From 44bd1708f188bb0206f8854edd273c0e3ef4c5f8 Mon Sep 17 00:00:00 2001
From: Tom Eastep <teastep@shorewall.net>
Date: Sun, 1 May 2011 06:39:17 -0700
Subject: [PATCH] Document TC fixes

---
 Shorewall/changelog.txt    |  2 ++
 Shorewall/releasenotes.txt | 20 +++++++++++++++++++-
 2 files changed, 21 insertions(+), 1 deletion(-)

diff --git a/Shorewall/changelog.txt b/Shorewall/changelog.txt
index 53ddc6b9b..bacc4305f 100644
--- a/Shorewall/changelog.txt
+++ b/Shorewall/changelog.txt
@@ -3,6 +3,8 @@ Changes in Shorewall 4.4.19.2
 1)  Restore the ability to have IPSET names in the ORIGINAL DEST column
     of a DNAT or REDIRECT rule.
 
+2)  Correct several complex TC issues reported by Mr Dash4.
+
 Changes in Shorewall 4.4.19.1
 
 1)  Eliminate silly duplicate rule when stopped.
diff --git a/Shorewall/releasenotes.txt b/Shorewall/releasenotes.txt
index 4ce7abc91..261546611 100644
--- a/Shorewall/releasenotes.txt
+++ b/Shorewall/releasenotes.txt
@@ -28,7 +28,25 @@ VI.   PROBLEMS CORRECTED AND NEW FEATURES IN PRIOR RELEASES
 
     will implicitly add this rule
 
-	ACCEPT	net	dmz:10.1.1.2	tcp	80	
+	ACCEPT	net	dmz:10.1.1.2	tcp	80
+
+2)  Two problems with complex TC have been corrected:
+
+    a) The following entry in /etc/shorewall/tcclasses
+
+       	A:1 - 10*full/100:50ms 20*full/100 1 tcp-ack
+
+       produced this error:
+
+        ERROR: Unknown INTERFACE (A) : /etc/shorewall/tcclasses
+
+       This has been corrected by requiring that class numbers
+       containing a-f or A-F must be prefaced by '0x'.
+
+    b) Shorewall reserves class number 1 for the root class of the
+       queuing discipline. Definining class 1 in
+       /etc/shorewall/tcclasses was previoulsly escaping detection by
+       the compiler, resulting in a run-time error.
 
 4.4.19.1