extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2025-06-20 09:47:51 +02:00
Code Issues Packages Projects Releases Wiki Activity

Corrections to release notes.

Browse Source 
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
Tom Eastep 2011-06-01 06:31:02 -07:00
parent 7d4efd3e08
commit f253bb5a11
1 changed files with 5 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
Shorewall/releasenotes.txt
View File

@ -201,9 +201,7 @@ VI. PROBLEMS CORRECTED AND NEW FEATURES IN PRIOR RELEASES
g) The builtin actions (dropBroadcast, rejNonSyn, etc.) now support g) The builtin actions (dropBroadcast, rejNonSyn, etc.) now support
an 'audit' parameter which causes all ACCEPT, DROP and REJECTs an 'audit' parameter which causes all ACCEPT, DROP and REJECTs
performed by the action to be audited. This allows creation of performed by the action to be audited.
audited versions of the Shorewall-provided default actions
(action.Drop and action.Reject).
Note: The builtin actions are those actions listed in the Note: The builtin actions are those actions listed in the
output of 'shorewall show actions' with names begin with a output of 'shorewall show actions' with names begin with a
@ -215,9 +213,9 @@ VI. PROBLEMS CORRECTED AND NEW FEATURES IN PRIOR RELEASES
rejNonSyn(audit) net all rejNonSyn(audit) net all
h) There are audited versions of the standard Default Actions h) There are audited versions of the standard Default Actions
named ADrop and AReject. Note that these audit everything that named A_Drop and A_Reject. Note that these audit everything
they do so you will probably want to make your own copies and that they do so you will probably want to make your own copies
modify them to only audit the packets that you care about. and modify them to only audit the packets that you care about.
6) Up to this release, the behaviors of 'start -f' and 'restart -f' 6) Up to this release, the behaviors of 'start -f' and 'restart -f'
has been inconsistent. The 'start -f' command compares the has been inconsistent. The 'start -f' command compares the
@ -228,7 +226,7 @@ VI. PROBLEMS CORRECTED AND NEW FEATURES IN PRIOR RELEASES
To make the two consistent, a new LEGACY_FASTSTART option has been To make the two consistent, a new LEGACY_FASTSTART option has been
added. The default value when the option isn't specified is added. The default value when the option isn't specified is
LEGACY_FASTSTART=Yes which preserves the old behavior. When LEGACY_FASTSTART=Yes which preserves the old behavior. When
LEGACY_FASTSTART=No, 'start -f' and 'restart -f' compare with LEGACY_FASTSTART=No, 'start -f' and 'restart -f' both compare with
/var/lib/shorewall[6]/firewall. /var/lib/shorewall[6]/firewall.
7) A '-c' (compile) option has been added to the 'start' and 'restart' 7) A '-c' (compile) option has been added to the 'start' and 'restart'