proxmox-mirrors/proxmox-firewall
1
0
Fork 0
mirror of https://git.proxmox.com/git/proxmox-firewall synced 2025-08-17 04:45:08 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 0a60fbd309 bump version to 0.7.1 master Thomas Lamprecht 2025-04-08 15:54:22 +0200
  • f16e60bc09 guest: do not try to create map entries if there are no devices Stefan Hanreich 2025-04-08 15:41:35 +0200
  • 5718726aef bump version to 0.7.0 Thomas Lamprecht 2025-04-07 15:08:24 +0200
  • 40bf33c0fa cargo: bump proxmox-ve-config dependency to 0.2.3 Thomas Lamprecht 2025-04-07 13:44:29 +0200
  • 2d381630c6 tests: add network device without firewall key Stefan Hanreich 2025-03-13 14:22:31 +0100
  • 4b47d2adac partially fix #6176: do not generate mac filter if firewall disabled Stefan Hanreich 2025-03-13 14:22:30 +0100
  • 0f0e1875ac partially fix #6176: ipfilter: honor firewall setting from guest cfg Stefan Hanreich 2025-03-13 14:22:29 +0100
  • 1fc3f4ec1a ipsets: remove dereference Stefan Hanreich 2025-03-13 14:22:28 +0100
  • 75d2c9793c tests: add Ping macro to tests Stefan Hanreich 2025-02-04 10:57:33 +0100
  • ac5206a4b4 tests: integration: silence warning about unused variable Christoph Heiss 2025-02-25 11:28:50 +0100
  • ee45277559 firewall: apply nf_conntrack_allow_invalid option to host table Hannes Laimer 2025-03-12 14:20:25 +0100
  • ab2709bf51 fix: firewall: apply nf_conntrack_allow_invalid to all chains Hannes Laimer 2025-03-12 14:20:24 +0100
  • efef5c53e4 build: bump env_logger to 0.11 Fabian Grünbichler 2025-03-13 14:06:35 +0100
  • 57aac70bbe bump d/control Wolfgang Bumiller 2025-03-13 14:16:01 +0100
  • 5841bef7f2 tests: add test for security groups in cluster config Stefan Hanreich 2025-03-13 13:49:20 +0100
  • b3f3d7209b security groups: skip in forward chain when interface is specified Stefan Hanreich 2025-03-13 13:49:19 +0100
  • 697da0168e cargo: update proxmox-ve-config Stefan Hanreich 2025-03-13 13:46:08 +0100
  • b0e756d5e2 d/control: drop unused build dependencies Christoph Heiss 2025-01-24 13:19:36 +0100
  • 0479539f01 clippy: useless use of format! Stefan Hanreich 2024-11-25 17:18:32 +0100
  • 6ef05080c6 bump version to 0.6.0 Thomas Lamprecht 2024-11-19 16:46:41 +0100
  • 22958811c8 config: fallback to legacy path when reading PVE IPAM state Thomas Lamprecht 2024-11-18 22:24:26 +0100
  • 64dc344bb8 firewall: apply nt_conntrack_allow_invalid option to guest table Hannes Laimer 2024-11-15 16:30:16 +0100
  • 8ef2e4e6b5 use std::mem::take over drain() Stefan Hanreich 2024-11-15 13:10:59 +0100
  • 646fc18d04 sdn: create forward firewall rules Stefan Hanreich 2024-11-15 13:10:58 +0100
  • 0c8bd4ad19 sdn: add support for loading vnet-level firewall config Stefan Hanreich 2024-11-15 13:10:57 +0100
  • d6edc73674 nftables: derive additional traits for nftables types Stefan Hanreich 2024-11-15 13:10:56 +0100
  • 6f01ca780b ipsets: autogenerate ipsets for vnets and ipam Stefan Hanreich 2024-11-15 13:09:31 +0100
  • 669f99801b config: tests: add support for loading sdn and ipam config Stefan Hanreich 2024-11-15 13:09:30 +0100
  • aa76920360 add proxmox-ve-rs crate - move proxmox-ve-config there Stefan Hanreich 2024-11-15 13:09:29 +0100
  • bea3e651b4 firewall: cargo: use new cargo feature resolver Fabian Grünbichler 2024-10-31 14:03:31 +0100
  • ac39ec3c66 bump serde_with to 3 Fabian Grünbichler 2024-07-25 13:00:21 +0200
  • 38c9eab41c bump version to 0.5.0 Thomas Lamprecht 2024-07-22 18:06:00 +0200
  • 57f6c9221d guest: match arp packets via meta Stefan Hanreich 2024-07-03 11:17:12 +0200
  • de75183366 conntrack: arp: move handling to guest chains Stefan Hanreich 2024-07-03 11:17:11 +0200
  • 293a19c213 cargo: bump proxmox-sys and proxmox-schema dependencies Stefan Hanreich 2024-07-03 11:17:10 +0200
  • 08b74961cc service: flush firewall rules on force disable Stefan Hanreich 2024-07-17 15:16:46 +0200
  • 1e16cc8827 rules: allow vital ICMP(v6) types Stefan Hanreich 2024-06-10 14:52:38 +0200
  • aa9b2e2395 build: properly set dh-cargo env variable Fabian Grünbichler 2024-06-20 12:32:32 +0200
  • f39f78150b move .cargo/config to .cargo/config.toml Fabian Grünbichler 2024-06-20 12:32:19 +0200
  • 7d1a12822d bump version to 0.4.2 Thomas Lamprecht 2024-05-21 15:44:13 +0200
  • 67eba1f525 guest out: fix conntrack handling with default block/reject policy Stefan Hanreich 2024-05-15 15:37:19 +0200
  • 3500a8d833 guest out: fix handling ARP traffic with default block/reject policy Stefan Hanreich 2024-05-15 15:37:18 +0200
  • bc3791c59a rules: use proper ICMPv6 type for rejecting IPv6 traffic Stefan Hanreich 2024-05-13 14:14:25 +0200
  • 019bf8c843 bump version to 0.4.1 Thomas Lamprecht 2024-04-26 17:22:05 +0200
  • 97b31ad885 service: add comment for disable flag Thomas Lamprecht 2024-04-26 17:16:23 +0200
  • 7acba538b8 service: add flag file to force-disable nftables Thomas Lamprecht 2024-04-26 16:02:38 +0200
  • d0506dc1a8 bump version to 0.4.0 Thomas Lamprecht 2024-04-25 19:29:50 +0200
  • 3b4bc833c1 firewall: improve error handling of firewall Stefan Hanreich 2024-04-25 19:23:07 +0200
  • d409750487 config: nftables: add support for icmp-type any Stefan Hanreich 2024-04-25 19:16:08 +0200
  • 58ebc5500c config: macros: add SPICEproxy macro Stefan Hanreich 2024-04-25 19:16:01 +0200
  • 514feac19c bump version to 0.3.1 Thomas Lamprecht 2024-04-24 19:40:43 +0200
  • b46ad3eedc fix #5410: config: fix naming scheme for names in firewall config Stefan Hanreich 2024-04-24 18:15:20 +0200
  • 2bb35160cf bump version to 0.3.0 Thomas Lamprecht 2024-04-23 18:34:29 +0200
  • 6a824765a7 firewall: properly handle REJECT rules Stefan Hanreich 2024-04-23 18:02:53 +0200
  • 90ac474bf3 bump version to 0.2.1 Thomas Lamprecht 2024-04-23 13:20:19 +0200
  • 7944ed2c63 firewall: properly cleanup tables when firewall is inactive Stefan Hanreich 2024-04-23 11:21:39 +0200
  • fc21474330 bump version to 0.2.0 Thomas Lamprecht 2024-04-19 19:42:30 +0200
  • 34dcb7589f firewall: improve systemd unit file Stefan Hanreich 2024-04-19 15:00:26 +0200
  • 7438bb262a firewall: wait for nft process Stefan Hanreich 2024-04-19 15:00:25 +0200
  • 11954b1a08 buildsys: add upload target Thomas Lamprecht 2024-04-18 22:02:26 +0200
  • 58f0d831d9 buildsys: drop bogus DEB variables Thomas Lamprecht 2024-04-18 22:02:08 +0200
  • 69a5707354 firewall: add integration test Stefan Hanreich 2024-04-16 19:00:15 +0200
  • 6734077b14 firewall: add files for debian packaging Stefan Hanreich 2024-03-29 10:53:08 +0100
  • 924905955a firewall: add proxmox-firewall binary and move existing code into lib Stefan Hanreich 2024-03-29 15:29:15 +0100
  • 3cdf99690a firewall: add ruleset generation logic Stefan Hanreich 2024-03-29 15:29:05 +0100
  • eb6d076888 firewall: add object generation logic Stefan Hanreich 2024-03-29 10:50:20 +0100
  • 874c4d8d86 firewall: add rule generation logic Stefan Hanreich 2024-03-29 16:37:58 +0100
  • e01abeb43b firewall: add config loader Stefan Hanreich 2024-03-29 10:48:30 +0100
  • e67330cb09 firewall: add base ruleset Stefan Hanreich 2024-03-29 10:51:54 +0100
  • f33b9c8071 firewall: add firewall crate Stefan Hanreich 2024-03-29 10:47:10 +0100
  • a4c504dcb8 nftables: add nft client Stefan Hanreich 2024-03-29 10:45:58 +0100
  • 74602577f5 nftables: types: add conversion traits Stefan Hanreich 2024-03-29 16:52:06 +0100
  • 6b40860fd5 nftables: commands: add types Stefan Hanreich 2024-04-17 14:55:35 +0200
  • 613c4b1424 nftables: statement: add conversion traits for config types Stefan Hanreich 2024-04-17 14:54:45 +0200
  • 50f7b40151 nftables: statement: add types Stefan Hanreich 2024-03-29 16:47:21 +0100
  • e755a1b9e6 nftables: expression: implement conversion traits for firewall config Stefan Hanreich 2024-03-29 14:36:44 +0100
  • a3dc42104b nftables: expression: add types Stefan Hanreich 2024-03-29 14:12:59 +0100
  • 3032d75d36 nftables: add helpers Stefan Hanreich 2024-03-29 10:34:25 +0100
  • c1589cc796 nftables: add crate for libnftables bindings Stefan Hanreich 2024-03-29 10:30:32 +0100
  • e4f0e222df config: firewall: add conntrack helper types Stefan Hanreich 2024-03-29 10:27:17 +0100
  • cdd597a97a config: firewall: add firewall macros Stefan Hanreich 2024-03-29 10:26:39 +0100
  • 9b192d50f0 config: firewall: add guest-specific config + option types Stefan Hanreich 2024-03-29 10:25:08 +0100
  • 4d3e3d51f2 config: firewall: add host specific config + option types Stefan Hanreich 2024-03-29 10:23:36 +0100
  • d40028df09 config: firewall: add cluster-specific config + option types Stefan Hanreich 2024-03-29 10:21:04 +0100
  • 225d78e7ca config: firewall: add generic parser for firewall configs Stefan Hanreich 2024-03-29 10:19:03 +0100
  • 10923cd270 config: firewall: add types for security groups Stefan Hanreich 2024-03-29 10:15:33 +0100
  • ee780f7d53 config: firewall: add types for rules Stefan Hanreich 2024-03-29 10:14:05 +0100
  • 2c13e6c001 config: firewall: add types for ipsets Stefan Hanreich 2024-03-29 10:07:58 +0100
  • 0d7557229e config: guest: add helpers for parsing guest network config Stefan Hanreich 2024-03-29 10:04:38 +0100
  • c34c6e5f2d config: host: add helpers for host network configuration Stefan Hanreich 2024-03-29 10:01:14 +0100
  • 7432d503f2 config: firewall: add types for aliases Stefan Hanreich 2024-03-29 09:55:33 +0100
  • 99f3c3a656 config: firewall: add types for log level and rate limit Stefan Hanreich 2024-03-29 09:52:37 +0100
  • b8ed6d0262 config: firewall: add types for ports Stefan Hanreich 2024-03-29 09:48:50 +0100
  • 2999c77677 config: firewall: add types for ip addresses Stefan Hanreich 2024-04-02 13:33:33 +0200
  • b686a12ff6 config: add proxmox-ve-config crate Stefan Hanreich 2024-03-29 09:41:50 +0100