git.openwrt.org Git - project/firewall4.git/commit

author	Luiz Angelo Daros de Luca <luizluca@gmail.com>
	Mon, 31 Jul 2023 22:18:30 +0000 (19:18 -0300)
committer	Jo-Philipp Wich <jo@mein.io>
	Fri, 3 Nov 2023 12:34:35 +0000 (13:34 +0100)
commit	597dc90fb71419c42c13c27fe24e3d350e6e33dc
tree	f86c5d3cf3b42b22d10fa5652f7319b100825eca	tree \| snapshot
parent	a923c88f9fbb055247cf0a0903f4ad1c189a4843	commit \| diff

fw4: add support for zone log_limit

It is equivalent to the fw3 feature, affecting not accepted packets
and rules explicitily setting the log property.

Input rules not associated with a zone will not have log_limit.
Forward rules will use src zone log_limit or, if missing, dest zone
log_limit.

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
[properly handle null zone references, whitespace and indentation cleanup,
testcase cleanup, slight code simplification, use dot for named limit,
properly format limit expressions]
Signed-off-by: Jo-Philipp Wich <jo@mein.io>

root/usr/share/firewall4/templates/redirect.uc		diff \| blob \| history
root/usr/share/firewall4/templates/rule.uc		diff \| blob \| history
root/usr/share/firewall4/templates/ruleset.uc		diff \| blob \| history
root/usr/share/firewall4/templates/zone-drop-invalid.uc		diff \| blob \| history
root/usr/share/firewall4/templates/zone-verdict.uc		diff \| blob \| history
root/usr/share/ucode/fw4.uc		diff \| blob \| history