extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2024-11-08 08:44:05 +01:00
Code Issues Packages Projects Releases Wiki Activity
b66929a65e
shorewall_code/Shorewall
History
teastep b66929a65e Large merge of function from EXPERIMENTAL to HEAD. 
1) Elimination of the "shorewall monitor" command.

2) The /etc/shorewall/ipsec and /etc/shorewall/zones file are combined into
a single /etc/shorewall/zones file. This is done in an upwardly-compatible
way so that current users can continue to use their existing files.

3) Support has been added for the arp_ignore interface option.

4) DROPINVALID has been removed from shorewall.conf. Behavior is as if
DROPINVALID=No was specified.

5) The 'nobogons' option and BOGON_LOG_LEVEL are removed.

6) Error and warning messages have been made easier to spot by using
capitalization (e.g., ERROR: and WARNING:).

7) The /etc/shorewall/policy file now contains a new connection policy and a
policy for ESTABLISHED packets. Useful for users of snort-inline who want to
pass all packets to the QUEUE target.

8) A new 'critical' option has been added to /etc/shorewall/routestopped.
Shorewall insures communication between the firewall and 'critical' hosts
throughout start, restart, stop and clear. Useful for diskless firewall's
with NFS-mounted file systems, LDAP servers, Crossbow, etc.

9) Macros. Macros are very similar to actions but are easier to use, allow
parameter substitution and are more efficient. Almost all of the standard
actions have been converted to macros in the EXPERIMENTAL branch.

10) The default value of ADD_IP_ALIASES in shorewall.conf is changed to No.

11) If you have 'make' installed on your firewall, then when you use
the '-f' option to 'shorewall start' (as happens when you reboot),
if your /etc/shorewall/ directory contains files that were modified
after Shorewall was last restarted then Shorewall is started using
the config files rather than using the saved configuration.


git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2409 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2005-07-25 23:08:09 +00:00
..
debian More disabling until i can get a clean build 2005-07-17 11:37:05 +00:00
accounting Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
action.AllowAuth Copy latest 2.4 version from Shorewall2/ 2005-07-09 05:55:29 +00:00
action.AllowCVS Cleaned up additional rules from Debian package. Got rid of versions 2005-07-23 03:09:06 +00:00
action.Drop Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
action.Reject Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
action.template Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
actions Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
actions.std Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
blacklist Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
bogons Making sure bogons is still up-to-date. The blank lines make it easier 2005-07-09 06:57:12 +00:00
changelog.txt Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
configpath Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
continue Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
COPYING Initial revision 2002-04-30 23:13:15 +00:00
default.debian Copy latest 2.0 code from STABLE2/ 2005-07-09 04:45:32 +00:00
ecn Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
fallback.sh Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
firewall Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
functions Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
help Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
hosts Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
init Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
init.debian.sh Copy latest 2.2 version from STABLE2/ 2005-07-09 05:45:05 +00:00
init.sh Add 'shorewall show actions command' 2005-07-24 16:27:21 +00:00
initdone Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
INSTALL Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
install.sh Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
interfaces Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
ipsec Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
ipsecvpn Copy latest 2.2 version from STABLE2/ 2005-07-09 05:45:05 +00:00
maclist Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.AllowICMPs Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Amanda Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Auth Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.BitTorrent Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.CVS Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.DNS Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.DropDNSrep Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.DropUPnP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Edonkey Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.FTP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Gnutella Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.ICQ Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.IMAP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.LDAP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.NNTP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.NTP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.PCA Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Ping Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.POP3 Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.PostgreSQL Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Rdate Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Rsync Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.SMB Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.SMBswat Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.SMTP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.SNMP Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.SPAMD Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.SSH Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.SVN Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Syslog Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Telnet Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.template Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Trcrt Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.VNC Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.VNCL Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
macro.Web Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
Makefile Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
masq Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
modules Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
nat Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
netmap Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
params Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
policy Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
providers Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
proxyarp Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
README.txt Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
releasenotes.txt Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
rfc1918 Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
routestopped Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
rules Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
shorewall Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
shorewall.conf Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
shorewall.spec Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
start Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
started Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
stop Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
stopped Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
tcrules Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
tos Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
tunnel Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
tunnels Copy latest 2.4 version from Shorewall2/ 2005-07-09 05:55:29 +00:00
uninstall.sh Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00
zones Large merge of function from EXPERIMENTAL to HEAD. 2005-07-25 23:08:09 +00:00

README.txt 

This is the Shorewall EXPERIMENTAL branch of CVS.

The Shorewall EXPERIMENTAL branch is NOT SUPPORTED in any way.
YOU MIGHT BREAK YOUR FIREWALL BY USING THIS CODE!!  If so, don't
come complaining to us!