84 lines
3.1 KiB
Plaintext
84 lines
3.1 KiB
Plaintext
0.9.9 - Brielle Bruns <bruns@2mbit.com>
|
|
- Loadable module support during firewall loading
|
|
- More init script fixes.
|
|
|
|
0.9.8a - Brielle Bruns <bruns@2mbit.com>
|
|
- Fixing executable file permission issues
|
|
- Use /bin/bash in initscript cause dash does not recognize
|
|
more advanced methods that bash can use. Oops. Easiest
|
|
way to keep up to date is to symlink /etc/init.d/firewall-sosdg
|
|
to /etc/firewall-sosdg/doc/firewall-sosdg.init
|
|
|
|
0.9.8 - Brielle Bruns <bruns@2mbit.com>
|
|
- Almost at v1.0 quality for my tastes
|
|
- BLOCK_(INCOMING/OUTGOING)_RFC1918 options to help sure up security of LAN space leakage
|
|
- Changes to LANDHCPSERVER so it accepts interface names, plus a possible fix for win7
|
|
hammering DHCP server for unknown reason?
|
|
- Cleanups
|
|
- No longer display list of blocked IPs, considering if they are
|
|
as long as my list is, they'll take 4 pages to display...
|
|
- New block file format, much more capable now, thanks to
|
|
an hour or two of improving my bash scripting skills to the
|
|
point where I can do more complex breakdowns of formats
|
|
- Rename blocked to ipv4-blocked since we're going to have
|
|
ipv6 support
|
|
- ipv6 blocking support. Different format for config file
|
|
because IPv6 uses :, which means we get to use | for both
|
|
ipv4 and ipv6 (goes against a previous commit)
|
|
|
|
0.9.7 - Brielle Bruns <bruns@2mbit.com>
|
|
- Support for marking packets, uses new config file and
|
|
IPv4_MARK file option
|
|
- MULTI-NIC-ARP-LOCK hack added, to fix what I consider to be an annoying 'feature' of
|
|
arp requests on Linux
|
|
- Allow use of multiport iptables module to reduce amount of rules
|
|
|
|
0.9.6 - Brielle Bruns <bruns@2mbit.com>
|
|
- Minor changes to procedures in planning of 1.0
|
|
|
|
0.9.5 - Brielle Bruns <bruns@2mbit.com>
|
|
- Makefile to automate building tarball and for future use
|
|
- More changes to port-forwards file to support source IP and external IP (existing
|
|
config _will_ be incompatible)
|
|
|
|
0.9.4 - Brielle Bruns <bruns@2mbit.com>
|
|
- Initscript
|
|
- stop-firewall for... stopping the firewall!
|
|
- Code cleanups
|
|
- Use of functions for some processes
|
|
- Fix DHCP rule
|
|
- Obsoleted NATRANGE, NATEXTIP, NATEXTIF
|
|
- Added NAT_RANGE which can take SNAT/MASQ rules
|
|
- Changed port forwarding rules to include external interface
|
|
|
|
0.9.3 - Brielle Bruns <bruns@2mbit.com>
|
|
- Misc tweaks and reorg
|
|
- Custom command files
|
|
|
|
0.9 - Brielle Bruns <bruns@2mbit.com>
|
|
- Colorize output
|
|
- Added outbound port blocking options
|
|
|
|
0.8 - Brielle Bruns <bruns@2mbit.com>
|
|
- IPv6 Connection Tracking fixes
|
|
- Strip ECN off of specific outbound packets
|
|
|
|
0.7 - Brielle Bruns <bruns@2mbit.com>
|
|
- MSS Clamp on IPv6
|
|
- MSS Fixes, yes, its ugly
|
|
- Beginning support for bogons filtering and updater
|
|
script. Does not work yet, so don't use.
|
|
|
|
0.6 - Brielle Bruns <bruns@2mbit.com>
|
|
- Fixed some potential ordering issues with NAT
|
|
- Added file for blocked IPs, plus new config option
|
|
|
|
0.5 - Brielle Bruns <bruns@2mbit.com>
|
|
- Fixing ipv6 UDP firewalling rules
|
|
- Fixing IPv6 client routing block rules
|
|
- Added new IPV6LAN interface option
|
|
|
|
0.4 - Brielle Bruns <bruns@2mbit.com>
|
|
- Added support for pre-run commands
|
|
- Fixed several bugs with NAT commands
|