-
Notifications
You must be signed in to change notification settings - Fork 11
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #2200 from CactuseSecurity/develop
v7.0 main
- Loading branch information
Showing
255 changed files
with
6,204 additions
and
4,256 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,80 @@ | ||
# Firewall Orchestrator Revision History for DEVELOP branch only | ||
|
||
pre-5, a product called IT Security Organizer and was closed source. It was developed starting in 2005. | ||
In 2020 we decided to re-launch a new | ||
|
||
### 6.1.0 - 16.11.2022 DEVELOP | ||
- interactive network analysis prototype in UI | ||
- integrate path analysis to workflow | ||
|
||
### 6.1.1 - 15.12.2022 DEVELOP | ||
- recertification on owner base | ||
- preparation of new task types | ||
|
||
### 6.1.2 - 20.12.2022 DEVELOP | ||
- start of Palo Alto import module | ||
|
||
### 6.1.3 - xx.01.2023 DEVELOP | ||
- enhance recertification | ||
|
||
### 6.1.4 - 27.01.2023 DEVELOP | ||
- prepare delete rule requests | ||
|
||
### 6.2.2 22.03.2023 DEVELOP | ||
- adding last hit of each rule for check point and FortiManager to recertification (report) | ||
|
||
### 6.3.3 09.05.2023 DEVELOP | ||
- new importer module for importing FortiGate directly via FortiOS REST API | ||
|
||
### 6.4.4 19.06.2023 DEVELOP | ||
- CPR8x importer: basic support for inline layers | ||
|
||
### 6.4.5 22.06.2023 DEVELOP | ||
- Fortigate API importer: hotfix NAT rules | ||
- upgrade to hasura API 2.28.0 | ||
|
||
### 6.4.6 23.06.2023 DEVELOP | ||
- new email notification on import changes | ||
|
||
### 6.4.7 26.06.2023 DEVELOP | ||
- hotfix fortiOS importer NAT IP addresses | ||
- fixing issue during ubuntu OS upgrade with ldap | ||
- unifying all buttons in UI | ||
|
||
### 6.4.8 29.06.2023 DEVELOP | ||
- hotfix fortiOS importer: replacing ambiguous import statement | ||
|
||
### 6.4.9 03.07.2023 DEVELOP | ||
- fix sample group role path | ||
|
||
### 6.4.10 07.07.2023 DEVELOP | ||
- fixes in importer change mail notification for encrypted mails | ||
- fixes for report links to objects | ||
- fix template name display issue | ||
- fix UI visibility for fw-admin role (multiple pages) | ||
- UI login page: allow enter as submit | ||
- UI reporting: filter objects in rule report | ||
- adding demo video in github README.MD | ||
|
||
### 6.4.11 10.07.2023 DEVELOP | ||
- bugfix in importer change mail notification for missing mail server config | ||
|
||
### 6.4.12 14.07.2023 DEVELOP | ||
- UI settings: hotfix email port (default 25) was not written to config before | ||
- splitting revision history into develop and main | ||
- installer: supress csharp test results on success | ||
|
||
### 6.4.13 20.07.2023 DEVELOP | ||
- re-login now also with enter key | ||
- fixing help pages (email & importer settings, archive, scheduling) [#2162](https://github.com/CactuseSecurity/firewall-orchestrator/issues/2162) | ||
|
||
### 6.5.0 24.07.2023 DEVELOP | ||
- UI: adding compliance matrix module | ||
- UI: fix browser session persistence causing subscriptions to remain open after user logout; now api connection and web socket are disposed on logout | ||
- API: removing obsolete graphql query repos | ||
- API: upgrading hasura api to 2.30.0 | ||
- installer: replacing deprecated path_to_script option in postgresql_query | ||
|
||
### 6.5.1 24.07.2023 DEVELOP | ||
- New report type Unused Rules | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,5 +1,5 @@ | ||
### general settings | ||
product_version: "6.4.3" | ||
product_version: "7.0" | ||
ansible_user: "{{ lookup('env', 'USER') }}" | ||
ansible_become_method: sudo | ||
ansible_python_interpreter: /usr/bin/python3 | ||
|
@@ -40,6 +40,7 @@ fworch_secrets_dir: "{{ fworch_conf_dir }}/secrets" | |
# setting default proxy (may be overwritten via --extra-vars) | ||
http_proxy: "{{ lookup('env','http_proxy') }}" | ||
https_proxy: "{{ lookup('env','https_proxy') }}" | ||
no_proxy: "{{ lookup('env','no_proxy') }}" | ||
proxy_exceptions: "{{ lookup('env','no_proxy') }}" | ||
proxy_env: | ||
http_proxy: "{{ http_proxy }}" | ||
|
@@ -53,8 +54,9 @@ http_proxy_import_parameter: "" | |
# use the following syntax for authenticated proxy access: | ||
# http_proxy=http://USERNAME:[email protected]:8080/ | ||
|
||
|
||
debian_testing_version: "11" | ||
# OS | ||
debian_testing_version: "12" | ||
debian_testing_release_name: trixie | ||
arch: x86_64 | ||
redhat_major_version: "8" | ||
redhat_arch: "{{ redhat_major_version }}-{{ arch }}" | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,12 @@ | ||
################## cloud ########################### | ||
|
||
cloud_vm_name: fworch-vm1 | ||
cloud_admin_name: cadmin | ||
# cloud_admin_ssh_public_key: "" | ||
cloud_network: "10.5.0.0/16" | ||
cloud_subnet: "10.5.1.0/24" | ||
cloud_location: northcentral | ||
cloud_image_publisher: canonical | ||
cloud_image_sku: "20_04-lts" | ||
cloud_vm_size: "Standard_B2s" | ||
cloud_resource_group: "fworch_rg" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.