fripost-ansible/roles/common/files/etc/network/if-post-down.d/iptables, branch master Fripost ansible scripts Convert firewall to nftables. 2020-01-23T04:57:01+00:00 Guilhem Moulin guilhem@fripost.org 2020-01-23T03:29:12+00:00 7641a5d5d152db349082b1d0ec93a40888b2ef8e Debian Buster uses the nftables framework by default. 
Debian Buster uses the nftables framework by default.
Reformulate the headers showing the license. 2015-06-07T00:50:53+00:00 Guilhem Moulin guilhem@fripost.org 2013-11-26T03:09:46+00:00 fd7e94a34b7fa9151d689375d8687d3686786d9b To be clearer, and to follow the recommendation of the FSF, we include a full header rather than a single sentence. 
To be clearer, and to follow the recommendation of the FSF, we include
a full header rather than a single sentence.
Use a dedicated, non-routable, IPv4 for IPSec. 2015-06-07T00:50:35+00:00 Guilhem Moulin guilhem@fripost.org 2013-11-03T04:54:11+00:00 2bcaaf01a5fcc2d2ce618da6af30a43a70d03d80 At the each IPSec end-point the traffic is DNAT'ed to / MASQUERADE'd from our dedicated IP after ESP decapsulation. Also, some IP tables ensure that alien (not coming from / going to the tunnel end-point) is dropped. 
At the each IPSec end-point the traffic is DNAT'ed to / MASQUERADE'd
from our dedicated IP after ESP decapsulation. Also, some IP tables
ensure that alien (not coming from / going to the tunnel end-point) is
dropped.