issues
search
metal-stack
/
firewall-controller
A kubernetes controller running on bare-metal firewalls, creating nftables rules, configures suricata, collects network metrics
MIT License
47
stars
4
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
systemctl reload nftables does not return with an error on case of a error in nft -f /etc/nftables.conf
#38
majst01
closed
3 years ago
0
WIP: Restrict inbound traffic to trusted networks
#37
majst01
closed
7 months ago
1
make ssh access restricted
#36
majst01
closed
2 years ago
2
Prevent provider configuration from tenant modification
#35
Gerrit91
closed
3 years ago
2
in case firewall crd is not present, delete existing rules only if ex…
#34
majst01
closed
4 years ago
0
Fail switch on firewall object
#33
mwindower
closed
4 years ago
0
WIP: evebox agent support
#32
majst01
opened
4 years ago
0
nftables and node exporter service are not exportable
#31
majst01
closed
4 years ago
5
Expose firewall services to tenant network
#30
mwindower
closed
4 years ago
0
Error handling
#28
majst01
closed
4 years ago
0
Remove NetworkIDS CRD
#27
majst01
closed
4 years ago
0
fixate path to surricate command socket to avoid differences between …
#26
majst01
closed
4 years ago
0
Fixes
#25
mwindower
closed
4 years ago
0
WIP: Fixes
#24
mwindower
closed
4 years ago
0
Consume simple interface stats from suricate by command socket, remov…
#23
majst01
closed
4 years ago
0
Fix for null terminated strings
#22
mwindower
closed
4 years ago
0
rule counter names are a bit mangled
#21
majst01
closed
4 years ago
0
Parse eve.json
#20
majst01
opened
4 years ago
3
remove networktraffic crd
#19
majst01
closed
4 years ago
0
Use nftables instead of tc
#18
mwindower
closed
4 years ago
1
Use netlink directly for reading rule counters
#17
mwindower
closed
4 years ago
1
Renaming clusterwide to clusterWide.
#16
Gerrit91
closed
4 years ago
2
Performance optimization with offloading
#15
majst01
closed
3 years ago
2
Migrate old network policies to cluster wide network policies
#14
mwindower
closed
4 years ago
0
IDEA: TLS rules
#13
majst01
closed
3 years ago
2
Nftables traffic accounting
#12
majst01
closed
4 years ago
0
Migrate old NetworkPolicies to GlobalNetworkPolicy CRD
#11
mwindower
closed
4 years ago
0
Network Traffic should not count specific connections
#10
majst01
closed
4 years ago
1
Network Traffic CRD should not be namespaced
#9
Gerrit91
closed
4 years ago
1
RBAC for crd creation missing
#8
majst01
closed
4 years ago
0
unify controllers in status handling, requeuing
#7
majst01
closed
4 years ago
0
Apiversion
#6
majst01
closed
4 years ago
0
Apply traffic control rules based on CRD values
#5
mwindower
closed
4 years ago
1
Network Policy Reconcilation
#4
mwindower
closed
4 years ago
0
create crd if not exist
#3
majst01
closed
4 years ago
1
embed static assets
#2
majst01
closed
4 years ago
3
Trigger IDS reporting
#1
majst01
opened
4 years ago
0
collect network usage
#29
majst01
closed
4 years ago
2
Previous