From a997d6507de8f2b930eb6c6780579e2dce6c0b2f Mon Sep 17 00:00:00 2001 From: Tom Eastep Date: Wed, 28 Apr 2010 08:09:10 -0700 Subject: [PATCH] Update release notes with more common example of failure. Signed-off-by: Tom Eastep --- Shorewall/releasenotes.txt | 18 ++++++++++-------- 1 file changed, 10 insertions(+), 8 deletions(-) diff --git a/Shorewall/releasenotes.txt b/Shorewall/releasenotes.txt index b45413911..c07783733 100644 --- a/Shorewall/releasenotes.txt +++ b/Shorewall/releasenotes.txt @@ -279,20 +279,20 @@ I I I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E fatal error occured on start/restart. 12) The following valid configuration produced invalid - iptables-restore input: - - /etc/shorewall/shorewall.conf: OPTIMIZE=8 + iptables-restore input with optimization level 8. /etc/shorewall/interfaces: #ZONE INTERFACE BROADCAST OPTIONS - vpn TUN+ - tun+ + vpn tun+ - - /etc/shorewall/netmap: + /etc/shorewall/masq: - #TYPE NET1 INTEFACE NET2 - SNAT 1.2.3.0/24 TUN0 3.4.5.0/24 - DNAT 3.4.5.0/24 TUN0 1.2.3.0/24 + #INTERFACE SOURCE ADDRESS PROTO PORT + tun0 192.168.1.0/24 + + Use of tunN in the nat and netmap files also produced invalid + iptables-restore input. ---------------------------------------------------------------------------- I V. K N O W N P R O B L E M S R E M A I N I N G @@ -385,6 +385,8 @@ None. #ZONE INTERFACE BROADCAST OPTIONS - br0 - bridge +7) The generated ruleset now uses conntrack match for state matching, + if it is available. ---------------------------------------------------------------------------- V I. P R O B L E M S C O R R E C T E D A N D N E W F E A T U R E S