CVS log for loncom/configuration/Firewall.pm

[BACK] Up to [LON-CAPA] / loncom / configuration

Request diff between arbitrary revisions


Keyword substitution: kv
Default branch: MAIN


Revision 1.28: download - view: text, markup, annotated - select for diffs
Fri Sep 13 03:52:03 2024 UTC (3 months, 1 week ago) by raeburn
Branches: MAIN
CVS tags: version_2_12_X, HEAD
Diff to previous 1.27: preferred, unified
Changes since revision 1.27: +16 -3 lines
- Bug 6993. For LON-CAPA servers/VMs using firewalld: firewall rules added
  by lciptables made "permanent" so they persist after firewall-cmd --reload

Revision 1.27: download - view: text, markup, annotated - select for diffs
Thu Jun 13 17:18:38 2024 UTC (6 months, 1 week ago) by raeburn
Branches: MAIN
CVS tags: version_2_11_X, version_2_11_5_msu, version_2_11_5
Diff to previous 1.26: preferred, unified
Changes since revision 1.26: +4 -4 lines
- Support Ubuntu 24 and Debian 12 in which output from iptables -n -L uses
  IP protocol number instead of text when listing protocol for each rule.

Revision 1.26: download - view: text, markup, annotated - select for diffs
Wed Apr 24 21:34:44 2024 UTC (8 months ago) by raeburn
Branches: MAIN
Diff to previous 1.25: preferred, unified
Changes since revision 1.25: +13 -1 lines
- Support Ubuntu 22 and 24 (using ufw).

Revision 1.25: download - view: text, markup, annotated - select for diffs
Tue Dec 21 16:42:15 2021 UTC (3 years ago) by raeburn
Branches: MAIN
CVS tags: version_2_11_4_uiuc, version_2_11_4_msu, version_2_11_4
Diff to previous 1.24: preferred, unified
Changes since revision 1.24: +2 -2 lines
- Typo

Revision 1.24: download - view: text, markup, annotated - select for diffs
Tue Dec 21 13:57:47 2021 UTC (3 years ago) by raeburn
Branches: MAIN
Diff to previous 1.23: preferred, unified
Changes since revision 1.23: +4 -4 lines
- Support CentOS Stream 8 and 9.

Revision 1.23: download - view: text, markup, annotated - select for diffs
Mon Dec 20 03:13:29 2021 UTC (3 years ago) by raeburn
Branches: MAIN
Diff to previous 1.22: preferred, unified
Changes since revision 1.22: +5 -5 lines
- Support Rocky Linux 8 and AlmaLinux 8

Revision 1.22: download - view: text, markup, annotated - select for diffs
Mon Jan 4 18:24:51 2021 UTC (3 years, 11 months ago) by raeburn
Branches: MAIN
CVS tags: version_2_11_3_uiuc, version_2_11_3_msu, version_2_11_3
Diff to previous 1.21: preferred, unified
Changes since revision 1.21: +18 -1 lines
- Show activity while firewall rules are checked for lond port unless this is
  a standalone server.

Revision 1.21: download - view: text, markup, annotated - select for diffs
Thu Jul 9 13:42:37 2020 UTC (4 years, 5 months ago) by raeburn
Branches: MAIN
Diff to previous 1.20: preferred, unified
Changes since revision 1.20: +6 -3 lines
- Warn if iphost information is missing.

Revision 1.20: download - view: text, markup, annotated - select for diffs
Sat Jan 11 22:07:54 2020 UTC (4 years, 11 months ago) by raeburn
Branches: MAIN
Diff to previous 1.19: preferred, unified
Changes since revision 1.19: +3 -7 lines
- When firewalld not in use, eliminate superfluous call to
  &firewall_is_active(), and fix logic in check for valid $fw_chain.

Revision 1.19: download - view: text, markup, annotated - select for diffs
Tue Jul 2 19:40:22 2019 UTC (5 years, 5 months ago) by raeburn
Branches: MAIN
Diff to previous 1.18: preferred, unified
Changes since revision 1.18: +6 -6 lines
- Support Oracle Linux 7

Revision 1.18: download - view: text, markup, annotated - select for diffs
Sun Jun 9 02:35:45 2019 UTC (5 years, 6 months ago) by raeburn
Branches: MAIN
Diff to previous 1.17: preferred, unified
Changes since revision 1.17: +291 -166 lines
- Dynamic management of LON-CAPA port 5663 compatible with firewalld
  - &get_default_zone(() provides default zone
  - Revert changes in rev. 1.17 to &uses_firewalld() -- now returns
    1 if firewalld in use, but not the default zone.
  - Additional arg, value = 1 if firewalld in use  is passed to
    &firewall_open_port(), &firewall_close_port(),
    &firewall_is_port_open(), &firewall_close_anywhere()

Revision 1.17: download - view: text, markup, annotated - select for diffs
Tue May 7 21:18:24 2019 UTC (5 years, 7 months ago) by raeburn
Branches: MAIN
Diff to previous 1.16: preferred, unified
Changes since revision 1.16: +27 -13 lines
- Dynamic management of LON-CAPA port 5663 compatible with firewalld
  - &uses_firewalld() gets default zone when firewalld is in use.

Revision 1.16: download - view: text, markup, annotated - select for diffs
Wed Dec 12 03:34:04 2018 UTC (6 years ago) by raeburn
Branches: MAIN
Diff to previous 1.15: preferred, unified
Changes since revision 1.15: +2 -2 lines
- Suppress unwanted output from &uses_firewalld() on distros where firewalld
  is available but has been disabled in favor of using iptables commands.

Revision 1.15: download - view: text, markup, annotated - select for diffs
Wed Oct 24 02:08:04 2018 UTC (6 years, 2 months ago) by raeburn
Branches: MAIN
Diff to previous 1.14: preferred, unified
Changes since revision 1.14: +244 -77 lines
- Dynamic management of LON-CAPA port 5663 compatible with firewalld.

Revision 1.14: download - view: text, markup, annotated - select for diffs
Mon Mar 17 14:47:46 2014 UTC (10 years, 9 months ago) by bisitz
Branches: MAIN
CVS tags: version_2_11_2_uiuc, version_2_11_2_msu, version_2_11_2_educog, version_2_11_2, version_2_11_1, version_2_11_0_RC3, version_2_11_0
Diff to previous 1.13: preferred, unified
Changes since revision 1.13: +12 -12 lines
Consistent case and punctuation of output text

Revision 1.13: download - view: text, markup, annotated - select for diffs
Sun Sep 22 15:50:35 2013 UTC (11 years, 3 months ago) by raeburn
Branches: MAIN
CVS tags: version_2_11_0_RC2
Diff to previous 1.12: preferred, unified
Changes since revision 1.12: +7 -1 lines
- Additional output for unexpected states.

Revision 1.12: download - view: text, markup, annotated - select for diffs
Fri Feb 8 14:55:12 2013 UTC (11 years, 10 months ago) by raeburn
Branches: MAIN
CVS tags: version_2_11_0_RC1
Diff to previous 1.11: preferred, unified
Changes since revision 1.11: +3 -6 lines
- Use LONCAPA:distro() to get Linux distro.

Revision 1.11: download - view: text, markup, annotated - select for diffs
Sun May 15 00:49:41 2011 UTC (13 years, 7 months ago) by raeburn
Branches: MAIN
CVS tags: version_2_10_X, version_2_10_1, version_2_10_0, loncapaMITrelate_1, language_hyphenation_merge, language_hyphenation, BZ4492-merge, BZ4492-feature_horizontal_radioresponse, BZ4492-feature_Support_horizontal_radioresponse, BZ4492-Support_horizontal_radioresponse
Diff to previous 1.10: preferred, unified
Changes since revision 1.10: +11 -5 lines
- Report if no IP addresses required termination of port access.

Revision 1.10: download - view: text, markup, annotated - select for diffs
Sat May 14 22:34:12 2011 UTC (13 years, 7 months ago) by raeburn
Branches: MAIN
Diff to previous 1.9: preferred, unified
Changes since revision 1.9: +4 -10 lines
- Explicit path to distprobe as Firewall.pm is called by lciptables (setuid).

Revision 1.9: download - view: text, markup, annotated - select for diffs
Tue Apr 26 03:43:17 2011 UTC (13 years, 8 months ago) by raeburn
Branches: MAIN
Diff to previous 1.8: preferred, unified
Changes since revision 1.8: +23 -4 lines
- &get_fw_chains() uses distprobe when getting names of chains in iptables.

Revision 1.8: download - view: text, markup, annotated - select for diffs
Fri Feb 25 19:41:59 2011 UTC (13 years, 10 months ago) by raeburn
Branches: MAIN
Diff to previous 1.7: preferred, unified
Changes since revision 1.7: +15 -7 lines
- Support firewall configuration via ufw on Ubuntu.

Revision 1.7: download - view: text, markup, annotated - select for diffs
Thu Dec 30 18:40:29 2010 UTC (13 years, 11 months ago) by raeburn
Branches: MAIN
CVS tags: version_2_10_0_RC2
Diff to previous 1.6: preferred, unified
Changes since revision 1.6: +15 -6 lines
- No longer stop and start of firewall rules for existing hosts when loncron
  calls lciptables.
- Additional arg in Firewall::firewall_close_port() - ref to %iphosts
  hash of hosts in cluster.

Revision 1.6: download - view: text, markup, annotated - select for diffs
Thu Mar 25 01:47:45 2010 UTC (14 years, 9 months ago) by raeburn
Branches: MAIN
CVS tags: version_2_9_X, version_2_9_1, version_2_9_0, version_2_8_99_1, version_2_10_0_RC1, PRINT_INCOMPLETE_base, PRINT_INCOMPLETE
Diff to previous 1.5: preferred, unified
Changes since revision 1.5: +220 -142 lines
- get_fw_chain() renamed get_fw_chains()
  - return array of chains in use
- Reference to this array of chains is second arg for:
    &firewall_close_port() and &firewall_open_port()
- Replace backticks with opened pipe to extract information about chains.
- Streamline code in firewall_is_port_open() to eliminate loop for each
  iptables line.
- When using &firewall_open_port() check if entry already exists for specific IP for LON-CAPA port before calling system command to add one.

Revision 1.5: download - view: text, markup, annotated - select for diffs
Fri Jul 17 00:15:49 2009 UTC (15 years, 5 months ago) by raeburn
Branches: MAIN
CVS tags: version_2_9_99_0, version_2_8_99_0, bz6209-base, bz6209, bz2851, GCI_3, GCI_2
Diff to previous 1.4: preferred, unified
Changes since revision 1.4: +4 -2 lines
On Debian saved rulesets may be found in /var/lib/iptables.

Revision 1.4: download - view: text, markup, annotated - select for diffs
Mon Jul 6 00:07:19 2009 UTC (15 years, 5 months ago) by raeburn
Branches: MAIN
Diff to previous 1.3: preferred, unified
Changes since revision 1.3: +5 -1 lines
- Pass $iptables (path to iptables) as arg to &get_fw_chain().

Revision 1.3: download - view: text, markup, annotated - select for diffs
Fri Jul 3 17:59:01 2009 UTC (15 years, 5 months ago) by raeburn
Branches: MAIN
Diff to previous 1.2: preferred, unified
Changes since revision 1.2: +6 -1 lines
- RH-Firewall-1-INPUT no longer used as chain in iptables for Fedora 10 and 11.
  - default to use INPUT as chain for LON-CAPA firewall rules.

Revision 1.2: download - view: text, markup, annotated - select for diffs
Thu Jun 11 13:01:56 2009 UTC (15 years, 6 months ago) by raeburn
Branches: MAIN
CVS tags: bz5969, BZ5971-printing-apage
Diff to previous 1.1: preferred, unified
Changes since revision 1.1: +3 -2 lines
- Add a lost linefeed.

Revision 1.1: download - view: text, markup, annotated - select for diffs
Wed Jun 10 23:51:51 2009 UTC (15 years, 6 months ago) by raeburn
Branches: MAIN
- Code to open ports in firewall moved from loncontrol to Firewall.pm
- New routines added:
   &get_pathto_iptables() - gets full path for iptables command
   &get_fw_chain() - gets chain name for firewall rules.

Diff request

This form allows you to request diffs between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.

Log view options

FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>