..i rounded off, some fixesJochen Frieling2007-10-171-7/+11
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@7442 33e552b5-05e3-0310-8538-816dae2090ed
* * iptables: mark all modules broken which are not built inRobert Schwebel2007-10-081-0/+18
| | | | | | | allyes-arm. git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@7355 33e552b5-05e3-0310-8538-816dae2090ed
* * iptables: update the iptables package to 1.3.8 and updatesRobert Schwebel2007-10-081-95/+223
| | | | | | | | | | | | | iptables.in and iptables.make to match this version. Updated menu structure to reflect the current iptables modules. Added ipt_DF module as patch - it's some ugly hack to remove the DF bit from connections. It's sometimes required for broken TCP stacks behind routers, which ignore ICMP no fragmentation replies and insist on sending large pakets with DF flag set. Patch by Carsten Schlote. git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@7353 33e552b5-05e3-0310-8538-816dae2090ed
* typo in lib nameRobert Schwebel2007-04-261-2/+2
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@7123 33e552b5-05e3-0310-8538-816dae2090ed
* menuconfigizedRobert Schwebel2006-02-281-6/+80
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.10-trunk@4833 33e552b5-05e3-0310-8538-816dae2090ed
* Indent with <tab> not 8 <space>s.Ladislav Michl2006-02-111-81/+0
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.10-trunk@4572 33e552b5-05e3-0310-8538-816dae2090ed
* disable non-working extensions, needs to be fixedRobert Schwebel2006-01-161-0/+2
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.9-trunk@4126 33e552b5-05e3-0310-8538-816dae2090ed
* disable non-working extensions, needs to be fixedRobert Schwebel2006-01-161-72/+72
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.9-trunk@4125 33e552b5-05e3-0310-8538-816dae2090ed
* fixed dependencyBjoern Buerger2006-01-131-0/+166
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.9-trunk@3989 33e552b5-05e3-0310-8538-816dae2090ed
* * rules/iptables.make, rules/iptables.inMarc Kleine-Budde2005-10-131-0/+461
| | | | | | | added install options for iptables extentions git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.7-trunk@3231 33e552b5-05e3-0310-8538-816dae2090ed
* addedRobert Schwebel2004-08-231-0/+32
git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunk@1588 33e552b5-05e3-0310-8538-816dae2090ed
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-14 06:40:03 +0000