Displaying 11 results from an estimated 11 matches for "forwardp".
Did you mean:
forward
2003 Jan 29
0
Thoughts on Shorewall 2.0
.... I would like to hear any ideas about what
you would like to see included. Before I decide what new things will be
implemented though, I want to nail down what WON''T be included. Here is my
list:
a) Old Ping Handling. There won''t be any ''noping'' or ''forwardping''
interface options and there won''t be a FORWARDPING option in shorewall.conf.
b) ''routestopped'' interface and hosts option. Use the routestopped file
instead.
c) MERGE_HOSTS. The only behavior available will be what MERGE_HOSTS=Yes
provides in 1.3.
-Tom...
2002 Aug 22
0
Shorewall 1.3.7
...ith changes to the way ICMP is handled=
=2E
1) The ''icmp.def'' file is now empty! The rules in that file were
required in ipchains firewalls but are not required in Shorewall.
Users who have ALLOWRELATED=3DNo in shorewall.conf should see the
Upgrade Issues.
2) A ''FORWARDPING'' option has been added to shorewall.conf. The effect
of setting this variable to Yes is the same as the effect of adding
an ACCEPT rule for ICMP echo-request in
/etc/shorewall/icmpdef. Users who have such a rule in icmpdef are
encouraged to switch to FORWARDPING=3DYes.
3) Th...
2002 Aug 26
0
"shorewall refresh" bug in Shorewall 1.3.7a
"shorewall refresh" is not handling FORWARDPING=Yes properly in 1.3.7a. After
a refresh, the configuration is the same as it would be with FORWARDPING=No.
There''s a corrected firewall script available from
http://www.shorewall.net/errata.htm.
Sorry for the inconvenience...
-Tom
--
Tom Eastep \ Shorewall - iptables made easy...
2003 Aug 12
1
Shorewall Keeps sending false IP Address Conflict
...=
+ STATEDIR=
+ ALLOWRELATED=Yes
+ LOGRATE=
+ LOGBURST=
+ LOGPARMS=
+ ADD_IP_ALIASES=
+ ADD_SNAT_ALIASES=
+ TC_ENABLED=
+ LOGUNCLEAN=
+ BLACKLIST_DISPOSITION=
+ BLACKLIST_LOGLEVEL=
+ CLAMPMSS=
+ ROUTE_FILTER=
+ NAT_BEFORE_RULES=
+ DETECT_DNAT_IPADDRS=
+ MUTEX_TIMEOUT=
+ NEWNOTSYN=
+ LOGNEWNOTSYN=
+ FORWARDPING=
+ MACLIST_DISPOSITION=
+ MACLIST_LOG_LEVEL=
+ TCP_FLAGS_DISPOSITION=
+ TCP_FLAGS_LOG_LEVEL=
+ RFC1918_LOG_LEVEL=
+ MARK_IN_FORWARD_CHAIN=
+ SHARED_DIR=/usr/share/shorewall
+ FUNCTIONS=
+ VERSION_FILE=
+ LOGFORMAT=
+ LOGRULENUMBERS=
+ stopping=
+ have_mutex=
+ masq_seq=1
+ nonat_seq=1
+ aliases_...
2003 Feb 04
11
About Shorewall 1.3.14
It is my plan that the upcoming release of Shorewall (1.3.14) will
definitely be the last of the 1.3.x releases and will very probably be the
last release of Shorewall 1.x.x.
I will continue to support Shorewall 1.3 but will be making no more
enhancements to it. I will be devoting my time to Shorewall 2.
If anyone is interested in taking over the development of Shorewall 1,
please let me
2003 Jan 25
0
Shorewall 1.3.14 Beta 1
...D_PING_HANDLING option has been added to shorewall.conf. When
set to Yes, Shorewall ping handling is as it has always been (see
http://www.shorewall.net/ping.html).
When OLD_PING_HANDLING=No, icmp echo (ping) is handled via rules and
policies just like any other connection request. The FORWARDPING
option in shorewall.conf is ignored and the ''noping'' and
''filterping'' options in /etc/shorewall/interfaces will generate an
error.
2) It is now possible to direct Shorewall to create a "label" such as
"eth0:0" for IP addresses...
2003 Feb 08
1
Shorewall 1.3.14
...NG_HANDLING option has been added to shorewall.conf. When
set to Yes, Shorewall ping handling is as it has always been (see
http://www.shorewall.net/ping.html).
When OLD_PING_HANDLING=No, icmp echo (ping) is handled via rules and
policies just like any other connection request. The FORWARDPING
option in shorewall.conf is ignored and the ''noping'' and
''filterping'' options in /etc/shorewall/interfaces will generate an
error.
2) It is now possible to direct Shorewall to create a "label" such as
"eth0:0" for IP addres...
2002 Dec 05
7
New in CVS
The ''firewall'' script currently in the /Shorewall CVS project:
a) Is approximately 15% faster starting/restarting on my configuration --
please report your experiences with it.
b) Reloads Traffic Control/Shaping as part of "shorewall refresh"
c) Turns off the shell trace after an error has occured (except when the
command being traced is "stop" or
2003 Mar 23
12
Shorewall 1.4.1
This is a minor release of Shorewall.
WARNING: This release introduces incompatibilities with prior releases.
See http://www.shorewall.net/upgrade_issues.htm.
Changes are:
a) There is now a new NONE policy specifiable in
/etc/shorewall/policy. This policy will cause Shorewall to assume that
there will never be any traffic between the source and destination
zones.
b) Shorewall no longer
2005 May 31
11
More Tests for 2.4.0-RC2 - strange behaviour
...YSLOCK=
+ STATEDIR=
+ ALLOWRELATED=Yes
+ LOGRATE=
+ LOGBURST=
+ LOGPARMS=
+ LOGLIMIT=
+ ADD_IP_ALIASES=
+ ADD_SNAT_ALIASES=
+ TC_ENABLED=
+ BLACKLIST_DISPOSITION=
+ BLACKLIST_LOGLEVEL=
+ CLAMPMSS=
+ ROUTE_FILTER=
+ LOG_MARTIANS=
+ DETECT_DNAT_IPADDRS=
+ MUTEX_TIMEOUT=
+ NEWNOTSYN=
+ LOGNEWNOTSYN=
+ FORWARDPING=
+ MACLIST_DISPOSITION=
+ MACLIST_LOG_LEVEL=
+ TCP_FLAGS_DISPOSITION=
+ TCP_FLAGS_LOG_LEVEL=
+ RFC1918_LOG_LEVEL=
+ BOGON_LOG_LEVEL=
+ MARK_IN_FORWARD_CHAIN=
+ SHARED_DIR=/usr/share/shorewall
+ FUNCTIONS=
+ VERSION_FILE=
+ LOGFORMAT=
+ LOGRULENUMBERS=
+ ADMINISABSENTMINDED=
+ BLACKLISTNEWONLY=
+...
2005 Feb 01
4
Shorewall problem
I am getting the following message when Shorewall stops can anybody shed
any light on this message and where I should be looking? Thanks
root@bobshost:~# shorewall stop
Loading /usr/share/shorewall/functions...
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf...
Loading Modules...
Stopping Shorewall...Processing /etc/shorewall/stop ...
IP Forwarding Enabled