Doc updates

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1801 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-12-04 18:37:02 +00:00 · 2004-12-04 18:37:02 +00:00 · 3e6aae75d8
commit 3e6aae75d8
parent 8927e62047
2 changed files with 39 additions and 2 deletions
--- a/Shorewall-docs2/FAQ.xml
+++ b/Shorewall-docs2/FAQ.xml
@ -17,7 +17,7 @@
      </author>
    </authorgroup>

-    <pubdate>2004-11-24</pubdate>
+    <pubdate>2004-12-04</pubdate>

    <copyright>
      <year>2001-2004</year>
@ -907,6 +907,21 @@ LOGBURST=""</programlisting>
          </listitem>
        </varlistentry>

+        <varlistentry>
+          <term>@&lt;source&gt;2&lt;dest&gt;</term>
+
+          <listitem>
+            <para>You have a policy for traffic from &lt;<emphasis
+            role="bold">source</emphasis>&gt; to &lt;<emphasis
+            role="bold">dest</emphasis>&gt; that specifies TCP connection rate
+            limiting (value in the LIMIT:BURST column). The logged packet
+            exceeds that limit and was dropped. Note that these log messages
+            themselves are severely rate-limited so that a syn-flood won't
+            generate a secondary DOS because of excessive log message. These
+            log messages were added in Shorewall 2.2.0 Beta 7.</para>
+          </listitem>
+        </varlistentry>
+
        <varlistentry>
          <term>&lt;interface&gt;_mac</term>

--- a/Shorewall-docs2/errata.xml
+++ b/Shorewall-docs2/errata.xml
@ -13,7 +13,7 @@
      </author>
    </authorgroup>

-    <pubdate>2004-11-12</pubdate>
+    <pubdate>2004-12-02</pubdate>

    <copyright>
      <year>2001-2004</year>
@ -90,6 +90,28 @@
  <section>
    <title>Problems in Version 2.0</title>

+    <section>
+      <title>Shorewall 2.0.12</title>
+
+      <itemizedlist>
+        <listitem>
+          <para>The "shorewall add" command produces the error message:</para>
+
+          <programlisting>/usr/share/shorewall/firewall: line 1: match_destination_hosts: command not found</programlisting>
+
+          <para>You can correct the problem yourself by editing
+          /usr/share/shorewall/firewall and on line 5805, replace <emphasis
+          role="bold">match_destination_hosts</emphasis> with <emphasis
+          role="bold">match_dest_hosts</emphasis>.</para>
+        </listitem>
+      </itemizedlist>
+
+      <para>Corrected in <ulink
+      url="http://shorewall.net/pub/shorewall/errata/2.0.12/firewall">this
+      firewall script</ulink> which may be installed in
+      /usr/share/shorewall/firewall as described above.</para>
+    </section>
+
    <section>
      <title>Shorewall 2.0.10</title>