Available for download at
http://www.shorewall.net/pub/shorewall/development/4.1/shorewall-4.1.8/
Problems Corrected in Shorewall 4.1.8
1) Changes to your configuration made by NULL_ROUTE_RFC1918=Yes are
now reversed during ''shorewall stop'' and
''shoreawll restart''.
2) The init script on Debian now reads and utilizes the value of the
OPTIONS variable from /etc/default/shorewall[-lite]. Previously,
the value of that variable was not passed to the shorewall[-lite]
command.
3) With both Shorewall and Shorewall Lite, the ''start'' and
''restart''
commands now support a ''-p'' option. This option causes
the
Netfilter connection tracking table to be flushed (purged) as part
of the operation. The ''conntrack'' utility must be
installed to use
this option.
Other Changes in Shoreall 4.1.8.
1) When using Shorewall-perl, the CEIL and RATE columns must now
contain arithmetic expressions consisting of:
a) Numeric digits (Hex numbers not allowed).
b) Parentheses.
c) The arithmetic operators +-* and /.
d) The word ''full''.
2) The installers (install.sh) now auto-detect a Cygwin environment
and install under the current user''s ID if OWNER and GROUP are not
given.
3) The ''start'' and ''restart'' commands now
support a ''-p'' (purge)
option which cause all entries to be removed from the Netfilter
conntrack table. In order to use this option, the
''conntrack''
utility must be installed on your system. Although it is generally
not installed by default, Most distributions have this utility in
their repositories.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference
Don''t miss this year''s exciting event. There''s still
time to save $100.
Use priority code J8TL2D2.
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone