nils/gluon
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
e6457ac02b
gluon/package
History
Linus Lüssing e6457ac02b gluon-ebtables-limit-arp: a package for ARP rate-limiting 
This package adds filters to limit the amount of ARP Requests
devices are allowed to send into the mesh. The limits are 6 packets
per minute per client device, by MAC address, and 1 per second per
node in total.

A burst of up to 50 ARP Requests is allowed until the rate-limiting
takes effect (see --limit-burst in the ebtables manpage).

Furthermore, ARP Requests with a target IP already present in the
batman-adv DAT Cache are excluded from the rate-limiting,
both regarding counting and filtering, as batman-adv will respond
locally with no burden for the mesh. Therefore, this limiter
should not affect popular target IPs, like gateways.

However it should mitigate the problem of curious people or
smart devices scanning the whole IP range. Which could create
a significant amount of overhead for all participants so far.

Signed-off-by: Linus Lüssing <linus.luessing@c0d3.blue>
2018-01-17 12:33:44 +01:00
..
gluon-alfred Switch back roles of br-client and local-node interfaces 2017-02-10 09:58:23 +01:00
gluon-authorized-keys treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-autoupdater gluon-autoupdater: don't reference old autoupdater util library 2018-01-17 01:06:15 +01:00
gluon-client-bridge Use 'disabled' attribute instead of 'auto' to disable wired mesh interfaces 2018-01-11 23:06:36 +01:00
gluon-config-mode-autoupdater Remove redundant virtual packages 2017-07-08 16:34:40 +02:00
gluon-config-mode-contact-info gluon-config-mode-*, gluon-web-admin: use new gluon.site library to avoid 'or {}' syntax 2017-08-08 13:53:16 +02:00
gluon-config-mode-core treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-config-mode-geo-location gluon-config-mode-*, gluon-web-admin: use new gluon.site library to avoid 'or {}' syntax 2017-08-08 13:53:16 +02:00
gluon-config-mode-hostname Remove redundant virtual packages 2017-07-08 16:34:40 +02:00
gluon-config-mode-mesh-vpn treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-core ar71xx: add support for TP-Link Archer C58/C59/C60 (#1281) 2018-01-16 18:51:12 +01:00
gluon-ebtables gluon-ebtables: Enable concurrent ebtables updates 2018-01-03 19:58:53 +01:00
gluon-ebtables-filter-multicast gluon-ebtables-filter-multicast: do not filter out Bridge Loop Avoidance 2017-12-27 17:22:37 +01:00
gluon-ebtables-filter-ra-dhcp gluon-ebtables-*: add dependency on gluon-mesh-batman-adv 2017-07-08 21:23:00 +02:00
gluon-ebtables-limit-arp gluon-ebtables-limit-arp: a package for ARP rate-limiting 2018-01-17 12:33:44 +01:00
gluon-ebtables-segment-mld gluon-ebtables-*: add dependency on gluon-mesh-batman-adv 2017-07-08 21:23:00 +02:00
gluon-ebtables-source-filter treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-l3roamd gluon-core: firewall rework, make base policy more restrictive 2017-11-25 23:19:08 +01:00
gluon-lock-password Minify all Lua code 2016-07-10 20:14:25 +02:00
gluon-mesh-batman-adv gluon-mesh-batman-adv: Use genl helpers from libbatadv 2017-12-27 17:40:35 +01:00
gluon-mesh-vpn-core treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-mesh-vpn-fastd gluon-mesh-vpn-fastd: make respondd module compile again (#1228) 2017-09-24 23:49:00 +02:00
gluon-mesh-vpn-tunneldigger treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-neighbour-info gluon-neighbour-info: allow respondd replies on mesh and wan interface 2017-11-25 23:31:23 +01:00
gluon-node-info treewide: check for NULL after uci_alloc_context() (#1224) 2017-09-21 20:56:40 +02:00
gluon-radvd gluon-radvd: improve coding style in initscript 2017-02-11 22:40:51 +01:00
gluon-respondd gluon-respondd: firewall should allow access for devices in zone local_client (#1291) 2017-12-31 19:57:57 +01:00
gluon-setup-mode treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-site build: get rid of some redundant build dependencies 2017-02-10 02:10:01 +01:00
gluon-status-page gluon-status-page: improve localization (#1241) 2017-10-31 19:25:27 +01:00
gluon-status-page-api gluon-status-page-api: Use genl helpers from libbatadv 2017-12-27 17:40:41 +01:00
gluon-wan-dnsmasq Move luci-base dependency from gluon-core to gluon-setup-mode 2017-02-10 02:10:02 +01:00
gluon-web gluon-web: javascript: don't use global RegExp.$x matches, fix "this" for parameterized validators 2017-03-10 22:25:00 +01:00
gluon-web-admin gluon-web-admin: simplify info.html template 2017-08-11 22:09:08 +02:00
gluon-web-autoupdater treewide: convert all LuCI-based packages to gluon-web 2017-02-22 01:31:25 +01:00
gluon-web-logging gluon-web-logging: remove uci:set() nil check 2017-08-08 04:31:53 +02:00
gluon-web-mesh-vpn-fastd treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-web-network Use 'disabled' attribute instead of 'auto' to disable wired mesh interfaces 2018-01-11 23:06:36 +01:00
gluon-web-node-role treewide: use new gluon.site Lua library 2017-08-11 22:07:34 +02:00
gluon-web-private-wifi gluon-web: improve menu order in Advanced Settings (#1146) 2017-06-19 20:16:18 +02:00
gluon-web-theme gluon-web-theme: allow more width in style for input fields and selectboxes (#1229) 2017-10-14 13:42:24 +02:00
gluon-web-wifi-config gluon-web-wifi-config: make the code a bit nicer 2017-08-08 04:31:53 +02:00
libbatadv libbatadv: Add library for common batman-adv helpers 2017-12-27 17:40:30 +01:00
libgluonutil libgluonutil: add function that retrieves the node prefix from site.conf 2017-12-27 23:50:31 +01:00
features build: introduce GLUON_FEATURES 2017-07-09 02:31:38 +02:00
gluon.mk treewide: convert all LuCI-based packages to gluon-web 2017-02-22 01:31:25 +01:00