Beta 2 is now available for testing.
Problems Corrected:
1) In an initial installation of Shorewall, Shorewall6, Shorewall Lite
or Shorewall6 Lite was done under Shorewall 4.5.2, then the
firewall would not start up at boot even though the installer
indicated that it would. That defect has been corrected.
New Features:
1) The ''refresh'' command now allows additional options:
-d - Run the rules compiler under the Perl debugger.
-n - Don''t modify routing.
-T - Produce a Perl Stack trace on errors and warnings.
-D <directory> - Look in <directory> first for configuration
files.
2) A change has been made in the packaging for Slackware. On
Slackware, there is an /etc/rc.d/firewall.rc script that looks for
/etc/rc.d/shorewall.rc and /etc/rc.d/shorewall6.rc and runs them,
passing it''s own arguments.
The firewall.rc script is named init.slackware.firewall.sh and has
traditionally been included in the Shorewall package. Beginning
with this release, it is moved to the Shorewall-core package. This
opens the door for releasing Slackware versions of the -lite
products in the future.
Thank you for testing,
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today''s security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
On 05/03/2012 07:54 AM, Tom Eastep wrote:> Beta 2 is now available for testing. > > Problems Corrected: > > 1) In an initial installation of Shorewall, Shorewall6, Shorewall Lite > or Shorewall6 Lite was done under Shorewall 4.5.2, then the > firewall would not start up at boot even though the installer > indicated that it would. That defect has been corrected. >There is one additional problem correction that I neglected to document: 2) Previously, when per-IP rate limiting was invoked, the compiler would use the deprecated ''--ratelimit'' option, even if the preferred ''--ratelimit-upto'' option was available. Now, the compiler uses the preferred option if it is supported by the installed version of iptables. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today''s security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/