holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity

Update release documents; add warning to match shorewall-perl error

Browse Source 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@6070 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep 2007-04-22 21:50:33 +00:00
parent c46b1a50d5
commit 2599bac576
3 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Shorewall-common/changelog.txt
View File

@ -16,6 +16,8 @@ Changes in 3.9.4
8) Fix 'routeback' on multi-zone interface.
9) Fix 'check -d'.
Changes in 3.9.3
1) Apply Steven Springl's patch for port checking.

3
Shorewall-common/lib.config
View File

@ -1995,6 +1995,9 @@ do_initialize() {
SAVE_IPSETS=$(added_param_value_no SAVE_IPSETS $SAVE_IPSETS)
MAPOLDACTIONS=$(added_param_value_yes MAPOLDACTIONS $MAPOLDACTIONS)
FASTACCEPT=$(added_param_value_no FASTACCEPT $FASTACCEPT)
[ -n "$FASTACCEPT" -a -z "$BLACKLISTNEWONLY" ] && error_message "WARNING: BLACKLISTNEWONLY=No does not work with FASTACCEPT=Yes"
IMPLICIT_CONTINUE=$(added_param_value_no IMPLICIT_CONTINUE $IMPLICIT_CONTINUE)
HIGH_ROUTE_MARKS=$(added_param_value_no HIGH_ROUTE_MARKS $HIGH_ROUTE_MARKS)
TC_EXPERT=$(added_param_value_no TC_EXPERT $TC_EXPERT)

13
Shorewall-common/releasenotes.txt
View File

@ -27,6 +27,15 @@ Problems corrected in 3.9.4.
4) The 'detectnets' option was accepted but did nothing.
5) Run-time errors were reported if interface or zone options were
missing a value.
6) The routeback option was accepted on multi-zone interfaces; the
documentation indicates that this option is not appropriate on such
interfaces.
7) 'shorewall check -d' resulted in a run-time error.
Other changes in Shorewall 3.9.4
1) The LOG_MARTIANS and ROUTE_FILTER options are not tri-valued.
@ -295,6 +304,10 @@ Migration Considerations:
k) The pre Shorewall-3.0 format of the zones file is not supported;
neither is the /etc/shorewall/ipsec file.
l) BLACKLISTNEWONLY=No is not permitted with FASTACCEPT=Yes. This
combination doesn't work in previous versions of Shorewall so
the Perl-based compiler simply rejects it.
2) An 'optional' option has been added to
/etc/shorewall/interfaces. When 'optional' is specified for an
interface, Shorewall will be silent when: