diff --git a/Shorewall/releasenotes.txt b/Shorewall/releasenotes.txt
index 84f6b2853..7633e1665 100755
--- a/Shorewall/releasenotes.txt
+++ b/Shorewall/releasenotes.txt
@@ -42,7 +42,9 @@ None.
Migration Considerations:
1) A number of macros have been split into two. The macros affected are:
+
IMAP LDAP NNTP POP3 SMTP
+
Each of these macros now handles only traffic on the native (plaintext)
port. There is a corresponding macro with S added to the end of the
name for the SSL version of the same protocol. Thus each macro results
@@ -64,7 +66,7 @@ Migration Considerations:
DNAT Z1!Z2 loc:192.168.1.4 ...
- That syntax has never worked correctly when Z2 is a dynamic zone.
+ That feature has never worked correctly when Z2 is a dynamic zone.
Furthermore, now that Shorewall supports exclusion lists, the capability
is redundant since the above rule can now be written in the form:
diff --git a/docs/traffic_shaping.xml b/docs/traffic_shaping.xml
index 3f63bf0dc..8164511c1 100644
--- a/docs/traffic_shaping.xml
+++ b/docs/traffic_shaping.xml
@@ -21,7 +21,7 @@
- 2006-01-04
+ 2006-02-27
2001-2006
@@ -266,6 +266,14 @@
to avoid queuing at your providers side. If you don't want any
traffic to be dropped set this to a value faster than your interface
maximum rate.
+
+ To determine the optimum value for this setting, we recommend
+ that you start by setting it significantly below your measured
+ download bandwidth (20% or so). While downloading, measure the
+ ping response time from the firewall to the
+ upstream router as you gradually increase the setting.The optimal
+ setting is at the point beyond which the ping
+ time increases sharply as you increase the setting.