2003-07-04 17:08:29 +02:00
|
|
|
|
This is a minor release of Shorewall.
|
2002-05-01 01:13:15 +02:00
|
|
|
|
|
2004-01-22 03:06:56 +01:00
|
|
|
|
Problems Corrected since version 1.4.9:
|
2003-07-26 18:44:38 +02:00
|
|
|
|
|
2004-01-22 03:06:56 +01:00
|
|
|
|
None.
|
2003-12-16 22:52:37 +01:00
|
|
|
|
|
2003-07-06 17:31:26 +02:00
|
|
|
|
Migration Issues:
|
|
|
|
|
|
|
2003-11-24 20:08:43 +01:00
|
|
|
|
None.
|
2003-05-22 22:37:24 +02:00
|
|
|
|
|
2003-08-24 03:24:23 +02:00
|
|
|
|
New Features:
|
2003-07-26 18:44:38 +02:00
|
|
|
|
|
2004-01-22 03:06:56 +01:00
|
|
|
|
1) The INTERFACE column in the /etc/shorewall/masq file may now
|
|
|
|
|
|
specify a destination list.
|
2004-01-09 21:18:40 +01:00
|
|
|
|
|
2004-01-22 03:06:56 +01:00
|
|
|
|
Example:
|
2004-01-09 21:18:40 +01:00
|
|
|
|
|
2004-01-22 03:06:56 +01:00
|
|
|
|
#INTERFACE SUBNET ADDRESS
|
|
|
|
|
|
eth0:192.0.2.3,192.0.2.16/28 eth1
|
2004-01-09 21:18:40 +01:00
|
|
|
|
|
2004-01-22 03:06:56 +01:00
|
|
|
|
If the list begins with "!" then SNAT will occur only if the
|
|
|
|
|
|
destination IP address is NOT included in the list.
|
2004-01-22 21:24:56 +01:00
|
|
|
|
|
|
|
|
|
|
2) Output traffic control rules (those with the firewall as the source)
|
|
|
|
|
|
may now be qualified by the effective userid and/or effective group
|
|
|
|
|
|
id of the program generating the output. This feature is courtesy of
|
|
|
|
|
|
Fr<46>d<EFBFBD>ric LESPEZ.
|
|
|
|
|
|
|
|
|
|
|
|
A new USER column has been added to /etc/shorewall/tcrules.
|
|
|
|
|
|
|
|
|
|
|
|
It may contain :
|
|
|
|
|
|
|
|
|
|
|
|
[<user name or number>]:[<group name or number>]
|
|
|
|
|
|
|
|
|
|
|
|
The colon is optionnal when specifying only a user.
|
|
|
|
|
|
|
|
|
|
|
|
Examples : john: / john / :users / john:users
|
