[Shorewall-announce] Re: [Shorewall-users] Shorewall 2.2.3

Simon Matter simon.matter at ch.sauter-bc.com
Thu Apr 7 22:51:19 PDT 2005


> http://shorewall.net/pub/shorewall/2.2/shorewall-2.2.3
> ftp://shorewall.net/pub/shorewall/2.2/shorewall-2.2.3
>
> Problems Corrected:
>
> 1) If a zone is defined in /etc/shorewall/hosts using
>    <interface>:!<network> in the HOSTS column then startup errors occur
on "shorewall [re]start".
>
> 2) Previously, if "shorewall status" was run on a system whose kernel
>    lacked advanced routing support (CONFIG_IP_ADVANCED_ROUTER),  then no
routing information was displayed.
>
> New Features
>
> 1) A new extension script "continue" has been added. This script is
>    invoked after Shorewall has set the built-in filter chains'
>    policy to DROP, deleted any existing Netfilter rules and user chains
and has enabled existing connections.

While packaging updated RedHat/Fedora rpms I discovered that the continue
file is missing in install.sh. Attached patch is my attempt to fix it.

The shorewall list eats attachements, here it is again.

Regards,
Simon

--- shorewall-2.2.3/install.sh.orig     2005-04-07 18:39:14.000000000 +0200
+++ shorewall-2.2.3/install.sh  2005-04-08 07:30:29.000000000 +0200
@@ -493,6 +493,15 @@
     echo "Accounting file installed as ${PREFIX}/etc/shorewall/accounting"
 fi
 #
+# Install the Continue file
+#
+if [ -f ${PREFIX}/etc/shorewall/continue ]; then
+    backup_file /etc/shorewall/continue
+else
+    run_install -o $OWNER -g $GROUP -m 0600 continue
${PREFIX}/etc/shorewall/continue
+    echo
+    echo "Continue file installed as ${PREFIX}/etc/shorewall/continue"
+fi
 #
 # Install the Standard Actions file
 #


More information about the Shorewall-announce mailing list