projects / project / firewall4.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e1cb763) | patch
ruleset: reorder declarations & output tweaks
authorJo-Philipp Wich <jo@mein.io>
Tue, 14 Jun 2022 14:23:50 +0000 (16:23 +0200)
committerJo-Philipp Wich <jo@mein.io>
Tue, 14 Jun 2022 14:27:26 +0000 (16:27 +0200)
commit11410b80eb9c442c4850cfc3034267f3f72a196c
treec1448baec03e4a8dbe6910a97e6a947aacc25210tree | snapshot
parente1cb763b65262eef5958d19fe922380aa1e96570commit | diff
ruleset: reorder declarations & output tweaks

 - Omit "Set definitions" header if no sets are declared
 - Always emit ${zone}_devices and ${zone}_subnets defines, even if empty
 - Move CT helper definitions to the top
 - Move ${zone}_helper chain definitions after ${zone}_forward chain defs
 - Consistently use two line spacing for output sections

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
21 files changed:
root/usr/share/firewall4/templates/ruleset.uc diff | blob | history
tests/01_configuration/01_ruleset diff | blob | history
tests/01_configuration/02_rule_order diff | blob | history
tests/02_zones/01_policies diff | blob | history
tests/02_zones/02_masq diff | blob | history
tests/02_zones/03_masq_src_dest_restrictions diff | blob | history
tests/02_zones/04_wildcard_devices diff | blob | history
tests/02_zones/05_subnet_mask_matches diff | blob | history
tests/02_zones/06_family_selections diff | blob | history
tests/02_zones/07_helpers diff | blob | history
tests/03_rules/01_direction diff | blob | history
tests/03_rules/02_enabled diff | blob | history
tests/03_rules/03_constraints diff | blob | history
tests/03_rules/04_icmp diff | blob | history
tests/03_rules/05_mangle diff | blob | history
tests/03_rules/06_subnet_mask_matches diff | blob | history
tests/03_rules/07_redirect diff | blob | history
tests/03_rules/08_family_inheritance diff | blob | history
tests/03_rules/09_time diff | blob | history
tests/03_rules/10_notrack diff | blob | history
tests/04_forwardings/01_family_selections diff | blob | history
OpenWrt nftables firewall