Update known_problems

2009-08-28 15:58:14 -07:00 · 2009-08-28 15:58:14 -07:00 · 0b681a49ea
commit 0b681a49ea
parent de54c54ada
1 changed files with 22 additions and 1 deletions
--- a/Shorewall/known_problems.txt
+++ b/Shorewall/known_problems.txt
@ -1 +1,22 @@
-There are no known problems in Shorewall version 4.4.0.2
+1)  If ULOG is specified as the LOG LEVEL in the all->all policy, the
+    rules at the end of the INPUT and OUTPUT chains still use the
+    LOG target rather than ULOG.
+
+    You can work around this problem by adding two additional policies
+    before the all->all one:
+
+    	   all 		$FW	DROP	ULOG
+	   $FW		all	REJECT	ULOG
+
+    This problem was corrected in Shorewall 4.4.0.1.
+
+2)  Use of CONTINUE policies with a nested IPSEC zone was broken in
+    some cases.
+
+    This problem was corrected in Shorewall 4.4.0.1.
+
+3)  If MULTICAST=Yes in shorewall.conf, multicast traffic is
+    incorrectly exempted from ACCEPT policies.
+
+    This problem was corrected in Shorewall 4.4.0.2.
+