http://www1.shorewall.net/pub/shorewall/development/3.2/shorewall-3.2.0-Beta6/
ftp://ftp1.shorewall.net/pub/shorewall/development/3.2/shorewall-3.2.0-Beta6/
Problems Corrected in 3.2.0 Beta 6
1) Previously, if ''shorewall restart'' was done out of an
ip-up.local
script, some of the utilities like ''tc'' and
''ip6tables'' were not
on the PATH.
2) In previous 3.2.0 releases, ''detectnets'' in
/etc/shorewall/interfaces produced an error message:
ERROR: ''detectnets'' not permitted with the -e run-line
option
even when the -e option had not been specified.
3) Previously, the ''proxyarp'' option in
/etc/shorewall/interfaces
caused startup errors.
4) Previously, specifying specific IP addresses for GATEWAY in with
''balance'' /etc/shorewall/providers caused a [re]start
error.
Other changes in 3.2.0 Beta 6
1) A TOS column has been added to /etc/shorewall/tcrules. This allows
marking based on the contents of the TOS field in the packet header.
2) Beginning with this release, the way in which packet marking in the
PREROUTING chain interracts with the ''track'' option in
/etc/shorewall/providers has changed in two ways:
a) Packets *arriving* on a tracked interface are now passed to the
PREROUTING marking chain so that they may be marked with a mark
other than the ''track'' mark (the connection still
retains the
''track'' mark).
b) When HIGH_ROUTE_MARKS=Yes, you can still clear the mark on
packets in the PREROUTING chain (i.e., you can specify a mark
value of zero).
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key