Beta 1 prep

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@8492 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2008-05-04 00:18:47 +00:00 · 2008-05-04 00:18:47 +00:00 · f1567e6e3d
commit f1567e6e3d
parent 4d9473e8ca
39 changed files with 72 additions and 81 deletions
--- a/Shorewall-common/Makefile-lite
+++ b/Shorewall-common/Makefile-lite
@ -1,4 +1,4 @@
-#     Shorewall Packet Filtering Firewall Export Directory Makefile - V4.1
+#     Shorewall Packet Filtering Firewall Export Directory Makefile - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/README.txt
+++ b/Shorewall-common/README.txt
@ -1 +1 @@
-This is the Shorewall-common Development 4.1 branch of SVN.
+This is the Shorewall-common Development 4.2 branch of SVN.
--- a/Shorewall-common/changelog.txt
+++ b/Shorewall-common/changelog.txt
@ -1,3 +1,6 @@
 Changes in 4.1.9
 Changes in 4.1.8
 1)  Fix some parsing issues with absurd configurations.
--- a/Shorewall-common/firewall
+++ b/Shorewall-common/firewall
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-#     The Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.1
+#     The Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/init.sh
+++ b/Shorewall-common/init.sh
@ -1,7 +1,7 @@
 #!/bin/sh
 RCDLINKS="2,S41 3,S41 6,K41"
 #
-#     The Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.1
+#     The Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/lib.base
+++ b/Shorewall-common/lib.base
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.base
+# Shorewall 4.2 -- /usr/share/shorewall/lib.base
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/lib.cli
+++ b/Shorewall-common/lib.cli
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.cli.
+# Shorewall 4.2 -- /usr/share/shorewall/lib.cli.
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/lib.config
+++ b/Shorewall-common/lib.config
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.config
+# Shorewall 4.2 -- /usr/share/shorewall/lib.config
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/lib.dynamiczones
+++ b/Shorewall-common/lib.dynamiczones
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.dynamiczones
+# Shorewall 4.2 -- /usr/share/shorewall/lib.dynamiczones
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/releasenotes.txt
+++ b/Shorewall-common/releasenotes.txt
@ -1,7 +1,7 @@
-Shorewall 4.1 Patch Release 8.
+Shorewall 4.2.0 Beta 1.
 ----------------------------------------------------------------------------
-               R E L E A S E  4 . 1  H I G H L I G H T S
+               R E L E A S E  4 . 2  H I G H L I G H T S
 ----------------------------------------------------------------------------
 1) Support is included for multiple internet providers through the same
   ethernet interface.
@ -27,7 +27,7 @@ Migration Issues.
    originating on the firewall must be coded in the POSTROUTING table.
 2)  Previously, Shorewall did not range-check the value of the
-    VERBOSITY option in shorewall.conf. Beginning with Shorewall 4.1:
+    VERBOSITY option in shorewall.conf. Beginning with Shorewall 4.2:
    a) A VERBOSITY setting outside the range -1 through 2 is rejected.
    b) After the -v and -q options are applied, the resulting value is
@ -75,46 +75,15 @@ Migration Issues.
    Note that there is a new 'Rfc1918' macro that acts on addresses
    reserved by RFC 1918.
-Problems Corrected in Shorewall 4.1.8
+Problems Corrected in Shorewall 4.2.0 Beta 1
-1)  Changes to your configuration made by NULL_ROUTE_RFC1918=Yes are
+None.
    now reversed during 'shorewall stop' and 'shoreawll restart'.
-2)  The init script on Debian now reads and utilizes the value of the
+Other Changes in Shoreall 4.2.0 Beta 1.
    OPTIONS variable from /etc/default/shorewall[-lite].  Previously,
    the value of that variable was not passed to the shorewall[-lite]
    command.
-3)  With both Shorewall and Shorewall Lite, the 'start' and 'restart'
+New Features in Shorewall 4.2.
    commands now support a '-p' option. This option causes the
    Netfilter connection tracking table to be flushed (purged) as part
    of the operation. The 'conntrack' utility must be installed to use
    this option.
-Other Changes in Shoreall 4.1.8.
+1)  Shorewall 4.2 contains support for multiple Internet providers
 1)  When using Shorewall-perl, the CEIL and RATE columns must now
    contain arithmetic expressions consisting of:
    a) Numeric digits (Hex numbers not allowed).
    b) Parentheses.
    c) The arithmetic operators +-* and /.
    d) The word 'full'.
 2)  The installers (install.sh) now auto-detect a Cygwin environment
    and install under the current user's ID if OWNER and GROUP are not
    given.
 3)  The 'start' and 'restart' commands now support a '-p' (purge)
    option which cause all entries to be removed from the Netfilter
    conntrack table. In order to use this option, the 'conntrack'
    utility must be installed on your system. Although it is generally
    not installed by default, Most distributions have this utility in
    their repositories. 
 New Features in Shorewall 4.1.
 1)  Shorewall 4.1 contains support for multiple Internet providers
    through a single ethernet interface. Configuring two providers
    through a single interface differs from two providers through two
    interfaces in several ways.
@ -133,7 +102,7 @@ New Features in Shorewall 4.1.
    d) This feature requires Realm Match support in your kernel and
       iptables. If you use a capabilities file, you need to regenerate
-       the file with Shorewall 4.1 or Shorewall-lite 4.1.
+       the file with Shorewall 4.2 or Shorewall-lite 4.2.
    e) You must add route_rules entries for networks that are accessed
       through a particular provider.
@ -218,7 +187,7 @@ New Features in Shorewall 4.1.
 	ACCEPT:NFLOG(1,0,1) vpn fw tcp ssh,time,631,8080
-5)  Shorewall-perl 4.1 implements an alternative syntax for macro
+5)  Shorewall-perl 4.2 implements an alternative syntax for macro
    parameters and for the NFQUEUE queue number. Rather than following
    the macro name (or NFQUEUE) with a slash ("/") and the parameter,
    the parameter may be enclosed in parentheses.
@ -231,7 +200,7 @@ New Features in Shorewall 4.1.
    The old syntax will still be accepted but will cease to be documented
    in some future Shorewall release.
-6)  Shorewall 4.1 contains enhanced operational logging capabilities
+6)  Shorewall 4.2 contains enhanced operational logging capabilities
    through a set of related enhancements to Shorewall-common and
    Shorewall-perl. The enhancements are not supported by
    Shorewall-shell nor are they supported by Shorewall-lite except
@ -330,7 +299,7 @@ New Features in Shorewall 4.1.
    originating on the firewall must be coded in the POSTROUTING chain.
 8)  Previously, Shorewall did not range-check the value of the
-    VERBOSITY option in shorewall.conf. Beginning with Shorewall 4.1:
+    VERBOSITY option in shorewall.conf. Beginning with Shorewall 4.2:
    a) A VERBOSITY setting outside the range -1 through 2 is rejected.
    b) After the -v and -q options are applied, the resulting value is
@ -506,7 +475,7 @@ New Features in Shorewall 4.1.
    -  complex zones with exclusions had their own 'input' and
       'output' chains.
-    Beginning with Shorewall-perl 4.1, all non-firewall zones will be
+    Beginning with Shorewall-perl 4.2, all non-firewall zones will be
    treated as 'complex'. This will have the effect of one additional
    filter chain per zone but in most cases, the average number of
    filter rules traversed by a connection request will be reduced.
@ -851,3 +820,22 @@ New Features in Shorewall 4.1.
    Beginning with Shorewall 4.0.11 and 4.1.7, enabling of forwarding
    is deferred until after the rules are in place.
 36) When using Shorewall-perl, the CEIL and RATE columns must now
    contain arithmetic expressions consisting of:
    a) Numeric digits (Hex numbers not allowed).
    b) Parentheses.
    c) The arithmetic operators +-* and /.
    d) The word 'full'.
 37) The installers (install.sh) now auto-detect a Cygwin environment
    and install under the current user's ID if OWNER and GROUP are not
    given.
 38) The 'start' and 'restart' commands now support a '-p' (purge)
    option which cause all entries to be removed from the Netfilter
    conntrack table. In order to use this option, the 'conntrack'
    utility must be installed on your system. Although it is generally
    not installed by default, Most distributions have this utility in
    their repositories. 
--- a/Shorewall-common/shorewall
+++ b/Shorewall-common/shorewall
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-#     Shorewall Packet Filtering Firewall Control Program - V4.1
+#     Shorewall Packet Filtering Firewall Control Program - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-common/wait4ifup
+++ b/Shorewall-common/wait4ifup
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-#     Shorewall interface helper utility - V4.1
+#     Shorewall interface helper utility - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/README.txt
+++ b/Shorewall-perl/README.txt
@ -1,2 +1,2 @@
-This is the Shorewall-perl development 4.1 branch of SVN.
+This is the Shorewall-perl development 4.2 branch of SVN.
--- a/Shorewall-perl/Shorewall/Accounting.pm
+++ b/Shorewall-perl/Shorewall/Accounting.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Accounting.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Accounting.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Actions.pm
+++ b/Shorewall-perl/Shorewall/Actions.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Actions.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Actions.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Chains.pm
+++ b/Shorewall-perl/Shorewall/Chains.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Chains.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Chains.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Compiler.pm
+++ b/Shorewall-perl/Shorewall/Compiler.pm
@ -1,6 +1,6 @@
 #! /usr/bin/perl -w
 #
-#     The Shoreline Firewall4 (Shorewall-perl) Packet Filtering Firewall Compiler - V4.1
+#     The Shoreline Firewall4 (Shorewall-perl) Packet Filtering Firewall Compiler - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Config.pm
+++ b/Shorewall-perl/Shorewall/Config.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Config.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Config.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/IPAddrs.pm
+++ b/Shorewall-perl/Shorewall/IPAddrs.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/IPAddrs.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/IPAddrs.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Nat.pm
+++ b/Shorewall-perl/Shorewall/Nat.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Nat.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Nat.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Policy.pm
+++ b/Shorewall-perl/Shorewall/Policy.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Policy.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Policy.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Proc.pm
+++ b/Shorewall-perl/Shorewall/Proc.pm
@ -1,5 +1,5 @@
 #
-# Shorewall 4.1 -- /usr/share/shorewall-perl/Shorewall/Proc.pm
+# Shorewall 4.2 -- /usr/share/shorewall-perl/Shorewall/Proc.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Providers.pm
+++ b/Shorewall-perl/Shorewall/Providers.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Providers.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Providers.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Proxyarp.pm
+++ b/Shorewall-perl/Shorewall/Proxyarp.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Proxyarp.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Proxyarp.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Rules.pm
+++ b/Shorewall-perl/Shorewall/Rules.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Rules.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Rules.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Tc.pm
+++ b/Shorewall-perl/Shorewall/Tc.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Tc.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Tc.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Tunnels.pm
+++ b/Shorewall-perl/Shorewall/Tunnels.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Tunnels.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Tunnels.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/Shorewall/Zones.pm
+++ b/Shorewall-perl/Shorewall/Zones.pm
@ -1,5 +1,5 @@
 #
-# Shorewall-perl 4.1 -- /usr/share/shorewall-perl/Shorewall/Zones.pm
+# Shorewall-perl 4.2 -- /usr/share/shorewall-perl/Shorewall/Zones.pm
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-perl/compiler.pl
+++ b/Shorewall-perl/compiler.pl
@ -1,6 +1,6 @@
 #! /usr/bin/perl -w
 #
-#     The Shoreline Firewall4 (Shorewall-perl) Packet Filtering Firewall Compiler - V4.1
+#     The Shoreline Firewall4 (Shorewall-perl) Packet Filtering Firewall Compiler - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/README.txt
+++ b/Shorewall-shell/README.txt
@ -1 +1 @@
-This is the Shorewall-shell Development 4.1 branch of SVN.
+This is the Shorewall-shell Development 4.2 branch of SVN.
--- a/Shorewall-shell/lib.accounting
+++ b/Shorewall-shell/lib.accounting
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.accounting
+# Shorewall 4.2 -- /usr/share/shorewall/lib.accounting
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/lib.actions
+++ b/Shorewall-shell/lib.actions
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.actions
+# Shorewall 4.2 -- /usr/share/shorewall/lib.actions
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/lib.maclist
+++ b/Shorewall-shell/lib.maclist
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.tcrules
+# Shorewall 4.2 -- /usr/share/shorewall/lib.tcrules
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/lib.nat
+++ b/Shorewall-shell/lib.nat
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.nat
+# Shorewall 4.2 -- /usr/share/shorewall/lib.nat
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/lib.providers
+++ b/Shorewall-shell/lib.providers
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.providers
+# Shorewall 4.2 -- /usr/share/shorewall/lib.providers
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/lib.tc
+++ b/Shorewall-shell/lib.tc
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.tc
+# Shorewall 4.2 -- /usr/share/shorewall/lib.tc
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/lib.tcrules
+++ b/Shorewall-shell/lib.tcrules
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.tcrules
+# Shorewall 4.2 -- /usr/share/shorewall/lib.tcrules
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/lib.tunnels
+++ b/Shorewall-shell/lib.tunnels
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-# Shorewall 4.1 -- /usr/share/shorewall/lib.tunnels
+# Shorewall 4.2 -- /usr/share/shorewall/lib.tunnels
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
--- a/Shorewall-shell/prog.header
+++ b/Shorewall-shell/prog.header
@ -1,6 +1,6 @@
 #!/bin/sh
 #
-#     Generated by the Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.1
+#     Generated by the Shoreline Firewall (Shorewall) Packet Filtering Firewall - V4.2
 #
 #     This program is under GPL [http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt]
 #
`@ -1 +1 @@`
	`This is the Shorewall-common Development 4.1 branch of SVN.`	`This is the Shorewall-common Development 4.2 branch of SVN.`
`@ -1,2 +1,2 @@`
	`This is the Shorewall-perl development 4.1 branch of SVN.`	`This is the Shorewall-perl development 4.2 branch of SVN.`
`@ -1 +1 @@`
	`This is the Shorewall-shell Development 4.1 branch of SVN.`	`This is the Shorewall-shell Development 4.2 branch of SVN.`