BlueGrey
calm
Elegant
Català-Valencià – Catalan
中文 – Chinese (Simplified)
中文 – Chinese (Traditional)
Česky – Czech
Dansk – Danish
Nederlands – Dutch
English – English
Suomi – Finnish
Français – French
Deutsch – German
עברית – Hebrew
हिंदी – Hindi
Magyar – Hungarian
Bahasa Indonesia – Indonesian
Italiano – Italian
日本語 – Japanese
한국어 – Korean
Македонски – Macedonian
मराठी – Marathi
Norsk – Norwegian
Polski – Polish
Português – Portuguese
Português – Portuguese (Brazil)
Русский – Russian
Slovenčina – Slovak
Slovenščina – Slovenian
Español – Spanish
Svenska – Swedish
Türkçe – Turkish
Українська – Ukrainian
Oëzbekcha – Uzbek
Subversion Repositories
ALCASAR
(root)
/
conf
/
etc
/
alcasar-iptables-local.sh
@ 913
– Rev 2645
Rev
Go to most recent revision
|
Show changed files
|
Details
|
Compare with Previous
|
Blame
Filtering Options
From rev
To rev
Max revs
Search history for
Show All
Rev
Age
Author
Path
Log message
Diff
2645
2204 d 0 h
rexy
/repos/alcasar/trunk/conf/etc/
- Exemple of a PAT
2621
2265 d 19 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Move SMTP port to a variable for output mails rule in alcasar-iptables-local.sh
2547
2380 d 16 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Add bypass mode compatibility to example "Deny access to protected networks from internal LAN" in alcasar-iptables-local.sh
2538
2386 d 13 h
tom.houdayer
/repos/alcasar/trunk/conf/etc/
Add two examples in alcasar-iptables-local.sh:
- Deny access to protected networks from internal LAN
- Allow managers to access ACC from the external network
2496
2449 d 16 h
tom.houdayer
/repos/alcasar/trunk/
Replace obsolete "state" iptables module to "conntrack"
2355
2663 d 20 h
tom.houdayer
/repos/alcasar/trunk/
Fix all traceability NFLOG rules by specifying the nfgroup to 1 (since the default group of NFLOG is 1 instead of 0 for ULOG1)
2353
2664 d 20 h
tom.houdayer
/repos/alcasar/trunk/
Fix traceability log due to an omission during the migration from ulog to nflog (Fail2Ban, alcasar-iptables-local-mac-filtered & alcasar-ip-blocked)
1829
3126 d 20 h
richard
/repos/alcasar/trunk/conf/etc/
- nouveaux commentaires pour préciser l'utilité de ce script
- renommage du fichier d'adresses mac filtrées
--> on devra interfaçer le renseignement de ce fichier dans l'ACC (TODO)
1627
3468 d 22 h
franck
/repos/alcasar/trunk/conf/etc/
Correction exemples Iptables
1618
3497 d 22 h
franck
/repos/alcasar/trunk/conf/etc/
Correction coquilles
1581
3539 d 19 h
richard
/repos/alcasar/trunk/
- on garde la liste des @IP en DHCP fixe dans le cas d'une mise à jour
1579
3539 d 23 h
richard
/repos/alcasar/trunk/
1522
3612 d 23 h
franck
/repos/alcasar/trunk/conf/etc/
Rajout de filtrage stricts (HTTP + HTTPS uniquement) sur des équipements identifiés.
Surcouche du filtrage de protocole et est actif avec ou sans DNS_FILTERING
870
4568 d 20 h
richard
/repos/alcasar/trunk/
- ACC : les noms de domaines en exception peuvent être déclaré "affiché" dans la page d'interception
- ajout d'un exemple de PAT dans l'iptables-local
827
4652 d 18 h
franck
/repos/alcasar/trunk/
Modif de proprietes
826
4652 d 18 h
franck
/repos/alcasar/trunk/
Modif de proprietes
759
4766 d 21 h
franck
/repos/alcasar/
dernières modifications avant publication : commentaire @IP serveur SMTP
652
4886 d 20 h
richard
/repos/alcasar/trunk/conf/etc/