1 files changed, 25 insertions, 16 deletions

diff --git a/TODO b/TODO
index f4686d0..ff5911b 100644
--- a/TODO
+++ b/TODO
@@ -1,19 +1,27 @@
 
 * Write firewall (iptables) implementation
-   - Add function declarations in eurephia_firewall.h
-   - Enable firewall functionality by checking config:
-     firewall_enabled == 1
-   - Add eDBget_firewall_profile(ctx, session) in eurephiadb
-   - Add eurephia_firewall(ctx, mode{ADD|DELETE}, {profilename|macaddr}
-                          (eurephiaCTX *, const int mode, char *)
-      - This function is located in eurephia_fw_iptables.c
-      - iptables -I {INSERT place} is taken from config: iptables_vpnclients
-      - iptables -j {vpnuser_profile} is taken from $profilename
+   - Add function declarations in eurephia_firewall.h (DONE)
+   - Enable firewall functionality by checking if firewall_interface
+     config variable is set. (DONE)
+   - Add eDBget_firewall_profile(ctx, session) in eurephiadb (DONE)
+   - Add eurephia_firewall(ctx, mode{ADD|DELETE},   {profilename|macaddr},
+                          (eurephiaCTX *, const int mode, char *) (DONE)
+      - This function is located in eurephia_fw_iptables.c (DONE)
+      - iptables -I {INSERT place} is taken from config:
+        firewall_destination (DONE)
+      - iptables -j {vpnuser_profile} is taken from VPN users
+        accessprofile (DONE)
 
    - Needs probably to be an own thread with root permission and a
-     socket to send ADD/DELETE commands
+     socket to send ADD/DELETE commands (DONE)
 
-* Logg MACaddresses per session into openvpn_macaddr_history
+   - Flush iptables chain on startup
+
+* Implement logging of env.variable time_duration on disconnect
+   - Needs to expand the openvpn_lastlog table with connection_duration
+     field.
+
+* Log MACaddresses per session into openvpn_macaddr_history
    - Can change during a session
       CREATE TABLE openvpn_macaddr_history (
              sessionkey varchar(64)  NOT NULL,
@@ -34,15 +42,16 @@
    - Show blacklist
    - Admin program should use eurephiaDB
    
-* Make new dblink-tpl.c template (started)
+* Make new eurephiadb-driver_template.c - template for creating db driver
    - add new parameter to eDBregister_attempt(...) -- attempt_mode
 
 * Write PostgreSQL driver
 
 * A lot of QA
    - Writing test program for DB drivers
-       - which tests only the driver
-       - which tests the API, going through eurephiaDB
-   - Check that user gets blocked on too many failing attempts
-
+       - which tests only the driver (loads .so file)
+       - which tests the API, simulating openvpn calls
+   - Check that user gets blocked and blacklisted on too many failing attempts
+   - Check that right connection profiles are used
+   - Check that user/cert matches