Shorewall 5.0.8 Beta 3 is now available for testing. Problems Corrected since Beta 2:
1) Address variables that specified the physical interface name
previously caused Perl diagnostics to be issued and incorrect code
to be generated. That has been corrected.
2) The IPv6 default treatment of Auth (TCP 113) is now consistent with
IPv4; nothing special is done with these requests, so they are
simply logged and dropped or rejected.
IMPORTANT: If you want to continue to silengly reject Auth
requests, you can do so by changing your xxx_DEFAULT settings to
make the second parameter 'Reject'. For example, if you currently
have:
DROP_DEFAULT=Drop
REJECT_DEFAULT=Reject
you can change it to:
DROP_DEFAULT="Drop(-,REJECT)"
REJECT_DEFAULT="Reject(-,REJECT)"
New Features since Beta 2:
1. The REJECT and A_REJECT actions may now take an optional parameter
that specifies the way in which the packet is to be rejected. See
shorewall[6]-rules(5) for details.
2. The standard action files and shell libraries now have a uniform
format for their header comments (Tuomo Soini).
Thank you for testing,
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
