shorewall_code

Author	SHA1	Message	Date
Tom Eastep	ceff8adc78	Restore duplicate interface detection in tcinterfaces. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-18 16:11:30 -08:00
Tom Eastep	3a2173ddb4	Some code cleanup in Tc.pm. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-18 15:56:59 -08:00
Tom Eastep	ea8be87720	Use Hex representation of device numbers > 9 in simple TC. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-18 12:53:01 -08:00
Tom Eastep	4e0225a4c3	Update Documentation for per-IP rate limiting fixes. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-18 07:12:36 -08:00
Tom Eastep	ea8a6c837f	Document per-IP rate change Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-17 15:41:12 -08:00
Tom Eastep	00b0490cd7	Create a unique hashtable for each instance of a per-IP rate limit Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-17 15:39:21 -08:00
Tom Eastep	625963a4f0	Final (hopefully) fix for SFQ handle assignment Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-17 09:02:18 -08:00
Tom Eastep	41bb0782a3	Another tweak to SFQ handle assignment. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-17 08:06:27 -08:00
Tom Eastep	5649dbf9a8	Improve assignment of class ID for SFQ classses Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-17 07:41:30 -08:00
Tom Eastep	115ce7b87d	Update release documents for bug fixes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-17 06:49:13 -08:00
Tom Eastep	eaafeb8c2b	Add --hashlimit-htable-expire if the units are minutes or larger	2010-02-17 06:43:52 -08:00
Tom Eastep	375160d733	Avoid duplicate SFQ class numbers	2010-02-17 06:43:16 -08:00
Tom Eastep	167b29c2c5	Bump module version in Compiler.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 14:24:52 -08:00
Tom Eastep	8aaf4aab3a	Don't create log chain for 'RETURN' rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 14:24:00 -08:00
Tom Eastep	4546394531	Cosmetic changes to Compiler.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 14:07:35 -08:00
Tom Eastep	5d08d51fe5	Add $remote_fs to Required-Start and Required-Stop for Debian Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-15 08:39:50 -08:00
Tom Eastep	12d3420a5d	Detect FLOW_FILTER when LOAD_HELPERS_ONLY=No	2010-02-14 10:34:19 -08:00
Tom Eastep	0624451537	Fix for OLD_HL_MATCH. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-14 07:22:12 -08:00
Tom Eastep	5e9ecf1491	Update version of Config module	2010-02-13 11:00:34 -08:00
Tom Eastep	50d246c8be	A little cleanup of compiler.pl Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-13 10:03:32 -08:00
Tom Eastep	ec95e5b32c	Document fix for rate limiting of NAT rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-13 09:11:14 -08:00
Tom Eastep	1258149e0e	Don't apply rate limiting twice in NAT rules Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-13 07:21:27 -08:00
Tom Eastep	ea5a6c79bc	Bump CAPVERSION	2010-02-11 16:22:47 -08:00
Tom Eastep	5a96771e07	Start 4.4.8 Beta 1	2010-02-11 15:46:57 -08:00
Tom Eastep	757fea7467	Update documentation regarding FLOW_FILTER Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-11 14:35:12 -08:00
Tom Eastep	b35f20b403	Avoid CAPVERSION bump to implement FLOW_FILTER detection Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-11 07:29:41 -08:00
Tom Eastep	b8c195f570	Accurately detect 'flow' availability Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-10 14:50:26 -08:00
Tom Eastep	b1c64913b4	Reformat column header in tcinterfaces	2010-02-10 12:00:17 -08:00
Tom Eastep	433fc385bc	'bridge' implies 'routeback' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-09 14:04:36 -08:00
Tom Eastep	21d4c8ba21	Document workaround for lack of 'flow' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-08 10:03:10 -08:00
Tom Eastep	46e2afcf16	Ignore TYPE if old distro Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-08 07:13:20 -08:00
Tom Eastep	b45a70f98a	Make 'nosmurfs' work correctly on IPv6 with Address Type Match Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-08 07:12:58 -08:00
Tom Eastep	18d03a61f5	Make 'nosmurfs' work with Address Type Match on IPv6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-07 08:43:31 -08:00
Tom Eastep	11a2ec9f7c	Update version to 4.4.7	2010-02-05 16:40:48 -08:00
Tom Eastep	e64af57cae	Give smurf logging chain a fixed name. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 16:04:59 -08:00
Tom Eastep	f4e175f149	Fix IPv6 'nosmurfs'. Make 'nosmurfs' logging more efficient. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 15:03:15 -08:00
Tom Eastep	97f3e5b8de	Clear known problems. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 07:18:55 -08:00
Tom Eastep	52880a8822	Clean up generate_matrix() fix. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-03 06:57:51 -08:00
Tom Eastep	9d288241da	Fix issues in generate_matrix(). Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 19:42:54 -08:00
Tom Eastep	096fb29203	DEBUG and PURGE -- take 2. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 13:57:50 -08:00
Tom Eastep	1d8a7ad09f	Clear DEBUG and PURGE shell variables Delete a blank line Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 13:55:29 -08:00
Tom Eastep	753eb97667	Update version to 4.4.7 RC2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 10:30:53 -08:00
Tom Eastep	ede17e2da0	Set ADD_IP_ALIASES=No in all shorewall.conf files. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-02 08:16:41 -08:00
Tom Eastep	dd60f04a9f	Work around lack of MARK Target support	2010-02-01 16:22:57 -08:00
Tom Eastep	58f6e57286	Update known problems	2010-02-01 16:19:36 -08:00
Tom Eastep	d354560863	Finish last change. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-01 14:25:51 -08:00
Tom Eastep	f0d101605b	Don't try to combine nat chains that include '-s'. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-02-01 14:24:07 -08:00
Tom Eastep	1981372c94	Make search for "-j ACCEPT" a little tighter Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-31 08:27:30 -08:00
Tom Eastep	f2709dd525	Correct release notes to match implementation Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-30 20:31:39 -08:00
Tom Eastep	3d39a47582	Set $have_ipsec after completing parse of the hosts file. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-30 07:26:35 -08:00
Tom Eastep	659f774451	Sort %detect_capability for easier verification. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-29 13:09:53 -08:00
Tom Eastep	9d2decd26d	Modify determine_capabilities to use detect_capability() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-29 10:38:22 -08:00
Tom Eastep	b8ec2be516	Clean up handling of %detect_capability Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-28 16:39:45 -08:00
Tom Eastep	ecc7861115	Validate LOAD_HELPERS_ONLY before detecting capabilities. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-28 08:05:24 -08:00
Tom Eastep	ebd847ef70	Don't display capabilties if they have not been determined Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-28 08:04:54 -08:00
Tom Eastep	05f2bb4b3a	Correction to last patch. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 17:52:27 -08:00
Tom Eastep	103a1660bc	Update release notes for RC 1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 12:57:47 -08:00
Tom Eastep	9d25318d80	Fix detection of HASHLIMIT_MATCH on old kernels. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 12:53:31 -08:00
Tom Eastep	be117f6638	Remove traffic shaping modules from 'helpers' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 10:37:42 -08:00
Tom Eastep	2069855e44	Restore module loader to lib.base (it is needed by shorecap). Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 10:09:12 -08:00
Tom Eastep	846715b009	Remove module loading code from lib.base Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 09:58:14 -08:00
Tom Eastep	54456de888	Update module versions Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 09:01:00 -08:00
Tom Eastep	c05c1a6f50	Update version to 4.4.7 RC1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-27 06:58:44 -08:00
Tom Eastep	1556002b54	A couple of tweaks to the LOAD_HELPERS_ONLY optimization change. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 15:59:31 -08:00
Tom Eastep	fb007bc1c7	Bump version to Beta 4	2010-01-25 12:25:01 -08:00
Tom Eastep	9408a114c6	Don't load unused modules when LOAD_HELPERS_ONLY=Yes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 10:50:49 -08:00
Tom Eastep	d933aa602b	Eliminate 'ORIGINAL_POLICY_MATCH' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 08:13:22 -08:00
Tom Eastep	90b68a05de	Don't export %capabilities Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-25 07:56:16 -08:00
Tom Eastep	bfdc6719c1	Fix DropBcasts() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-24 12:16:15 -08:00
Tom Eastep	e14d48c2cf	Bump version to 4.4.7-Beta3 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-22 16:46:29 -08:00
Tom Eastep	0d63182ab4	Fix ambiguous syntax in Config.pm Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-22 16:44:45 -08:00
Tom Eastep	199a50e1c7	Update version to 4.4.7 Beta 2 Add problems corrected to the release notes. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-22 10:35:27 -08:00
Tom Eastep	8def4d03c3	Document LOAD_HELPERS_ONLY=Yes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 20:17:25 -08:00
Tom Eastep	8f85c75264	Implement LOAD_HELPERS_ONLY for IPv6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:49:44 -08:00
Tom Eastep	efc43b1b24	Add implementation of LOAD_HELPERS_ONLY Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:49:35 -08:00
Tom Eastep	a248acb4d4	Add LOAD_HELPERS_ONLY Option Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:49:23 -08:00
Tom Eastep	4303ad0a3e	Add Module Helpers File Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 15:48:24 -08:00
Tom Eastep	10fe25050f	Add TC_PRIOMAP fix to change log Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 10:39:40 -08:00
Tom Eastep	a7d4207bf5	Add TC_PRIOMAP to shorewall*.conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-21 10:38:32 -08:00
Tom Eastep	6b9afd6a82	Remove "-common" from installer messages Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-19 08:28:08 -08:00
Tom Eastep	9788e057bf	Correct filenames in install.sh -- Take 2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 09:29:14 -08:00
Tom Eastep	1716995d75	Correct filenames in install.sh Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 09:20:09 -08:00
Tom Eastep	5cc2edf15a	Add the new tc files to the repository Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 09:03:05 -08:00
Tom Eastep	8798d3cdb4	Install tcinterfaces and tcpri Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-18 07:39:36 -08:00
Tom Eastep	4453bb7dc8	More updates from 4.5	2010-01-17 16:18:44 -08:00
Tom Eastep	eb790c6d89	Add IPMARK and TPROXY modules to load list	2010-01-17 15:51:19 -08:00
Tom Eastep	e119037dea	Make 'is_isable()' work with 'lo'	2010-01-17 15:38:20 -08:00
Tom Eastep	f072c10b18	Set version to 4.4.7 Beta1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 09:10:48 -08:00
Tom Eastep	957de4b057	Add new options to shorewall[6].conf Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:50:32 -08:00
Tom Eastep	146a738e4c	Document TPROXY Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:20:15 -08:00
Tom Eastep	f4102417ff	Shorewall::Config changes for TPROXY from 4.5 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:15:14 -08:00
Tom Eastep	07cdb8ca82	Backport TPROXY from 4.5 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-17 08:12:44 -08:00
Tom Eastep	47007c5dbd	Allow protocol to be expressed in octal or hex Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 14:20:47 -08:00
Tom Eastep	aad8ea837a	Allow port numbers to be specified in Hex Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 14:00:47 -08:00
Tom Eastep	5ec7759d81	Don't pass an undefined value to fatal_error when numeric conversion fails. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 12:35:18 -08:00
Tom Eastep	fddb85189e	Update release documents for functionality backported from 4.5. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 11:32:50 -08:00
Tom Eastep	4bf0b8e1dd	Add new configuration options and optimization changes from 4.5 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 09:53:53 -08:00
Tom Eastep	d5cc302ad9	Start 4.4.7 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-16 08:11:13 -08:00
Tom Eastep	45d975cb45	Final editing of release notes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-14 08:25:32 -08:00
Tom Eastep	6e998edd48	Correct typo -- TC_EXPORT -> TC_EXPERT Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-14 07:48:19 -08:00
Tom Eastep	ebf1e55609	Version to 4.4.6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 15:38:19 -08:00
Tom Eastep	1f1812b786	Document mDNS change in the release notes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 13:24:24 -08:00
Tom Eastep	bffe8ce4c6	Add multicast address to mDNS macro Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 13:20:07 -08:00
Tom Eastep	79f8031267	Add IGMP to the mDNS macro. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 13:03:34 -08:00
Tom Eastep	b8b7555ff9	Add "[ <device> ]" to "show tc" usage syntax Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 12:28:20 -08:00
Tom Eastep	880cd269c7	More mark geometry misses Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 12:16:40 -08:00
Tom Eastep	72de96760f	One more 0xFF -> $globals{TC_MASK} fix Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 12:11:00 -08:00
Tom Eastep	890cbfbd5d	Document TRACK_PROVIDERS change in the release notes. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 10:59:34 -08:00
Tom Eastep	10c5630786	A few more instances of TC_MASK Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 10:50:14 -08:00
Tom Eastep	555133fa3c	Bump version to 4.4.6-Beta2 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 10:14:31 -08:00
Tom Eastep	b4b6dce7c8	Add some comments Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 08:12:00 -08:00
Tom Eastep	4821d5e8b7	Change quantum to 1875 for simple TC SFQ. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-13 08:11:49 -08:00
Tom Eastep	55e41483de	Update Release Documents Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 20:12:31 -08:00
Tom Eastep	db2a1fe749	Add lib.cli changes to 4.4.6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 18:57:04 -08:00
Tom Eastep	f69a741691	Port Simplified TC to 4.4.6 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 17:01:20 -08:00
Tom Eastep	7e183e8eb4	Change version to 4.4.6-Beta1 Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 15:57:55 -08:00
Tom Eastep	57672d096c	Don't invoke 4.5 optimization under 4.4. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 15:47:14 -08:00
Tom Eastep	ae31a09e8b	Move code and add comments: - Declare all of the 'preview' helpers together in Chains.pm - Add some clarifying comments in the compiler. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 15:32:59 -08:00
Tom Eastep	4420eed8d7	Allow users to preview the generated ruleset. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 15:32:50 -08:00
Tom Eastep	818dfb6295	Document 'show macro' in the release docs. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 13:46:14 -08:00
Tom Eastep	6c62f14749	Add 'show macro' command Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 13:40:25 -08:00
Tom Eastep	4464094773	Update release documents for DHCPfwd Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 07:51:20 -08:00
Tom Eastep	b6a7723c05	Add DHCPfwd macro Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 07:48:55 -08:00
Tom Eastep	baa893773d	Apply Macro changes from Tuomo Soini Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-12 07:35:41 -08:00
Tom Eastep	6b085b7897	Update module versions Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 18:54:23 -08:00
Tom Eastep	5b4e9eb8e6	Revert change with migration issue Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 15:30:33 -08:00
Tom Eastep	0b549c7a15	Suppress mark geometry output Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 14:55:42 -08:00
Tom Eastep	fc8bfdcbf9	Update release documents Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 14:49:45 -08:00
Tom Eastep	1a74dbf93e	Add mark geometry changes to Shorewall::Chains and Shorewall::Compiler Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 14:39:22 -08:00
Tom Eastep	01293427f5	Add Mark Geometry changes to Shorewall::Tc Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 14:29:34 -08:00
Tom Eastep	4f5bb5e90b	Add new mark geometry changes to Shorewall::Providers Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 14:22:01 -08:00
Tom Eastep	d2d2912534	Add New mark geometry variables to Shorewall::Config Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-11 14:16:03 -08:00
Tom Eastep	4e50ea14ea	Back out EXMARK detection since it is unused in 4.4. Long overdue change to LIBVERSION Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-09 09:30:25 -08:00
Tom Eastep	b0feeb805d	Fix typo in clear_firewall() Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-09 07:28:57 -08:00
Tom Eastep	54b21365c2	Update release documents for [...] change Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-08 13:58:15 -08:00
Tom Eastep	e6c0c8f6b7	Allow both <...> and [...] for IPv6 Addresses Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-08 13:55:13 -08:00
Tom Eastep	83c2473d78	Correct typo in error message Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-06 08:26:13 -08:00
Tom Eastep	ca4eee3ae4	Correct handling of 'refresh' failures Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-06 08:01:46 -08:00
Tom Eastep	db819b1d3f	Update release notes to qualify when ipsets are restored by 'restore' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-06 07:57:02 -08:00
Tom Eastep	605da92eca	Don't try to restore ipsets when 'restore' is being used to recover from a start/restart failure. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-06 07:44:34 -08:00
Tom Eastep	d362af9fb6	Set CAPSVERSION to 4.4.7 just to be safe. Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-05 10:00:29 -08:00
Tom Eastep	ab1dc03986	Implement EXMARK capability Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-05 09:35:11 -08:00
Tom Eastep	d6123a8fbc	Improve IPSET_SAVE restore logic: - Call startup_error() rather than fatal_error() - Call startup_error when restore-ipsets file exists but Shorewall is running Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-04 14:23:33 -08:00
Tom Eastep	84051ca19a	Update the release notes regarding SAVE_IPSETS and save/restore Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-04 12:49:58 -08:00
Tom Eastep	4e0f9b2ef3	Make save/restore work with SAVE_IPSETS=Yes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-04 12:43:12 -08:00
Tom Eastep	e3c75dcfcc	Document the restoration of SAVE_IPSETS=Yes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-04 11:54:59 -08:00
Tom Eastep	1aa55779e2	Re-enable SAVE_IPSETS=Yes Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-04 11:14:45 -08:00
Tom Eastep	b491eae3c0	Document Lenny/xtables-addons hack Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-04 10:20:40 -08:00
Tom Eastep	a1fd3aa7e3	Add a hack to work around a 'feature' of xtables-addons on Lenny Be more careful about checking for the ipset utility before saving the ipsets Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-04 10:15:27 -08:00
Tom Eastep	f306018159	Update all .conf files to specify 'MODULE_SUFFIX=ko' Signed-off-by: Tom Eastep <teastep@shorewall.net>	2010-01-02 09:33:27 -08:00

1 2 3 4 5 ...

2797 Commits