Shorewall devel - Jun 2012 - Shorewall 4.5.5 RC 1

Shorewall 4.5.5 RC 1 is now available for testing.

Problems Corrected since Beta 2:

1)  Two issues with the shorecap programs have been corrected:

     a) The Shorewall6-lite version failed to run with the message:

           /usr/share/shorewall6-lite/lib.cli: No such file or directory

     b) The Shorewall-lite version would not run if SHAREDIR was set to
        a value other than /usr/share in shorewallrc.

2)  If an iprange appeared in the SOURCE column of /etc/shorewall/masq,
     then compilation would fail on RHEL5-based systems with the error:

       Address Ranges require the Multiple Match capability in
          your kernel and iptables

3)  The Shorewall 4.5.2.3 fix for the Shorewall-core installer''s
     handling of --host=linux was not brought forward into 4.5.3. It has
     been included again in this version.

4)  Single-line embedded PERL and SHELL commands have been
     re-enabled.

5)  If an iprange appeared in the SOURCE column of /etc/shorewall/masq,
     then compilation would fail on RHEL5-based systems with the error:

       Address Ranges require the Multiple Match capability in
          your kernel and iptables

There are also a couple of new features:

1)   Previously, the ''ignore'' interface option could only be
specified
      by itself and could not be specified unless the ZONE column was
      empty (i.e, contained ''-''). Now, it is allowed to
specify
      ''ignore=1'' without these restrictions.

      With ''ignore=1'', the generated script will still ignore
      Shorewall-init ''up'' and ''down'' events
but the interface will still
      be subject to hairpin filtering unless it has the
''routefilter'' or
      ''routeback'' option.

2)   Imbedded shell and Perl directives may now be optionally preceded
      by a question mark (''?'').

      Example:

          ?BEGIN PERL
          use strict;
          ...
          ?END PERL

Thank you for testing,
-Tom
-- 
Tom Eastep        \ When I die, I want to go like my Grandfather who
Shoreline,         \ died peacefully in his sleep. Not screaming like
Washington, USA     \ all of the passengers in his car
http://shorewall.net \________________________________________________

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today''s security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/