From 3b07053d3b7120bf50bc6915721c903dcf19526c Mon Sep 17 00:00:00 2001 From: Tom Eastep Date: Sun, 28 Mar 2010 14:37:22 -0700 Subject: [PATCH] Document new 'trace' facility Signed-off-by: Tom Eastep --- Shorewall/changelog.txt | 2 ++ Shorewall/releasenotes.txt | 14 ++++++++++++++ 2 files changed, 16 insertions(+) diff --git a/Shorewall/changelog.txt b/Shorewall/changelog.txt index 61ebea02a..11be8adda 100644 --- a/Shorewall/changelog.txt +++ b/Shorewall/changelog.txt @@ -5,6 +5,8 @@ Changes in Shorewall 4.4.9 2) Correct handling of a logical interface name in the EXTERNAL column of proxyarp. +3) More robust 'trace'. + Changes in Shorewall 4.4.8 1) Correct handling of RATE LIMIT on NAT rules. diff --git a/Shorewall/releasenotes.txt b/Shorewall/releasenotes.txt index 6f96efb6c..26492755e 100644 --- a/Shorewall/releasenotes.txt +++ b/Shorewall/releasenotes.txt @@ -239,6 +239,20 @@ None. for export (-e option); note that -e is implicit in the 'load' and 'reload' commands. +2) When 'trace' is specified on a command that involves the compiler, + the compiler now creates a trace to standard output. + + Trace entries are of three types: + + Input --- begin with IN===>. Input read from configuration + files. + + Output --- begin with CS----->. Text written to the generated + script. + + Netfilter -- begin with NF----->. Updates to the compiler's chain + table. + ---------------------------------------------------------------------------- V I. P R O B L E M S C O R R E C T E D A N D N E W F E A T U R E S I N P R I O R R E L E A S E S