forked from extern/shorewall_code
Update website
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1823 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep
parent
de16aad85b
commit
047ce9d18d
@ -30,7 +30,6 @@ Documentation License</a></span>
|
||||
<p class="pubdate">2004-11-09<br>
|
||||
</p>
|
||||
<hr style="width: 100%; height: 2px;">
|
||||
<p class="pubdate"></p>
|
||||
<h2>See the <a target="_top" href="http://shorewall.net/">Shorewall
|
||||
Website</a> for
|
||||
Shorewall information and documentation.<br>
|
||||
@ -254,9 +253,9 @@ Mailman</a><a href="http://www.gnu.org/software/mailman/mailman.html"><img
|
||||
href="http://razor.sourceforge.net/"><br>
|
||||
</a></li>
|
||||
<li><a href="http://www.spamassassin.org">SpamAssassin</a><a
|
||||
href="http://www.spamassassin.org"><img
|
||||
style="border: 0px solid ; width: 105px; height: 40px;"
|
||||
alt="SpamAssassin Logo" src="images/ninjalogo.png"></a></li>
|
||||
href="http://www.spamassassin.org"><img alt="SpamAssassin Logo"
|
||||
src="images/arrowlogo.png"
|
||||
style="border: 0px solid ; width: 200px; height: 89px;"></a></li>
|
||||
<li><a href="http://www.postfix.org">Postfix</a><a
|
||||
href="http://www.postfix.org"><img
|
||||
style="border: 0px solid ; width: 130px; height: 91px;"
|
||||
|
||||
@ -31,9 +31,9 @@ to 2.x releases of Shorewall. For older versions:</p>
|
||||
<p>The current 2.0 Stable Release is 2.0.13 -- Here are the <a
|
||||
href="http://shorewall.net/pub/shorewall/2.0/shorewall-2.0.13/releasenotes.txt">release
|
||||
notes</a>.<br>
|
||||
The current Developement Release is 2.2.0 Beta 6 -- Here
|
||||
The current Developement Release is 2.2.0 Beta 7 -- Here
|
||||
are the <a
|
||||
href="http://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta6/releasenotes.txt">release
|
||||
href="http://shorewall.net/pub/shorewall/2.2-Beta/shorewall-2.2.0-Beta7/releasenotes.txt">release
|
||||
notes</a>.<br>
|
||||
<br>
|
||||
Copyright © 2001-2004 Thomas M. Eastep</p>
|
||||
@ -44,7 +44,7 @@ Foundation; with no Invariant Sections, with no Front-Cover, and with
|
||||
no Back-Cover Texts. A copy of the license is included in the section
|
||||
entitled “<a href="GnuCopyright.htm" target="_self">GNU
|
||||
Free Documentation License</a>”.</p>
|
||||
<p>2004-12-02</p>
|
||||
<p>2004-12-04</p>
|
||||
<hr>
|
||||
<h3>Table of Contents</h3>
|
||||
<p style="margin-left: 0.42in; margin-bottom: 0in;"><a href="#Intro">Introduction
|
||||
@ -59,7 +59,9 @@ Shorewall</a><br>
|
||||
Shorewall on Mandrake® with a two-interface setup?</a><br>
|
||||
<a href="#License">License</a></p>
|
||||
<p style="margin-bottom: 0in; margin-left: 40px;"><a href="#2_0_10">News</a></p>
|
||||
<p style="margin-left: 0.83in; margin-bottom: 0in;"><a href="#2_0_13">Shorewall
|
||||
<p style="margin-left: 0.83in; margin-bottom: 0in;"><a
|
||||
href="#2_2_0_Beta7">Shorewall 2.2.0 Beta 7</a><br>
|
||||
<a href="#2_0_13">Shorewall
|
||||
2.0.13</a><br>
|
||||
<a href="#2_0_12">Shorewall
|
||||
2.0.12</a><br>
|
||||
@ -164,6 +166,109 @@ of the license is included in the section entitled "GNU Free
|
||||
Documentation License". </p>
|
||||
<hr>
|
||||
<h2><a name="News"></a>News</h2>
|
||||
<span style="font-weight: bold;"><a name="2_2_0_Beta7"></a>12/04/2004 -
|
||||
Shorewall 2.2.0 Beta 7<br>
|
||||
</span><br>
|
||||
Problems Corrected:<br>
|
||||
<ol>
|
||||
<li>The "shorewall add" and "shorewall delete" commands now work in a
|
||||
bridged environment. The syntax is:<br>
|
||||
<br>
|
||||
shorewall
|
||||
add <interface>[:<port>]:<address> <zone><br>
|
||||
shorewall
|
||||
delete <interface>[:<port>]:<address> <zone><br>
|
||||
<br>
|
||||
Examples:<br>
|
||||
<br>
|
||||
shorewall
|
||||
add br0:eth2:192.168.1.3 OK<br>
|
||||
shorewall
|
||||
delete br0:eth2:192.168.1.3 OK<br>
|
||||
<br>
|
||||
</li>
|
||||
<li>Previously, "shorewall save" created an out-of-sequence restore
|
||||
script. The commands saved in the user's /etc/shorewall/start script
|
||||
were executed prior to the Netfilter configuration being restored. This
|
||||
has been corrected so that "shorewall save" now places those commands
|
||||
at the end of the script.<br>
|
||||
<br>
|
||||
To accomplish this change, the "restore base" file
|
||||
(/var/lib/shorewall/restore-base) has been split into two files:<br>
|
||||
<br>
|
||||
/var/lib/shorewall/restore-base -- commands to be executed before
|
||||
Netfilter the configuration is restored.<br>
|
||||
<br>
|
||||
/var/lib/shorewall/restore-tail -- commands to be executed after the
|
||||
Netfilter configuration is restored.<br>
|
||||
<br>
|
||||
</li>
|
||||
<li>Previously, traffic from the firewall to a dynamic zone member
|
||||
host did not need to match the interface specified when the host was
|
||||
added to the zone. For example, if eth0:1.2.3.4 is added to dynamic
|
||||
zone Z then traffic out of any firewall interface to 1.2.3.4 will obey
|
||||
the fw->Z policies and rules. This has been corrected.</li>
|
||||
<li>Shorewall uses the temporary chain 'fooX1234' to probe iptables
|
||||
for detrmining which features are supported. Previously, if that chain
|
||||
happened to exist when Shorewall was run, capabilities were
|
||||
mis-detected.</li>
|
||||
</ol>
|
||||
New Features:<br>
|
||||
<ol>
|
||||
<li>You can now use the "shorewall show zones" command to display the
|
||||
current contents of the zones. This is particularly useful if you use
|
||||
dynamic zones (DYNAMIC_ZONES=Yes in shorewall.conf).<br>
|
||||
<br>
|
||||
Example:<br>
|
||||
<br>
|
||||
ursa:/etc/shorewall #
|
||||
shorewall show zones<br>
|
||||
Shorewall-2.2.0-Beta7 Zones
|
||||
at ursa - Sat Nov 27 11:18:25 PST 2004<br>
|
||||
<br>
|
||||
loc<br>
|
||||
|
||||
eth0:192.168.1.0/24<br>
|
||||
|
||||
eth1:1.2.3.4<br>
|
||||
net<br>
|
||||
|
||||
eth0:0.0.0.0/0<br>
|
||||
WiFi<br>
|
||||
|
||||
eth1:0.0.0.0/0<br>
|
||||
sec<br>
|
||||
|
||||
eth1:0.0.0.0/0<br>
|
||||
<br>
|
||||
ursa:/etc/shorewall #<br>
|
||||
<br>
|
||||
</li>
|
||||
<li>Variable expansion may now be used with the INCLUDE directive.<br>
|
||||
<br>
|
||||
Example:<br>
|
||||
<br>
|
||||
/etc/shorewall/params<br>
|
||||
<br>
|
||||
|
||||
FILE=/etc/foo/bar<br>
|
||||
<br>
|
||||
Any other config file:<br>
|
||||
<br>
|
||||
|
||||
INCLUDE $FILE<br>
|
||||
<br>
|
||||
</li>
|
||||
<li>The output of "shorewall status" now includes the results of "ip
|
||||
-stat link ls". This helps diagnose performance problems caused by link
|
||||
errors.</li>
|
||||
<li>Previously, when rate-limiting was specified in
|
||||
/etc/shorewall/policy (LIMIT:BURST column), any traffic which exceeded
|
||||
the specified rate was silently dropped. Now, if a log<br>
|
||||
level is given in the entry (LEVEL column) then drops are logged at
|
||||
that level at a rate of 5/min with a burst of 5.<br>
|
||||
</li>
|
||||
</ol>
|
||||
<span style="font-weight: bold;"><a name="2_0_13"></a>12/02/2004 -
|
||||
Shorewall 2.0.13<br>
|
||||
<br>
|
||||
|
||||
Loading…
Reference in New Issue
Block a user