Displaying 20 results from an estimated 30000 matches similar to: "Shorewall Web Site Move"
2002 Apr 28
0
[Documentation] Re: [Shorewall-users] Logging is done to console (fwd)
This is becoming a FAQ and should probably be added to the docs.
Thanks,
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
---------- Forwarded message ----------
Date: Sun, 28 Apr 2002 16:09:01 -0700 (Pacific Daylight Time)
From: Tom Eastep <teastep@shorewall.net>
To: Carl Spelkens
2002 Mar 03
0
Fwd: Re: strange UDP scan results on a Shorewall firewall
---------- Forwarded Message ----------
Subject: Re: [Shorewall-users] strange UDP scan results on a Shorewall=20
firewall
Date: Sun, 3 Mar 2002 08:33:20 -0800
From: Tom Eastep <teastep@shorewall.net>
To: "Scott Duncan" <sduncan@cytechconsult.com>
On Saturday 02 March 2002 04:30 am, Scott Duncan wrote:
> Yes, the net->all policy is the same on all three (REJECT log
2002 Jun 05
0
RE: [Shorewall-users] Web CVS Interface Currently Unavailable
On Wed, 5 Jun 2002, Ron Shannon wrote:
> Bummer. Will the robots.txt handle it? (http://httpd.apache.org/docs/misc/howto.html#stoprob)
>
Nope -- most of the offending bots just ignore robots.txt. The CVS
interface is still available at:
http://www.shorewall.net/cgi-bin/cvsweb.cgi
There is just no link to it from the index.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM:
2002 May 20
0
Web site search fixed
I''ve corrected my HTDIG configuration so that it doesn''t fall into the
symlink loop created by the 1.3 beta documentation.
Sorry for any inconvenience,
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
2002 May 29
0
Shorewall 1.3.0 Released
1.3.0 is available from the main site -- mirrors will syncronize in 6-12
hours.
Features include:
1. The rules syntax for port forwarding and port redirection has been
simplified.
2. Compatibility has been maintained with version 1.2 configurations so
that users may migrate their configuration at their convenience.
WARNING: Compatibility has NOT been maintained with the parameterized
2002 Sep 29
3
Shorewall 1.3.9
Shorewall 1.3.9 is available.
In this release:
1. DNS Names are now allowed in Shorewall config files (I still recommend
against using them however).
2. The connection SOURCE may now be qualified by both interface
and IP address in a Shorewall rule.
3. Shorewall startup is now disabled after initial installation until
the file /etc/shorewall/startup_disabled is removed.
4. The
2002 Nov 24
0
Shorewall 1.3.11
I''ve gone ahead and released 1.3.11. New features are:
1) A ''tcpflags'' option has been added to entries in
/etc/shorewall/interfaces. This option causes Shorewall to make a
set of sanity check on TCP packet header flags.
2) It is now allowed to use ''all'' in the SOURCE or DEST column in a
rule. When used, ''all'' must appear
2002 Dec 03
0
Shorewall 1.3.11a
This is a role up of Roger Aich''s fix for DNAT rules that exclude a
sub-zone (e.g., DNAT z1!z2 ...). If you don''t need those types of rules
then there is no need to upgrade to this version.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://shorewall.sf.net
ICQ: #60745924 \ teastep@shorewall.net
2002 May 14
2
Shorewall.net is back up
Let me know if there are any problems.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
2002 Jul 16
1
Shorewall 1.3.4
Shorewall 1.3.4 is available:
1. A new /etc/shorewall/routestopped file has been added. This file is
intended to eventually replace the routestopped option in the
/etc/shorewall/interface and /etc/ shorewall/hosts files. This new
file makes remote firewall administration easier by allowing any IP
or subnet to be enabled while Shorewall is stopped.
2. An /etc/shorewall/stopped
2002 Jan 26
1
Shorewall 1.2.4 Beta
Shorewall 1.2.4 will have the following changes:
a) ''#'' comments now allowed at end-of-line in all config files.
b) Firewall zone may be renamed
c) Protection against concurrent state-changing operations (start, stop,
restart, refresh, clear)
d) ''shorewall start'' no longer fails if ''detect'' is specified for an
interface with netmask
2002 Apr 16
1
Shorewall Debian News
Lorenzo Marignoni reports that:
o Shorewall 1.2.10 is in the Debian Testing Branch
o Shorewall 1.2.11 is in the Debian Unstable Branch
Thanks, Lorenzo!
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
2002 Jun 08
1
Shorewall.net back on line
The maintenance (adding RAM) took a little longer than I planned:
1) Shutdown - 1 minute
2) Open Case - 30 seconds
At this point, I emember that I can''t add RAM to this box without removing
the Mother Board (hinge-mounted in case) - slap forehead.
3) Remove cables, PCI NIC & MB - 2 minutes
4) Add RAM - 1 Minute
5) Get the %$#@ MB back in the case and aligned -- 15 Minutes
6)
2002 Apr 13
2
Shorewall 1.2.11 Available
In this release:
1. The ''try'' command now accepts an optional timeout. If the timeout is
given in the command, the standard configuration will automatically
be restarted after the new configuration has been running for that
length of time. This prevents a remote admin from being locked out
of the firewall in the case where the new configuration starts but
prevents
2002 Aug 25
1
Shorewall 1.3.7a Debian Packages Available
Apt-get sources are listed at:
http://wecurity.dsi.unimi.it/~lorenzo/debian.html
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
2002 Jun 15
4
Serious Bug found in Shorewall 1.3.x
Rafa³ Dutko has just discovered a potentially serious bug in version 1.3.0
and 1.3.1. In both versions, where an interface option appears on multiple
interfaces, the option may only be applied to the first interface on which
it appears.
A corrected firewall script for 1.3.1 is available at:
http://www.shorewall.net/pub/shorewall/errata/1.3.1/firewall
and
2002 Jun 02
1
CVS Web Access
There is now a link from the Shorewall home page to the CVS repository.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
2002 Mar 20
3
Shorewall 1.2.10
This is a minor release of Shorewall.
In this release:
1. A "shorewall try" command has been added. This command attempts to
restart Shorewall using an alternate configuration and if that
attempt fails, Shorewall is automatically started with the default
configuration. This is useful for remote administration where a
failed restart of Shorewall can leave you isolated from
2002 Oct 24
0
Shorewall 1.3.10 Beta 1
There''s a lot new in 1.3.10:
1) You may now define the contents of a zone dynamically with the
"shorewall add" and "shorewall delete" commands. These commands are
expected to be used primarily within FreeS/Wan updown scripts.
2) Shorewall can now do MAC verification on ethernet segments. You can
specify the set of allowed MAC addresses on the segment and you can
2002 Aug 26
0
"shorewall refresh" bug in Shorewall 1.3.7a
"shorewall refresh" is not handling FORWARDPING=Yes properly in 1.3.7a. After
a refresh, the configuration is the same as it would be with FORWARDPING=No.
There''s a corrected firewall script available from
http://www.shorewall.net/errata.htm.
Sorry for the inconvenience...
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: