More LOG_MARTIANS update

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@8187 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb

Shorewall-common/releasenotes.txt

@@ -34,13 +34,32 @@ Migration Issues.
 	     REDIRECT-
 	     DNAT-
 
-4)  The default value for LOG_MARTIANS is now 'On'. Previously, the
-    default value was 'Keep'. You can either:
+4)  The default value for LOG_MARTIANS has been changed. Previously,
+    the defaults were:
+
+    	Shorewall-perl - 'Off'
+	Shorewall-shell - 'No'
+
+    The new default values are:
+
+    	Shorewall-perl - 'On'
+	Shorewall-shell - 'Yes'.
+
+    Shorewall-perl users may:
 
     a) Accept the new default -- martians will be logged from all
-       interfaces except those with log_martians=0 in shorewall.conf.
+       interfaces with route filtering except those with log_martians=0
+       in /etc/shorewall/interfaces.
 
-    b) Explicitly set LOG_MARTIANS=keep to maintain compatibility with
+    b) Explicitly set LOG_MARTIANS=Off to maintain compatibility with
+       prior versions of Shorewall.
+
+    Shorewall-shell users may:
+
+    a) Accept the new default -- martians will be logged from all
+       interfaces with the route filtering enabled.
+
+    b) Explicitly set LOG_MARTIONS=No to maintain compatibility with 
        prior versions of Shorewall.
 
 Problems corrected in 4.1.5.
@@ -54,9 +73,11 @@ New Features in 4.1.5.
     the effect of reducing the average number of rules that each packet
     must traverse.
 
-4)  The default value for LOG_MARTIANS is now 'On'. Previously, the
-    default value was 'Keep'. The shorewall.conf file has also been 
-    updated to specify a value of 'On'.
+2)  The default value for LOG_MARTIANS is now 'Yes' ('On' in
+    Shorewall-perl). Previously, the default value was 'No' ('Off' in
+    Shorewall-perl). The shorewall.conf file has also been 
+    updated to specify a value of 'Yes' (which is interpreted as 'On'
+    by Shorewall-perl).
 
 New Features in Shorewall 4.1.
 

Shorewall-common/shorewall.conf

@@ -62,7 +62,7 @@ RFC1918_LOG_LEVEL=info
 
 SMURF_LOG_LEVEL=info
 
-LOG_MARTIANS=On
+LOG_MARTIANS=Yes
 
 ###############################################################################
 #	L O C A T I O N	  O F	F I L E S   A N D   D I R E C T O R I E S

manpages/shorewall.conf.xml

@@ -717,10 +717,13 @@ net     all  DROP   info</programlisting>then the chain name is 'net2all'
           <para>If set to <emphasis role="bold">Yes</emphasis> or <emphasis
           role="bold">yes</emphasis>, sets
           /proc/sys/net/ipv4/conf/all/log_martians and
-          /proc/sys/net/ipv4/conf/default/log_martians to 1. Default is
-          <emphasis role="bold">No</emphasis> which sets both of the above to
-          zero. If you do not enable martian logging for all interfaces, you
-          may still enable it for individual interfaces using the <emphasis
+          /proc/sys/net/ipv4/conf/default/log_martians to 1. In Shorewall
+          versions prior to 4.1.5, the default is <emphasis
+          role="bold">No</emphasis> which sets both of the above to zero. In
+          Shorewall 4.1.5, the default value was chaned to <emphasis
+          role="bold">Yes</emphasis> which sets both of the above to one. If
+          you do not enable martian logging for all interfaces, you may still
+          enable it for individual interfaces using the <emphasis
           role="bold">logmartians</emphasis> interface option in <ulink
           url="shorewall-interfaces.html">shorewall-interfaces</ulink>(5).</para>