Release 3.0.21

Maintenance so it works with our newest version of advgetopt.

Barely started on an ipload tool so we can support firewall rules on a per project basis instead of all in iplock.

Release 3.0.16.4

The iplock tol has been working for a while now.

The iptables authors do not want to offer a library to tweak the Linux firewall. They only want to offer support for the iptables command line. This makes it really complicated to tweak the firewall, block or unblock just one IP address at various levels in your firewall.

The iplock project gives us a way to handle the firewall through a C++ library. This makes it way easier to handle the firewall properly, every time. It comes with configuration files which allow you to block IPs based on various parameters. For example, an IP getting blocked by our snapserver will be blocked on ports 80 and 443. An IP trying to send us spam emails gets blocked on port 25, 110, 143, 993, 995. Etc. Of course, you can also block the IP entirely, whatever the port.

We build some safety as well because we got blocked a few times ourselves... we use a special case for our IP addresses on port 22. This is done automatically when you install the entire Snap! C++ environment. At the time you install the firewall, you can specify your static IP address and the script that first initializes the firewall will include your IP early in the lists that would otherwise block port 22 and use the firewall RETURN command which means your IP won't get blocked.