BlueGrey
calm
Elegant
Català-Valencià – Catalan
中文 – Chinese (Simplified)
中文 – Chinese (Traditional)
Česky – Czech
Dansk – Danish
Nederlands – Dutch
English – English
Suomi – Finnish
Français – French
Deutsch – German
עברית – Hebrew
हिंदी – Hindi
Magyar – Hungarian
Bahasa Indonesia – Indonesian
Italiano – Italian
日本語 – Japanese
한국어 – Korean
Македонски – Macedonian
मराठी – Marathi
Norsk – Norwegian
Polski – Polish
Português – Portuguese
Português – Portuguese (Brazil)
Русский – Russian
Slovenčina – Slovak
Slovenščina – Slovenian
Español – Spanish
Svenska – Swedish
Türkçe – Turkish
Українська – Ukrainian
Oëzbekcha – Uzbek
Subversion Repositories
ALCASAR
(root)
/
conf
/
etc
/
alcasar-iptables-local.sh
@ 1282
– Rev 2716
Rev
Go to most recent revision
|
Hide changed files
|
Details
|
Compare with Previous
|
Blame
Filtering Options
From rev
To rev
Max revs
Search history for
Show All
Rev
Age
Author
Path
Log message
Diff
Changes
2716
2031 d 0 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Minor change of the local iptables rule "Allow managers to access ACC from the external network"
/conf/etc/alcasar-iptables-local.sh
2652
2158 d 19 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
/conf/etc/alcasar-iptables-local.sh
2645
2164 d 3 h
rexy
/repos/alcasar/trunk/conf/etc/
- Exemple of a PAT
/conf/etc/alcasar-iptables-local.sh
2621
2225 d 22 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Move SMTP port to a variable for output mails rule in alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-local.sh
2547
2340 d 19 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Add bypass mode compatibility to example "Deny access to protected networks from internal LAN" in alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-local.sh
2538
2346 d 16 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Add two examples in alcasar-iptables-local.sh:
- Deny access to protected networks from internal LAN
- Allow managers to access ACC from the external network
/conf/etc/alcasar-iptables-local.sh
2496
2409 d 19 h
tom.houdayer
/repos/alcasar/trunk/
Replace obsolete "state" iptables module to "conntrack"
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-iptables.sh
2355
2623 d 23 h
tom.houdayer
/repos/alcasar/trunk/
Fix all traceability NFLOG rules by specifying the nfgroup to 1 (since the default group of NFLOG is 1 instead of 0 for ULOG1)
/CHANGELOG
/conf/etc/alcasar-iptables-local.sh
/conf/fail2ban.sh
/scripts/alcasar-iptables-bypass.sh
/scripts/alcasar-iptables.sh
2353
2624 d 23 h
tom.houdayer
/repos/alcasar/trunk/
Fix traceability log due to an omission during the migration from ulog to nflog (Fail2Ban, alcasar-iptables-local-mac-filtered & alcasar-ip-blocked)
/CHANGELOG
/conf/etc/alcasar-iptables-local.sh
/conf/fail2ban.sh
/scripts/alcasar-iptables-bypass.sh
1829
3086 d 23 h
richard
/repos/alcasar/trunk/conf/etc/
- nouveaux commentaires pour préciser l'utilité de ce script
- renommage du fichier d'adresses mac filtrées
--> on devra interfaçer le renseignement de ce fichier dans l'ACC (TODO)
/conf/etc/alcasar-iptables-local-mac-filtered
/conf/etc/alcasar-iptables-local-filtered
/conf/etc/alcasar-iptables-local.sh
1627
3429 d 1 h
franck
/repos/alcasar/trunk/conf/etc/
Correction exemples Iptables
/conf/etc/alcasar-iptables-local.sh
1618
3458 d 1 h
franck
/repos/alcasar/trunk/conf/etc/
Correction coquilles
/conf/etc/alcasar-iptables-local.sh
1581
3499 d 22 h
richard
/repos/alcasar/trunk/
- on garde la liste des @IP en DHCP fixe dans le cas d'une mise à jour
/web/acc/admin/activity.php
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-conf.sh
/web/acc/manager/activity.php
1579
3500 d 3 h
richard
/repos/alcasar/trunk/
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-conf.sh
1522
3573 d 2 h
franck
/repos/alcasar/trunk/conf/etc/
Rajout de filtrage stricts (HTTP + HTTPS uniquement) sur des équipements identifiés.
Surcouche du filtrage de protocole et est actif avec ou sans DNS_FILTERING
/conf/etc/alcasar-iptables-local-filtered
/conf/etc/alcasar-iptables-local.sh
870
4528 d 23 h
richard
/repos/alcasar/trunk/
- ACC : les noms de domaines en exception peuvent être déclaré "affiché" dans la page d'interception
- ajout d'un exemple de PAT dans l'iptables-local
/CHANGELOG
/conf/etc/alcasar-iptables-local.sh
/scripts/alcasar-file-clean.sh
/web/acc/admin/auth_exceptions.php
/web/acc/admin/net_filter.php
827
4612 d 21 h
franck
/repos/alcasar/trunk/
Modif de proprietes
/conf/etc/alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-qos.sh
/scripts/sbin/alcasar-dg-pureip.sh
826
4612 d 21 h
franck
/repos/alcasar/trunk/
Modif de proprietes
/conf/etc/alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-qos.sh
/scripts/sbin/alcasar-dg-pureip.sh
/scripts/sbin/alcasar-version.sh
759
4727 d 0 h
franck
/repos/alcasar/
dernières modifications avant publication : commentaire @IP serveur SMTP
/conf/etc/alcasar-iptables-local.sh
652
4846 d 23 h
richard
/repos/alcasar/trunk/conf/etc/
/conf/etc
/conf/etc/alcasar-bl-categories-enabled
/conf/etc/alcasar-dns-name
/conf/etc/alcasar-iptables-local.sh
/conf/etc/alcasar-iptables-qos.sh
/conf/etc/alcasar-services