summaryrefslogtreecommitdiffstats
path: root/rules/iptables.make
Commit message (Collapse)AuthorAgeFilesLines
* iptables: remove unused library.Michael Olbrich2018-03-271-1/+0
| | | | | | 'libiptc' is not used by anything in PTXdist. Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* update all spdx license identifier to the new versionMichael Olbrich2018-03-121-1/+1
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: bump version and fix large file supportJuergen Borleis2017-10-091-4/+2
| | | | | | | | | | | | The configure script handles the "--*-largefile" parameter badly. It defaults to large file support if not given and always disables largefile support if given (and it doesn't matter if 'enable' or 'disable' was used) Due to the version bump, the previously required patch can be replaced, because its already part of the new version. Signed-off-by: Juergen Borleis <jbe@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: set FILE_OFFSET_BITS to work with 64 bit inodesBastian Stender2017-09-151-0/+2
| | | | | | | | | | | | In case of 64 bit inodes calls to 32 bit variants of stat() will cause EOVERFLOW and iptables will terminate with Value too large for defined data type FILE_OFFSET_BITS=64 makes the code receive 64 bit values. Signed-off-by: Bastian Stender <bst@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: /usr mergeMichael Olbrich2017-04-111-4/+4
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: the 'nfnl_osf' util is only built if 'libnfnetlink' is enabledJuergen Borleis2016-08-011-1/+2
| | | | | Signed-off-by: Juergen Borleis <jbe@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: bump version to 1.6.0 and update compile switchesAndreas Geisenhainer2016-04-121-7/+30
| | | | | | Signed-off-by: Andreas Geisenhainer <Andreas.Geisenhainer@atsonline.de> [mol: add more configure options] Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* Add persistant iptable-rules via systemdGavin Schenk2016-04-111-0/+21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Supports ipv4 and ipv6 and both options can be selected in menuconfig by IPTABLES_IPV6_SYSTEMD_UNIT and/or IPTABLES_IPV4_SYSTEMD_UNIT If you select IPTABLES_IPV4_SYSTEMD_UNIT a systemd unit is started on multiuser.target that set the iptable rules from file: /etc/iptables/rules.v4 If you select IPTABLES_IPV6_SYSTEMD_UNIT a systemd unit is started on multiuser.target that set the iptable rules from the file: /etc/iptables/rules.v6 The Package provides empty files. If you want to add custom rules, you have to provide your own files. The rule files can be generated with the utils iptables-save ip6tables-save from the iptables package. Example: Generating a rule file, that drops port 5000 on interface eth0 for ipv4 1.) iptables -A INPUT -i eth0 -p TCP --dport 5000 -j DROP 2.) iptables-save > /etc/iptables/rules.v4 The basic idea was taken from https://github.com/gronke/systemd-iptables written by Stefan Grönke <stefan@gronke.net> in 2015. Signed-off-by: Gavin Schenk <g.schenk@eckelmann.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* automated switch to SPDX conform license namesMichael Olbrich2015-10-271-1/+1
| | | | | | | | | | | | | | | search & replace for: - GPL-1.0 - GPL-2.0 - GPL-3.0 - LGPL-2.0 - LGPL-3.0 - LGPL-2.1 - AGPL-3.0 - AFL-2.1 - Autoconf-exception-3.0 Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: add license informationAndreas Pretzsch2014-09-301-0/+1
| | | | | | Signed-off-by: Andreas Pretzsch <apr@cn-eng.de> Signed-off-by: Philipp Zabel <p.zabel@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: workaround for broken configure scriptMichael Olbrich2014-03-241-2/+4
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: version bump 1.4.16.3 -> 1.4.21Michael Olbrich2014-03-241-11/+11
| | | | | | Update to the latest version an cleanup. Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: version bump 1.4.16.2 -> 1.4.16.3Robert Schwebel2012-12-071-2/+2
| | | | Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
* iptables: version bump 1.4.14 -> 1.4.16.2Michael Olbrich2012-10-181-2/+2
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: be more quiet in targetinstall stageMarc Kleine-Budde2012-09-061-3/+2
| | | | | Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: remove redundant get stageRobert Schwebel2012-06-141-8/+0
| | | | Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
* iptables: version bump 1.4.12.1 -> 1.4.14Robert Schwebel2012-06-121-2/+2
| | | | | | | | | | | | | | | | | With newer kernel header files, we get this error: In file included from libxt_pkttype.c:10:0: /home/rsc/git/OSELAS.BSP-Pengutronix-DistroKit/platform-versatilepb/sysroot-target/kernel-headers/include/linux/if_packet.h:176:2: error: unknown type name '__aligned_u64' make[3]: *** [libxt_pkttype.oo] Error 1 make[3]: *** Waiting for unfinished jobs.... The bug is already fixed upstream, so we take the opportunity to bump the version to 1.4.14. The patch we previously had is already upstream, and confiugre.ac has no other changes. Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
* iptables: Add option to build and install libipqBernhard Walle2012-05-231-1/+5
| | | | | Signed-off-by: Bernhard Walle <bernhard@bwalle.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: update to new point release (1.4.12.2)Jan Luebbe2012-03-121-2/+2
| | | | | | | | This includes an upstream patch to remove an obsolete check which broke the build. Signed-off-by: Jan Luebbe <jlu@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: clean upJan Luebbe2012-03-121-45/+23
| | | | | | | | | | | | | | | The ip(6)tables-* tools are only links to xtables-multi, so leaving them out doesn't save much space. Only four options are left now: IPTABLES_IPV4 IPTABLES_IPV6 IPTABLES_INSTALL_TOOLS IPTABLES_INSTALL_IPTABLES_APPLY iptables-apply is kept separate as it depends on bash. Signed-off-by: Jan Luebbe <jlu@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: Update makefile for the new xtables-multi binaryBart vdr. Meulen2011-08-041-8/+17
| | | | | | | | | With the up date to newer iptables package the iptables-multi and ip6tables-multi binaries have been renamed to xtables-multi, fix the links and install the shared libraries Signed-off-by: Bart vdr. Meulen <bartvdrmeulen@gmail.com> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* iptables: version bump 1.4.8 -> 1.4.12Robert Schwebel2011-07-291-14/+8
|
* iptables: install headersMichael Olbrich2011-06-201-1/+1
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [rules] add md5sum for all packagesMichael Olbrich2011-05-041-0/+1
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [iptables] targetinstall consolidationRobert Schwebel2010-10-221-4/+4
| | | | | Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [rules] remove obsolete fixup linesMichael Olbrich2010-07-191-3/+0
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [iptables] use global large file optionMichael Olbrich2010-07-161-1/+1
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [iptables] fix typo in configure optionsMichael Olbrich2010-07-131-1/+1
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [iptables] use install_libRobert Schwebel2010-06-031-22/+7
| | | | Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
* [iptables] version bump 1.4.5 -> 1.4.8Robert Schwebel2010-06-031-5/+20
| | | | Signed-off-by: Robert Schwebel <r.schwebel@pengutronix.de>
* remove "--disable-dependency-tracking"Marc Kleine-Budde2010-04-161-1/+0
| | | | | | | | | | I don't think disabling dependency tracking is a good thinkg. However we can introduce a global switch to turn dependency tracking off. For more information see: http://starwars.wikia.com/wiki/I_have_a_bad_feeling_about_this Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de>
* [iptables] install iptables-apply to pkgdirMichael Olbrich2010-04-061-3/+14
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [rules] remove obsolete clean target & minor cleanupsMichael Olbrich2010-01-181-11/+2
| | | | Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
* [iptables] fix installation of librariesMarc Kleine-Budde2009-12-061-6/+6
| | | | | | | | | The IPv6 section installs the IPv4 library and associated links, and the IPv4 section installs the IPv6 library and links. When only one is selected, the iptables command fails. Reported-by: Rene Huber <renehuber2@netscape.net> Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de>
* [iptables] version bump to 1.4.5Marc Kleine-Budde2009-11-041-20/+38
| | | | | | adopted to the new ip{,6}tables-multi tool Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de>
* [iptables] use KERNEL_HEADER_DIRMarc Kleine-Budde2009-11-041-2/+2
| | | | Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de>
* [iptables] add installation of iptables-applyMarc Kleine-Budde2009-04-191-0/+4
| | | | | | Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10307 33e552b5-05e3-0310-8538-816dae2090ed
* [iptables] add installation of iptables-xmlMarc Kleine-Budde2009-04-191-0/+4
| | | | | | Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10306 33e552b5-05e3-0310-8538-816dae2090ed
* [iptables] just cleanupsMarc Kleine-Budde2009-04-191-15/+13
| | | | | | Signed-off-by: Marc Kleine-Budde <mkl@pengutronix.de> git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10305 33e552b5-05e3-0310-8538-816dae2090ed
* * iptables: fix wrong library link nameJuergen Beisert2009-04-101-1/+1
| | | | | | | - was a copy-paste error git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10285 33e552b5-05e3-0310-8538-816dae2090ed
* * iptablesJuergen Beisert2009-04-091-243/+51
| | | | | | | | | - version bump - install procedure reworked and fixed - IPv6 is an option now git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@10277 33e552b5-05e3-0310-8538-816dae2090ed
* * iptables: version bump, removed non-existing extensionsRobert Schwebel2008-08-271-191/+11
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@8797 33e552b5-05e3-0310-8538-816dae2090ed
* * use correct KERNEL_DIR in the install stageMichael Olbrich2008-06-041-1/+1
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@8309 33e552b5-05e3-0310-8538-816dae2090ed
* * .make files: location of ipkg files has changedRobert Schwebel2008-06-031-1/+1
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@8285 33e552b5-05e3-0310-8538-816dae2090ed
* * iptables: update the iptables package to 1.3.8 and updatesRobert Schwebel2007-10-081-23/+87
| | | | | | | | | | | | | iptables.in and iptables.make to match this version. Updated menu structure to reflect the current iptables modules. Added ipt_DF module as patch - it's some ugly hack to remove the DF bit from connections. It's sometimes required for broken TCP stacks behind routers, which ignore ICMP no fragmentation replies and insist on sending large pakets with DF flag set. Patch by Carsten Schlote. git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@7353 33e552b5-05e3-0310-8538-816dae2090ed
* typo in lib nameRobert Schwebel2007-04-261-2/+2
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@7123 33e552b5-05e3-0310-8538-816dae2090ed
* version update, needed for kernel later than 2.6.19Luotao Fu2007-04-121-1/+1
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-trunk@7094 33e552b5-05e3-0310-8538-816dae2090ed
* * rules/*.make:Marc Kleine-Budde2006-06-091-1/+0
| | | | | | | remove -include $(call package_depfile) git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.10-trunk@5707 33e552b5-05e3-0310-8538-816dae2090ed
* * Changed "patchin" macro to use the packet label instead of theRobert Schwebel2006-05-211-1/+1
| | | | | | | | direct value. This is part of the efford to make local packets possible. git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.10-trunk@5517 33e552b5-05e3-0310-8538-816dae2090ed
* changed get and extract macros to use packet labelsRobert Schwebel2006-05-141-2/+2
| | | | git-svn-id: https://svn.pengutronix.de/svn/ptxdist/trunks/ptxdist-0.10-trunk@5497 33e552b5-05e3-0310-8538-816dae2090ed
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-01 09:49:02 +0000