|Version 13 (modified by jacalvo@…, 4 years ago) (diff)|
Disable ipv6 bind for daemons
we should disable ipv6 bind for daemons because we don't support ipv6 in eBox yet but a box could get an ipv6 address by its autoconf mechanism opening a way to access services expected to be protected by ipv4 netfilter rules.
Make filter policies in objects compatible with time period restrictions
Add support for all the protocols available in /etc/protocols
This would also affect multigateway rules and traffic shaping.
Firewall redirections log
Adding MAC filter support, as described in this forum topic: http://forum.ebox-platform.com/index.php?topic=1439.0
Add a comment field to redirects rules
Hordus says at the forum: "We're using ebox on a network where more then one person administrates the ebox and we have many port redirects. It'd be nice to have some comment/name field (similar to what the other firewall rules have) to indicate what that is."
ID for rules
When there are a lot of rules the sorting is difficult, it would be nice to add the ability of inserting a rule before or after another. Forum suggestion: http://forum.ebox-platform.com/index.php?topic=2143.msg9101#msg9101