diff --git a/Shorewall-Website/News.htm b/Shorewall-Website/News.htm index 7491ae212..866bcb141 100644 --- a/Shorewall-Website/News.htm +++ b/Shorewall-Website/News.htm @@ -22,16 +22,60 @@ Texts. A copy of the license is included in the section entitled “GNU Free Documentation License”.

-

2005-12-01

-
2005-12-01 +

2005-12-12

+
2005-12-12 +Shorewall 2.4.7
+
+Problems Corrected in 2.4.7
+
+1)  When MACLIST_TABLE=mangle and an interface is enabled for DHCP +(the
+    'dhcp' option is specified in /etc/shorewall/interfaces) +then broadcasts
+    on UDP port 67 to address 255.255.255.255 from address +0.0.0.0 were being
+    dropped and logged. While this did not prevent the client +from acquiring
+    an IP address, it could result in lots of log messages.
+
+2)  Entries for openvpn tunnels (including openvpnclient and
+    openvpnserver) that specify a port but no protocol cause +startup
+    errors as follows:
+
+           iptables v1.3.3: unknown +protocol `1194' specified
+           Try `iptables -h' or 'iptables +--help' for more information.
+           ERROR: Command +"/usr/sbin/iptables -A net2fw -p 1194 -s
+           0.0.0.0/0 --sport 1194 -j +ACCEPT" Failed
+
+    The problem may be worked around by specifying the +protocol as well
+    (e.g., "openvpn:udp:3455).
+
+3)  If the previous firewall configuration included a policy other +than
+    ACCEPT in the nat, mangle or raw tables then Shorewall +would not set
+    the policy to ACCEPT. This could result in a ruleset that +rejected or
+    dropped all traffic.
+
+4)  Specifying an interface name in the SOURCE column
+    of /etc/shorewall/tcrules resulted in a startup error.
+
+2005-12-01 End of Support for Shorewall versions 2.0 and 2.2

Effective today, versions 2.0 and 2.2 are no longer supported. This means that if you find a bug in one of these releases, we won't fix it and if you ask for help with one of these releases, we will not spend much time trying to solve your issue.
-
-2005-11-25 +
+2005-11-25 Shorewall 3.0.2
 
Problems Corrected in 3.0.2

1) A couple of typos in the one-interface sample configuration have
   been corrected.

2) The 3.0.1 version of Shorewall was incompatible with old versions of
   the Linux kernel (2.4.7 for example). The new code ignores errors
   produced when Shorewall 3.x is run on these ancient kernels.

3) Arch Linux installation routines has been improved.

New Features in 3.0.2

1) A new Webmin macro has been added. This macro assumes that Webmin is
   running on its default port (10000).
diff --git a/Shorewall-Website/shorewall_index.htm b/Shorewall-Website/shorewall_index.htm index 8066cab26..9b33901ab 100644 --- a/Shorewall-Website/shorewall_index.htm +++ b/Shorewall-Website/shorewall_index.htm @@ -13,13 +13,13 @@

Shoreline Firewall (Shorewall)

-

The current Stable Version is  3.0.2 -- Get it from the The current Stable Version is  3.0.3 -- Get it from the download sites. Here are the + href="http://www.shorewall.net/pub/shorewall/3.0/shorewall-3.0.3/releasenotes.txt"> release notes and here are the + href="http://www.shorewall.net/pub/shorewall/3.0/shorewall-3.0.3/known_problems.txt"> known problems and + href="http://www.shorewall.net/pub/shorewall/3.0/shorewall-3.0.3/errata/"> updates..

The current Development Version is 3.1.0 -- so far, there has been no code released.
@@ -31,7 +31,7 @@ document under the terms of the GNU Free Documentation License, Version with no Invariant Sections, with no Front-Cover, and with no Back-Cover Texts. A copy of the license is included in the section entitled “GNU Free Documentation License”.

-

2005-12-06

+

2005-12-14

Table of Contents

Introduction