2008-02-24 17:33:46 +01:00
|
|
|
Changes in 4.1.6
|
|
|
|
|
|
|
|
|
|
1) Deprecate IMPLICIT_CONTINUE=Yes
|
|
|
|
|
|
2008-03-05 17:16:04 +01:00
|
|
|
2) Add REDIRECTED INTERFACES column to tcdevices.
|
|
|
|
|
|
2008-02-13 20:11:02 +01:00
|
|
|
Changes in 4.1.5
|
|
|
|
|
|
|
|
|
|
1) More ruleset optimization.
|
|
|
|
|
|
2008-02-13 21:05:18 +01:00
|
|
|
2) Make LOG_MARTIANS=Yes the default.
|
|
|
|
|
|
2008-02-13 22:04:31 +01:00
|
|
|
3) Update modules file for 2.6.25.
|
|
|
|
|
|
2008-02-14 18:40:38 +01:00
|
|
|
4) Restore 3.4 code to work around busybox limination.
|
|
|
|
|
|
2008-02-15 19:29:11 +01:00
|
|
|
5) Add restriction handling in tcrules file.
|
|
|
|
|
|
|
|
|
|
6) Fix designator table in Tc.pm.
|
2008-02-14 18:40:38 +01:00
|
|
|
|
2008-02-18 18:38:25 +01:00
|
|
|
7) Generate an error when mac match is used in the POSTROUTING or
|
|
|
|
|
OUTPUT chains.
|
|
|
|
|
|
2008-02-22 20:58:54 +01:00
|
|
|
8) Add 'BROKEN_ROUTING' option.
|
|
|
|
|
|
2008-02-23 00:15:39 +01:00
|
|
|
9) Automatic macro comments.
|
|
|
|
|
|
2008-02-23 02:46:50 +01:00
|
|
|
10) But make automatic macro comments optional.
|
|
|
|
|
|
2007-12-29 17:31:49 +01:00
|
|
|
Changes in 4.1.4
|
|
|
|
|
|
|
|
|
|
1) Fix do_test() to accept 0 and to use the same mask as
|
|
|
|
|
Shorewall-shell
|
|
|
|
|
|
2008-01-05 00:20:09 +01:00
|
|
|
2) The compilation date recorded in the firewall.conf file produced by
|
|
|
|
|
Shorewall-perl was previously mangled.
|
|
|
|
|
|
2008-01-05 16:59:15 +01:00
|
|
|
3) Don't fully populate /etc/shorewall under Cygwin
|
|
|
|
|
|
2008-01-15 04:48:37 +01:00
|
|
|
4) Fix the DNAT/REDIRECT fiasco.
|
|
|
|
|
|
|
|
|
|
5) Allow interface lists in the masq and nat files.
|
2008-01-12 02:32:18 +01:00
|
|
|
|
2008-01-20 00:36:27 +01:00
|
|
|
6) Allow loose match of interface names used in masq, nat and netmap.
|
|
|
|
|
|
2008-01-23 00:48:03 +01:00
|
|
|
7) Allow loose match of interface names in match_source_dev().
|
|
|
|
|
|
|
|
|
|
8) Implement 'sourceonly' host entry option.
|
|
|
|
|
|
2008-01-25 00:45:24 +01:00
|
|
|
9) Make all non-firewall zones "complex".
|
|
|
|
|
|
2007-12-07 22:17:14 +01:00
|
|
|
Changes in 4.1.3
|
|
|
|
|
|
|
|
|
|
1) Fix NFLOG/ULOG upcasing problem.
|
|
|
|
|
|
|
|
|
|
2) Fix STARTUP_LOG without LOG_VERBOSITY.
|
|
|
|
|
|
|
|
|
|
3) Fix LOG_VERBOSITY without STARTUP_LOG.
|
|
|
|
|
|
2007-12-15 00:13:36 +01:00
|
|
|
4) Fall back to /bin/sh if SHOREWALL_SHELL isn't viable.
|
|
|
|
|
|
2007-12-15 19:49:05 +01:00
|
|
|
5) Fix mis-handling of <interface>:<mac>
|
|
|
|
|
|
2007-12-17 23:36:08 +01:00
|
|
|
6) Add better diagnostic when not running as root.
|
|
|
|
|
|
2007-12-19 00:55:20 +01:00
|
|
|
7) Detect lack of interfaces and IPv4 zones.
|
|
|
|
|
|
2007-12-21 23:56:36 +01:00
|
|
|
8) Classify marked traffic using tc filter rules.
|
|
|
|
|
|
2007-12-26 17:35:02 +01:00
|
|
|
9) Allow installation on Cygwin.
|
|
|
|
|
|
2007-11-23 22:33:36 +01:00
|
|
|
Changes in 4.1.2
|
|
|
|
|
|
|
|
|
|
1) Enhanced Operational Logging
|
|
|
|
|
|
2007-11-26 23:34:36 +01:00
|
|
|
2) Fix undefined value when config file missing.
|
|
|
|
|
|
|
|
|
|
3) Handle exit status 4 from iptables.
|
|
|
|
|
|
2007-12-01 18:09:38 +01:00
|
|
|
4) Fix formatting of macro headings (again).
|
|
|
|
|
|
|
|
|
|
5) Update sample shorewall.conf files with new options.
|
|
|
|
|
|
2007-12-04 01:02:35 +01:00
|
|
|
6) Correct Jabber macro names.
|
|
|
|
|
|
|
|
|
|
7) Tighten up HIGH_ROUTE_MARKS in the OUTPUT chain.
|
2007-12-01 18:09:38 +01:00
|
|
|
|
2007-12-06 18:26:37 +01:00
|
|
|
8) Add 'nomarks' OPTION to tcdevices.
|
2007-12-05 19:52:38 +01:00
|
|
|
|
2007-12-07 00:49:21 +01:00
|
|
|
9) Add COMMENTs to macros.
|
|
|
|
|
|
2007-11-20 17:01:27 +01:00
|
|
|
Changes in 4.1.1
|
|
|
|
|
|
|
|
|
|
1) Fix ULOG/NFLOG output.
|
|
|
|
|
|
|
|
|
|
2) Fix NFQUEUE(<queue-num>) in Policy file.
|
|
|
|
|
|
2007-11-21 17:28:36 +01:00
|
|
|
3) Allow specifying an address in the Providers file.
|
|
|
|
|
|
2007-11-19 22:15:36 +01:00
|
|
|
Changes in 4.1.0.
|
2007-11-16 02:21:33 +01:00
|
|
|
|
2007-11-19 22:15:36 +01:00
|
|
|
1) Add 'shared' provider option.
|
2007-11-16 02:21:33 +01:00
|
|
|
|
2007-11-19 22:15:36 +01:00
|
|
|
2) Allow refresh of entire table and refresh mangle by default.
|
2007-11-16 00:24:54 +01:00
|
|
|
|
2007-11-19 22:15:36 +01:00
|
|
|
3) Add NFLOG support.
|
2007-11-16 00:24:54 +01:00
|
|
|
|
2007-11-19 22:15:36 +01:00
|
|
|
4) Implement alternative syntax for params.
|
2007-11-16 00:24:54 +01:00
|
|
|
|
|
|
|
|
5) Add support for embedded shell and Perl scripts.
|
|
|
|
|
|
|
|
|
|
6) Add support for manual chains.
|
|
|
|
|
|
|
|
|
|
7) Don't require GATEWAY in tunnels file.
|
|
|
|
|
|
|
|
|
|
8) Fix HIGH_ROUTE_MARKS fsck-up.
|
|
|
|
|
|
|
|
|
|
9) Fix Makefiles for VARDIR
|
|
|
|
|
|
|
|
|
|
10) Add -t option to hits command.
|
|
|
|
|
|
|
|
|
|
11) Add DONT_LOAD option
|
|
|
|
|
|
|
|
|
|
12) Add support for --random.
|
