427 lines
15 KiB
RPMSpec
427 lines
15 KiB
RPMSpec
Name: iptables
|
|
Version: 1.8.11
|
|
Release: 1mamba
|
|
Summary: kernel libraries, user tools/libraries for netfilter/iptables firewalling
|
|
Group: Network/Security
|
|
Vendor: openmamba
|
|
Distribution: openmamba
|
|
Packager: Silvan Calarco <silvan.calarco@mambasoft.it>
|
|
URL: https://www.netfilter.org/
|
|
Source0: https://www.netfilter.org/projects/iptables/files/iptables-%{version}.tar.xz
|
|
Source1: iptables.service
|
|
Source2: ip6tables.service
|
|
Source3: arptables.service
|
|
Source4: ebtables.service
|
|
Source5: empty.rules
|
|
Source6: iptables-legacy-flush
|
|
Source7: iptables-nft-flush
|
|
License: GPL
|
|
## AUTOBUILDREQ-BEGIN
|
|
BuildRequires: glibc-devel
|
|
BuildRequires: libmnl-devel
|
|
BuildRequires: libnetfilter_conntrack-devel
|
|
BuildRequires: libnfnetlink-devel
|
|
BuildRequires: libnftnl-devel
|
|
BuildRequires: libpcap-devel
|
|
## AUTOBUILDREQ-END
|
|
BuildRequires: libnftnl-devel >= 1.0.9
|
|
Provides: iptables-nat
|
|
Obsoletes: iptables-nat < 1.8.8
|
|
Provides: ebtables
|
|
Obsoletes: ebtables < 1.8.8
|
|
Requires: lib%{name} = %{?epoch:%epoch:}%{version}-%{release}
|
|
|
|
%description
|
|
Iptables is the new firewalling code in the 2.4.x and 2.6.x linux kernels.
|
|
It provides a more extensible architecture for packet matching and manipulation by moving all but the lowest level into userspace libraries and kernel modules.
|
|
|
|
%package ipv6
|
|
Summary: IPv6 support for iptables
|
|
Group: Network/Security
|
|
Requires: %{name} = %{?epoch:%epoch:}%{version}-%{release}
|
|
Requires: lib%{name} = %{?epoch:%epoch:}%{version}-%{release}
|
|
|
|
%description ipv6
|
|
Iptables is the new firewalling code in the 2.4.x and 2.6.x linux kernels.
|
|
It provides a more extensible architecture for packet matching and manipulation by moving all but the lowest level into userspace libraries and kernel modules.
|
|
|
|
Install iptables-ipv6 if you need to set up firewalling for your network and you're using ipv6.
|
|
IPv6 is the next version of the IP protocol.
|
|
|
|
%package -n lib%{name}
|
|
Summary: Shared libraries provided with %{name}
|
|
Group: System/Libraries
|
|
|
|
%description -n lib%{name}
|
|
Iptables is the new firewalling code in the 2.4.x and 2.6.x linux kernels.
|
|
It provides a more extensible architecture for packet matching and manipulation by moving all but the lowest level into userspace libraries and kernel modules.
|
|
This package contains the shared libraries provided with %{name}.
|
|
|
|
%package -n lib%{name}-devel
|
|
Summary: Header files needed for development with xtables
|
|
Group: Network/Security
|
|
Provides: iptables-devel
|
|
Obsoletes: iptables-devel <= 1.8.8-1mamba
|
|
|
|
%description -n lib%{name}-devel
|
|
Iptables is the new firewalling code in the 2.4.x and 2.6.x linux kernels.
|
|
It provides a more extensible architecture for packet matching and manipulation by moving all but the lowest level into userspace libraries and kernel modules.
|
|
This package contains the header files needed for development with xtables.
|
|
|
|
%debug_package
|
|
|
|
%prep
|
|
%setup -q
|
|
|
|
%build
|
|
%configure \
|
|
--enable-bpf-compiler \
|
|
--enable-devel \
|
|
--enable-libipq \
|
|
--enable-shared
|
|
|
|
#--sbindir=/sbin --bindir=/sbin
|
|
|
|
%ifarch arm
|
|
sed -i "/#define HAVE_LINUX_BPF_H/d" config.h
|
|
%endif
|
|
|
|
%make -j1 \
|
|
%if "%{_host}" != "%{_build}"
|
|
CFLAGS="-ldl"
|
|
%endif
|
|
|
|
%install
|
|
[ "%{buildroot}" != / ] && rm -rf %{buildroot}
|
|
%makeinstall
|
|
|
|
install -D -m0644 %{SOURCE1} %{buildroot}%{_unitdir}/iptables.service
|
|
install -D -m0644 %{SOURCE2} %{buildroot}%{_unitdir}/ip6tables.service
|
|
install -D -m0644 %{SOURCE3} %{buildroot}%{_unitdir}/arptables.service
|
|
install -D -m0644 %{SOURCE4} %{buildroot}%{_unitdir}/ebtables.service
|
|
install -D -m0755 %{SOURCE6} %{buildroot}%{_systemd_util_dir}/scripts/iptables-flush
|
|
|
|
install -D -m0644 %{SOURCE5} %{buildroot}%{_sysconfdir}/iptables/iptables.rules
|
|
install -D -m0644 %{SOURCE5} %{buildroot}%{_sysconfdir}/iptables/ip6tables.rules
|
|
|
|
install -d -m0755 %{buildroot}%{_presetdir}
|
|
|
|
cat > %{buildroot}%{_presetdir}/50-iptables.preset << __EOF
|
|
disable iptables
|
|
disable ip6tables
|
|
disable arptables
|
|
disable ebtables
|
|
__EOF
|
|
|
|
%clean
|
|
[ "%{buildroot}" != / ] && rm -rf %{buildroot}
|
|
|
|
|
|
%posttrans
|
|
# clean old sysv broken links
|
|
find /etc/rc[0-6].d/ -type l -xtype l -exec rm -f {} \;
|
|
:
|
|
|
|
%files
|
|
%defattr(-,root,root)
|
|
%dir %{_sysconfdir}/iptables
|
|
%config(noreplace) %{_sysconfdir}/iptables/ip6tables.rules
|
|
%config(noreplace) %{_sysconfdir}/iptables/iptables.rules
|
|
%{_sysconfdir}/ethertypes
|
|
#%config(noreplace) %{_sysconfdir}/xtables.conf
|
|
%{_bindir}/iptables-xml
|
|
%{_sbindir}/arptables*
|
|
%{_sbindir}/ebtables*
|
|
%{_sbindir}/xtables-legacy-multi
|
|
%{_sbindir}/xtables-monitor
|
|
%{_sbindir}/xtables-nft-multi
|
|
%{_sbindir}/iptables
|
|
%{_sbindir}/iptables-*
|
|
%{_sbindir}/nfnl_osf
|
|
%{_sbindir}/nfbpf_compile
|
|
%{_systemd_util_dir}/scripts/iptables-flush
|
|
%{_presetdir}/50-iptables.preset
|
|
%{_unitdir}/arptables.service
|
|
%{_unitdir}/ebtables.service
|
|
%{_unitdir}/ip6tables.service
|
|
%{_unitdir}/iptables.service
|
|
%dir %{_datadir}/xtables
|
|
%{_datadir}/xtables/*
|
|
%{_mandir}/man1/iptables-*.1*
|
|
%{_mandir}/man8/iptables.8*
|
|
%{_mandir}/man8/iptables-*.8*
|
|
%{_mandir}/man8/nfnl_osf.8*
|
|
%{_mandir}/man8/xtables-*.8*
|
|
%{_mandir}/man8/arptables-*.8*
|
|
%{_mandir}/man8/ebtables-*.8*
|
|
%{_mandir}/man8/nfbpf_compile.8*
|
|
|
|
%files ipv6
|
|
%defattr(-,root,root)
|
|
%{_sbindir}/ip6tables*
|
|
%{_mandir}/man8/ip6tables.8*
|
|
%{_mandir}/man8/ip6tables-*.8*
|
|
|
|
%files -n lib%{name}
|
|
%defattr(-,root,root)
|
|
%{_includedir}/libipq.h
|
|
%{_libdir}/libip4tc.so.*
|
|
%{_libdir}/libip6tc.so.*
|
|
%{_libdir}/libipq.so.*
|
|
%dir %{_libdir}/xtables
|
|
%{_libdir}/xtables/libarpt_*.so
|
|
%{_libdir}/xtables/libebt_*.so
|
|
%{_libdir}/xtables/libxt_*.so
|
|
%{_libdir}/xtables/libip6t_*.so
|
|
%{_libdir}/xtables/libipt_*.so
|
|
%{_libdir}/libxtables.so.*
|
|
%doc COPYING
|
|
|
|
%files -n lib%{name}-devel
|
|
%defattr(-,root,root)
|
|
%dir %{_includedir}/libiptc
|
|
%{_includedir}/libiptc/*.h
|
|
%{_includedir}/xtables.h
|
|
%{_includedir}/xtables-version.h
|
|
%{_libdir}/libip4tc.so
|
|
%{_libdir}/libip6tc.so
|
|
%{_libdir}/libxtables.so
|
|
%{_libdir}/libipq.so
|
|
%{_libdir}/pkgconfig/xtables.pc
|
|
%{_libdir}/pkgconfig/libiptc.pc
|
|
%{_libdir}/pkgconfig/libip4tc.pc
|
|
%{_libdir}/pkgconfig/libip6tc.pc
|
|
%{_libdir}/pkgconfig/libipq.pc
|
|
%{_mandir}/man3/ipq_*.3*
|
|
%{_mandir}/man3/libipq.3*
|
|
|
|
%changelog
|
|
* Sun Nov 10 2024 Automatic Build System <autodist@openmamba.org> 1.8.11-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Thu Oct 12 2023 Automatic Build System <autodist@mambasoft.it> 1.8.10-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Thu Jan 19 2023 Silvan Calarco <silvan.calarco@mambasoft.it> 1.8.9-2mamba
|
|
- add a systemd preset file to disable services by default
|
|
|
|
* Thu Jan 19 2023 Silvan Calarco <silvan.calarco@mambasoft.it> 1.8.9-1mamba
|
|
- update to 1.8.9
|
|
|
|
* Thu Jan 19 2023 Silvan Calarco <silvan.calarco@mambasoft.it> 1.8.8-3mamba
|
|
- added systemd support scripts; rebuilt with --enable-libipq
|
|
|
|
* Wed Nov 02 2022 Silvan Calarco <silvan.calarco@mambasoft.it> 1.8.8-2mamba
|
|
- move libraries to libiptables subpackage
|
|
|
|
* Sat May 14 2022 Automatic Build System <autodist@mambasoft.it> 1.8.8-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Sat Jan 16 2021 Automatic Build System <autodist@mambasoft.it> 1.8.7-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Sat Oct 31 2020 Automatic Build System <autodist@mambasoft.it> 1.8.6-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Fri Jun 12 2020 Silvan Calarco <silvan.calarco@mambasoft.it> 1.8.5-1mamba
|
|
- update to 1.8.5
|
|
|
|
* Wed Dec 11 2019 Automatic Build System <autodist@mambasoft.it> 1.8.4-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Sat Jul 06 2019 Automatic Build System <autodist@mambasoft.it> 1.8.3-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Wed Nov 14 2018 Silvan Calarco <silvan.calarco@mambasoft.it> 1.8.2-2mamba
|
|
- provide and obsolete ebtables
|
|
|
|
* Wed Nov 14 2018 Automatic Build System <autodist@mambasoft.it> 1.8.2-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Sun Nov 11 2018 Automatic Build System <autodist@mambasoft.it> 1.8.1-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Sun Jul 29 2018 Silvan Calarco <silvan.calarco@mambasoft.it> 1.8.0-1mamba
|
|
- update to 1.8.0
|
|
|
|
* Wed Feb 07 2018 Automatic Build System <autodist@mambasoft.it> 1.6.2-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Fri Jul 21 2017 Automatic Build System <autodist@mambasoft.it> 1.6.1-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Fri Jan 01 2016 Automatic Build System <autodist@mambasoft.it> 1.6.0-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Fri Nov 22 2013 Automatic Build System <autodist@mambasoft.it> 1.4.21-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Tue Aug 13 2013 Automatic Build System <autodist@mambasoft.it> 1.4.20-1mamba
|
|
- automatic update by autodist
|
|
|
|
* Thu May 30 2013 Automatic Build System <autodist@mambasoft.it> 1.4.19.1-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Wed Mar 06 2013 Automatic Build System <autodist@mambasoft.it> 1.4.18-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Wed Dec 26 2012 Automatic Build System <autodist@mambasoft.it> 1.4.17-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Thu Oct 18 2012 Automatic Build System <autodist@mambasoft.it> 1.4.16.3-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Mon Oct 08 2012 Automatic Build System <autodist@mambasoft.it> 1.4.16.2-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Tue Jul 31 2012 Automatic Build System <autodist@mambasoft.it> 1.4.15-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Sun May 27 2012 Automatic Build System <autodist@mambasoft.it> 1.4.14-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Tue Mar 27 2012 Automatic Build System <autodist@mambasoft.it> 1.4.13-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Mon Jan 09 2012 Automatic Build System <autodist@mambasoft.it> 1.4.12.2-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Tue Nov 01 2011 Silvan Calarco <silvan.calarco@mambasoft.it> 1.4.12.1-2mamba
|
|
- drop guarddog support in initscript
|
|
- don't enable service at startup by default
|
|
|
|
* Fri Sep 02 2011 Automatic Build System <autodist@mambasoft.it> 1.4.12.1-1mamba
|
|
- automatic version update by autodist
|
|
|
|
* Fri Jul 22 2011 Automatic Build System <autodist@mambasoft.it> 1.4.12-1mamba
|
|
- automatic update to 3.0.3.0 by autodist
|
|
|
|
* Tue Jun 14 2011 Automatic Build System <autodist@mambasoft.it> 1.4.11.1-1mamba
|
|
- automatic update by autodist
|
|
|
|
* Sat Oct 30 2010 Automatic Build System <autodist@mambasoft.it> 1.4.10-1mamba
|
|
- automatic update to 1.4.10 by autodist
|
|
|
|
* Sat Aug 07 2010 Automatic Build System <autodist@mambasoft.it> 1.4.9.1-1mamba
|
|
- automatic update to 1.4.9.1 by autodist
|
|
|
|
* Wed Aug 04 2010 Automatic Build System <autodist@mambasoft.it> 1.4.9-1mamba
|
|
- automatic update to 1.4.9 by autodist
|
|
|
|
* Fri May 21 2010 Automatic Build System <autodist@mambasoft.it> 1.4.8-1mamba
|
|
- automatic update to 1.4.8 by autodist
|
|
|
|
* Wed Mar 03 2010 Davide Madrisan <davide.madrisan@gmail.com> 1.4.7-1mamba
|
|
- update to 1.4.7
|
|
|
|
* Wed Dec 09 2009 Automatic Build System <autodist@mambasoft.it> 1.4.6-1mamba
|
|
- automatic update to 1.4.6 by autodist
|
|
|
|
* Fri Sep 25 2009 Automatic Build System <autodist@mambasoft.it> 1.4.5-1mamba
|
|
- automatic update to 1.4.5 by autodist
|
|
|
|
* Tue Jun 16 2009 Automatic Build System <autodist@mambasoft.it> 1.4.4-1mamba
|
|
- automatic update to 1.4.4 by autodist
|
|
|
|
* Mon Apr 06 2009 Silvan Calarco <silvan.calarco@mambasoft.it> 1.4.3.2-1mamba
|
|
- automatic update to 1.4.3.2 by autodist
|
|
|
|
* Wed Mar 25 2009 Silvan Calarco <silvan.calarco@mambasoft.it> 1.4.3.1-1mamba
|
|
- automatic update to 1.4.3.1 by autodist
|
|
|
|
* Tue Oct 21 2008 Silvan Calarco <silvan.calarco@mambasoft.it> 1.4.2-1mamba
|
|
- update to 1.4.2
|
|
- initscript: fix condrestart check
|
|
- install initscript and iptables-nat.sh with read permissions for all
|
|
|
|
* Sat Sep 13 2008 Silvan Calarco <silvan.calarco@mambasoft.it> 1.4.1.1-1mamba
|
|
- automatic update to 1.4.1.1 by autodist
|
|
|
|
* Wed Apr 30 2008 Aleph0 <aleph0@openmamba.org> 1.4.0-1mamba
|
|
- update to 1.4.0 (bugfixes and strong IPv6 support improvement)
|
|
- own %{_libdir}/iptables dir
|
|
|
|
* Mon Jul 02 2007 Aleph0 <aleph0@openmamba.org> 1.3.8-1mamba
|
|
- update to 1.3.8
|
|
|
|
* Mon Apr 16 2007 Davide Madrisan <davide.madrisan@gmail.com> 1.3.7-1mamba
|
|
- update to version 1.3.7 by autospec
|
|
- use service to run the initscript
|
|
- updated initscript
|
|
|
|
* Wed Oct 04 2006 Davide Madrisan <davide.madrisan@qilinux.it> 1.3.6-1qilnx
|
|
- update to version 1.3.6 by autospec
|
|
|
|
* Fri Feb 03 2006 Davide Madrisan <davide.madrisan@qilinux.it> 1.3.5-1qilnx
|
|
- update to version 1.3.5 by autospec
|
|
|
|
* Mon Nov 07 2005 Davide Madrisan <davide.madrisan@qilinux.it> 1.3.4-1qilnx
|
|
- update to version 1.3.4 by autospec
|
|
|
|
* Mon Aug 01 2005 Davide Madrisan <davide.madrisan@qilinux.it> 1.3.3-1qilnx
|
|
- update to version 1.3.3 by autospec
|
|
|
|
* Mon Jul 25 2005 Davide Madrisan <davide.madrisan@qilinux.it> 1.3.2-1qilnx
|
|
- update to version 1.3.2 by autospec
|
|
|
|
* Mon Apr 18 2005 Silvan Calarco <silvan.calarco@mambasoft.it> 1.3.1-2qilnx
|
|
- changed initscript for Guarddog first time configurator execution
|
|
|
|
* Tue Mar 08 2005 Davide Madrisan <davide.madrisan@qilinux.it> 1.3.1-1qilnx
|
|
- update to version 1.3.1 by autospec
|
|
|
|
* Mon Feb 14 2005 Davide Madrisan <davide.madrisan@qilinux.it> 1.3.0-1qilnx
|
|
- update to version 1.3.0 by autospec
|
|
|
|
* Wed Nov 03 2004 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.11-2qilnx
|
|
- security fix: QSA-2004-049 (CAN-2004-0986)
|
|
|
|
* Tue Jun 29 2004 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.11.1qilnx
|
|
- new version rebuild
|
|
|
|
* Fri May 14 2004 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.9-6qilnx
|
|
- iptables-nat.sh updated to use the new network-functions features
|
|
|
|
* Wed Mar 31 2004 Silvan Calarco <silvan.calarco@mambasoft.it> 1.2.9-5qilnx
|
|
- fixed iptables-nat.sh when a dhcp interface has no IP address
|
|
|
|
* Tue Feb 03 2004 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.9-4qilnx
|
|
- fixed iptables-nat.sh script
|
|
|
|
* Mon Feb 02 2004 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.9-3qilnx
|
|
- post scriptlet fixed
|
|
|
|
* Wed Nov 19 2003 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.9-2qilnx
|
|
- added missing requirements for iptables-nat and iptables-ipv6
|
|
|
|
* Mon Nov 03 2003 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.9-1qilnx
|
|
- rebuilt with version 1.2.9
|
|
|
|
* Fri Oct 31 2003 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.8-9qilnx
|
|
- RPM specfile fixes/updates
|
|
|
|
* Fri Sep 19 2003 Davide Madrisan <davide.madrisan@qilinux.it> 1.2.8-8qilnx
|
|
- fixes in iptables-nat.sh script
|
|
|
|
* Fri Aug 15 2003 Silvan Calarco <silvan.calarco@qinet.it> 1.2.8-7qilnx
|
|
- changed iptables-nat.sh script so that it works when a private interface
|
|
doesn't have and ip address
|
|
|
|
* Wed Aug 06 2003 Silvan Calarco <silvan.calarco@qinet.it> 1.2.8-6qilnx
|
|
- changed iptables-nat.sh script so that it uses new network-functions scripts
|
|
|
|
* Tue Jul 15 2003 Silvan Calarco <silvan.calarco@qinet.it> 1.2.8-5qilnx
|
|
- fixed minor initscript problem (a lot of newlines after [OK])
|
|
|
|
* Thu Jun 26 2003 Silvan Calarco <silvan.calarco@qinet.it> 1.2.8-4qilnx
|
|
- changed initscript sequence number to boot after network activation
|
|
|
|
* Mon Jun 23 2003 Silvan Calarco <silvan.calarco@qinet.it> 1.2.8-3qilnx
|
|
- added guarddog aware configuration file
|
|
|
|
* Wed May 07 2003 Silvan Calarco <silvan.calarco@qinet.it> 1.2.8-2qilnx
|
|
- added iptables-nat package
|
|
|
|
* Tue Apr 29 2003 Alessandro Ramazzina <alessandro.ramazzina@qinet.it> 1.2.8-1qilnx
|
|
- creation of iptables package
|