holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Fix detection of FLOW_FILTER when LOAD_HELPERS_ONLY=No

Browse Source 
Signed-off-by: Tom Eastep <teastep@shorewall.net>
This commit is contained in:
Tom Eastep 2010-02-14 07:55:41 -08:00
parent 09f8011a49
commit 11b86e99e6
4 changed files with 22 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
Shorewall/Perl/Shorewall/Config.pm
View File

@ -2468,6 +2468,7 @@ sub determine_capabilities() {
$capabilities{GOTO_TARGET} = detect_capability( 'GOTO_TARGET' ); $capabilities{GOTO_TARGET} = detect_capability( 'GOTO_TARGET' );
$capabilities{LOG_TARGET} = detect_capability( 'LOG_TARGET' ); $capabilities{LOG_TARGET} = detect_capability( 'LOG_TARGET' );
$capabilities{LOGMARK_TARGET} = detect_capability( 'LOGMARK_TARGET' ); $capabilities{LOGMARK_TARGET} = detect_capability( 'LOGMARK_TARGET' );
$capabilities{FLOW_FILTER} = detect_capability( 'FLOW_FILTER' );
qt1( "$iptables -F $sillyname" ); qt1( "$iptables -F $sillyname" );

2
Shorewall/changelog.txt
View File

@ -2,6 +2,8 @@ Changes in Shorewall 4.4.7.2
1) Fix detection of "Old hashlimit match". 1) Fix detection of "Old hashlimit match".
2) Detect FLOW_FILTER when LOAD_HELPERS_ONLY=No
Changes in Shorewall 4.4.7.1 Changes in Shorewall 4.4.7.1
1) Don't apply rate limiting twice in NAT rules. 1) Don't apply rate limiting twice in NAT rules.

13
Shorewall/known_problems.txt
View File

@ -3,3 +3,16 @@
the values given in the rule. the values given in the rule.
Corrected in 4.4.7.1 Corrected in 4.4.7.1
2) Detection of the 'Old hashlimit match' capability was broken in
/sbin/shorewall, /sbin/shorewall-lite and in the IPv4 version of
shorecap. This problem only affects users of older distributions
such as RH3L5 and derivatives.
Corrected in 4.4.7.2
2) On older distributions such as RHEL5 and derivatives, when
LOAD_HELPERS_ONLY=No, Shorewall would fail to start if a TYPE was
specified in /etc/shorewall/tcinterfaces.
Corrected in 4.4.7.2

8
Shorewall/releasenotes.txt
View File

@ -1,4 +1,4 @@
Shorewall 4.4.7 Patch Release 1. Shorewall 4.4.7 Patch Release 2.
---------------------------------------------------------------------------- ----------------------------------------------------------------------------
R E L E A S E 4 . 4 H I G H L I G H T S R E L E A S E 4 . 4 H I G H L I G H T S
@ -184,13 +184,17 @@ Shorewall 4.4.7 Patch Release 1.
one from the release (not recommended). one from the release (not recommended).
---------------------------------------------------------------------------- ----------------------------------------------------------------------------
P R O B L E M S C O R R E C T E D I N 4 . 4 . 7 . 1 P R O B L E M S C O R R E C T E D I N 4 . 4 . 7 . 2
---------------------------------------------------------------------------- ----------------------------------------------------------------------------
1) Detection of the 'Old hashlimit match' capability was broken in 1) Detection of the 'Old hashlimit match' capability was broken in
/sbin/shorewall, /sbin/shorewall-lite and in the IPv4 version of /sbin/shorewall, /sbin/shorewall-lite and in the IPv4 version of
shorecap. shorecap.
2) On older distributions such as RHEL5 and derivatives, when
LOAD_HELPERS_ONLY=No, Shorewall would fail to start if a TYPE was
specified in /etc/shorewall/tcinterfaces.
---------------------------------------------------------------------------- ----------------------------------------------------------------------------
P R O B L E M S C O R R E C T E D I N 4 . 4 . 7 . 1 P R O B L E M S C O R R E C T E D I N 4 . 4 . 7 . 1
---------------------------------------------------------------------------- ----------------------------------------------------------------------------