Shorewall 4.5.5 RC 1 is now available for testing.
Problems Corrected since Beta 2:
1) Two issues with the shorecap programs have been corrected:
a) The Shorewall6-lite version failed to run with the message:
/usr/share/shorewall6-lite/lib.cli: No such file or directory
b) The Shorewall-lite version would not run if SHAREDIR was set to
a value other than /usr/share in shorewallrc.
2) If an iprange appeared in the SOURCE column of /etc/shorewall/masq,
then compilation would fail on RHEL5-based systems with the error:
Address Ranges require the Multiple Match capability in
your kernel and iptables
3) The Shorewall 4.5.2.3 fix for the Shorewall-core installer's
handling of --host=linux was not brought forward into 4.5.3. It has
been included again in this version.
4) Single-line embedded PERL and SHELL commands have been
re-enabled.
5) If an iprange appeared in the SOURCE column of /etc/shorewall/masq,
then compilation would fail on RHEL5-based systems with the error:
Address Ranges require the Multiple Match capability in
your kernel and iptables
There are also a couple of new features:
1) Previously, the 'ignore' interface option could only be specified
by itself and could not be specified unless the ZONE column was
empty (i.e, contained '-'). Now, it is allowed to specify
'ignore=1' without these restrictions.
With 'ignore=1', the generated script will still ignore
Shorewall-init 'up' and 'down' events but the interface will still
be subject to hairpin filtering unless it has the 'routefilter' or
'routeback' option.
2) Imbedded shell and Perl directives may now be optionally preceded
by a question mark ('?').
Example:
?BEGIN PERL
use strict;
...
?END PERL
Thank you for testing,
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Shorewall-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-devel
