Skip to content
a5f22c1
Compare
Choose a tag to compare

What's Changed

  • Don't add an end of chain log rule if default_policy isn't drop. by @gizmoguy in #40

Full Changelog: 2.11...2.12

d8b0653
Compare
Choose a tag to compare

What's Changed

  • Clean up some redundant rules in the external class. by @gizmoguy in #37
  • Propagate networking service restarts to bearwall2. by @gizmoguy in #38
  • Publish debian packages to special cloudsmith any-distro/any-version target to avoid having to build for each distro/version we want to support. by @gizmoguy in #36

Full Changelog: 2.10...2.11

33ad16e
Compare
Choose a tag to compare
  • Publish apt packages to cloudsmith.
  • Build for new ubuntu/debian versions.
a799363
Compare
Choose a tag to compare
  • Fix commands don't work while bearwall is in an uncommitted state
64b0dad
Compare
Choose a tag to compare
  • Fix incorrect exit code set when nftables failed to apply the ruleset.
5e39eab
Compare
Choose a tag to compare
  • nftables considers an empty vmap a syntax error, so prevent empty vmaps from being created.
3da3df0
Compare
Choose a tag to compare
  • Fix bearwall2-early service wasn't enabled on package upgrade.
a59ffb2
Compare
Choose a tag to compare
  • Introduce a new early boot bearwall2 service for ensuring the machine has a firewall applied at all stages of booting.
880cfaf
Compare
Choose a tag to compare
  • Handle syntax errors during try/rollback mode.
  • Add better support for transient interface types such as ppp.
2a1fa94
Compare
Choose a tag to compare
  • Fix issue where defining rules for one of forward-in or forward-in (but not both) generated invalid nftables output.
  • Add support for nftables comments.