Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rc add zfw calls #1000

Open
wants to merge 24 commits into
base: release-1.x
Choose a base branch
from
Open

Rc add zfw calls #1000

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
24 commits
Select commit Hold shift + click to select a range
2a006da
alpha zfw system call branch
r-caamano Sep 22, 2024
23e0dcb
Added diverter entires for non-transparent services only if running i…
r-caamano Sep 22, 2024
60f1dfa
Remved hardcoded "ziti0" in printf statement
r-caamano Sep 23, 2024
90d608e
added diverter_path char * variable and changed path to diverter in /…
r-caamano Sep 24, 2024
6c70bf0
Added load user rules if in full fw mode and converted all printf to …
r-caamano Sep 24, 2024
66c730c
Updated zfw init system call argument
r-caamano Sep 24, 2024
84f0ee2
Added 1 second delay after commiting the link route(s) for a transpar…
r-caamano Sep 24, 2024
9b714fc
Added check for invalid diverterIf entry. Added check for user define…
r-caamano Sep 25, 2024
7702cbe
In firewall mode changed forwarding mode of DNS range to ebpf redirect
r-caamano Sep 26, 2024
f232415
refactor to only issue unbind once per intercept address
r-caamano Sep 30, 2024
f54a939
Added multi diverter interface support and added option to set divert…
r-caamano Oct 1, 2024
d786546
updated diverter system calls to report result and removed references…
r-caamano Oct 1, 2024
aa01fff
added clause on WIN32 to inform endusers that diverter is not support…
r-caamano Oct 1, 2024
a6a657f
updated cli help menu
r-caamano Oct 1, 2024
aa44e6b
Refactored to ignore ZITI_DIVERTER and ZITI_FIREWALL env vars if empty
r-caamano Oct 2, 2024
b8bcf0a
added ability to point to diverter binaries in location other than /o…
r-caamano Oct 3, 2024
00695b8
Refactored link route add/remove for transparency to use existing tun…
r-caamano Oct 3, 2024
cbadade
removed code deleting link route as it appears the issue with binding…
r-caamano Oct 3, 2024
4aabfc2
refactored camel case var name to snake case
r-caamano Oct 3, 2024
ff75ce2
Removed empty line in INThandler()
r-caamano Oct 4, 2024
2028293
only include sys/wait.h on linux, same for zfw system call functions …
r-caamano Oct 4, 2024
d1e4586
only include fcntl.h and unistd.h on linux
r-caamano Oct 4, 2024
286b8a3
add missing decls. use static where appropriate.
scareything Oct 7, 2024
f95d9f5
Refactored to use only zfw system calls with explicit file paths
r-caamano Oct 8, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 1 addition & 3 deletions programs/ziti-edge-tunnel/instance.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -419,9 +419,7 @@ tunnel_service *get_tunnel_service(tunnel_identity* id, ziti_service* zs) {
svc->Permissions.Dial = ziti_service_has_permission(zs, ziti_session_type_Dial);
setTunnelPostureDataTimeout(svc, zs);
setTunnelServiceAddress(svc, zs);
if(svc->Permissions.Bind){
setTunnelAllowedSourceAddress(svc, zs);
}
setTunnelAllowedSourceAddress(svc, zs);
return svc;
}

Expand Down
Loading
Loading