Nanako/immortalwrt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,393 Commits 6 Branches 22 Tags
a94de80d10b8979cb46111a5cb70f48c00c7ac96
Commit Graph

47 Commits

Author SHA1 Message Date
Jo-Philipp Wich
cda918fc74 qos-scripts: fix interface resolving 
Also ensure that the error message is actually printed to stderr and that
the rule generation is aborted if an interface cannot be resolved.

Ref: https://github.com/openwrt/luci/issues/3975
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
 2020-05-30 11:30:35 +08:00
Philip Prindeville
afc9f6ec52 firewall: add rule for traceroute support 
Running your firewall's "wan" zone in REJECT zone (1) exposes the
presence of the router, (2) depending on the sophistication of
fingerprinting tools might identify the OS and release running on
the firewall which then identifies known vulnerabilities with it
and (3) perhaps most importantly of all, your firewall can be
used in a DDoS reflection attack with spoofed traffic generating
ICMP Unreachables or TCP RST's to overwhelm a victim or saturate
his link.

This rule, when enabled, allows traceroute to work even when the
default input policy of the firewall for the wan zone has been
set to DROP.

Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
 2020-05-23 19:17:18 +08:00
CN_SZTL
3dea33419c Merge Official Source 2020-05-02 19:17:57 +08:00
AmadeusGhost
23378ed9a4 netifd: add dynamic wireless reconfiguration (#4518) 
Set new option 'reconf' in 'wifi-device' section to enable dynamic re-configuration on that radio. Also fix wifi relay and 'netifd: radio1 (9654): Command failed'.
 2020-05-02 19:11:45 +08:00
CN_SZTL
a68db5f2df treewide: sync with upstream source 2020-03-28 23:37:17 +08:00
CN_SZTL
6f1aeacab7 Merge Lean's source 2020-02-04 02:10:48 +08:00
coolsnowwolf
8b05d9f36d firewall: bump to new version 2020-02-04 01:00:39 +08:00
CN_SZTL
90ada66343 Revert "gre: add ipv6 parameter to gre interfaces" 
This reverts commit 5a95b72b59.
 2019-12-22 10:31:53 +08:00
CN_SZTL
5a95b72b59 gre: add ipv6 parameter to gre interfaces 2019-12-07 17:35:24 +08:00
CN_SZTL
d95971eebc netifd: downgrade to 2019-08-05 2019-12-01 00:43:34 +08:00
CN_SZTL
d7e8e829dd netifd: update to latest git HEAD 2019-11-30 19:23:02 +08:00
CN_SZTL
95e66c8e4b Merge Lean's source 2019-11-25 12:46:54 +08:00
LEAN-ESX
3376f50203 Revert "netifd: bump to latest version" 
This reverts commit d6ce485de7.
 2019-11-24 19:57:24 -08:00
CN_SZTL
a73910a006 Merge Lean's source 2019-11-24 08:21:04 +08:00
LEAN-ESX
d6ce485de7 netifd: bump to latest version 2019-11-23 10:39:08 -08:00
CN_SZTL
d74a5ae4f7 firewall: bump to 2019-09-23 2019-11-09 10:00:03 +08:00
CN_SZTL
3ed9d3c62b usign/swconfig/mtd/dnsmasq/uci: Activate LTO compile option 2019-11-09 09:48:07 +08:00
CN_SZTL
5a9e4d20b0 Merge Lean's source 2019-10-24 22:13:48 +08:00
LEAN-ESX
820b0f12ec netifd: bump to 2019-08-05 2019-10-24 03:44:25 -07:00
CN_SZTL
9f00ef69ae fix permission 2019-09-30 14:27:46 +08:00
CN_SZTL
2e2284d6fe fix permission 2019-09-30 13:52:50 +08:00
CN_SZTL
ba512e29ce fix permission 2019-09-30 13:42:16 +08:00
CN_SZTL
76a3cd7f74 fix & merge 2019-09-30 13:21:19 +08:00
CN_SZTL
fb63c7b784 netifd: handle hotplug event socket errors 2019-08-16 13:49:05 +08:00
CN_SZTL
2b219683cd Merge pull request #8 from coolsnowwolf/master 
merge newest source from lean
 2019-05-31 22:33:10 +08:00
LEAN-ESX
4910870f52 netifd: fix missing ip rules after network reload 2019-05-31 07:27:16 -07:00
CN_SZTL
5dd5f80ec8 Merge pull request #2 from coolsnowwolf/master 
merge newest source from lean
 2019-05-27 12:04:38 +08:00
LEAN-ESX
91bdd6b3e0 firewall: add Fullcone-NAT option 2019-05-26 10:26:57 -07:00
CN_SZTL
ce8ed9121b add luci-app-haproxy & luci-app-udpspeederv2 2019-05-25 21:05:51 +08:00
coolsnowwolf
a932838a03 netifd:fix "if-down" hotplug event handling 2019-04-17 11:01:10 +08:00
coolsnowwolf
4f8c1b29e2 netifd:fix delegate config update on reload 2019-03-20 13:39:37 +08:00
coolsnowwolf
d2eafde1a2 firewall: update to latest git HEAD 2019-01-04 13:24:10 +08:00
coolsnowwolf
fcff889b0e firewall: bump to new version 2019-01-03 20:38:08 +08:00
coolsnowwolf
347daa04b2 Merge branch master of https://github.com/coolsnowwolf/lede 2019-01-03 19:29:28 +08:00
coolsnowwolf
67b9ae2d3a hostapd: add WPA3 support 2018-10-17 21:54:59 +08:00
coolsnowwolf
d18f879b45 repare for ipsec ipv6 support 2018-09-27 12:54:30 +08:00
coolsnowwolf
0f4c3eb2d5 default enable fullconenat in fw3 2018-09-22 18:31:40 +08:00
coolsnowwolf
806f5db174 sync with OpenWrt trunk 2018-09-07 13:43:55 +08:00
coolsnowwolf
9ba04fd0d7 sync with OpenWrt v18.06.1 stable new R8.1 version 2018-08-23 17:40:23 +08:00
coolsnowwolf
a4af6b9325 firewall: update to latest git HEAD 2018-06-16 12:12:47 +08:00
coolsnowwolf
8fe0636b8a Merge branch 'master' of github.com:lede-project/source 2018-04-23 18:50:49 +08:00
coolsnowwolf
85c231621c firewall: update to the latest version, adds hardware flow offload support 2018-04-08 16:57:27 +08:00
coolsnowwolf
20f7e75789 update to R7.5.4 2018-01-15 18:26:41 +08:00
coolsnowwolf
b0f643aa87 update to R7.5.3 stable to fix firewall freeze 2018-01-10 20:55:06 +08:00
coolsnowwolf
6d210c00b6 revert netifd 2018-01-10 16:34:02 +08:00
coolsnowwolf
229cde62a4 Merge branch 'master' of https://github.com/lede-project/source 2018-01-09 14:38:15 +08:00
coolsnowwolf
97a4ffcc12 update source 2017-09-06 19:19:45 +08:00