holm/shorewall_code
1
0
Fork 0
forked from extern/shorewall_code
Code Pull Requests Activity
f88241a6f1
shorewall_code/Shorewall/changelog.txt
teastep f88241a6f1 Fix rules file processing with missing policy 
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@747 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2003-09-26 21:34:16 +00:00

88 lines
2.3 KiB
Plaintext
Executable File
Raw Blame History

Changes since 1.4.6
1) Added Smart Blacklisting.
2) Move determine_capabilities call to do_initialize to ensure that
MANGLE_ENABLED is set before it is tested.
3) Fixed MAC address handling in the SOURCE column of tcrules.
4) Merged and corrected Steve Herber's command-specific help patch.
5) Removed some undocumented/braindead code from setup_masq()
6) Don't allow 'stop' when startup is disabled
7) Added ADMINISABSENTMINDED option.
8) Fixed adding addresses to ppp interfaces.
9) Added generic tunnel support.
10) Added support for Address Range Lists in /etc/shorewall/masq.
11) Simplify ip_broadcast()
12) Add 'arp_filter' interface option.
13) Added accounting file support
14) Fixed bug where an interface name alone appears in the DESTINATION
column of the accounting file.
15) Add ACTION column to accounting file.
16) Add CHAIN declarations to accounting file.
17) Replace calls to chain_exists with calls to havechain in
accounting code.
18) Allow degenerate DONE and COUNT rules.
19) Interface-specific dynamic blacklisting chains are now displayed by
"shorewall monitor".
20) Bridge interfaces (br[0-9]) can now be used in /etc/shorewall/maclist.
21) Rate-limited rules added.
22) Make burst optional in rate limited rules and policies.
23) Allow display of multiple chains in one "shorewall show" command.
24) Add "RATE LIMIT" column for those who prefer their config files to
be wide but normalized.
25) Redesign the accounting facility to make it simpler and more
flexible.
26) Add Henry Wang's fix for LOGRATE/LOGBURST and enhance to resolve
conflict between that facility and rate-limited logging rules.
27) Add User Set capability.
28) Deimplement Smart Blacklisting and fix problem with multiple
'drop'/'reject' commands for the same address.
29) Update for 1.4.7 Beta 1.
30) Fix ADD_SNAT_ALIASES interaction with ip ranges used for
load-balancing.
31) Fix IPV6 address confusion.
32) Add "o.gz" to the list of module extensions.
33) Replace existing route to PROXY ARP host rather than adding another
one.
34) Update of rfc1918 file.
35) Correct rules file comment.
36) Extend USER SET column in /etc/shorewall/rules to allow user:group.
37) Reword error message to avoid the word 'illegal'.
38) Avoid shell error when there is no policy corresponding to a rule.
View Git Blame Copy Permalink