[pve-devel] [PATCH v3 firewall 00/13] Firewall code cleanups
Tom Weber
pve at junkyard.4t2.com
Mon Oct 9 12:16:18 CEST 2017
third version. mostly converting rules into structures.
reorganized ruleset_generate_rule and everything around it.
please note that some of the stuff implemented in the first patches
gets eliminated later. So maybe it's worth reading all patches before
flaming me ;-)
Tom Weber (13):
remove unused $rule_format
prepare code for more generic firewall logging
integrate logging into ruleset_addrule
convert string based rule definitions to hashes
make $pve_std_chains a copy of $pve_std_chains_conf
eliminate unused nbdport in pve_std_chains_conf
iptables address matching in own subroutine
implement ipt_rule_to_cmds, ruleset_add_ipt_cmd
remove unused ruleset_generate_cmdstr
rule_substitude_action, remove ruleset_generate_rule_old
cleanup parameters to ruleset_generate_rule
remove unused ruleset_generate_rule_insert
remove ruleset_generate_match, ruleset_generate_action
src/PVE/Firewall.pm | 674 ++++++++++++++++++++++---------------------
src/PVE/FirewallSimulator.pm | 2 +-
2 files changed, 342 insertions(+), 334 deletions(-)
--
2.7.4
More information about the pve-devel
mailing list