Hi, the new version works fine, at least for me ;) BTW: Would be nice if there would be a way to ignore the loging based on ip/port rules. The problem i have is that my box is connected to a shared LAN where other customers are connected to as well. So my log gets spammed by the windows smb brodcast msg?s like (around 40000 lines per day) Dec 8 22:53:34 www kernel: SuSE-FW-UNALLOWED-TARGET IN=eth0 OUT= MAC=x.x.x.x.x..x.x.x.x.x.x SRC=1.1.1.20 DST=1.1.1.255 LEN=215 TOS=0x00 PREC=0x00 TTL=128 ID=935 PROTO=UDP SPT=138 DPT=138 LEN=195 I will still block them, but would like to avoid loging them when coming from the same LAN. Anyway the Stuff is quit usfull :)) Bye Holger

-----Original Message----- From: Marc Heuse [mailto:marc@suse.de] Sent: Saturday, December 08, 2001 7:53 PM To: suse-security@suse.com Cc: Kurt Garloff; ervee@moskovic.org Subject: [suse-security] SuSEfirewall v2.1 released

Hi,

SuSEfirewall2 v2.1 will be available within the next hour from http://www.suse.de/~marc/suse

CHANGES:

v2.1 08.12.01 GAMMA * Added '!' support to FW_REDIRECT (thanks to rkooijman@inergy.nl) * FW_ALLOW_*_HIGH_PORT change: related connections are now always allowed. Therefore changed the default of the options. * Added patch from <ervee@moskovic.org> for better log output. thanks!

Greets, Marc -- E@mail: marc@suse.de Function: Security Research and Advisory PGP: "lynx -source http://www.suse.de/~marc/marc.pgp | pgp -fka" Key fingerprint = B5 07 B6 4E 9C EF 27 EE 16 D9 70 D4 87 B5 63 6C Private: http://www.suse.de/~marc SuSE: http://www.suse.de/security

-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com