From e3c75dcfcc86c2fe1707c17086e6fbdcebd762ec Mon Sep 17 00:00:00 2001
From: Tom Eastep <teastep@shorewall.net>
Date: Mon, 4 Jan 2010 11:54:59 -0800
Subject: [PATCH] Document the restoration of SAVE_IPSETS=Yes

Signed-off-by: Tom Eastep <teastep@shorewall.net>
---
 Shorewall/changelog.txt    |  2 ++
 Shorewall/releasenotes.txt | 10 +++++++++-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/Shorewall/changelog.txt b/Shorewall/changelog.txt
index df42335a3..f4dabf400 100644
--- a/Shorewall/changelog.txt
+++ b/Shorewall/changelog.txt
@@ -4,6 +4,8 @@ Changes in Shorewall 4.4.6
 
 2)  Add a hack to work around a bug in Lenny + xtables-addons
 
+3)  Re-enable SAVE_IPSETS
+
 Changes in Shorewall 4.4.5
 
 1)  Fix 15-port limit removal change.
diff --git a/Shorewall/releasenotes.txt b/Shorewall/releasenotes.txt
index d7f1f6909..a23792327 100644
--- a/Shorewall/releasenotes.txt
+++ b/Shorewall/releasenotes.txt
@@ -235,7 +235,15 @@ None.
 
     e)  The 'routefilter' interface option can have values 0,1 or 2. If
     	'routefilter' is specified without a value, the value 1 is
-    	assumed. 
+    	assumed.
+
+2)  SAVE_IPSETS=Yes has been resurrected but in a different form. With
+    this setting, the contents of your ipsets are saved during 'shorewall
+    stop' and they are restored during 'shorewall start' and 'shorewall
+    restore'.
+
+    When SAVE_IPSETS=Yes, you may not include ipsets in your
+    /etc/shorewall/routestopped configuration.
 
 ----------------------------------------------------------------------------
                 N E W   F E A T U R E S   I N   4 . 4 . 0