RC 1 is now available for testing. Problems Corrected: 1) The compiler was previously failing to validate the contents of the LENGTH and TOS columns in /etc/shorewall/tcrules. The contents of those columns are now validated by the compiler and an appropriate error message is issued if validation fails. 2) The column headings in the tos files are now in the proper order. Previously, the SOURCE PORT and DEST PORT columns were reversed. New Features: 1) The ''isusable'' extension script is no longer installed by default. Users wishing to install it may simply copy it from /usr/share/shorewall[6]/configfiles. 2) Support has been added for seting the "Type of Service" (TOS) header field in shorewall-tcrules(5) and shorewall6-tcrules(5). See the manpages for details. As part of this change, use of the shorewall-tos(5) and shorewall6-tos(5) files is deprecated and a warning is issued on the first rule in each file. Thank you for testing, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/
On Saturday 10 Mar 2012 22:02:52 Tom Eastep wrote:> RC 1 is now available for testing. > > Problems Corrected: > > 1) The compiler was previously failing to validate the contents of the > LENGTH and TOS columns in /etc/shorewall/tcrules. The contents of > those columns are now validated by the compiler and an appropriate > error message is issued if validation fails. >Tom Specifying a length of 128:256 in tcrules produces the following messages: Argument ":256" isn''t numeric in numeric lt (<) at /usr/share/shorewall/Shorewall/Chains.pm line 4212, <$currentfile> line 17. ERROR: First length must be < second length : /etc/shorewall2/tcrules (line 17) Steven. ------------------------------------------------------------------------------ Keep Your Developer Skills Current with LearnDevNow! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-d2d
On 3/13/12 3:46 PM, "Steven Jan Springl" <steven@springl.ukfsn.org> wrote:> >Specifying a length of 128:256 in tcrules produces the following messages: > >Argument ":256" isn''t numeric in numeric lt (<) at >/usr/share/shorewall/Shorewall/Chains.pm line 4212, <$currentfile> line >17. > >ERROR: First length must be < second length : /etc/shorewall2/tcrules >(line >17)The following patch seems to correct the checking of the LENGTH column. Thanks, Steven -Tom You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/
On Wednesday 14 Mar 2012 00:10:13 Tom Eastep wrote:> On 3/13/12 3:46 PM, "Steven Jan Springl" <steven@springl.ukfsn.org> wrote: > >Specifying a length of 128:256 in tcrules produces the following messages: > > > >Argument ":256" isn''t numeric in numeric lt (<) at > >/usr/share/shorewall/Shorewall/Chains.pm line 4212, <$currentfile> line > >17. > > > >ERROR: First length must be < second length : /etc/shorewall2/tcrules > >(line > >17) > > The following patch seems to correct the checking of the LENGTH column. > > Thanks, Steven > > -TomTom Confirmed, the patch corrects the issue. Thanks. ------------------------------------------------------------ The following error message is produced: Undefined subroutine &Shorewall::Chains::warning_messsage called at /usr/share/shorewall/Shorewall/Chains.pm line 4454, <$currentfile> line 100. There is no need to send me a patch, I have manually removed the extra ''s''. Steven. ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/
On 3/13/12 6:26 PM, "Steven Jan Springl" <steven@springl.ukfsn.org> wrote:>3` >Confirmed, the patch corrects the issue. Thanks. >------------------------------------------------------------ > >The following error message is produced: > >Undefined subroutine &Shorewall::Chains::warning_messsage called at >/usr/share/shorewall/Shorewall/Chains.pm line 4454, <$currentfile> line >100. > >There is no need to send me a patch, I have manually removed the extra >''s''.Thanks, Steven -Tom You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/
Tom Shorewall accepts tcrule: TOS(0x00) ssp5 fw tcp 123 But tcrule: TOS(0x00/0xff) ssp5 fw tcp 123 produces the following error message: ERROR: Invalid Mark or Mask value (TOS(0x00) : /etc/shorewall2/tcrules (line 65) Is this expected? Steven. ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/
On 03/14/2012 01:14 PM, Steven Jan Springl wrote:> Tom > > Shorewall accepts tcrule: > > TOS(0x00) ssp5 fw tcp 123 > > But tcrule: > > TOS(0x00/0xff) ssp5 fw tcp 123 > > produces the following error message: > > ERROR: Invalid Mark or Mask value (TOS(0x00) : /etc/shorewall2/tcrules (line > 65) > > Is this expected?Steven, No, it''s not. Patch attached. Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/
On Wednesday 14 Mar 2012 22:21:38 Tom Eastep wrote:> On 03/14/2012 01:14 PM, Steven Jan Springl wrote: > > Tom > > > > Shorewall accepts tcrule: > > > > TOS(0x00) ssp5 fw tcp 123 > > > > But tcrule: > > > > TOS(0x00/0xff) ssp5 fw tcp 123 > > > > produces the following error message: > > > > ERROR: Invalid Mark or Mask value (TOS(0x00) : /etc/shorewall2/tcrules > > (line 65) > > > > Is this expected? > > Steven, > > No, it''s not. > > Patch attached. > > Thanks, > -TomTom Confirmed, the patch fixes the issue. Thanks. Steven. ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/