Hello community, here is the log from the commit of package shorewall for openSUSE:Factory checked in at 2012-08-09 16:51:56 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/shorewall (Old) and /work/SRC/openSUSE:Factory/.shorewall.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "shorewall", Maintainer is "" Changes: -------- --- /work/SRC/openSUSE:Factory/shorewall/shorewall.changes 2012-07-12 10:52:49.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.shorewall.new/shorewall.changes 2012-08-09 16:52:13.000000000 +0200 @@ -1,0 +2,24 @@ +Wed Aug 8 21:14:50 UTC 2012 - toganm@opensuse.org + +- Update to 4.5.6.2 For more details see changelog.txt and + releasenotes.txt + * The compiler now generates an error when a SOURCE interface is + specified in a rule where the SOURCE zone is the firewall + itself. + * Previously, entries in /etc/shorewall/notrack that specified a + Vserver zone in the SOURCE column were omitted from the + generated ruleset. + * The set of helpers available in the notrack file and in the + HELPER column of the tcrules file was incorrect: + - The Amanda helper requires a UDP port -- Shorewall was + requiring + TCP. + - The H323 module supplies two helpers: 'RAW' and 'Q.931'; + Shorewall only accepted 'h323'. + - The Netbios NS module supplies the 'netbios-ns' helper; + Shorewall + only accepted 'netbios_ns'. + * The conditional directive '?IF 0' generated an error from the + compiler. It now causes following lines to be omitted. + +------------------------------------------------------------------- Old: ---- shorewall-4.5.6.tar.bz2 shorewall-core-4.5.6.tar.bz2 shorewall-docs-html-4.5.6.tar.bz2 shorewall-init-4.5.6.tar.bz2 shorewall-lite-4.5.6.tar.bz2 shorewall6-4.5.6.tar.bz2 shorewall6-lite-4.5.6.tar.bz2 New: ---- shorewall-4.5.6.2.tar.bz2 shorewall-core-4.5.6.2.tar.bz2 shorewall-docs-html-4.5.6.2.tar.bz2 shorewall-init-4.5.6.2.tar.bz2 shorewall-lite-4.5.6.2.tar.bz2 shorewall6-4.5.6.2.tar.bz2 shorewall6-lite-4.5.6.2.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ shorewall.spec ++++++ --- /var/tmp/diff_new_pack.IG3mdC/_old 2012-08-09 16:52:16.000000000 +0200 +++ /var/tmp/diff_new_pack.IG3mdC/_new 2012-08-09 16:52:16.000000000 +0200 @@ -17,7 +17,7 @@ Name: shorewall -Version: 4.5.6 +Version: 4.5.6.2 Release: 0 Summary: Shoreline Firewall is an iptables-based firewall for Linux systems License: GPL-2.0 @@ -64,7 +64,12 @@ Requires: logrotate BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildArch: noarch -BuildRequires: openSUSE-release +%if 0%{?suse_version} +BuildRequires: distribution-release +%endif +%if 0%{?redhat_version} || 0%{?centos_version} +BuildRequires: redhat-release +%endif BuildRequires: perl-Digest-SHA1 Conflicts: SuSEfirewall2 ++++++ shorewall-4.5.6.tar.bz2 -> shorewall-4.5.6.2.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/Perl/Shorewall/Chains.pm new/shorewall-4.5.6.2/Perl/Shorewall/Chains.pm --- old/shorewall-4.5.6/Perl/Shorewall/Chains.pm 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/Perl/Shorewall/Chains.pm 2012-08-08 17:42:30.000000000 +0200 @@ -651,16 +651,18 @@ %ipset_exists = (); - %helpers = ( amanda => TCP, + %helpers = ( amanda => UDP, ftp => TCP, - h323 => UDP, irc => TCP, - netbios_ns => UDP, + 'netbios-ns' => UDP, pptp => TCP, + 'Q.931' => TCP, + RAS => UDP, sane => TCP, sip => UDP, snmp => UDP, - tftp => UDP); + tftp => UDP, + ); %isocodes = (); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/Perl/Shorewall/Config.pm new/shorewall-4.5.6.2/Perl/Shorewall/Config.pm --- old/shorewall-4.5.6/Perl/Shorewall/Config.pm 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/Perl/Shorewall/Config.pm 2012-08-08 17:42:30.000000000 +0200 @@ -525,7 +525,7 @@ KLUDGEFREE => '', STATEMATCH => '-m state --state', UNTRACKED => 0, - VERSION => "4.5.6", + VERSION => "4.5.6.2", CAPVERSION => 40504 , ); # @@ -1751,7 +1751,7 @@ my ( $lastkeyword, $prioromit, $included, $lastlinenumber ) = @ifstack ? @{$ifstack[-1]} : ('', 0, 0, 0 ); if ( $keyword =~ /^IF/ ) { - cond_error( "Missing IF expression" , $filename, $linenumber ) unless $expression; + cond_error( "Missing IF expression" , $filename, $linenumber ) unless supplied $expression; my $nextomitting = $omitting || ! evaluate_expression( $expression , $filename, $linenumber ); push @ifstack, [ 'IF', $omitting, ! $nextomitting, $linenumber ]; $omitting = $nextomitting; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/Perl/Shorewall/Misc.pm new/shorewall-4.5.6.2/Perl/Shorewall/Misc.pm --- old/shorewall-4.5.6/Perl/Shorewall/Misc.pm 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/Perl/Shorewall/Misc.pm 2012-08-08 17:42:30.000000000 +0200 @@ -1310,6 +1310,7 @@ sub handle_loopback_traffic() { my @zones = ( vserver_zones, firewall_zone ); my $natout = $nat_table->{OUTPUT}; + my $rawout = $raw_table->{OUTPUT}; my $rulenum = 0; my $outchainref; @@ -1333,6 +1334,7 @@ my $z1ref = find_zone( $z1 ); my $type1 = $z1ref->{type}; my $natref = $nat_table->{dnat_chain $z1}; + my $notrackref = $raw_table->{notrack_chain( $z1 )}; # # Add jumps in the 'output' chain to the rules chains # @@ -1342,10 +1344,32 @@ generate_dest_rules( $outchainref, $chain, $z2, @rule ) if $chain; } + # + # Handle conntrack + # + if ( $notrackref ) { + add_ijump $rawout, j => $notrackref if $notrackref->{referenced}; + } } else { for my $z2 ( @zones ) { generate_source_rules( $outchainref, $z1, $z2, @rule ); } + # + # Handle conntrack rules + # + if ( $notrackref->{referenced} ) { + for my $hostref ( @{defined_zone( $z1 )->{hosts}{ip}{'%vserver%'}} ) { + my $exclusion = source_exclusion( $hostref->{exclusions}, $notrackref); + my @ipsec_match = match_ipsec_in $z1 , $hostref; + + for my $net ( @{$hostref->{hosts}} ) { + add_ijump( $rawout, + j => $exclusion , + imatch_source_net $net, + @ipsec_match ); + } + } + } } if ( $natref && $natref->{referenced} ) { @@ -1960,12 +1984,6 @@ } } # - # NOTRACK from firewall - # - if ( ( my $notrackref = $raw_table->{notrack_chain(firewall_zone)}) ) { - add_ijump $raw_table->{OUTPUT}, j => $notrackref if $notrackref->{referenced}; - } - # # Main source-zone matrix-generation loop # progress_message ' Entering main matrix-generation loop...'; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/Perl/Shorewall/Nat.pm new/shorewall-4.5.6.2/Perl/Shorewall/Nat.pm --- old/shorewall-4.5.6/Perl/Shorewall/Nat.pm 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/Perl/Shorewall/Nat.pm 2012-08-08 17:42:30.000000000 +0200 @@ -632,12 +632,13 @@ # # And generate the nat table rule(s) # + my $firewallsource = $sourceref && ( $sourceref->{type} & ( FIREWALL | VSERVER ) ); + expand_rule ( ensure_chain ('nat' , - ( $action_chain ? - $action_chain : - ( $sourceref->{type} == FIREWALL ? 'OUTPUT' : - dnat_chain $sourceref->{name} ) ) ), - PREROUTE_RESTRICT , + ( $action_chain ? $action_chain : + $firewallsource ? 'OUTPUT' : + dnat_chain $sourceref->{name} ) ) , + $firewallsource ? OUTPUT_RESTRICT : PREROUTE_RESTRICT , $rule , $source , $origdest , diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/changelog.txt new/shorewall-4.5.6.2/changelog.txt --- old/shorewall-4.5.6/changelog.txt 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/changelog.txt 2012-08-08 17:42:30.000000000 +0200 @@ -1,3 +1,18 @@ +Changes in 4.5.6 2 + +1) Don't allow a SOURCE interface in DNAT/REDIRECT rules from the + firewall. + +2) Handle raw table entries from Vservers + +3) Correct Helper table + +4) Allow '?IF 0' + +Changes in 4.5.6 1 + +1) Correct systemctl command in installers. + Changes in 4.5.6 Final 1) Update release documents. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/configure new/shorewall-4.5.6.2/configure --- old/shorewall-4.5.6/configure 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/configure 2012-08-08 17:42:30.000000000 +0200 @@ -28,7 +28,7 @@ # # Build updates this # -VERSION=4.5.6 +VERSION=4.5.6.2 case "$BASH_VERSION" in [4-9].*) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/configure.pl new/shorewall-4.5.6.2/configure.pl --- old/shorewall-4.5.6/configure.pl 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/configure.pl 2012-08-08 17:42:30.000000000 +0200 @@ -31,7 +31,7 @@ # Build updates this # use constant { - VERSION => '4.5.6' + VERSION => '4.5.6.2' }; my %params; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/install.sh new/shorewall-4.5.6.2/install.sh --- old/shorewall-4.5.6/install.sh 2012-07-09 19:59:18.000000000 +0200 +++ new/shorewall-4.5.6.2/install.sh 2012-08-08 17:42:30.000000000 +0200 @@ -22,7 +22,7 @@ # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # -VERSION=4.5.6 +VERSION=4.5.6.2 # # Change to the directory containing this script @@ -1131,7 +1131,7 @@ perl -p -w -i -e 's/^STARTUP_ENABLED=No/STARTUP_ENABLED=Yes/;s/^IP_FORWARDING=On/IP_FORWARDING=Keep/;s/^SUBSYSLOCK=.*/SUBSYSLOCK=/;' ${CONFDIR}/$PRODUCT/$PRODUCT.conf update-rc.d $PRODUCT enable elif [ -n "$SYSTEMD" ]; then - if systemctl enable $PRODUCT; then + if systemctl enable ${PRODUCT}.service; then echo "$Product will start automatically at boot" fi elif mywhich insserv; then diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/known_problems.txt new/shorewall-4.5.6.2/known_problems.txt --- old/shorewall-4.5.6/known_problems.txt 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/known_problems.txt 2012-08-08 17:42:30.000000000 +0200 @@ -1,2 +1,41 @@ 1) On systems running Upstart, shorewall-init cannot reliably secure the firewall before interfaces are brought up. + +2) The installers are not enabling startup at boot when systemd is + installed. + + Workaround: After you install the product, type + + systemctl enable <product>.service + + where <product> is shorewall, shorewall6, shorewall-lite, + shorewall6-lite, or shorewall-init + + Corrected in Shorewall 4.5.6.1. + +2) The compiler fails to generate an error when a SOURCE interface is + specified in a rule where the SOURCE zone is the firewall + itself. Such a rule results in an iptables-restore failure. + + Corrected in Shorewall 4.5.6.2. + +3) Entries in /etc/shorewall/notrack that specify a Vserver zone in + the SOURCE column are omitted from the generated ruleset. + + Workaround: Specify the firewall zone qualified by the appropriate + address(es) in the SOURCE column. + + Corrected in Shorewall 4.5.6.2. + +3) The set of helpers available in the notrack file and in the HELPER + column of the tcrules file are incorrect: + + - The Amanda helper requires a UDP port -- Shorewall is requiring + TCP. + + - The H323 module supplies two helpers: 'RAW' and 'Q.931'; + Shorewall only accepts 'h323'. + + Corrected in Shorewall 4.5.6.2. + + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-accounting.5 new/shorewall-4.5.6.2/manpages/shorewall-accounting.5 --- old/shorewall-4.5.6/manpages/shorewall-accounting.5 2012-07-09 19:59:23.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-accounting.5 2012-08-08 17:42:33.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-accounting .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-ACCOUNTIN" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-ACCOUNTIN" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-actions.5 new/shorewall-4.5.6.2/manpages/shorewall-actions.5 --- old/shorewall-4.5.6/manpages/shorewall-actions.5 2012-07-09 19:59:26.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-actions.5 2012-08-08 17:42:35.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-actions .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-ACTIONS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-ACTIONS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-blacklist.5 new/shorewall-4.5.6.2/manpages/shorewall-blacklist.5 --- old/shorewall-4.5.6/manpages/shorewall-blacklist.5 2012-07-09 19:59:29.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-blacklist.5 2012-08-08 17:42:37.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-blacklist .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-BLACKLIST" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-BLACKLIST" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-blrules.5 new/shorewall-4.5.6.2/manpages/shorewall-blrules.5 --- old/shorewall-4.5.6/manpages/shorewall-blrules.5 2012-07-09 19:59:31.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-blrules.5 2012-08-08 17:42:39.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-blrules .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-BLRULES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-BLRULES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-ecn.5 new/shorewall-4.5.6.2/manpages/shorewall-ecn.5 --- old/shorewall-4.5.6/manpages/shorewall-ecn.5 2012-07-09 19:59:40.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-ecn.5 2012-08-08 17:42:45.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-ecn .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-ECN" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-ECN" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-exclusion.5 new/shorewall-4.5.6.2/manpages/shorewall-exclusion.5 --- old/shorewall-4.5.6/manpages/shorewall-exclusion.5 2012-07-09 19:59:43.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-exclusion.5 2012-08-08 17:42:47.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-exclusion .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-EXCLUSION" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-EXCLUSION" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-hosts.5 new/shorewall-4.5.6.2/manpages/shorewall-hosts.5 --- old/shorewall-4.5.6/manpages/shorewall-hosts.5 2012-07-09 19:59:46.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-hosts.5 2012-08-08 17:42:49.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-hosts .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-HOSTS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-HOSTS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-init.8 new/shorewall-4.5.6.2/manpages/shorewall-init.8 --- old/shorewall-4.5.6/manpages/shorewall-init.8 2012-07-09 20:04:09.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-init.8 2012-08-08 17:42:51.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-init .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-INIT" "8" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-INIT" "8" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-interfaces.5 new/shorewall-4.5.6.2/manpages/shorewall-interfaces.5 --- old/shorewall-4.5.6/manpages/shorewall-interfaces.5 2012-07-09 19:59:52.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-interfaces.5 2012-08-08 17:42:54.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-interfaces .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-INTERFACE" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-INTERFACE" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-ipsets.5 new/shorewall-4.5.6.2/manpages/shorewall-ipsets.5 --- old/shorewall-4.5.6/manpages/shorewall-ipsets.5 2012-07-09 19:59:55.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-ipsets.5 2012-08-08 17:42:56.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-ipsets .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-IPSETS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-IPSETS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-maclist.5 new/shorewall-4.5.6.2/manpages/shorewall-maclist.5 --- old/shorewall-4.5.6/manpages/shorewall-maclist.5 2012-07-09 19:59:58.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-maclist.5 2012-08-08 17:42:58.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-maclist .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-MACLIST" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-MACLIST" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-masq.5 new/shorewall-4.5.6.2/manpages/shorewall-masq.5 --- old/shorewall-4.5.6/manpages/shorewall-masq.5 2012-07-09 20:00:01.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-masq.5 2012-08-08 17:43:00.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-masq .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-MASQ" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-MASQ" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-modules.5 new/shorewall-4.5.6.2/manpages/shorewall-modules.5 --- old/shorewall-4.5.6/manpages/shorewall-modules.5 2012-07-09 20:00:03.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-modules.5 2012-08-08 17:43:02.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-modules .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-MODULES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-MODULES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-nat.5 new/shorewall-4.5.6.2/manpages/shorewall-nat.5 --- old/shorewall-4.5.6/manpages/shorewall-nat.5 2012-07-09 20:00:06.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-nat.5 2012-08-08 17:43:04.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-nat .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-NAT" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-NAT" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-nesting.5 new/shorewall-4.5.6.2/manpages/shorewall-nesting.5 --- old/shorewall-4.5.6/manpages/shorewall-nesting.5 2012-07-09 20:00:10.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-nesting.5 2012-08-08 17:43:06.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-nesting .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-NESTING" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-NESTING" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-netmap.5 new/shorewall-4.5.6.2/manpages/shorewall-netmap.5 --- old/shorewall-4.5.6/manpages/shorewall-netmap.5 2012-07-09 20:00:12.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-netmap.5 2012-08-08 17:43:08.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-netmap .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-NETMAP" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-NETMAP" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-notrack.5 new/shorewall-4.5.6.2/manpages/shorewall-notrack.5 --- old/shorewall-4.5.6/manpages/shorewall-notrack.5 2012-07-09 20:00:15.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-notrack.5 2012-08-08 17:43:10.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall6-notrack .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL6\-NOTRACK" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL6\-NOTRACK" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-params.5 new/shorewall-4.5.6.2/manpages/shorewall-params.5 --- old/shorewall-4.5.6/manpages/shorewall-params.5 2012-07-09 20:00:18.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-params.5 2012-08-08 17:43:12.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-params .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-PARAMS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-PARAMS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-policy.5 new/shorewall-4.5.6.2/manpages/shorewall-policy.5 --- old/shorewall-4.5.6/manpages/shorewall-policy.5 2012-07-09 20:00:21.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-policy.5 2012-08-08 17:43:14.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-policy .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-POLICY" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-POLICY" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-providers.5 new/shorewall-4.5.6.2/manpages/shorewall-providers.5 --- old/shorewall-4.5.6/manpages/shorewall-providers.5 2012-07-09 20:00:24.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-providers.5 2012-08-08 17:43:16.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-providers .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-PROVIDERS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-PROVIDERS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-proxyarp.5 new/shorewall-4.5.6.2/manpages/shorewall-proxyarp.5 --- old/shorewall-4.5.6/manpages/shorewall-proxyarp.5 2012-07-09 20:00:27.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-proxyarp.5 2012-08-08 17:43:18.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-proxyarp .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-PROXYARP" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-PROXYARP" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-routes.5 new/shorewall-4.5.6.2/manpages/shorewall-routes.5 --- old/shorewall-4.5.6/manpages/shorewall-routes.5 2012-07-09 20:00:32.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-routes.5 2012-08-08 17:43:22.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-routes .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-ROUTES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-ROUTES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-routestopped.5 new/shorewall-4.5.6.2/manpages/shorewall-routestopped.5 --- old/shorewall-4.5.6/manpages/shorewall-routestopped.5 2012-07-09 20:00:29.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-routestopped.5 2012-08-08 17:43:20.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-routestopped .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-ROUTESTOP" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-ROUTESTOP" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-rtrules.5 new/shorewall-4.5.6.2/manpages/shorewall-rtrules.5 --- old/shorewall-4.5.6/manpages/shorewall-rtrules.5 2012-07-09 20:00:34.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-rtrules.5 2012-08-08 17:43:24.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-rtrules .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-RTRULES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-RTRULES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-rules.5 new/shorewall-4.5.6.2/manpages/shorewall-rules.5 --- old/shorewall-4.5.6/manpages/shorewall-rules.5 2012-07-09 20:00:38.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-rules.5 2012-08-08 17:43:27.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-rules .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-RULES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-RULES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-secmarks.5 new/shorewall-4.5.6.2/manpages/shorewall-secmarks.5 --- old/shorewall-4.5.6/manpages/shorewall-secmarks.5 2012-07-09 20:00:41.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-secmarks.5 2012-08-08 17:43:29.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-secmarks .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-SECMARKS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-SECMARKS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tcclasses.5 new/shorewall-4.5.6.2/manpages/shorewall-tcclasses.5 --- old/shorewall-4.5.6/manpages/shorewall-tcclasses.5 2012-07-09 20:00:43.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tcclasses.5 2012-08-08 17:43:31.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tcclasses .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TCCLASSES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TCCLASSES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tcdevices.5 new/shorewall-4.5.6.2/manpages/shorewall-tcdevices.5 --- old/shorewall-4.5.6/manpages/shorewall-tcdevices.5 2012-07-09 20:00:46.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tcdevices.5 2012-08-08 17:43:33.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tcdevices .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TCDEVICES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TCDEVICES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tcfilters.5 new/shorewall-4.5.6.2/manpages/shorewall-tcfilters.5 --- old/shorewall-4.5.6/manpages/shorewall-tcfilters.5 2012-07-09 20:00:49.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tcfilters.5 2012-08-08 17:43:35.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tcfilters .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TCFILTERS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TCFILTERS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tcinterfaces.5 new/shorewall-4.5.6.2/manpages/shorewall-tcinterfaces.5 --- old/shorewall-4.5.6/manpages/shorewall-tcinterfaces.5 2012-07-09 20:00:51.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tcinterfaces.5 2012-08-08 17:43:37.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tcinterfaces .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TCINTERFA" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TCINTERFA" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tcpri.5 new/shorewall-4.5.6.2/manpages/shorewall-tcpri.5 --- old/shorewall-4.5.6/manpages/shorewall-tcpri.5 2012-07-09 20:00:54.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tcpri.5 2012-08-08 17:43:39.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tcpri .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TCPRI" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TCPRI" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tcrules.5 new/shorewall-4.5.6.2/manpages/shorewall-tcrules.5 --- old/shorewall-4.5.6/manpages/shorewall-tcrules.5 2012-07-09 20:00:57.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tcrules.5 2012-08-08 17:43:42.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tcrules .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TCRULES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TCRULES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tos.5 new/shorewall-4.5.6.2/manpages/shorewall-tos.5 --- old/shorewall-4.5.6/manpages/shorewall-tos.5 2012-07-09 20:01:00.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tos.5 2012-08-08 17:43:44.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tos .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TOS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TOS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-tunnels.5 new/shorewall-4.5.6.2/manpages/shorewall-tunnels.5 --- old/shorewall-4.5.6/manpages/shorewall-tunnels.5 2012-07-09 20:01:02.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-tunnels.5 2012-08-08 17:43:46.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-tunnels .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-TUNNELS" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-TUNNELS" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-vardir.5 new/shorewall-4.5.6.2/manpages/shorewall-vardir.5 --- old/shorewall-4.5.6/manpages/shorewall-vardir.5 2012-07-09 20:01:05.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-vardir.5 2012-08-08 17:43:48.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-vardir .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-VARDIR" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-VARDIR" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall-zones.5 new/shorewall-4.5.6.2/manpages/shorewall-zones.5 --- old/shorewall-4.5.6/manpages/shorewall-zones.5 2012-07-09 20:01:12.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall-zones.5 2012-08-08 17:43:53.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-zones .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-ZONES" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-ZONES" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall.8 new/shorewall-4.5.6.2/manpages/shorewall.8 --- old/shorewall-4.5.6/manpages/shorewall.8 2012-07-09 20:05:30.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall.8 2012-08-08 17:43:50.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL" "8" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL" "8" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/manpages/shorewall.conf.5 new/shorewall-4.5.6.2/manpages/shorewall.conf.5 --- old/shorewall-4.5.6/manpages/shorewall.conf.5 2012-07-09 20:03:58.000000000 +0200 +++ new/shorewall-4.5.6.2/manpages/shorewall.conf.5 2012-08-08 17:42:43.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall.conf .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/09/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\&.CONF" "5" "07/09/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\&.CONF" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/releasenotes.txt new/shorewall-4.5.6.2/releasenotes.txt --- old/shorewall-4.5.6/releasenotes.txt 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/releasenotes.txt 2012-08-08 17:42:30.000000000 +0200 @@ -1,7 +1,7 @@ ---------------------------------------------------------------------------- - S H O R E W A L L 4 . 5 . 6 + S H O R E W A L L 4 . 5 . 6 . 2 ------------------------------------ - J u l y 1 0 , 2 0 1 2 + A u g u s t 0 8 , 2 0 1 2 ---------------------------------------------------------------------------- I. PROBLEMS CORRECTED IN THIS RELEASE @@ -15,6 +15,35 @@ I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E ---------------------------------------------------------------------------- +4.5.6.2 + +1) The compiler now generates an error when a SOURCE interface is + specified in a rule where the SOURCE zone is the firewall itself. + +2) Previously, entries in /etc/shorewall/notrack that specified a + Vserver zone in the SOURCE column were omitted from the generated + ruleset. + +3) The set of helpers available in the notrack file and in the HELPER + column of the tcrules file was incorrect: + + - The Amanda helper requires a UDP port -- Shorewall was requiring + TCP. + + - The H323 module supplies two helpers: 'RAW' and 'Q.931'; + Shorewall only accepted 'h323'. + +4) The conditional directive '?IF 0' generated an error from the + compiler. It now causes following lines to be omitted. + +4.5.6.1 + +1) The 'systemctl' command in the Shorewall[6], Shorewall[6] Lite and + Shorewall Init installers was incorrect with the result that the + product was not started automatically on boot. + +4.5.6 + 1) This release includes the defect repairs from Shorewall 4.5.5.1 through 4.5.5.4. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/shorewall.spec new/shorewall-4.5.6.2/shorewall.spec --- old/shorewall-4.5.6/shorewall.spec 2012-07-09 19:59:19.000000000 +0200 +++ new/shorewall-4.5.6.2/shorewall.spec 2012-08-08 17:42:30.000000000 +0200 @@ -1,6 +1,6 @@ %define name shorewall %define version 4.5.6 -%define release 0base +%define release 2 Summary: Shoreline Firewall is an iptables-based firewall for Linux systems. Name: %{name} @@ -120,6 +120,10 @@ %doc COPYING INSTALL changelog.txt releasenotes.txt Contrib/* Samples %changelog +* Wed Aug 08 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-2 +* Sat Jul 14 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-1 * Thu Jul 05 2012 Tom Eastep tom@shorewall.net - Updated to 4.5.6-0base * Sat Jun 30 2012 Tom Eastep tom@shorewall.net diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-4.5.6/uninstall.sh new/shorewall-4.5.6.2/uninstall.sh --- old/shorewall-4.5.6/uninstall.sh 2012-07-09 19:59:18.000000000 +0200 +++ new/shorewall-4.5.6.2/uninstall.sh 2012-08-08 17:42:30.000000000 +0200 @@ -26,7 +26,7 @@ # You may only use this script to uninstall the version # shown below. Simply run this script to remove Shorewall Firewall -VERSION=4.5.6 +VERSION=4.5.6.2 usage() # $1 = exit status { ++++++ shorewall-core-4.5.6.tar.bz2 -> shorewall-core-4.5.6.2.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/changelog.txt new/shorewall-core-4.5.6.2/changelog.txt --- old/shorewall-core-4.5.6/changelog.txt 2012-07-07 20:07:11.000000000 +0200 +++ new/shorewall-core-4.5.6.2/changelog.txt 2012-08-08 17:42:30.000000000 +0200 @@ -1,3 +1,18 @@ +Changes in 4.5.6 2 + +1) Don't allow a SOURCE interface in DNAT/REDIRECT rules from the + firewall. + +2) Handle raw table entries from Vservers + +3) Correct Helper table + +4) Allow '?IF 0' + +Changes in 4.5.6 1 + +1) Correct systemctl command in installers. + Changes in 4.5.6 Final 1) Update release documents. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/configure new/shorewall-core-4.5.6.2/configure --- old/shorewall-core-4.5.6/configure 2012-07-07 20:07:09.000000000 +0200 +++ new/shorewall-core-4.5.6.2/configure 2012-08-08 17:42:30.000000000 +0200 @@ -28,7 +28,7 @@ # # Build updates this # -VERSION=4.5.6 +VERSION=4.5.6.2 case "$BASH_VERSION" in [4-9].*) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/configure.pl new/shorewall-core-4.5.6.2/configure.pl --- old/shorewall-core-4.5.6/configure.pl 2012-07-07 20:07:09.000000000 +0200 +++ new/shorewall-core-4.5.6.2/configure.pl 2012-08-08 17:42:30.000000000 +0200 @@ -31,7 +31,7 @@ # Build updates this # use constant { - VERSION => '4.5.6' + VERSION => '4.5.6.2' }; my %params; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/install.sh new/shorewall-core-4.5.6.2/install.sh --- old/shorewall-core-4.5.6/install.sh 2012-07-07 20:07:09.000000000 +0200 +++ new/shorewall-core-4.5.6.2/install.sh 2012-08-08 17:42:30.000000000 +0200 @@ -22,7 +22,7 @@ # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # -VERSION=4.5.6 +VERSION=4.5.6.2 usage() # $1 = exit status { diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/known_problems.txt new/shorewall-core-4.5.6.2/known_problems.txt --- old/shorewall-core-4.5.6/known_problems.txt 2012-07-07 20:07:11.000000000 +0200 +++ new/shorewall-core-4.5.6.2/known_problems.txt 2012-08-08 17:42:30.000000000 +0200 @@ -1,2 +1,41 @@ 1) On systems running Upstart, shorewall-init cannot reliably secure the firewall before interfaces are brought up. + +2) The installers are not enabling startup at boot when systemd is + installed. + + Workaround: After you install the product, type + + systemctl enable <product>.service + + where <product> is shorewall, shorewall6, shorewall-lite, + shorewall6-lite, or shorewall-init + + Corrected in Shorewall 4.5.6.1. + +2) The compiler fails to generate an error when a SOURCE interface is + specified in a rule where the SOURCE zone is the firewall + itself. Such a rule results in an iptables-restore failure. + + Corrected in Shorewall 4.5.6.2. + +3) Entries in /etc/shorewall/notrack that specify a Vserver zone in + the SOURCE column are omitted from the generated ruleset. + + Workaround: Specify the firewall zone qualified by the appropriate + address(es) in the SOURCE column. + + Corrected in Shorewall 4.5.6.2. + +3) The set of helpers available in the notrack file and in the HELPER + column of the tcrules file are incorrect: + + - The Amanda helper requires a UDP port -- Shorewall is requiring + TCP. + + - The H323 module supplies two helpers: 'RAW' and 'Q.931'; + Shorewall only accepts 'h323'. + + Corrected in Shorewall 4.5.6.2. + + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/releasenotes.txt new/shorewall-core-4.5.6.2/releasenotes.txt --- old/shorewall-core-4.5.6/releasenotes.txt 2012-07-07 20:07:11.000000000 +0200 +++ new/shorewall-core-4.5.6.2/releasenotes.txt 2012-08-08 17:42:30.000000000 +0200 @@ -1,7 +1,7 @@ ---------------------------------------------------------------------------- - S H O R E W A L L 4 . 5 . 6 + S H O R E W A L L 4 . 5 . 6 . 2 ------------------------------------ - J u l y 1 0 , 2 0 1 2 + A u g u s t 0 8 , 2 0 1 2 ---------------------------------------------------------------------------- I. PROBLEMS CORRECTED IN THIS RELEASE @@ -15,6 +15,35 @@ I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E ---------------------------------------------------------------------------- +4.5.6.2 + +1) The compiler now generates an error when a SOURCE interface is + specified in a rule where the SOURCE zone is the firewall itself. + +2) Previously, entries in /etc/shorewall/notrack that specified a + Vserver zone in the SOURCE column were omitted from the generated + ruleset. + +3) The set of helpers available in the notrack file and in the HELPER + column of the tcrules file was incorrect: + + - The Amanda helper requires a UDP port -- Shorewall was requiring + TCP. + + - The H323 module supplies two helpers: 'RAW' and 'Q.931'; + Shorewall only accepted 'h323'. + +4) The conditional directive '?IF 0' generated an error from the + compiler. It now causes following lines to be omitted. + +4.5.6.1 + +1) The 'systemctl' command in the Shorewall[6], Shorewall[6] Lite and + Shorewall Init installers was incorrect with the result that the + product was not started automatically on boot. + +4.5.6 + 1) This release includes the defect repairs from Shorewall 4.5.5.1 through 4.5.5.4. @@ -358,7 +387,7 @@ SYSCONFDIR. ---------------------------------------------------------------------------- - N E W F E A T U R E S I N 4 . 5 . 4 + N E W F E A T U R E S I N 4 . 5 . 5 ---------------------------------------------------------------------------- 1) It is now possible to include additional information in netfilter diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/shorewall-core.spec new/shorewall-core-4.5.6.2/shorewall-core.spec --- old/shorewall-core-4.5.6/shorewall-core.spec 2012-07-07 20:07:11.000000000 +0200 +++ new/shorewall-core-4.5.6.2/shorewall-core.spec 2012-08-08 17:42:30.000000000 +0200 @@ -1,6 +1,6 @@ %define name shorewall-core %define version 4.5.6 -%define release 0base +%define release 2 Summary: Shoreline Firewall is an iptables-based firewall for Linux systems. Name: %{name} @@ -62,6 +62,10 @@ %doc COPYING INSTALL changelog.txt releasenotes.txt %changelog +* Wed Aug 08 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-2 +* Sat Jul 14 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-1 * Thu Jul 05 2012 Tom Eastep tom@shorewall.net - Updated to 4.5.6-0base * Sat Jun 30 2012 Tom Eastep tom@shorewall.net diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-core-4.5.6/uninstall.sh new/shorewall-core-4.5.6.2/uninstall.sh --- old/shorewall-core-4.5.6/uninstall.sh 2012-07-07 20:07:09.000000000 +0200 +++ new/shorewall-core-4.5.6.2/uninstall.sh 2012-08-08 17:42:30.000000000 +0200 @@ -26,7 +26,7 @@ # You may only use this script to uninstall the version # shown below. Simply run this script to remove Shorewall Firewall -VERSION=4.5.6 +VERSION=4.5.6.2 usage() # $1 = exit status { ++++++ shorewall-docs-html-4.5.6.tar.bz2 -> shorewall-docs-html-4.5.6.2.tar.bz2 ++++++ ++++ 6209 lines of diff (skipped) ++++++ shorewall-init-4.5.6.tar.bz2 -> shorewall-init-4.5.6.2.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-init-4.5.6/changelog.txt new/shorewall-init-4.5.6.2/changelog.txt --- old/shorewall-init-4.5.6/changelog.txt 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-init-4.5.6.2/changelog.txt 2012-08-08 17:42:31.000000000 +0200 @@ -1,3 +1,18 @@ +Changes in 4.5.6 2 + +1) Don't allow a SOURCE interface in DNAT/REDIRECT rules from the + firewall. + +2) Handle raw table entries from Vservers + +3) Correct Helper table + +4) Allow '?IF 0' + +Changes in 4.5.6 1 + +1) Correct systemctl command in installers. + Changes in 4.5.6 Final 1) Update release documents. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-init-4.5.6/configure new/shorewall-init-4.5.6.2/configure --- old/shorewall-init-4.5.6/configure 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-init-4.5.6.2/configure 2012-08-08 17:42:31.000000000 +0200 @@ -28,7 +28,7 @@ # # Build updates this # -VERSION=4.5.6 +VERSION=4.5.6.2 case "$BASH_VERSION" in [4-9].*) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-init-4.5.6/configure.pl new/shorewall-init-4.5.6.2/configure.pl --- old/shorewall-init-4.5.6/configure.pl 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-init-4.5.6.2/configure.pl 2012-08-08 17:42:31.000000000 +0200 @@ -31,7 +31,7 @@ # Build updates this # use constant { - VERSION => '4.5.6' + VERSION => '4.5.6.2' }; my %params; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-init-4.5.6/install.sh new/shorewall-init-4.5.6.2/install.sh --- old/shorewall-init-4.5.6/install.sh 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-init-4.5.6.2/install.sh 2012-08-08 17:42:31.000000000 +0200 @@ -23,7 +23,7 @@ # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # -VERSION=4.5.6 +VERSION=4.5.6.2 usage() # $1 = exit status { @@ -401,7 +401,7 @@ echo "Shorewall Init will start automatically at boot" else if [ -n "$SYSTEMD" ]; then - if systemctl enable shorewall-init; then + if systemctl enable shorewall-init.service; then echo "Shorewall Init will start automatically at boot" fi elif [ -x ${SBINDIR}/insserv -o -x /usr${SBINDIR}/insserv ]; then diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-init-4.5.6/releasenotes.txt new/shorewall-init-4.5.6.2/releasenotes.txt --- old/shorewall-init-4.5.6/releasenotes.txt 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-init-4.5.6.2/releasenotes.txt 2012-08-08 17:42:31.000000000 +0200 @@ -1,7 +1,7 @@ ---------------------------------------------------------------------------- - S H O R E W A L L 4 . 5 . 6 + S H O R E W A L L 4 . 5 . 6 . 2 ------------------------------------ - J u l y 1 0 , 2 0 1 2 + A u g u s t 0 8 , 2 0 1 2 ---------------------------------------------------------------------------- I. PROBLEMS CORRECTED IN THIS RELEASE @@ -15,6 +15,35 @@ I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E ---------------------------------------------------------------------------- +4.5.6.2 + +1) The compiler now generates an error when a SOURCE interface is + specified in a rule where the SOURCE zone is the firewall itself. + +2) Previously, entries in /etc/shorewall/notrack that specified a + Vserver zone in the SOURCE column were omitted from the generated + ruleset. + +3) The set of helpers available in the notrack file and in the HELPER + column of the tcrules file was incorrect: + + - The Amanda helper requires a UDP port -- Shorewall was requiring + TCP. + + - The H323 module supplies two helpers: 'RAW' and 'Q.931'; + Shorewall only accepted 'h323'. + +4) The conditional directive '?IF 0' generated an error from the + compiler. It now causes following lines to be omitted. + +4.5.6.1 + +1) The 'systemctl' command in the Shorewall[6], Shorewall[6] Lite and + Shorewall Init installers was incorrect with the result that the + product was not started automatically on boot. + +4.5.6 + 1) This release includes the defect repairs from Shorewall 4.5.5.1 through 4.5.5.4. @@ -358,7 +387,7 @@ SYSCONFDIR. ---------------------------------------------------------------------------- - N E W F E A T U R E S I N 4 . 5 . 4 + N E W F E A T U R E S I N 4 . 5 . 5 ---------------------------------------------------------------------------- 1) It is now possible to include additional information in netfilter diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-init-4.5.6/shorewall-init.spec new/shorewall-init-4.5.6.2/shorewall-init.spec --- old/shorewall-init-4.5.6/shorewall-init.spec 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-init-4.5.6.2/shorewall-init.spec 2012-08-08 17:42:31.000000000 +0200 @@ -1,6 +1,6 @@ %define name shorewall-init %define version 4.5.6 -%define release 0base +%define release 2 Summary: Shorewall-init adds functionality to Shoreline Firewall (Shorewall). Name: %{name} @@ -125,6 +125,10 @@ %doc COPYING changelog.txt releasenotes.txt %changelog +* Wed Aug 08 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-2 +* Sat Jul 14 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-1 * Thu Jul 05 2012 Tom Eastep tom@shorewall.net - Updated to 4.5.6-0base * Sat Jun 30 2012 Tom Eastep tom@shorewall.net diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-init-4.5.6/uninstall.sh new/shorewall-init-4.5.6.2/uninstall.sh --- old/shorewall-init-4.5.6/uninstall.sh 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-init-4.5.6.2/uninstall.sh 2012-08-08 17:42:31.000000000 +0200 @@ -26,7 +26,7 @@ # You may only use this script to uninstall the version # shown below. Simply run this script to remove Shorewall Firewall -VERSION=4.5.6 +VERSION=4.5.6.2 usage() # $1 = exit status { ++++++ shorewall-lite-4.5.6.tar.bz2 -> shorewall-lite-4.5.6.2.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/changelog.txt new/shorewall-lite-4.5.6.2/changelog.txt --- old/shorewall-lite-4.5.6/changelog.txt 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/changelog.txt 2012-08-08 17:42:31.000000000 +0200 @@ -1,3 +1,18 @@ +Changes in 4.5.6 2 + +1) Don't allow a SOURCE interface in DNAT/REDIRECT rules from the + firewall. + +2) Handle raw table entries from Vservers + +3) Correct Helper table + +4) Allow '?IF 0' + +Changes in 4.5.6 1 + +1) Correct systemctl command in installers. + Changes in 4.5.6 Final 1) Update release documents. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/configure new/shorewall-lite-4.5.6.2/configure --- old/shorewall-lite-4.5.6/configure 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/configure 2012-08-08 17:42:31.000000000 +0200 @@ -28,7 +28,7 @@ # # Build updates this # -VERSION=4.5.6 +VERSION=4.5.6.2 case "$BASH_VERSION" in [4-9].*) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/configure.pl new/shorewall-lite-4.5.6.2/configure.pl --- old/shorewall-lite-4.5.6/configure.pl 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/configure.pl 2012-08-08 17:42:31.000000000 +0200 @@ -31,7 +31,7 @@ # Build updates this # use constant { - VERSION => '4.5.6' + VERSION => '4.5.6.2' }; my %params; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/install.sh new/shorewall-lite-4.5.6.2/install.sh --- old/shorewall-lite-4.5.6/install.sh 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/install.sh 2012-08-08 17:42:31.000000000 +0200 @@ -22,7 +22,7 @@ # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # -VERSION=4.5.6 +VERSION=4.5.6.2 usage() # $1 = exit status { @@ -499,7 +499,7 @@ perl -p -w -i -e 's/^STARTUP_ENABLED=No/STARTUP_ENABLED=Yes/;s/^IP_FORWARDING=On/IP_FORWARDING=Keep/;s/^SUBSYSLOCK=.*/SUBSYSLOCK=/;' ${CONFDIR}/${PRODUCT}/${PRODUCT}.conf update-rc.d $PRODUCT enable defaults elif [ -n "$SYSTEMD" ]; then - if systemctl enable $PRODUCT; then + if systemctl enable ${PRODUCT}.service; then echo "$Product will start automatically at boot" fi elif mywhich insserv; then diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/manpages/shorewall-lite-vardir.5 new/shorewall-lite-4.5.6.2/manpages/shorewall-lite-vardir.5 --- old/shorewall-lite-4.5.6/manpages/shorewall-lite-vardir.5 2012-07-07 20:13:55.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/manpages/shorewall-lite-vardir.5 2012-08-08 17:47:57.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-lite-vardir .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/07/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-LITE\-VAR" "5" "07/07/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-LITE\-VAR" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/manpages/shorewall-lite.8 new/shorewall-lite-4.5.6.2/manpages/shorewall-lite.8 --- old/shorewall-lite-4.5.6/manpages/shorewall-lite.8 2012-07-07 20:18:00.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/manpages/shorewall-lite.8 2012-08-08 17:47:59.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-lite .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/07/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-LITE" "8" "07/07/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-LITE" "8" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/manpages/shorewall-lite.conf.5 new/shorewall-lite-4.5.6.2/manpages/shorewall-lite.conf.5 --- old/shorewall-lite-4.5.6/manpages/shorewall-lite.conf.5 2012-07-07 20:17:54.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/manpages/shorewall-lite.conf.5 2012-08-08 17:47:55.000000000 +0200 @@ -2,12 +2,12 @@ .\" Title: shorewall-lite.conf .\" Author: [FIXME: author] [see http://docbook.sf.net/el/author] .\" Generator: DocBook XSL Stylesheets v1.75.2 http://docbook.sf.net/ -.\" Date: 07/07/2012 +.\" Date: 08/08/2012 .\" Manual: [FIXME: manual] .\" Source: [FIXME: source] .\" Language: English .\" -.TH "SHOREWALL\-LITE\&.CO" "5" "07/07/2012" "[FIXME: source]" "[FIXME: manual]" +.TH "SHOREWALL\-LITE\&.CO" "5" "08/08/2012" "[FIXME: source]" "[FIXME: manual]" .\" ----------------------------------------------------------------- .\" * Define some portability stuff .\" ----------------------------------------------------------------- diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/releasenotes.txt new/shorewall-lite-4.5.6.2/releasenotes.txt --- old/shorewall-lite-4.5.6/releasenotes.txt 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/releasenotes.txt 2012-08-08 17:42:31.000000000 +0200 @@ -1,7 +1,7 @@ ---------------------------------------------------------------------------- - S H O R E W A L L 4 . 5 . 6 + S H O R E W A L L 4 . 5 . 6 . 2 ------------------------------------ - J u l y 1 0 , 2 0 1 2 + A u g u s t 0 8 , 2 0 1 2 ---------------------------------------------------------------------------- I. PROBLEMS CORRECTED IN THIS RELEASE @@ -15,6 +15,35 @@ I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E ---------------------------------------------------------------------------- +4.5.6.2 + +1) The compiler now generates an error when a SOURCE interface is + specified in a rule where the SOURCE zone is the firewall itself. + +2) Previously, entries in /etc/shorewall/notrack that specified a + Vserver zone in the SOURCE column were omitted from the generated + ruleset. + +3) The set of helpers available in the notrack file and in the HELPER + column of the tcrules file was incorrect: + + - The Amanda helper requires a UDP port -- Shorewall was requiring + TCP. + + - The H323 module supplies two helpers: 'RAW' and 'Q.931'; + Shorewall only accepted 'h323'. + +4) The conditional directive '?IF 0' generated an error from the + compiler. It now causes following lines to be omitted. + +4.5.6.1 + +1) The 'systemctl' command in the Shorewall[6], Shorewall[6] Lite and + Shorewall Init installers was incorrect with the result that the + product was not started automatically on boot. + +4.5.6 + 1) This release includes the defect repairs from Shorewall 4.5.5.1 through 4.5.5.4. @@ -358,7 +387,7 @@ SYSCONFDIR. ---------------------------------------------------------------------------- - N E W F E A T U R E S I N 4 . 5 . 4 + N E W F E A T U R E S I N 4 . 5 . 5 ---------------------------------------------------------------------------- 1) It is now possible to include additional information in netfilter diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/shorewall-lite.spec new/shorewall-lite-4.5.6.2/shorewall-lite.spec --- old/shorewall-lite-4.5.6/shorewall-lite.spec 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/shorewall-lite.spec 2012-08-08 17:42:31.000000000 +0200 @@ -1,6 +1,6 @@ %define name shorewall-lite %define version 4.5.6 -%define release 0base +%define release 2 %define initdir /etc/init.d Summary: Shoreline Firewall Lite is an iptables-based firewall for Linux systems. @@ -105,6 +105,10 @@ %doc COPYING changelog.txt releasenotes.txt %changelog +* Wed Aug 08 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-2 +* Sat Jul 14 2012 Tom Eastep tom@shorewall.net +- Updated to 4.5.6-1 * Thu Jul 05 2012 Tom Eastep tom@shorewall.net - Updated to 4.5.6-0base * Sat Jun 30 2012 Tom Eastep tom@shorewall.net diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/shorewall-lite-4.5.6/uninstall.sh new/shorewall-lite-4.5.6.2/uninstall.sh --- old/shorewall-lite-4.5.6/uninstall.sh 2012-07-07 20:07:12.000000000 +0200 +++ new/shorewall-lite-4.5.6.2/uninstall.sh 2012-08-08 17:42:31.000000000 +0200 @@ -26,7 +26,7 @@ # You may only use this script to uninstall the version # shown below. Simply run this script to remove Shorewall Firewall -VERSION=4.5.6 +VERSION=4.5.6.2 usage() # $1 = exit status { ++++++ shorewall-4.5.6.tar.bz2 -> shorewall6-4.5.6.2.tar.bz2 ++++++ ++++ 100244 lines of diff (skipped) ++++++ shorewall-lite-4.5.6.tar.bz2 -> shorewall6-lite-4.5.6.2.tar.bz2 ++++++ ++++ 6724 lines of diff (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org