Add 'nobogon' interface option

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1198 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2004-03-17 21:06:37 +00:00
parent bf30706982
commit 9ec066441c
2 changed files with 12 additions and 1 deletions

View File

@ -5,3 +5,5 @@ Changes since 2.0.0
2) Add bridging Code. 2) Add bridging Code.
3) Cleanup Warning elimination. 3) Cleanup Warning elimination.
4) Add 'nobogons'

View File

@ -17,6 +17,15 @@ New Features:
http://shorewall.net/bridge.html http://shorewall.net/bridge.html
2) 2) The rfc1918 file released with Shorewall now contains entries for
only those three address ranges reserved by RFC 1918. A new
'nobogons' interface option has been added which handles bogon
source addresses (those which are reserved by the IANA, those
reserved for DHCP auto-configuration and the class C test-net
reserved for testing and documentation examples). This will allow
users to perform RFC 1918 filtering without having to deal with out
of date data from IANA. Those who are willing to update their
/usr/share/shorewall/bogons file regularly can specify the
'nobogons' option in addition to 'norfc1918'.