forked from extern/shorewall_code
47c914a86b
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@727 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
66 lines
1.8 KiB
Plaintext
Executable File
66 lines
1.8 KiB
Plaintext
Executable File
Changes since 1.4.6
|
|
|
|
1) Added Smart Blacklisting.
|
|
|
|
2) Move determine_capabilities call to do_initialize to ensure that
|
|
MANGLE_ENABLED is set before it is tested.
|
|
|
|
3) Fixed MAC address handling in the SOURCE column of tcrules.
|
|
|
|
4) Merged and corrected Steve Herber's command-specific help patch.
|
|
|
|
5) Removed some undocumented/braindead code from setup_masq()
|
|
|
|
6) Don't allow 'stop' when startup is disabled
|
|
|
|
7) Added ADMINISABSENTMINDED option.
|
|
|
|
8) Fixed adding addresses to ppp interfaces.
|
|
|
|
9) Added generic tunnel support.
|
|
|
|
10) Added support for Address Range Lists in /etc/shorewall/masq.
|
|
|
|
11) Simplify ip_broadcast()
|
|
|
|
12) Add 'arp_filter' interface option.
|
|
|
|
13) Added accounting file support
|
|
|
|
14) Fixed bug where an interface name alone appears in the DESTINATION
|
|
column of the accounting file.
|
|
|
|
15) Add ACTION column to accounting file.
|
|
|
|
16) Add CHAIN declarations to accounting file.
|
|
|
|
17) Replace calls to chain_exists with calls to havechain in
|
|
accounting code.
|
|
|
|
18) Allow degenerate DONE and COUNT rules.
|
|
|
|
19) Interface-specific dynamic blacklisting chains are now displayed by
|
|
"shorewall monitor".
|
|
|
|
20) Bridge interfaces (br[0-9]) can now be used in /etc/shorewall/maclist.
|
|
|
|
21) Rate-limited rules added.
|
|
|
|
22) Make burst optional in rate limited rules and policies.
|
|
|
|
23) Allow display of multiple chains in one "shorewall show" command.
|
|
|
|
24) Add "RATE LIMIT" column for those who prefer their config files to
|
|
be wide but normalized.
|
|
|
|
25) Redesign the accounting facility to make it simpler and more
|
|
flexible.
|
|
|
|
26) Add Henry Wang's fix for LOGRATE/LOGBURST and enhance to resolve
|
|
conflict between that facility and rate-limited logging rules.
|
|
|
|
27) Add User Set capability.
|
|
|
|
28) Deimplement Smart Blacklisting and fix problem with multiple
|
|
'drop'/'reject' commands for the same address.
|