SEARCH
NEWS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG
FORUM
DONATE



 
 
Changelog for pcx_firewall-2.10-3.i386.rpm :
Fri Nov 30 01:00:00 2001 James A. Pattie
- Version 2.10 - Removed the VeryTightStatic module as it is now being
maintained in the PCXFirewall Rules module.

Fri Nov 16 01:00:00 2001 James A. Pattie
- Version 2.9 - Major changes in how rules are generated and the ordering that
generator outputs rules and /proc entries in. See README and changelog in
generator for more details.

Thu Nov 8 01:00:00 2001 James A. Pattie
- Version 2.8 - Major change in how /proc is handled. Other cleanups and
enhancements were also done. We now support the use of ip instead of just
ifconfig to determine dynamic IP Addresses. Added
/etc/rc.d/init.d/iptables.pcx service script which will run the firewall
startfw and stopfw scripts. It is based off of RedHat\'s script.

Thu Oct 4 02:00:00 2001 James A. Pattie
- Version 2.7 - Changed the layout of the documentation files to clean things
up for the import into SF cvs. Updated install script to handle naming the
copied scripts after the rules module they were generated from.

Sun Sep 9 02:00:00 2001 James A. Pattie
- Version 2.6 - Fixed the file permission problem when generating files.
Updated the install script to have better argument support and have a verbose
option so you can see what is happening. Updated Rules.pm.

Sun Jul 15 02:00:00 2001 James A. Pattie
- Version 2.5 - Removed the protocol check for reject so that it can be
used for any protocol. Pointed out by Arne Bernin.

Sun Jul 15 02:00:00 2001 James A. Pattie
- Version 2.4 - If building the scripts off a custom rules file the
resulting scripts are placed in a directory with the same name as
the rules file being used (without the .pm ending of course).
The install script is now able to pull the scripts from a specified
directory using -s sourcedir or it will pull from output if no
directory is specified.

Sun Jun 17 02:00:00 2001 James A. Pattie
- Version 2.3:
Made locations be customizable.
Any of the antiSpoofing, logMartians, icmpRedirects, sourceRouting methods
can now have the interface defined to enable/disable or apply to all
interfaces (like it previously did).
limitting log and it\'s parent rules are now seperate things. You can specify
a rule which will log and only limit the log, the rule or neither/both via
the parameters you specify. See NOTE in the man pages.

Sat Apr 28 02:00:00 2001 James A. Pattie
- Version 2.2 - Rule fixes (bootp)
- Added optional \"Rules\" command line argument to use when running generator.
- Created Template.pm which is a stripped down version of Rules.pm and is
stored in the doc directory. Used to allow the user to have multiple rulesets
defined for use by generator.

Sun Apr 22 02:00:00 2001 James A. Pattie
- Version 2.1 - minor bug fixes and improvements in error generation code.
- Updated the default Rules to be a better template and fixed simple error
in FORWARD chain allow code. It was looking at the wrong interface.
- Added error checking for length of chain and log-prefix values.
- Moved some rules around so that they don\'t match too soon.
- Fixed the Squid allow rules.
- Changed the URL for the project in the rpm.
- Added some very important policy settings to stoppingRules.
- Fleshed out some more generic protocols for INPUT.

Fri Apr 20 02:00:00 2001 James A. Pattie
- Version 2.0 - Redesigned the firewall configuration to be a perl API which
provides easier \"design\" and \"programming\" of an iptables firewall.

- Updated the Rules so that ICMP traffic is allowed to reach the firewall.

- Updated the Rules so that the LOG rules had limits turned on.

- Made the log-prefix value be at most 29 characters.