2004-07-01 16:12:29 +02:00
|
|
|
Changes since 2.0.3
|
2004-01-31 17:11:22 +01:00
|
|
|
|
2004-07-01 16:12:29 +02:00
|
|
|
1) Fix security vulnerability involving temporary files/directories.
|
2004-04-10 04:47:04 +02:00
|
|
|
|
2004-07-01 16:12:29 +02:00
|
|
|
2) Hack security fix so that it works under Slackware.
|
2004-05-18 15:56:35 +02:00
|
|
|
|
2004-07-01 16:12:29 +02:00
|
|
|
3) Correct mktempfile() for case where mktemp isn't installed.
|
2004-05-19 19:16:06 +02:00
|
|
|
|
2004-07-01 16:12:29 +02:00
|
|
|
4) Implement 'dropInvalid' builtin action.
|
2004-07-06 22:41:53 +02:00
|
|
|
|
|
|
|
5) Fix logging nat rules.
|
2004-07-10 19:03:31 +02:00
|
|
|
|
2004-07-12 15:01:55 +02:00
|
|
|
6) Fix COMMAND typos.
|
|
|
|
|
|
|
|
7) Add PKTTYPE option.
|
|
|
|
|
2004-07-13 02:33:30 +02:00
|
|
|
8) Enhancements to /etc/shorewall/masq
|
|
|
|
|
2004-07-15 22:29:06 +02:00
|
|
|
8) Allow overriding ADD_IP_ALIASES=Yes
|
|
|
|
|
2004-07-19 15:50:14 +02:00
|
|
|
9) Fix syntax error in setup_nat()
|
|
|
|
|
2004-07-21 20:57:45 +02:00
|
|
|
10) Port "shorewall status" changes from 2.0.7.
|
2004-07-25 00:14:58 +02:00
|
|
|
|
2004-07-26 01:26:52 +02:00
|
|
|
11) All config files are now empty.
|
|
|
|
|
2004-07-26 22:57:02 +02:00
|
|
|
12) Port blacklisting fix from 2.0.7
|
|
|
|
|
|
|
|
13) Pass rule chain and display chain separately to log_rule_limit.
|
|
|
|
Prep work for action logging.
|
2004-08-02 23:48:40 +02:00
|
|
|
|
|
|
|
14) Show the iptables/ip/tc command that failed when failure is fatal.
|
|
|
|
|
|
|
|
15) Implement STARTUP_ENABLED.
|
2004-08-10 22:18:15 +02:00
|
|
|
|
|
|
|
16) Added DNAT ONLY column to /etc/shorewall/nat.
|
2004-08-11 02:17:54 +02:00
|
|
|
|
|
|
|
17) Removed SNAT from ORIGINAL DESTINATION column.
|
2004-08-14 20:39:09 +02:00
|
|
|
|
|
|
|
18) Removed DNAT ONLY column.
|
|
|
|
|
|
|
|
19) Added IPSEC column to /etc/shorewall/masq.
|
2004-08-14 21:03:10 +02:00
|
|
|
|
|
|
|
20) No longer enforce source port 500 for ISAKMP.
|
2004-08-16 18:28:44 +02:00
|
|
|
|
|
|
|
21) Apply policy to interface/host options.
|
2004-08-16 20:00:53 +02:00
|
|
|
|
|
|
|
22) Fix policy and maclist.
|
2004-08-19 00:29:09 +02:00
|
|
|
|
|
|
|
23) Implement additional IPSEC options for zones and masq entries.
|
2004-08-20 00:22:49 +02:00
|
|
|
|
|
|
|
24) Deprecate the -c option in /sbin/shorewall.
|
2004-08-20 17:37:56 +02:00
|
|
|
|
|
|
|
25) Allow distinct input and output IPSEC parameters.
|