]> git.openstreetmap.org Git - chef.git/history - cookbooks/networking
Don't expire connection limit sets
[chef.git] / cookbooks / networking /
2023-03-05 Tom HughesDon't expire connection limit sets
2023-03-05 Tom HughesExpire rate limit sets
2023-03-05 Tom HughesRemove size limits on firewall sets
2023-03-05 Tom HughesEnable rate limits
2023-03-05 Tom HughesEnable connections limits on a per-source basis
2023-03-05 Tom HughesDisable rate and connection limits
2023-03-05 Tom HughesAllow AWS DNS queries through the firewall
2023-03-05 Tom HughesSwitch remaining servers to nftables
2023-03-05 Tom HughesMatch interfaces by name so we can start nftables befor...
2023-03-05 Tom HughesLimit NAT to IPv4 interfaces
2023-03-04 Tom HughesFix typo
2023-03-04 Tom HughesFix flag matches to work on 20.04
2023-03-04 Tom HughesHandle machines with no external interface
2023-03-04 Tom HughesBlock unspecified and multicast addresses on the outside
2023-03-04 Tom HughesLimit echo on a per source basis
2023-03-04 Tom HughesMake nftables block various invalid TCP flag combinations
2023-03-04 Tom HughesDon't log rate limited echo request packets
2023-03-04 Tom HughesAvoid dropping third party tables when stopping an...
2023-03-04 Tom HughesEliminate need for dummy addresses in when running...
2023-03-04 Tom HughesRevert "Only flush our table to avoid disrupting other...
2023-03-04 Tom HughesOnly flush our table to avoid disrupting other nftables...
2023-03-04 Tom HughesUse named sets for OSM IP addresses
2023-03-04 Tom HughesFix port range syntax for nftables
2023-03-04 Tom HughesDon't bother disabling shorewall before we remove it
2023-03-04 Tom HughesFix typo
2023-03-04 Tom HughesUse strings for network families
2023-03-04 Tom HughesAdd support for using an nftables based firewall
2023-01-19 Tom HughesDrop wireguard tunnels from shenron to data centres
2022-12-10 Tom HughesMerge remote-tracking branch 'github/pull/528'
2022-12-04 Grant SlaterDo not install recommends for wireguard-tools
2022-10-20 Tom HughesOnly configure a primary slave in active-backup mode
2022-10-12 Grant Slatershorewall: minor config align to upstream
2022-09-24 Tom HughesLimit wireguard special casing to shenron
2022-08-03 Tom HughesMerge remote-tracking branch 'github/pull/514'
2022-08-02 Grant SlaterMerge remote-tracking branch 'tigerfell/pr257'
2022-08-01 Grant Slaterwireguard: use keepalive by default to survive NAT
2022-07-28 Grant Slaternetworking: add endpoint for my roaming device
2022-07-28 Grant Slaternetworking: grant roaming wg correct key
2022-07-28 Grant Slaternetworking: Add grant roaming wg
2022-07-11 Tom HughesUpdate shorewall to use snat configuration file instead...
2022-07-08 Grant SlaterUse Google DNS instead of Cloudflare
2021-11-10 Tom HughesUse kitchen? instead of looking for TEST_KITCHEN in...
2021-10-19 Grant SlaterAdd firefishy wireguard peer
2021-10-05 Tom HughesMark slave interfaces in a bond as optional
2021-09-26 Tom HughesAvoid installing a private network default route on...
2021-09-25 Tom HughesCleanup any netplan config created by the Ubuntu installer
2021-09-19 Tom HughesAdd equinix-dub role
2021-08-26 Tom HughesFix new cookstyle warnings
2021-08-25 Tom HughesMerge remote-tracking branch 'github/pull/440'
2021-08-25 Grant SlaterAdd shorewall stoppedrules support
2021-08-25 Grant SlaterOverride systemd shorewall to not use clear
2021-08-25 Grant SlaterAdd docker support to shorewall
2021-05-14 Tom HughesEnable unified mode for custom resources
2021-05-11 Tom HughesSort wireguard peers to keep file content stable
2021-03-09 TigerfellMerge branch 'patch-2' of https://github.com/Tigerfell...
2021-01-27 Tom HughesEstablish wireguard tunnels from gateways to prometheus...
2020-11-28 Tom HughesMerge remote-tracking branch 'github/pull/350' into...
2020-11-28 Tom HughesMerge remote-tracking branch 'github/pull/349' into...
2020-11-22 GrantMerge pull request #360 from Firefishy/torrent-rss
2020-11-19 Tom HughesProcess firewall_rule resources at compile time
2020-10-08 Tom HughesUse a common set of default resolvers, defaulting to...
2020-09-25 Tom HughesIgnore failures starting shorewall
2020-09-24 Tom HughesIgnore failures disabling shorewall
2020-09-20 Tom HughesGo back to unmounting resolv.conf but prevent path...
2020-09-18 Tom HughesAttempt to fix test failures caused by crazy docker...
2020-09-18 Tom HughesEstabish tunnels between shenron and gateway machines
2020-09-16 Tom HughesFix prometheus test
2020-09-16 Tom HughesAllow prometheus to use wireguard or direct external...
2020-09-16 Tom HughesEnable wireguard support on all machines that support it
2020-09-15 Tom HughesAllow wireguard connections from anywhere
2020-09-15 Tom HughesEnable wireguard access for tomh
2020-09-15 Tom HughesRemove a few legacy settings
2020-09-14 Tom HughesRemove cleanup code
2020-09-14 Tom HughesConfigure v4 address for wireguard endpoints with an...
2020-09-14 Tom HughesCleanup any old "normal" priority networking configuration
2020-09-14 Tom HughesFix configuration of wireguard keys on 18.04
2020-09-14 Tom HughesMake updating wireguard configuration work on 18.04
2020-09-14 Tom HughesAdd routes to wireguard peers
2020-09-14 Tom HughesUse correct network prefix for wireguard tunnels
2020-09-14 Tom HughesStrip trailing newline from public key
2020-09-14 Tom HughesGenerate wireguard addresses without systemd-id128
2020-09-14 Tom HughesFix cookstyle warnings
2020-09-14 Tom HughesReplace OpenVPN with wireguard for VPN tunnels
2020-09-13 Tom HughesAdd basic infrastructure for wireguard tunnels
2020-09-06 Tom HughesDisable firewall on lambton
2020-07-30 Tom HughesAllow connection_limit to be an integer
2020-07-30 Tom HughesConvert firewall_rule to a resource
2020-07-30 Tom HughesInclude VPN routes in the netplan config
2020-07-21 Tom HughesConvert some normal attributes to default or override
2020-07-21 Tom HughesRemove code to set (now unused) tcp fastopen keys
2020-07-21 Tom HughesUse strings for file modes
2020-05-29 Tom HughesHandle interfaces with no address
2020-05-29 Tom HughesBond interfaces on pummelzacken
2020-05-13 Tom HughesFix hostnamect call
2020-04-29 Tom HughesMerge remote-tracking branch 'github/pull/299'
2020-04-29 Tom HughesDon't try and set the hostname when running tests
2020-04-29 Tom HughesGive up on the hostname resource and do it ourselves
2020-04-29 Tom HughesStop the hostname resource trying to configure the...
2020-04-16 Tom HughesMake configuration of hostname work properly
2020-04-13 Tom HughesRemove firewall zones which are no longer used
next