From 0d5a64866a4bee73ad7956a8ab24c1f045ec8fce Mon Sep 17 00:00:00 2001 From: Tom Eastep Date: Sat, 13 Jun 2009 07:32:16 -0700 Subject: [PATCH] Prepare website for 4.4.0 Beta 1 --- docs/Documentation_Index.xml | 2 +- web/Documentation.html | 5 +-- web/News.htm | 5 ++- web/download.htm | 64 ++++++++++++++++++++++++++++-------- web/shorewall_index.htm | 9 ++--- 5 files changed, 64 insertions(+), 21 deletions(-) diff --git a/docs/Documentation_Index.xml b/docs/Documentation_Index.xml index 3f304b3fb..da250d37b 100644 --- a/docs/Documentation_Index.xml +++ b/docs/Documentation_Index.xml @@ -5,7 +5,7 @@ - Shorewall 4.3 Documentation + Shorewall 4.4 Documentation diff --git a/web/Documentation.html b/web/Documentation.html index 87d3aeb7b..30c046fd3 100644 --- a/web/Documentation.html +++ b/web/Documentation.html @@ -21,7 +21,7 @@ license is included in the section entitled “GNU Free Documentation License”.

-

2009-02-27
+

2009-06-14


@@ -29,7 +29,8 @@ License”.
cellspacing="0"> - Shorewall 4.3
+ Shorewall +4.4 Beta
(Development)
Shorewall diff --git a/web/News.htm b/web/News.htm index a278e232f..b9cc43bce 100644 --- a/web/News.htm +++ b/web/News.htm @@ -23,9 +23,12 @@ license is included in the section entitled GNU Free Documentation License".

-

April 16, 2009
+

June 14, 2009

+

2009-06-13 Shorewall 4.4.0 Beta 1

+
Read the details at http://www1.shorewall.net/pub/shorewall/development/4.4/shorewall-4.4.0-Beta1/releasenotes.txt

2009-05-14 Shorewall 4.2.9

Problems corrected in Shorewall 4.2.9

1)  The Shorweall-perl 4.2.8 compiler did not rename the output script
    file with the result that:

     a) Shorewall would not start for the first time after
        installation.
     b) Configuration changes were apparently ignored.

2)   Placing a broadcast address in the BROADCAST column of
    /etc/shorewall/interfaces caused Shorewall-perl to generate an
    error:

        ERROR: Invalid BROADCAST address : /etc/shorewall/interfaces\
                 (line 225)

3)  When Shorewall could not determine the MAC address of of a gateway
    router where multiple providers are configured through the same
    interface, invalid iptables-restore input was generated. This
    resulted in an error message similar to the following:

        iptables-restore v1.3.5: Bad mac address `-j'

4)  Shorewall-perl was not processing the tcrules file when
    TC_ENABLED=No.

5)  When 'all' appeared in the SOURCE column of a DNAT rule, no rule to
    redirect output from the firewall itself was generated.
    
6)  The 'shorewall iprange' command failed to produce a minimal list of
    networks.

New Features in Shorewall 4.2.9

1)  Shorewall6 has now been validated on Ubuntu Hardy running kernel
    2.6.24. Shorewall6 is now supported on that kernel version.
diff --git a/web/download.htm b/web/download.htm index 9edadd66d..97ece8490 100644 --- a/web/download.htm +++ b/web/download.htm @@ -38,7 +38,7 @@

-
2009-06-01 +
2009-06-14

Package Information

Before trying to install, we strongly urge you to read and print a @@ -58,16 +58,15 @@ Choose this release if you value stability and good documentation.

  • The prior STABLE release series is 4.0. We release updates to this series to correct problems but usually don't make enhancements to it. 
    • -
  • The DEVELOPMENT release series is 4.3 +
  • The DEVELOPMENT release series is 4.4 Beta (found in the -'development' directory). Choose this release if you are very -experienced user and you are willing to help -test the code and report bugs. -
    • +'development' directory). Choose this release if you  want to help +shake out the bugs in the next stable release. For additional information, see this article about the Shorewall Release Model. -

    Beginning with Shorewall version 4.0.0 RC1, there are four related +

    In Shorewall version 4.0.*, there are four related packages:

    • Shorewall-shell -- the @@ -83,12 +82,12 @@ installations.
    • Shorewall-common -- A base package required by both Shorewall-shell and Shorewall-perl.
      • -
    • Shorewall Lite -- a +
    • Shorewall-lite -- a light-weight Shorewall version that will run compiled firewall scripts generated on a system with one of the compiler packages installed.
    -Beginning with Shorewall version 4.2.4, there are two additional +In Shorewall version 4.2.*, there are two additional packages that provide IPv6 support:
    • Shorewall6 -- Provides @@ -102,18 +101,57 @@ run compiled firewall scripts generated on a system with Shorewall6 installed.
    +In Shorewall version 4.4.*, the Shorewall-common, Shorewall-shell and +Shorewall-perl packages are discontinued and replaced with a single Shorewall package which combined the +functions of Shorewall-common and Shorewall-perl. The shell-based +compiler is retired. So with Shorewall 4.4 onward, there are four +packages:
    +
      +
    • Shorewall -- Includes +everything needed to create an IPv4 firewall.
      • +
    • Shorewall6 -- Requires +the Shorewall package and adds the capability to create an IPv6 +firewall.
      • +
    • Shorewall-lite -- a +light-weight Shorewall version that will run +compiled firewall scripts generated on a system with one of the +compiler packages installed.
      • +
    • Shorewall6-lite -- a +light-weight Shorewall6 version that will +run compiled firewall scripts generated on a system with Shorewall6 +installed.
      • +
    To summarize:
      -
    • On at least one system in your network, you must install one or +
    • If you are installing Shorewall 4.2 or earlier:
      +
      • +
        +
      • On at least one system in your network, you must install one or both of the compilers (Shorewall-shell and/or Shorewall-perl), the -Shorewall-common package and possibly the Shorewall6 package..
        • -
      • If you only have a single firewall, then that system should be +Shorewall-common package and possibly the Shorewall6 package.
        • +
      • If you only have a single firewall, then that system should be your firewall system.
        • -
      • If you have more than one firewall, you may wish to install one +
      • If you have more than one firewall, you may wish to install one or both of the compilers on a single administrative system and install Shorewall-lite and/or Shorewall6-lite on the firewalls. Doing so will allow for centralized administration and configuration of the firewalls.
        • +
      +
    • If you are installing Shorewall 4.4 or later:
      • +
        +
      • On at least one system in your network, you must install the +Shorewall package. If you need IPv6 firewalls then you must also +install the Shoreall6 package.
        • +
      • If you have a single firewall, then that system should be your +firewall system.
        • +
      • If you have more than one firewall, you may wish to install +Shorewall on a single administrative +system and install Shorewall-lite and/or Shorewall6-lite on the +firewalls. Doing so will allow for centralized administration and +configuration of the firewalls.
        +
        • +

    When RPM is used to install Shorewall, the compiler (shorewall-shell and/or shorewall-perl) and shorewall-common must be installed in a diff --git a/web/shorewall_index.htm b/web/shorewall_index.htm index d2c535aeb..70b25aade 100644 --- a/web/shorewall_index.htm +++ b/web/shorewall_index.htm @@ -47,7 +47,7 @@ -

    2009-05-14
    +
    2009-06-13

    Current Shorewall Releases

    @@ -90,14 +90,15 @@ Problems
    Release
    -
    4.3.10
    +     		4.4.0 +Beta 1
    		 Release + href="http://www1.shorewall.net/pub/shorewall/development/4.4/shorewall-4.4.0-Beta1/releasenotes.txt">Release Notes
         		Known + href="http://www1.shorewall.net/pub/shorewall/development/4.4/shorewall-4.4.0-Beta1/known_problems.txt">Known Problems