| Age | Commit message (Expand) | Author | Files | Lines |
|---|
| 2025-07-10 | all: detect JetKVM and specialize a handful of things for it | Brad Fitzpatrick | 2 | -2/+8 |
| 2025-05-19 | cmd/containerboot,kube/ingressservices: proxy VIPService TCP/UDP traffic to c... | Irbe Krumina | 1 | -8/+8 |
| 2025-05-12 | util/linuxfw,wgengine/router: add new netfilter rules for HA ingresses (#15896) | Irbe Krumina | 6 | -39/+550 |
| 2025-05-01 | util/linuxfw: fix delete snat rule (#15763) | KevinLiang10 | 2 | -64/+98 |
| 2025-01-13 | all: use Go 1.21's binary.NativeEndian | Brad Fitzpatrick | 1 | -3/+3 |
| 2024-10-03 | cmd/containerboot,util/linuxfw: create a SNAT rule for dst/src only once, cle... | Irbe Krumina | 5 | -68/+264 |
| 2024-09-29 | cmd/containerboot,kube,util/linuxfw: configure kube egress proxies to route t... | Irbe Krumina | 6 | -1/+683 |
| 2024-09-11 | util/slicesx: add FirstElementEqual and LastElementEqual | Brad Fitzpatrick | 1 | -2/+4 |
| 2024-09-11 | util/linuxfw: fall back to nftables when iptables not found | Maisem Ali | 2 | -1/+18 |
| 2024-08-03 | util/linuxfw: return nil interface not concrete type | Maisem Ali | 1 | -2/+16 |
| 2024-07-10 | all: add test for package comments, fix, add comments as needed | Brad Fitzpatrick | 1 | -2/+1 |
| 2024-07-05 | cmd/containerboot,cmd/k8s-operator: enable IPv6 for fqdn egress proxies (#12577) | Tom Proctor | 1 | -2/+9 |
| 2024-06-25 | util/linuxfw: verify that IPv6 if available if (#12598) | Irbe Krumina | 1 | -10/+28 |
| 2024-05-29 | util/linuxfw: don't try cleaning iptables on gokrazy | Brad Fitzpatrick | 1 | -0/+6 |
| 2024-05-14 | util/linuxfw: fix IPv6 availability check for nftables (#12009) | Irbe Krumina | 4 | -77/+106 |
| 2024-05-09 | util/linuxfw: fix table name in DelStatefulRule | Andrew Dunham | 1 | -1/+1 |
| 2024-05-09 | util/linuxfw: fix stateful packet filtering in nftables mode | Anton Tolchanov | 1 | -1/+1 |
| 2024-05-06 | various: implement stateful firewalling on Linux (#12025) | Andrew Lytvynov | 3 | -0/+268 |
| 2024-04-23 | util/linuxfw,go.{mod,sum}: don't log errors when deleting non-existant chains... | Irbe Krumina | 3 | -37/+21 |
| 2024-04-23 | cmd{containerboot,k8s-operator},util/linuxfw: support ExternalName Services (... | Irbe Krumina | 2 | -2/+39 |
| 2024-04-09 | cmd/tailscaled: move cleanup to an implicit action during startup | James Tucker | 1 | -2/+2 |
| 2024-04-05 | util/linuxfw: fix chain comparison (#11639) | Irbe Krumina | 1 | -1/+1 |
| 2024-04-02 | util/linuxfw: fix MSS clamping in nftables mode (#11588) | Irbe Krumina | 1 | -4/+28 |
| 2024-03-29 | util/linuxfw,wgengine/router: skip IPv6 firewall configuration in partial ipt... | Irbe Krumina | 3 | -25/+46 |
| 2024-03-21 | util/linuxfw,wgengine/router: enable IPv6 configuration when netfilter is dis... | James Tucker | 3 | -3/+3 |
| 2024-03-08 | util/linuxfw: fix support for containers without IPv6 iptables filters (#11381) | James Tucker | 1 | -2/+22 |
| 2024-03-08 | util/linuxfw: correct logical error in NAT table check (#11380) | James Tucker | 1 | -1/+1 |
| 2024-03-06 | util/linuxfw: add container-friendly IPv6 NAT check (#11353) | Irbe Krumina | 3 | -33/+50 |
| 2024-02-29 | util/linuxfw: insert rather than append nftables DNAT rule (#11303) | Irbe Krumina | 1 | -1/+1 |
| 2024-02-07 | util/cmpx: delete now that we're using Go 1.22 | Brad Fitzpatrick | 1 | -4/+4 |
| 2024-02-07 | .github/workflows: add privileged tests workflow | James Tucker | 1 | -1/+1 |
| 2023-12-21 | all: cleanup unused code, part 2 (#10670) | Andrew Lytvynov | 2 | -1/+3 |
| 2023-12-12 | util/linuxfw: return created chain (#10563) | Irbe Krumina | 1 | -1/+1 |
| 2023-12-05 | util/linuxfw, wgengine: allow ingress to magicsock UDP port on Linux (#10370) | Naman Sood | 2 | -2/+199 |
| 2023-12-05 | linuxfw,wgengine/route,ipn: add c2n and nodeattrs to control linux netfilter | Naman Sood | 2 | -9/+18 |
| 2023-10-28 | util/linuxfw: add missing error checks in tests | Maisem Ali | 1 | -6/+18 |
| 2023-10-18 | util/linuxfw: add additional nftable detection logic | Maisem Ali | 3 | -20/+119 |
| 2023-10-18 | util/linuxfw: fix broken tests | Maisem Ali | 1 | -178/+68 |
| 2023-10-11 | cmd/containerboot: use linuxfw.NetfilterRunner | Maisem Ali | 2 | -5/+299 |
| 2023-10-11 | util/linuxfw: move fake runner into pkg | Maisem Ali | 2 | -141/+131 |
| 2023-10-10 | util/linuxfw: move detection logic | Maisem Ali | 7 | -14/+243 |
| 2023-10-10 | util/linuxfw: add missing input rule to the tailscale tun | James Tucker | 4 | -1/+89 |
| 2023-09-27 | util/linuxfw: fix crash in DelSNATRule when no rules are found | James Tucker | 1 | -1/+3 |
| 2023-09-07 | util/linuxfw: Fix comment which lists supported linux arches | Craig Rodrigues | 1 | -1/+1 |
| 2023-09-02 | client/web, clientupdate, util/linuxfw, wgengine/magicsock: Use %v verb for e... | Craig Rodrigues | 1 | -1/+1 |
| 2023-08-21 | util/linuxfw: fix typo in unexported doc comment | Brad Fitzpatrick | 1 | -1/+2 |
| 2023-08-18 | util/linuxfw: reorganize nftables rules to allow it to work with ufw | KevinLiang10 | 2 | -21/+349 |
| 2023-08-10 | util/linuxfw: rename ErrorFWModeNotSupported | Brad Fitzpatrick | 3 | -8/+8 |
| 2023-08-08 | wgengine/router: add auto selection heuristic for iptables/nftables | KevinLiang10 | 3 | -6/+78 |
| 2023-07-20 | util/linuxfw: remove yet-unused code to fix linux/arm64 crash | Brad Fitzpatrick | 2 | -819/+2 |
