freifunk-franken/firmware

fff-firewall: Switch from ip/ebtables to nftables #275

Closed

fbl wants to merge 1 commits from fbl:openwrt22-nftables into master

fbl commented

2022-12-18 20:22:14 +01:00

Owner

Include nftables and appropriate modules. Translate ip- and ebtables
rules to their nftables counterparts. Remove ip/ebtables and modules.

This change intentionally tries to keep structural changes at a minimum
to keep the rule translation comprehensible.

kmod-nft-bridge is not required for fff-node, because it was merged into
a single kernel module since Linux 4.17:
[1] 02c7b25e5f
[2] fbaf48387e

Based on #249

Include nftables and appropriate modules. Translate ip- and ebtables rules to their nftables counterparts. Remove ip/ebtables and modules. This change intentionally tries to keep structural changes at a minimum to keep the rule translation comprehensible. kmod-nft-bridge is not required for fff-node, because it was merged into a single kernel module since Linux 4.17: [1] https://github.com/torvalds/linux/commit/02c7b25e5f54321b9063e18d4f52cce07f8e081d [2] https://github.com/openwrt/openwrt/commit/fbaf48387eb5e0e2bdc90d4c6f985a242a9fb0cc Based on #249

fbl added the

labels 2022-12-18 20:22:14 +01:00

fbl commented

2023-03-21 20:39:08 +01:00

Author

Owner

Fixes: #252

Fixes: #252

fbl added this to the 20240119-beta milestone 2023-03-21 20:40:18 +01:00

fbl force-pushed openwrt22-nftables from afd737774f to 003172bd5e

2023-04-05 22:11:54 +02:00

Compare

fbl commented

2023-04-05 22:12:28 +02:00

Author

Owner

Changes:

Rebase onto current master

Changes: - Rebase onto current master

fbl force-pushed openwrt22-nftables from 003172bd5e to 8be918ad49

2023-04-06 22:04:32 +02:00

Compare

fbl commented

2023-04-06 22:04:48 +02:00

Author

Owner

Changes:

Add "Fixes: #252" to Commit Message

Changes: - Add "Fixes: #252" to Commit Message

fbl changed title from ~~WIP: fff-firewall: Switch from ip/ebtables to nftables~~ to fff-firewall: Switch from ip/ebtables to nftables

2023-04-06 22:05:12 +02:00

fbl removed the

label 2023-04-06 22:05:15 +02:00

jkimmel commented

2023-04-11 09:10:59 +02:00

Owner

Bei der commit message gehört noch das WIP: weg.

Bei der commit message gehört noch das `WIP:` weg.

jkimmel added a new dependency 2023-04-11 18:08:04 +02:00

#284 layer3: add option to enable stateful firewall on client network

fbl added a new dependency 2023-08-06 15:00:14 +02:00

#289 OpenWrt: bump to v23.05

fbl referenced this pull request

2023-08-06 20:04:31 +02:00

OpenWrt: bump to v23.05 #289

fbl referenced this pull request

2023-08-06 20:06:50 +02:00

OpenWrt: bump to v23.05 #289

fbl commented

2023-12-26 20:23:16 +01:00

Author

Owner

WIP: aus der commit message entfernt und applied.

`WIP:` aus der commit message entfernt und applied.

fbl closed this pull request

2023-12-26 20:23:16 +01:00

fbl removed the

label 2023-12-26 20:23:22 +01:00

ci/woodpecker/pr/woodpecker Pipeline was successful

Details

Pull request closed

This pull request cannot be reopened because the branch was deleted.

Sign in to join this conversation.

No reviewers

No Label

build/scripts/tools

more details required

No Milestone

No Assignees

2 Participants

Notifications

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Blocks

#284 layer3: add option to enable stateful firewall on client network

freifunk-franken/firmware

#289 OpenWrt: bump to v23.05

freifunk-franken/firmware

Reference: freifunk-franken/firmware#275

No description provided.