summaryrefslogtreecommitdiffhomepage
path: root/talpid-core/src/firewall/linux.rs
AgeCommit message (Expand)AuthorFilesLines
2026-02-13Do not remove deprecated mangle tablesDavid Lönnhager1-20/+0
2026-01-15Do not add cgroup2 firewall rules unless cgroup2 feature is enabledDavid Lönnhager1-1/+7
2025-12-09Add comment for future usMarkus Pettersson1-1/+5
2025-12-09Move cgroup helpers to new crateJoakim Hulthe1-1/+2
2025-12-09Support both cgroups v1 and v2 in firewall moduleJoakim Hulthe1-31/+60
2025-12-09Merge cgroups v1 and v2 implementationsJoakim Hulthe1-63/+27
2025-12-09Add more docs to firewall/linux.rsJoakim Hulthe1-0/+9
2025-12-09Pass cgroup2 to firewall moduleJoakim Hulthe1-42/+47
2025-12-09Expose `send_and_process` from linux firewall moduleJoakim Hulthe1-1/+1
2025-12-09Add documentation on nftables socket expression for cgroup2-based STMarkus Pettersson1-0/+15
2025-12-09Log if the cgroup2 does not existMarkus Pettersson1-5/+15
2025-12-09Use nft correctly in verify_tablesMarkus Pettersson1-23/+11
2025-12-09Use inode, not name, when referencing cgroup2Joakim Hulthe1-3/+11
2025-12-09Add `counters` to split tunneling nft ruleJoakim Hulthe1-0/+3
2025-12-09Update mnlJoakim Hulthe1-11/+19
2025-12-09Fix comments on cgroups firewallJoakim Hulthe1-13/+13
2025-12-09Implement split-tunneling using cgroup2Joakim Hulthe1-10/+26
2025-11-26Add comments for DHCPv6 rules in Linux firewall moduleMarkus Pettersson1-1/+2
2025-11-26Fix clippy::needless_borrows_for_generic_argsMarkus Pettersson1-10/+10
2025-11-17Hide `talpid_core::tunnel` moduleMarkus Pettersson1-2/+3
2025-10-07Define networks as const valuesMarkus Pettersson1-22/+18
2025-09-18Add multiplexer POC to daemon, TSM, and relay selectorDavid Lönnhager1-4/+8
2025-07-15Fix `collapsible_if` clippy lintMarkus Pettersson1-7/+6
2025-07-10Run `cargo fmt`Sebastian Holmin1-3/+4
2025-06-19Do not add split-tunneling fw rules if no net_clsJoakim Hulthe1-4/+27
2024-11-08Set net.ipv4.conf.all.arp_ignore=2 when bringing up tunnels on LinuxLinus Färnstrand1-4/+40
2024-09-18Keep separate tunnel state machine configs for tunnel and non-tunnel DNSDavid Lönnhager1-37/+28
2024-08-27Use CStr literals instead of LazyLockDavid Lönnhager1-24/+22
2024-08-27Use std LazyLock instead of once_cell LazyDavid Lönnhager1-14/+15
2024-08-13Refactor tunnel provider and TalpidVpnServiceDavid Lönnhager1-4/+7
2024-02-27Replace err_derive with thiserrorJoakim Hulthe1-16/+12
2024-02-19Fix redundant importsDavid Lönnhager1-2/+0
2024-01-03Allow app to use custom socks5 and shadwosocks proxiesJonathan1-4/+17
2023-11-16Document more things in linux firewall codeJonathan1-1/+24
2023-11-07Configure firewall rules to allow proxy clientsMarkus Pettersson1-10/+14
2023-08-30Add mark based accept rule for forward chain as wellSiddhartha Sahu1-1/+1
2023-08-04Replace all use of `lazy_static` with `once_cell`Markus Pettersson1-22/+24
2023-03-15Remove non-inet tables. This deprecates support for older Linux kernelsDavid Lönnhager1-124/+94
2023-02-28Add PQ support for multihop, and allow listing two endpoints in theJonathan1-1/+5
2022-11-07Split up talpid-coreEmīls Piņķis1-20/+27
2022-09-13Make AllowedEndpoint optionalEmīls Piņķis1-1/+3
2022-06-15Remove ICMP variants for allowed tunnel trafficDavid Lönnhager1-28/+12
2022-06-14Manually fix the simpler non-semantic clippy warnsJonathan1-4/+4
2022-06-14Only allow traffic to flow between the client and relay config service during...David Lönnhager1-8/+52
2022-02-17Move exclusion_gid to SharedTunnelStateValuesEmīls1-4/+0
2022-02-17Allow initializing firewall without argsEmīls1-11/+15
2021-12-13Allow only root to reach the API in blocked stateEmīls1-0/+11
2021-12-08Add path restrictions for allowed endpoints in the daemonDavid Lönnhager1-2/+2
2021-11-29Reformat code without blank_lines_upper_bound = 2Linus Färnstrand1-1/+0
2021-10-11Update NDP rules on LinuxDavid Lönnhager1-39/+59
Copyright © 2025 - 2026 Wayne Cole. WTFPL. Attribution appreciated. No warranty. Not liable for bodily damages.