https://bugzilla.novell.com/show_bug.cgi?id=380696 User coolo@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=380696#c2 Stephan Kulow changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|coolo@novell.com |ke@novell.com --- Comment #2 from Stephan Kulow 2008-04-19 01:28:31 MST --- that's quite some firewall foobar to me :) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=380696 User ke@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=380696#c3 Karl Eichwalder changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |lnussel@novell.com --- Comment #3 from Karl Eichwalder 2008-05-07 08:29:29 MST --- This is my version available in SVN now--I've the feeling that there is something wrong with the word "conntrack", though: <!-- Bug 380696 --> <sect3 id="suse-fw-new-vars" status="2008-05-07"> <title>SuSEfirewall2: New Variables Starting with <literal>FW_SERVICES_ACCEPT_RELATED_</literal></title> <para> SuSEfirewall2 implements a subtle change regarding packets that are considered <literal>RELATED</literal> by netfilter.</para> <para> For example, to allow finer grained filtering of Samba broadcast packets, <literal>RELATED</literal> packets are no longer accepted unconditionally. The new variables starting with <literal>FW_SERVICES_ACCEPT_RELATED_</literal> have been introduced to allow restricting <literal>RELATED</literal> packets handling to certain networks, protocols and ports.</para> <para> This means adding conntrack modules to <literal>FW_LOAD_MODULES</literal> does no longer automatically result in accepting the packets tagged by those modules. Additionally, you must set variables starting with <literal>FW_SERVICES_ACCEPT_RELATED_</literal> to a suitable value.</para> </sect3> -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=380696 User lnussel@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=380696#c5 --- Comment #5 from Ludwig Nussel 2008-05-07 08:51:17 MST --- conntrack is a netfilter shortcur s/conntrack/connection tracking/ -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.