summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--TODO4
-rw-r--r--mk/modules.mk39
-rw-r--r--package/Config.in1
-rw-r--r--package/Makefile1
-rw-r--r--package/axtls/files/axhttpd.init2
-rw-r--r--package/base-files/extra/etc/profile6
-rwxr-xr-xpackage/base-files/extra/init3
-rwxr-xr-xpackage/base-files/extra/sbin/update14
-rw-r--r--package/bind/files/named.init2
-rw-r--r--package/bitlbee/files/bitlbee.init2
-rw-r--r--package/bluez/files/bluez.init2
-rw-r--r--package/busybox/config/Config.in4
-rw-r--r--package/busybox/config/archival/Config.in10
-rw-r--r--package/busybox/config/init/Config.in6
-rw-r--r--package/busybox/config/networking/Config.in2
-rw-r--r--package/busybox/config/procps/Config.in2
-rw-r--r--package/busybox/files/inetd.init2
-rw-r--r--package/busybox/files/syslog.init4
-rw-r--r--package/cfinstall/src/cfinstall2
-rw-r--r--package/chillispot/files/chillispot.init2
-rw-r--r--package/collectd/files/collectd.init2
-rw-r--r--package/cups/files/cupsd.init2
-rw-r--r--package/dansguardian/files/dansguardian.init6
-rw-r--r--package/dansguardian/files/dansguardian.postinst4
-rw-r--r--package/dbus/files/dbus.init2
-rw-r--r--package/dhcp-forwarder/files/dhcp-fwd.init2
-rw-r--r--package/dhcp/files/dhcpd.init2
-rw-r--r--package/dnsmasq/files/dnsmasq.init2
-rw-r--r--package/dropbear/files/dropbear.init2
-rw-r--r--package/ebtables/Config.in6
-rw-r--r--package/ebtables/Makefile32
-rw-r--r--package/ebtables/patches/patch-Makefile95
-rw-r--r--package/esound/files/esd.init2
-rw-r--r--package/ez-ipupdate/files/ez-ipupdate.init2
-rw-r--r--package/fakeidentd/files/fakeidentd.init2
-rw-r--r--package/freeradius-server/files/radiusd.init2
-rw-r--r--package/frickin/files/frickin.init2
-rw-r--r--package/gkrellmd/files/gkrellmd.init2
-rw-r--r--package/gmediaserver/files/gmediaserver.init2
-rw-r--r--package/grub-bin/Makefile2
-rw-r--r--package/heimdal/files/heimdal.init6
-rw-r--r--package/htpdate/files/htpdate.init2
-rw-r--r--package/iptables/Makefile14
-rw-r--r--package/iptables/files/firewall.conf119
-rwxr-xr-xpackage/iptables/files/firewall.init35
-rw-r--r--package/iptables/files/iptables.postinst5
-rw-r--r--package/iptables/files/l7/aim.pat27
-rw-r--r--package/iptables/files/l7/bittorrent.pat14
-rw-r--r--package/iptables/files/l7/edonkey-dl.pat8
-rw-r--r--package/iptables/files/l7/edonkey.pat29
-rw-r--r--package/iptables/files/l7/fasttrack.pat25
-rw-r--r--package/iptables/files/l7/ftp.pat34
-rw-r--r--package/iptables/files/l7/gnutella.pat36
-rw-r--r--package/iptables/files/l7/http.pat28
-rw-r--r--package/iptables/files/l7/ident.pat14
-rw-r--r--package/iptables/files/l7/irc.pat20
-rw-r--r--package/iptables/files/l7/jabber.pat24
-rw-r--r--package/iptables/files/l7/msnmessenger.pat15
-rw-r--r--package/iptables/files/l7/ntp.pat17
-rw-r--r--package/iptables/files/l7/pop3.pat50
-rw-r--r--package/iptables/files/l7/smtp.pat39
-rw-r--r--package/iptables/files/l7/ssl.pat15
-rw-r--r--package/iptables/files/l7/vnc.pat23
-rw-r--r--package/krb5/files/krb5.init4
-rw-r--r--package/lighttpd/files/lighttpd.init2
-rw-r--r--package/maradns/files/maradns.init2
-rw-r--r--package/mini_httpd/files/mini_httpd.init2
-rw-r--r--package/miredo/files/miredo-server.init2
-rw-r--r--package/miredo/files/miredo.init2
-rw-r--r--package/monit/files/monit.init2
-rw-r--r--package/mpd/files/mpd.conf1
-rw-r--r--package/mpd/files/mpd.init4
-rw-r--r--package/mpd/files/mpd.postinst2
-rw-r--r--package/mrd6/files/mrd6.init2
-rw-r--r--package/mt-daapd/files/mt-daapd.init2
-rw-r--r--package/net-snmp/files/snmpd.init2
-rw-r--r--package/netperf/files/netserver.init2
-rw-r--r--package/nfs-utils/files/nfsd.init10
-rw-r--r--package/nut/files/upsd.init2
-rw-r--r--package/opensips/files/opensips.init2
-rw-r--r--package/openvpn/files/openvpn.init2
-rw-r--r--package/osiris/files/osirisd.init2
-rw-r--r--package/p910nd/files/p910nd.init2
-rw-r--r--package/parprouted/files/parprouted.init2
-rw-r--r--package/php/files/php.init2
-rw-r--r--package/pmacct/files/nfacctd.init2
-rw-r--r--package/pmacct/files/pmacctd.init2
-rw-r--r--package/pptpd/files/pptpd.init2
-rw-r--r--package/radvd/files/radvd.init2
-rw-r--r--package/rarpd/files/rarpd.init2
-rw-r--r--package/reaim/files/reaim.init2
-rw-r--r--package/rp-pppoe/files/pppoe-relay.init2
-rw-r--r--package/rp-pppoe/files/pppoe-server.init2
-rw-r--r--package/rrdcollect/files/rrdcollect.init2
-rw-r--r--package/samba/files/samba.init4
-rw-r--r--package/scanlogd/files/scanlogd.init2
-rw-r--r--package/siproxd/files/siproxd.init2
-rw-r--r--package/snort-wireless/files/snort-wireless.init2
-rw-r--r--package/snort/files/snort.init2
-rw-r--r--package/squid/Config.in1
-rw-r--r--package/squid/Makefile15
-rw-r--r--package/squid/files/squid.conf16
-rw-r--r--package/squid/files/squid.init37
-rw-r--r--package/squid/files/squid.postinst6
-rw-r--r--package/srelay/files/srelay.init2
-rw-r--r--package/subversion/files/svnserve.init2
-rw-r--r--package/syslog-ng/files/syslog-ng.init2
-rw-r--r--package/tinyproxy/Makefile4
-rw-r--r--package/tinyproxy/files/tinyproxy.conf228
-rw-r--r--package/tinyproxy/files/tinyproxy.init3
-rw-r--r--package/tinyproxy/files/tinyproxy.postinst3
-rw-r--r--package/tor/files/tor.init2
-rw-r--r--package/vrrpd/files/vrrpd.init2
-rw-r--r--package/vsftpd/files/vsftpd.init2
-rw-r--r--package/watchdog/files/watchdog.init2
-rw-r--r--package/xinetd/files/xinetd.init2
-rwxr-xr-xscripts/install.sh9
-rw-r--r--target/alix1c/Makefile2
-rw-r--r--target/alix2d/Makefile2
-rw-r--r--target/linux/config/Config.in.netfilter247
120 files changed, 999 insertions, 557 deletions
diff --git a/TODO b/TODO
index fa99e3e1e..f9bf804c1 100644
--- a/TODO
+++ b/TODO
@@ -1,5 +1,4 @@
-- fix init scripts pidof? vs. killall
-- rpm package backend
+- make rpm package backend working
- freebsd build
- win cygwin build
- netbsd build
@@ -9,4 +8,3 @@
- network scripts for pppoe
- customise mconf help texts to better fit for OpenADK
- publish via trac
-
diff --git a/mk/modules.mk b/mk/modules.mk
index bdb8fa897..19ab1b14d 100644
--- a/mk/modules.mk
+++ b/mk/modules.mk
@@ -269,6 +269,45 @@ $(eval $(call KMOD_template,INET_XFRM_MODE_BEET,net-ipsec-beet,\
## Filtering / Firewalling
##
#
+# Ethernet Bridging firewall
+#
+$(eval $(call KMOD_template,BRIDGE_NF_EBTABLES,nf-ebtables,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebtables \
+,55))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_BROUTE,nf-ebtables-broute,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebtable_broute \
+,60))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_T_FILTER,nf-ebtables-filter,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebtable_filter \
+,60))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_T_NAT,nf-ebtables-nat,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebtable_nat \
+,60))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_802_3,nf-ebtables-802-3,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebt_802_3 \
+,65))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_AMONG,nf-ebtables-among,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebt_among \
+,65))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_ARP,nf-ebtables-arp,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebt_arpreply \
+,65))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_IP,nf-ebtables-ip,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebt_ip \
+,65))
+
+$(eval $(call KMOD_template,BRIDGE_EBT_REDIRECT,nf-ebtables-redirect,\
+ $(MODULES_DIR)/kernel/net/bridge/netfilter/ebt_redirect \
+,65))
+
+#
# Netfilter Core
#
$(eval $(call KMOD_template,NETFILTER_XT_TARGET_CLASSIFY,nf-classify,\
diff --git a/package/Config.in b/package/Config.in
index 8799b3588..898f916d7 100644
--- a/package/Config.in
+++ b/package/Config.in
@@ -237,6 +237,7 @@ menu "Firewall / Routing / Bridging"
source "package/arpd/Config.in"
source "package/bridge-utils/Config.in"
source "package/cutter/Config.in"
+source "package/ebtables/Config.in"
source "package/ether-wake/Config.in"
source "package/iproute2/Config.in"
source "package/ipset/Config.in"
diff --git a/package/Makefile b/package/Makefile
index 27f9f1fe5..070ecf0ee 100644
--- a/package/Makefile
+++ b/package/Makefile
@@ -83,6 +83,7 @@ package-$(ADK_PACKAGE_DSNIFF) += dsniff
package-$(ADK_PACKAGE_E2FSPROGS) += e2fsprogs
package-$(ADK_PACKAGE_LIBUUID) += e2fsprogs
package-$(ADK_PACKAGE_LIBBLKID) += e2fsprogs
+package-$(ADK_PACKAGE_EBTABLES) += ebtables
package-$(ADK_PACKAGE_ELINKS) += elinks
package-$(ADK_PACKAGE_ESOUND) += esound
package-$(ADK_PACKAGE_ETHER_WAKE) += ether-wake
diff --git a/package/axtls/files/axhttpd.init b/package/axtls/files/axhttpd.init
index bc11e0b4c..61572bf0f 100644
--- a/package/axtls/files/axhttpd.init
+++ b/package/axtls/files/axhttpd.init
@@ -17,7 +17,7 @@ start)
/usr/sbin/axhttpd >>/var/log/axhttpd.access
;;
stop)
- killall axhttpd
+ pkill axhttpd
;;
restart)
sh $0 stop
diff --git a/package/base-files/extra/etc/profile b/package/base-files/extra/etc/profile
index 798548a46..1b8f4a6a6 100644
--- a/package/base-files/extra/etc/profile
+++ b/package/base-files/extra/etc/profile
@@ -1,12 +1,12 @@
export PATH=/bin:/sbin:/usr/bin:/usr/sbin
+export TERM=vt220
if [[ $(id -u) = 0 ]]; then
export PS1='# '
else
export PS1='$ '
+ export HOME=/tmp
fi
-export HOME=/tmp
cat /etc/banner 2>&-
-[ -x /usr/bin/less ] || alias less=more
-[ -x /usr/bin/vim ] || alias vim=vi
+[ -x /usr/bin/vim ] && alias vi=vim || alias vim=vi
[ -x /usr/bin/arp ] || arp() { cat /proc/net/arp; }
[ -x /usr/bin/ldd ] || ldd() { LD_TRACE_LOADED_OBJECTS=1 "$@"; }
diff --git a/package/base-files/extra/init b/package/base-files/extra/init
index 9013065d0..db8c3a676 100755
--- a/package/base-files/extra/init
+++ b/package/base-files/extra/init
@@ -1,5 +1,5 @@
#!/bin/sh
-echo "Pre-boot initializing"
+echo "Starting system ..."
export PATH=/bin:/sbin:/usr/bin:/usr/sbin
mount -nt proc proc /proc
mount -o nosuid,nodev,noexec -t sysfs sysfs /sys
@@ -19,5 +19,4 @@ mount -o remount,rw /
cat /etc/.rnd >/dev/urandom 2>&1
[ -f /etc/fstab ] && mount -a
[ -x /sbin/cfgfs ] && { cfgfs setup; mount -o remount,ro /;}
-echo "Starting system"
exec /sbin/init</