diff --git a/Shorewall/changelog.txt b/Shorewall/changelog.txt index 4ec218f95..b26a53e9c 100644 --- a/Shorewall/changelog.txt +++ b/Shorewall/changelog.txt @@ -8,6 +8,8 @@ Changes in Shorewall 4.4.21.1 4) Fix -j SNAT --to-address ... --persistent +5) Fix LOGMARK. + Changes in Shorewall 4.4.21 Final 1) Update release documents. diff --git a/Shorewall/known_problems.txt b/Shorewall/known_problems.txt index dd20be6ea..474789d26 100644 --- a/Shorewall/known_problems.txt +++ b/Shorewall/known_problems.txt @@ -4,11 +4,23 @@ 2) A harmless 'unitialized variable' diagnostic is issued by the compiler when it is displaying the capabilities. + Corrected in Shorewall 4.4.21. + 3) As the result of a typo, an orphan filter chain named FORWAR can be created under rare circumstances. This chain is deleted by OPTIMIZE level 4. -3) The SNAT options --persistent and --randomize (/etc/shorewall/masq) + Corrected in Shorewall 4.4.21. + +4) The SNAT options --persistent and --randomize (/etc/shorewall/masq) generate invalid iptables input. + Corrected in Shorewall 4.4.21. + +5) The LOGMARK log level was generated invalid iptables input making + it unusable. + + Corrected in Shorewall 4.4.21. + + diff --git a/Shorewall/releasenotes.txt b/Shorewall/releasenotes.txt index c3984cbf6..2d9e7fba8 100644 --- a/Shorewall/releasenotes.txt +++ b/Shorewall/releasenotes.txt @@ -26,6 +26,22 @@ VI. PROBLEMS CORRECTED AND NEW FEATURES IN PRIOR RELEASES 3) The SNAT options --persistent and --randomize now work properly (/etc/shorewall/masq). +4) The LOGMARK log level was previously generated invalid iptables + input making it unusable. That has been corrected. + + The syntax for LOGMARK is now: + + LOGMARK() + + where is a syslog priority (1-7 or debug, info, notice, + etc.). + + Example rule: + + #ACTION SOURCE DEST PROTO DEST + # PORT(S) + LOG:LOGMARK(info) lan dmz udp 1234 + 4.4.21 Final 1) All problems corrections included in Shorewall 4.4.20.1 - 4.4.20.3