Maximilian Wilhelm
|
e73f0b9e7f
nftables: Do proper uRPF checks in input chain, too.
|
3 years ago |
Maximilian Wilhelm
|
996e84a89c
nftables: Move uRPF checks into seperate chain
|
3 years ago |
Maximilian Wilhelm
|
a4dcdec312
nftables: Allow respondd requests to B.A.T.M.A.N. adv. gateways
|
3 years ago |
Maximilian Wilhelm
|
e7bf3f3bbc
nftables: Drop all broadcast packets before logging
|
3 years ago |
Maximilian Wilhelm
|
9f302065c1
nftables: Allow DHCP requests according to firewall policy
|
3 years ago |
Maximilian Wilhelm
|
c558c2fa6f
nftables: Allow VXLAN on interfaces requiring it.
|
3 years ago |
Maximilian Wilhelm
|
a88732a11d
nftables: Do not sort ports as they are pre-arranged by NACL
|
3 years ago |
Maximilian Wilhelm
|
c17fadd54f
nftabes: Generate rules for uRPF
|
3 years ago |
Maximilian Wilhelm
|
ea33ab41c8
nftables: Ignore packets for UDP port 0
|
3 years ago |
Maximilian Wilhelm
|
585642a35f
nftables: First shot at NAT support
|
3 years ago |
Maximilian Wilhelm
|
a6db6d7f8f
nftables: First shot at generating forwarding rules.
|
3 years ago |
Maximilian Wilhelm
|
4a173be1b1
nftables: Do NOT purge iptables on docker hosts
|
3 years ago |
Maximilian Wilhelm
|
327633f3b2
bird: No network type broadcast for new ERs
|
3 years ago |
Philipp Fromme
|
e3ccbc6e32
Merge pull request #8 from BarbarossaTM/chore/snmpd-cleanup
|
3 years ago |
Maximilian Wilhelm
|
43ba5498e5
snmpd: Update synthetic bandwidth values
|
3 years ago |
Maximilian Wilhelm
|
fdce53b7ce
snmpd: restart snmpd instead of reload
|
3 years ago |
Maximilian Wilhelm
|
c6529390ed
snmpd: Remove all deprecated and unused config options
|
3 years ago |
Maximilian Wilhelm
|
62fb829770
nftables: Purge iptables{,-persistent} when installing nftables
|
3 years ago |
Maximilian Wilhelm
|
ee262114b2
Apply nftables state to devices/VMs tagged with »nftables«
|
3 years ago |
Maximilian Wilhelm
|
8225c84172
nftables: Fix service rule comment generation
|
3 years ago |
Maximilian Wilhelm
|
96c3bd6188
nftables: Allow Icinga2 querier IPs
|
3 years ago |
Maximilian Wilhelm
|
b90762e79c
nftables: Allow LibreNMS to query nodes
|
3 years ago |
Philipp Fromme
|
c179199cf4
Merge pull request #6 from BarbarossaTM/nftables
|
3 years ago |
Maximilian Wilhelm
|
c944aae535
nftables: Use sets for iBGP peer IPs
|
3 years ago |
Maximilian Wilhelm
|
eb75d9cf9d
nftables: Enhance support for Netbox service ACLs
|
3 years ago |
Maximilian Wilhelm
|
843507256e
nftables: Allow OSPFv3 from link-local addresses, too.
|
3 years ago |
Maximilian Wilhelm
|
4a8c83671c
nftables: Ignore echo protocol queries - looking at you FireTV
|
3 years ago |
Maximilian Wilhelm
|
de1e261dc4
nftables: Default to empty service list if no services are configured
|
3 years ago |
Maximilian Wilhelm
|
efd3ccf5e1
unattended-upgrades: Add config file for Debian Bullseye
|
3 years ago |
Maximilian Wilhelm
|
73eb73f6bf
postfix: Add master.cf for Debian bullseye
|
3 years ago |