Am Mittwoch, den 27.09.2017, 11:51 +0200 schrieb Wolfgang Bumiller:
> On Wed, Sep 27, 2017 at 11:09:29AM +0200, Tom Weber wrote:
> >
> > My goal are defined structures for rules, chains, macros (which i
> > think
> > are just arrays of "rule templates") etc and code which deals with
> > these
Am Mittwoch, den 27.09.2017, 11:53 +0200 schrieb Wolfgang Bumiller:
> On Wed, Sep 27, 2017 at 12:02:33AM +0200, Tom Weber wrote:
> >
> > ---
> > +'PVEFW-smurflog' => [
> > + { action => 'DROP', logmsg => 'DROP: ' },
> > +],
> > +'PVEFW-logflags' => [
> > + { action => 'DROP',
On Wed, Sep 27, 2017 at 12:02:33AM +0200, Tom Weber wrote:
> ---
> +'PVEFW-smurflog' => [
> + { action => 'DROP', logmsg => 'DROP: ' },
> +],
> +'PVEFW-logflags' => [
> + { action => 'DROP', logmsg => 'DROP: ' },
> ],
> };
Just noticed this is missing in the ipv6 part
On Wed, Sep 27, 2017 at 11:09:29AM +0200, Tom Weber wrote:
> My goal are defined structures for rules, chains, macros (which i think
> are just arrays of "rule templates") etc and code which deals with
> these structures instead of printing out iptables commands in various
> places.
That's long
First of all, this all is work in progress. I thought I commit for
easier understanding of the way i'm heading - instead of one huge
commit which turns everything inside out. and for feedback of course.
My goal are defined structures for rules, chains, macros (which i think
are just arrays of
On Wed, Sep 27, 2017 at 12:02:33AM +0200, Tom Weber wrote:
> ---
> src/PVE/Firewall.pm | 220
>
> 1 file changed, 117 insertions(+), 103 deletions(-)
>
> diff --git a/src/PVE/Firewall.pm b/src/PVE/Firewall.pm
> index f8a9300..179617a 100644
>
---
src/PVE/Firewall.pm | 220
1 file changed, 117 insertions(+), 103 deletions(-)
diff --git a/src/PVE/Firewall.pm b/src/PVE/Firewall.pm
index f8a9300..179617a 100644
--- a/src/PVE/Firewall.pm
+++ b/src/PVE/Firewall.pm
@@ -142,6 +142,20 @@ my
