diff -Naurdw -X /usr/local/bin/exclude.txt shorewall6-lite-4.4.19/changelog.txt shorewall6-lite-4.4.19.1/changelog.txt --- shorewall6-lite-4.4.19/changelog.txt 2011-04-12 07:21:52.000000000 -0700 +++ shorewall6-lite-4.4.19.1/changelog.txt 2011-04-14 15:21:47.000000000 -0700 @@ -1,3 +1,13 @@ +Changes in Shorewall 4.4.19.1 + +1) Eliminate silly duplicate rule when stopped. + +2) Don't believe that all nexthop routes are default routes. + +3) Restore :- in masq file. + +4) Correct default route safe/restore. + Changes in Shorewall 4.4.19 Final 1) Update release documents. diff -Naurdw -X /usr/local/bin/exclude.txt shorewall6-lite-4.4.19/install.sh shorewall6-lite-4.4.19.1/install.sh --- shorewall6-lite-4.4.19/install.sh 2011-04-12 07:21:24.000000000 -0700 +++ shorewall6-lite-4.4.19.1/install.sh 2011-04-14 15:20:15.000000000 -0700 @@ -22,7 +22,7 @@ # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # -VERSION=4.4.19 +VERSION=4.4.19.1 usage() # $1 = exit status { diff -Naurdw -X /usr/local/bin/exclude.txt shorewall6-lite-4.4.19/releasenotes.txt shorewall6-lite-4.4.19.1/releasenotes.txt --- shorewall6-lite-4.4.19/releasenotes.txt 2011-04-12 07:21:52.000000000 -0700 +++ shorewall6-lite-4.4.19.1/releasenotes.txt 2011-04-14 15:21:47.000000000 -0700 @@ -1,5 +1,5 @@ ---------------------------------------------------------------------------- - S H O R E W A L L 4 . 4 . 1 9 + S H O R E W A L L 4 . 4 . 1 9 . 1 ---------------------------------------------------------------------------- I. PROBLEMS CORRECTED IN THIS RELEASE @@ -13,6 +13,32 @@ I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E ---------------------------------------------------------------------------- +4.4.19.1 + +1) A duplicate ACCEPT rule in the INPUT chain has been eliminated when + the firewall is stopped. + +2) A defect introduced in Shorewall 4.4.17 broke the ability to + specify ':-' in the ADDRESS column of + /etc/shorewall/masq. + +3) Several long-standing defects having to do with default route + save/restore have been corrected in the Multi-ISP implementation. + + a) Shorewall previously interpreted all 'nexthop' routes as + default routes when analyzing the pre-start routing + configuration. This could lead to unwanted default routes when + the firewall was started or stopped. + + b) The default route with metric 0 was usually not restored + during 'stop' processing. + + c) If there were multiple default routes in the main table prior + to 'shorewall start' and USE_DEFAULT_RT was set, only the + first one with metric 0 was deleted. + +4.4.19 + 1) Corrected a problem in optimize level 4 that resulted in the following compile-time failure. diff -Naurdw -X /usr/local/bin/exclude.txt shorewall6-lite-4.4.19/shorewall6-lite.spec shorewall6-lite-4.4.19.1/shorewall6-lite.spec --- shorewall6-lite-4.4.19/shorewall6-lite.spec 2011-04-12 07:21:24.000000000 -0700 +++ shorewall6-lite-4.4.19.1/shorewall6-lite.spec 2011-04-14 15:20:15.000000000 -0700 @@ -1,6 +1,6 @@ %define name shorewall6-lite %define version 4.4.19 -%define release 0base +%define release 1 Summary: Shoreline Firewall 6 Lite is an ip6tables-based firewall for Linux systems. Name: %{name} @@ -94,6 +94,8 @@ %doc COPYING changelog.txt releasenotes.txt %changelog +* Wed Apr 13 2011 Tom Eastep tom@shorewall.net +- Updated to 4.4.19-1 * Sat Apr 09 2011 Tom Eastep tom@shorewall.net - Updated to 4.4.19-0base * Sun Apr 03 2011 Tom Eastep tom@shorewall.net diff -Naurdw -X /usr/local/bin/exclude.txt shorewall6-lite-4.4.19/uninstall.sh shorewall6-lite-4.4.19.1/uninstall.sh --- shorewall6-lite-4.4.19/uninstall.sh 2011-04-12 07:21:24.000000000 -0700 +++ shorewall6-lite-4.4.19.1/uninstall.sh 2011-04-14 15:20:15.000000000 -0700 @@ -26,7 +26,7 @@ # You may only use this script to uninstall the version # shown below. Simply run this script to remove Shorewall Firewall -VERSION=4.4.19 +VERSION=4.4.19.1 usage() # $1 = exit status {