From 16161d9cfc6df32f282163e9fda26e06d1681a33 Mon Sep 17 00:00:00 2001
From: Tom Eastep <teastep@shorewall.net>
Date: Fri, 30 Apr 2010 14:58:07 -0700
Subject: [PATCH] Add new trace types.

Signed-off-by: Tom Eastep <teastep@shorewall.net>
---
 Shorewall/Perl/Shorewall/Chains.pm | 6 ++++++
 Shorewall/releasenotes.txt         | 6 ++++++
 2 files changed, 12 insertions(+)

diff --git a/Shorewall/Perl/Shorewall/Chains.pm b/Shorewall/Perl/Shorewall/Chains.pm
index f1a8bf9f1..3a1233ed2 100644
--- a/Shorewall/Perl/Shorewall/Chains.pm
+++ b/Shorewall/Perl/Shorewall/Chains.pm
@@ -1096,6 +1096,8 @@ sub dont_optimize( $ ) {
 
     $chainref->{dont_optimize} = 1;
 
+    trace( $chainref, '!O', undef, '' );
+
     $chainref;
 }
 
@@ -1109,6 +1111,8 @@ sub dont_delete( $ ) {
 
     $chainref->{dont_optimize} = $chainref->{dont_delete} = 1;
 
+    trace( $chainref, '!OD', undef, '' );
+
     $chainref;
 }
 
@@ -1122,6 +1126,8 @@ sub dont_move( $ ) {
 
     $chainref->{dont_move} = 1;
 
+    trace( $chainref, '!M', undef, '' );
+
     $chainref;
 }
 
diff --git a/Shorewall/releasenotes.txt b/Shorewall/releasenotes.txt
index b9d6ef7b7..b7a99364d 100644
--- a/Shorewall/releasenotes.txt
+++ b/Shorewall/releasenotes.txt
@@ -340,6 +340,12 @@ None.
 	P - Change a built-in chains policy. Chains in the filter table
 	    are created with a DROP policy. All other builtin chains
 	    have policy ACCEPT.
+	!   Followed by one or more of the following to indicate that
+            the operation is not allowed on the chain.
+
+	    O - Optimize
+	    D - Delete
+	    M - Move rules
 
     Netfilter trace records indicate the table and chain being
     changed. If the change involves a particular rule, then the rule