Tom Eastep 2003-08-25 2003 2004 Thomas M. Eastep Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation; with no Invariant Sections, with no Front-Cover, and with no Back-Cover Texts. A copy of the license is included in the section entitled GNU Free Documentation License.

Shorewall is compatible with the Linux 2.6 kernel series and contains support for the following features that are added in that series: NETMAP Target Support. Bridge/Firewall Support (physdev match support).

The 2.6 Linux kernel introduces a new implementation of IPSEC which eliminates the ipsecN device names. Netfilter/iptables support for this new implementation is incomplete and therefore Shorewall support is limited. See the Shorewall IPSEC documentation. Update: The Shorewall 2.1 Development release now contains support for IPSEC under the 2.6 Kernel. See the Kernel 2.6 IPSEC documentation for details.