diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/changelog.txt shorewall6-5.0.15/changelog.txt
--- shorewall6-5.0.14/changelog.txt 2016-11-03 15:07:35.894678354 -0700
+++ shorewall6-5.0.15/changelog.txt 2016-12-02 15:08:38.121679138 -0800
@@ -1,3 +1,31 @@
+Changes in 5.0.15 Final
+
+1) Update release documents.
+
+2) Correct 'restore' exit status
+
+3) Correct optimizer defect in merge_rules().
+
+Changes in 5.0.15 RC 2
+
+1) Update release documents.
+
+2) Correct syntax error in Providers.pm.
+
+Changes in 5.0.15 RC 1
+
+1) Update release documents.
+
+2) Use $PAGER in 'show macro'.
+
+3) Implement the -p option
+
+Changes in 5.0.15 Beta 1
+
+1) Update release documents.
+
+2) Preserve shell variables over 'update'.
+
Changes in 5.0.14 Final
1) Update release documents.
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/configure shorewall6-5.0.15/configure
--- shorewall6-5.0.14/configure 2016-11-03 15:07:35.890678375 -0700
+++ shorewall6-5.0.15/configure 2016-12-02 15:08:38.117679123 -0800
@@ -28,7 +28,7 @@
#
# Build updates this
#
-VERSION=5.0.14
+VERSION=5.0.15
case "$BASH_VERSION" in
[4-9].*)
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/configure.pl shorewall6-5.0.15/configure.pl
--- shorewall6-5.0.14/configure.pl 2016-11-03 15:07:35.890678375 -0700
+++ shorewall6-5.0.15/configure.pl 2016-12-02 15:08:38.121679138 -0800
@@ -31,7 +31,7 @@
# Build updates this
#
use constant {
- VERSION => '5.0.14'
+ VERSION => '5.0.15'
};
my %params;
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/install.sh shorewall6-5.0.15/install.sh
--- shorewall6-5.0.14/install.sh 2016-11-03 15:07:35.894678354 -0700
+++ shorewall6-5.0.15/install.sh 2016-12-02 15:08:38.121679138 -0800
@@ -22,7 +22,7 @@
# along with this program; if not, see .
#
-VERSION=5.0.14
+VERSION=5.0.15
#
# Change to the directory containing this script
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6.8 shorewall6-5.0.15/manpages/shorewall6.8
--- shorewall6-5.0.14/manpages/shorewall6.8 2016-11-03 15:08:40.166338050 -0700
+++ shorewall6-5.0.15/manpages/shorewall6.8 2016-12-02 15:09:59.590001619 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Administrative Commands
.\" Source: Administrative Commands
.\" Language: English
.\"
-.TH "SHOREWALL6" "8" "11/03/2016" "Administrative Commands" "Administrative Commands"
+.TH "SHOREWALL6" "8" "12/02/2016" "Administrative Commands" "Administrative Commands"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
@@ -1607,7 +1607,9 @@
.sp -1
.IP " 3." 4.2
.\}
-INCLUDEd files will be expanded inline in the output file\&.
+With the exception of the
+notrack\->conntrack
+conversion, INCLUDEd files will be expanded inline in the output file\&.
.RE
.sp
.RS 4
@@ -1620,6 +1622,53 @@
.\}
Columns in the output file will be separated by a single tab character; there is no attempt made to otherwise align the columns\&.
.RE
+.sp
+.RS 4
+.ie n \{\
+\h'-04' 5.\h'+01'\c
+.\}
+.el \{\
+.sp -1
+.IP " 5." 4.2
+.\}
+Prior to Shorewall 5\&.0\&.15, shell variables will be expanded in the output file\&.
+.RE
+.sp
+.RS 4
+.ie n \{\
+\h'-04' 6.\h'+01'\c
+.\}
+.el \{\
+.sp -1
+.IP " 6." 4.2
+.\}
+Prior to Shorewall 5\&.0\&.15, lines omitted by compiler directives (?if \&.\&.\&.\&., etc\&.) will not appear in the output file\&.
+.if n \{\
+.sp
+.\}
+.RS 4
+.it 1 an-trap
+.nr an-no-space-flag 1
+.nr an-break-flag 1
+.br
+.ps +1
+\fBImportant\fR
+.ps -1
+.br
+Because the translation of the \*(Aqblacklist\*(Aq and \*(Aqroutestopped\*(Aq files is not 1:1, omitted lines and compiler directives are not transferred to the converted files\&. If either are present, the compiler issues a warning:
+.sp
+.if n \{\
+.RS 4
+.\}
+.nf
+ WARNING: "Omitted rules and compiler directives were not translated
+.fi
+.if n \{\
+.RE
+.\}
+.sp .5v
+.RE
+.RE
.sp .5v
.RE
The
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-accounting.5 shorewall6-5.0.15/manpages/shorewall6-accounting.5
--- shorewall6-5.0.14/manpages/shorewall6-accounting.5 2016-11-03 15:08:18.654451951 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-accounting.5 2016-12-02 15:09:30.965891229 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-accounting
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-ACCOUNTI" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-ACCOUNTI" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-actions.5 shorewall6-5.0.15/manpages/shorewall6-actions.5
--- shorewall6-5.0.14/manpages/shorewall6-actions.5 2016-11-03 15:08:19.170449218 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-actions.5 2016-12-02 15:09:31.609893746 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-actions
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-ACTIONS" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-ACTIONS" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-blrules.5 shorewall6-5.0.15/manpages/shorewall6-blrules.5
--- shorewall6-5.0.14/manpages/shorewall6-blrules.5 2016-11-03 15:08:19.746446169 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-blrules.5 2016-12-02 15:09:32.373896729 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-blrules
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-BLRULES" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-BLRULES" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6.conf.5 shorewall6-5.0.15/manpages/shorewall6.conf.5
--- shorewall6-5.0.14/manpages/shorewall6.conf.5 2016-11-03 15:08:21.566436532 -0700
+++ shorewall6-5.0.15/manpages/shorewall6.conf.5 2016-12-02 15:09:35.049907168 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6.conf
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\&.CONF" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\&.CONF" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-conntrack.5 shorewall6-5.0.15/manpages/shorewall6-conntrack.5
--- shorewall6-5.0.14/manpages/shorewall6-conntrack.5 2016-11-03 15:08:22.166433356 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-conntrack.5 2016-12-02 15:09:36.001910874 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-conntrack
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-CONNTRAC" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-CONNTRAC" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-exclusion.5 shorewall6-5.0.15/manpages/shorewall6-exclusion.5
--- shorewall6-5.0.14/manpages/shorewall6-exclusion.5 2016-11-03 15:08:22.674430667 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-exclusion.5 2016-12-02 15:09:36.749913783 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-exclusion
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-EXCLUSIO" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-EXCLUSIO" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-hosts.5 shorewall6-5.0.15/manpages/shorewall6-hosts.5
--- shorewall6-5.0.14/manpages/shorewall6-hosts.5 2016-11-03 15:08:23.182427976 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-hosts.5 2016-12-02 15:09:37.389916272 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-hosts
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-HOSTS" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-HOSTS" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-interfaces.5 shorewall6-5.0.15/manpages/shorewall6-interfaces.5
--- shorewall6-5.0.14/manpages/shorewall6-interfaces.5 2016-11-03 15:08:23.778424821 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-interfaces.5 2016-12-02 15:09:38.141919194 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-interfaces
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-INTERFAC" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-INTERFAC" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-ipsets.5 shorewall6-5.0.15/manpages/shorewall6-ipsets.5
--- shorewall6-5.0.14/manpages/shorewall6-ipsets.5 2016-11-03 15:08:24.294422088 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-ipsets.5 2016-12-02 15:09:38.869922019 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall-ipsets
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL\-IPSETS" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL\-IPSETS" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-maclist.5 shorewall6-5.0.15/manpages/shorewall6-maclist.5
--- shorewall6-5.0.14/manpages/shorewall6-maclist.5 2016-11-03 15:08:24.814419335 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-maclist.5 2016-12-02 15:09:39.461924316 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-maclist
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-MACLIST" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-MACLIST" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-mangle.5 shorewall6-5.0.15/manpages/shorewall6-mangle.5
--- shorewall6-5.0.14/manpages/shorewall6-mangle.5 2016-11-03 15:08:25.586415248 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-mangle.5 2016-12-02 15:09:40.329927681 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-mangle
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-MANGLE" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-MANGLE" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-masq.5 shorewall6-5.0.15/manpages/shorewall6-masq.5
--- shorewall6-5.0.14/manpages/shorewall6-masq.5 2016-11-03 15:08:26.138412325 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-masq.5 2016-12-02 15:09:41.169930935 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-masq
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-MASQ" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-MASQ" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-modules.5 shorewall6-5.0.15/manpages/shorewall6-modules.5
--- shorewall6-5.0.14/manpages/shorewall6-modules.5 2016-11-03 15:08:26.642409657 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-modules.5 2016-12-02 15:09:41.833933505 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-modules
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-MODULES" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-MODULES" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-nat.5 shorewall6-5.0.15/manpages/shorewall6-nat.5
--- shorewall6-5.0.14/manpages/shorewall6-nat.5 2016-11-03 15:08:27.150406966 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-nat.5 2016-12-02 15:09:42.497936074 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-nat
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-NAT" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-NAT" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-nesting.5 shorewall6-5.0.15/manpages/shorewall6-nesting.5
--- shorewall6-5.0.14/manpages/shorewall6-nesting.5 2016-11-03 15:08:27.674404192 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-nesting.5 2016-12-02 15:09:43.129938517 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-nesting
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-NESTING" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-NESTING" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-netmap.5 shorewall6-5.0.15/manpages/shorewall6-netmap.5
--- shorewall6-5.0.14/manpages/shorewall6-netmap.5 2016-11-03 15:08:28.194401439 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-netmap.5 2016-12-02 15:09:43.909941531 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-netmap
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-NETMAP" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-NETMAP" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-params.5 shorewall6-5.0.15/manpages/shorewall6-params.5
--- shorewall6-5.0.14/manpages/shorewall6-params.5 2016-11-03 15:08:28.726398622 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-params.5 2016-12-02 15:09:44.689944541 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-params
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-PARAMS" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-PARAMS" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-policy.5 shorewall6-5.0.15/manpages/shorewall6-policy.5
--- shorewall6-5.0.14/manpages/shorewall6-policy.5 2016-11-03 15:08:29.358395275 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-policy.5 2016-12-02 15:09:45.389947240 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-policy
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-POLICY" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-POLICY" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-providers.5 shorewall6-5.0.15/manpages/shorewall6-providers.5
--- shorewall6-5.0.14/manpages/shorewall6-providers.5 2016-11-03 15:08:29.958392099 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-providers.5 2016-12-02 15:09:46.373951033 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-providers
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-PROVIDER" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-PROVIDER" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-proxyndp.5 shorewall6-5.0.15/manpages/shorewall6-proxyndp.5
--- shorewall6-5.0.14/manpages/shorewall6-proxyndp.5 2016-11-03 15:08:30.474389367 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-proxyndp.5 2016-12-02 15:09:47.065953698 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-proxyndp
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-PROXYNDP" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-PROXYNDP" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-routes.5 shorewall6-5.0.15/manpages/shorewall6-routes.5
--- shorewall6-5.0.14/manpages/shorewall6-routes.5 2016-11-03 15:08:30.974386719 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-routes.5 2016-12-02 15:09:47.745956315 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-routes
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-ROUTES" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-ROUTES" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-rtrules.5 shorewall6-5.0.15/manpages/shorewall6-rtrules.5
--- shorewall6-5.0.14/manpages/shorewall6-rtrules.5 2016-11-03 15:08:31.502383924 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-rtrules.5 2016-12-02 15:09:48.513959269 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-rtrules
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-RTRULES" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-RTRULES" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-rules.5 shorewall6-5.0.15/manpages/shorewall6-rules.5
--- shorewall6-5.0.14/manpages/shorewall6-rules.5 2016-11-03 15:08:32.522378524 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-rules.5 2016-12-02 15:09:50.013965031 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-rules
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-RULES" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-RULES" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-secmarks.5 shorewall6-5.0.15/manpages/shorewall6-secmarks.5
--- shorewall6-5.0.14/manpages/shorewall6-secmarks.5 2016-11-03 15:08:33.058375685 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-secmarks.5 2016-12-02 15:09:50.753967871 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-secmarks
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-SECMARKS" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-SECMARKS" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-snat.5 shorewall6-5.0.15/manpages/shorewall6-snat.5
--- shorewall6-5.0.14/manpages/shorewall6-snat.5 2016-11-03 15:08:33.634372636 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-snat.5 2016-12-02 15:09:51.485970678 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-masq
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-MASQ" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-MASQ" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-stoppedrules.5 shorewall6-5.0.15/manpages/shorewall6-stoppedrules.5
--- shorewall6-5.0.14/manpages/shorewall6-stoppedrules.5 2016-11-03 15:08:34.146369924 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-stoppedrules.5 2016-12-02 15:09:52.481974494 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-stoppedrules
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-STOPPEDR" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-STOPPEDR" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-tcclasses.5 shorewall6-5.0.15/manpages/shorewall6-tcclasses.5
--- shorewall6-5.0.14/manpages/shorewall6-tcclasses.5 2016-11-03 15:08:34.734366812 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-tcclasses.5 2016-12-02 15:09:53.725979255 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-tcclasses
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-TCCLASSE" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-TCCLASSE" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-tcdevices.5 shorewall6-5.0.15/manpages/shorewall6-tcdevices.5
--- shorewall6-5.0.14/manpages/shorewall6-tcdevices.5 2016-11-03 15:08:35.266363994 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-tcdevices.5 2016-12-02 15:09:54.357981671 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-tcdevices
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-TCDEVICE" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-TCDEVICE" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-tcfilters.5 shorewall6-5.0.15/manpages/shorewall6-tcfilters.5
--- shorewall6-5.0.14/manpages/shorewall6-tcfilters.5 2016-11-03 15:08:35.818361072 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-tcfilters.5 2016-12-02 15:09:55.045984300 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-tcfilters
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-TCFILTER" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-TCFILTER" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-tcinterfaces.5 shorewall6-5.0.15/manpages/shorewall6-tcinterfaces.5
--- shorewall6-5.0.14/manpages/shorewall6-tcinterfaces.5 2016-11-03 15:08:36.330358360 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-tcinterfaces.5 2016-12-02 15:09:55.665986668 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-tcinterfaces
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-TCINTERF" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-TCINTERF" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-tcpri.5 shorewall6-5.0.15/manpages/shorewall6-tcpri.5
--- shorewall6-5.0.14/manpages/shorewall6-tcpri.5 2016-11-03 15:08:36.970354973 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-tcpri.5 2016-12-02 15:09:56.277989003 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-tcpri
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-TCPRI" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-TCPRI" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-tunnels.5 shorewall6-5.0.15/manpages/shorewall6-tunnels.5
--- shorewall6-5.0.14/manpages/shorewall6-tunnels.5 2016-11-03 15:08:37.838350376 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-tunnels.5 2016-12-02 15:09:56.929991490 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-tunnels
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-TUNNELS" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-TUNNELS" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-vardir.5 shorewall6-5.0.15/manpages/shorewall6-vardir.5
--- shorewall6-5.0.14/manpages/shorewall6-vardir.5 2016-11-03 15:08:38.546346628 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-vardir.5 2016-12-02 15:09:57.637994189 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-vardir
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-VARDIR" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-VARDIR" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/manpages/shorewall6-zones.5 shorewall6-5.0.15/manpages/shorewall6-zones.5
--- shorewall6-5.0.14/manpages/shorewall6-zones.5 2016-11-03 15:08:40.782334788 -0700
+++ shorewall6-5.0.15/manpages/shorewall6-zones.5 2016-12-02 15:10:00.306004341 -0800
@@ -2,12 +2,12 @@
.\" Title: shorewall6-zones
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
.\" Generator: DocBook XSL Stylesheets v1.78.1
-.\" Date: 11/03/2016
+.\" Date: 12/02/2016
.\" Manual: Configuration Files
.\" Source: Configuration Files
.\" Language: English
.\"
-.TH "SHOREWALL6\-ZONES" "5" "11/03/2016" "Configuration Files" "Configuration Files"
+.TH "SHOREWALL6\-ZONES" "5" "12/02/2016" "Configuration Files" "Configuration Files"
.\" -----------------------------------------------------------------
.\" * Define some portability stuff
.\" -----------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/releasenotes.txt shorewall6-5.0.15/releasenotes.txt
--- shorewall6-5.0.14/releasenotes.txt 2016-11-03 15:07:35.894678354 -0700
+++ shorewall6-5.0.15/releasenotes.txt 2016-12-02 15:08:38.121679138 -0800
@@ -1,7 +1,7 @@
----------------------------------------------------------------------------
- S H O R E W A L L 5 . 0 . 1 4 R C 3
+ S H O R E W A L L 5 . 0 . 1 5
------------------------------
- N o v e m b e r 0 1, 2 0 1 6
+ D e c e m b e r 0 5, 2 0 1 6
----------------------------------------------------------------------------
I. PROBLEMS CORRECTED IN THIS RELEASE
@@ -14,47 +14,42 @@
I. P R O B L E M S C O R R E C T E D I N T H I S R E L E A S E
----------------------------------------------------------------------------
-1) This release includes defect repair up through Shorewall 5.0.13.4.
+1) This release includes defect repair through Shorewall 5.0.14.1.
-2) When the address variable for an optional interface was used, and
- the interface did not have an IP address when the firewall was
- started, then enabling the interface did not previously
- create/alter the rules that use the address variable. Also, if the
- IP address of a disabled interface changed, enabling the interface
- did not update/add rules using the interface's gateway address
- variable.
+2) Previously, when the 'update' command transformed a superseded
+ file's contents into a newer file, with the exception of the
+ 'notrack' -> 'conntrack' conversion, the transformation was
+ incomplete:
- Now, if the IP address of a disabled optional interface
- changes from its value (if any) when the netfilter ruleset was
- instantiated, then after a successful 'enable', the ruleset is
- automatically reloaded if the interface's address variable was
- used.
+ a) All shell variables were expanded in the converted file.
- Similarly, if 'detect' is specified as the GATEWAY for an optional
- provider, then if the gateway at the time that the provider is
- successfully enabled is different from that (if any) when the
- netfilter ruleset was instantiated, then the ruleset is
- automatically reloaded if the provider interface's run-time gateway
- variable was used.
+ b) Any lines omitted by compiler directives ( ?if.... etc. ) were
+ also omitted from the converted file.
- As part of this change, if an IP address is specified as the
- GATEWAY for a provider, then the run-time gateway variable for the
- provider's interface is expanded at compile time rather than at
- runtime.
+ These deficiencies have been corrected. Now, shell variables are
+ preserved in the converted file and omitted lines are now
+ translated.
- Example:
+ EXCEPTIONS: Because the translations of the 'blacklist' and
+ 'routestopped' files are not 1:1, omitted lines and compiler
+ directives are not transferred to the converted files. If either
+ are present, the compiler issues a warning:
- #PROVIDER NUMBER MARK DUPLICATE INTRFACE GATEWAY OPTIONS COPY
- foo 1 1 - eth0 1.2.3.4 primary -
+ WARNING: "Omitted rules and compiler directives were not
+ translated
- Then %eth0 will be expanded at compile time to '1.2.3.4'.
+3) In earlier versions, when USE_DEFAULT_RT=No in shorewall6.conf,
+ the generated script would attempt to copy fe80:* routes from the
+ DUPLICATE routing table to provider tables, which could fail.
+ Now, the generated script ignores these routes.
-3) Previously, the ADDRESS column in /etc/shorewall[6]/masq was
- documented as allowing a list of addresses and/or address ranges.
- That feature depended on iptables support which is no longer
- present in current distributions. The code now disallows more than
- one address[-range] and the documentation has been changed
- accordingly.
+4) Previously, if the 'restore' command failed, the failure was not
+ corrected reflected in the exit status. The exit status now
+ correctly indicates the outcome of the command.
+
+5) A defect in OPTIMIZE level 4 processing, could previously result in
+ the incorrect omission of a -i, -o, -s or -d rule option in an
+ optimized rules. That defect has been corrected.
----------------------------------------------------------------------------
I I. K N O W N P R O B L E M S R E M A I N I N G
@@ -67,38 +62,22 @@
correctly in configurations with USE_DEFAULT_RT=No and optional
providers listed in the DUPLICATE column.
+3) While the 'ip' utility now accepts IPv6 routes with multiple
+ 'nexthop' destinations, these routes are not balanced. They are
+ rather instantiated as a sequence of single routes with different
+ metrics. Furthermore, the 'ip route replace' command fails on
+ such routes. Beginning with Shorewall6 5.0.15, the generated script
+ will use a "delete..add.." sequence on these routes rather than a
+ single "replace" command.
+
----------------------------------------------------------------------------
I I I. N E W F E A T U R E S I N T H I S R E L E A S E
----------------------------------------------------------------------------
-1) /etc/shorewall[6]/masq has been superseded by
- /etc/shorewall[6]/snat. The new 'snat' file is similar to most of
- the other configuration files in that the first column specifies
- the ACTION to be performed, the second contains the SOURCE and so
- on.
-
- The 'shorewall[6] update' command will convert an existing masq
- file into the equivalent 'snat' file and will rename masq to
- masq.bak.
-
- See shorewall[6]-snat(5) for details.
-
-2) Actions (both inline and regular) are now supported out of the new
- snat file. Like other actions, these 'SNAT actions' must be
- declared in the /etc/shorewall[6]/actions file where the new 'nat'
- option must be specified.
-
- Like other actions, the action rules are placed in a file named
- action.. Those rules have the same format as those in the
- snat file with two restrictions:
-
- 1. The '+' is not allowed in the ACTION column to specify that the
- rules should be applied before one-to-one NAT. It must rather be
- specified when the action is invoked.
+1) The 'show macro' command now uses the configured PAGER, if any.
- 2. Interface names are not permitted in the DEST column, so all of
- the rules apply to the interface(s) specified when the action was
- invoked.
+2) The PAGER may now be deactivated through use of the '-p' option
+ (e.g., "shorewall -p show" ).
----------------------------------------------------------------------------
I V. M I G R A T I O N I S S U E S
@@ -259,6 +238,85 @@
----------------------------------------------------------------------------
V. N O T E S F R O M O T H E R 5 . 0 R E L E A S E S
----------------------------------------------------------------------------
+ P R O B L E M S C O R R E C T E D I N 5 . 0 . 1 4
+----------------------------------------------------------------------------
+
+1) This release includes defect repair up through Shorewall 5.0.13.4.
+
+2) When the address variable for an optional interface was used, and
+ the interface did not have an IP address when the firewall was
+ started, then enabling the interface did not previously
+ create/alter the rules that use the address variable. Also, if the
+ IP address of a disabled interface changed, enabling the interface
+ did not update/add rules using the interface's gateway address
+ variable.
+
+ Now, if the IP address of a disabled optional interface
+ changes from its value (if any) when the netfilter ruleset was
+ instantiated, then after a successful 'enable', the ruleset is
+ automatically reloaded if the interface's address variable was
+ used.
+
+ Similarly, if 'detect' is specified as the GATEWAY for an optional
+ provider, then if the gateway at the time that the provider is
+ successfully enabled is different from that (if any) when the
+ netfilter ruleset was instantiated, then the ruleset is
+ automatically reloaded if the provider interface's run-time gateway
+ variable was used.
+
+ As part of this change, if an IP address is specified as the
+ GATEWAY for a provider, then the run-time gateway variable for the
+ provider's interface is expanded at compile time rather than at
+ runtime.
+
+ Example:
+
+ #PROVIDER NUMBER MARK DUPLICATE INTRFACE GATEWAY OPTIONS COPY
+ foo 1 1 - eth0 1.2.3.4 primary -
+
+ Then %eth0 will be expanded at compile time to '1.2.3.4'.
+
+3) Previously, the ADDRESS column in /etc/shorewall[6]/masq was
+ documented as allowing a list of addresses and/or address ranges.
+ That feature depended on iptables support which is no longer
+ present in current distributions. The code now disallows more than
+ one address[-range] and the documentation has been changed
+ accordingly.
+
+----------------------------------------------------------------------------
+ N E W F E A T U R E S I N 5 . 0 . 1 4
+----------------------------------------------------------------------------
+
+1) /etc/shorewall[6]/masq has been superseded by
+ /etc/shorewall[6]/snat. The new 'snat' file is similar to most of
+ the other configuration files in that the first column specifies
+ the ACTION to be performed, the second contains the SOURCE and so
+ on.
+
+ The 'shorewall[6] update' command will convert an existing masq
+ file into the equivalent 'snat' file and will rename masq to
+ masq.bak.
+
+ See shorewall[6]-snat(5) for details.
+
+2) Actions (both inline and regular) are now supported out of the new
+ snat file. Like other actions, these 'SNAT actions' must be
+ declared in the /etc/shorewall[6]/actions file where the new 'nat'
+ option must be specified.
+
+ Like other actions, the action rules are placed in a file named
+ action.. Those rules have the same format as those in the
+ snat file with two restrictions:
+
+ 1. The '+' is not allowed in the ACTION column to specify that the
+ rules should be applied before one-to-one NAT. It must rather be
+ specified when the action is invoked.
+
+ 2. Interface names are not permitted in the DEST column, so all of
+ the rules apply to the interface(s) specified when the action was
+ invoked.
+
+----------------------------------------------------------------------------
P R O B L E M S C O R R E C T E D I N 5 . 0 . 1 3
----------------------------------------------------------------------------
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/shorewall6.spec shorewall6-5.0.15/shorewall6.spec
--- shorewall6-5.0.14/shorewall6.spec 2016-11-03 15:07:35.886678396 -0700
+++ shorewall6-5.0.15/shorewall6.spec 2016-12-02 15:08:38.117679123 -0800
@@ -1,6 +1,6 @@
%define name shorewall6
-%define version 5.0.14
-%define release 0RC3
+%define version 5.0.15
+%define release 0base
Summary: Shoreline Firewall 6 is an ip6tables-based firewall for Linux systems.
Name: %{name}
@@ -119,6 +119,16 @@
%doc COPYING INSTALL changelog.txt releasenotes.txt tunnel ipsecvpn ipv6 Samples6
%changelog
+* Fri Dec 02 2016 Tom Eastep tom@shorewall.net
+- Updated to 5.0.15-0base
+* Thu Dec 01 2016 Tom Eastep tom@shorewall.net
+- Updated to 5.0.15-0RC2
+* Sun Nov 27 2016 Tom Eastep tom@shorewall.net
+- Updated to 5.0.15-0RC1
+* Thu Nov 17 2016 Tom Eastep tom@shorewall.net
+- Updated to 5.0.15-0Beta2
+* Sun Nov 06 2016 Tom Eastep tom@shorewall.net
+- Updated to 5.0.15-0Beta1
* Mon Oct 31 2016 Tom Eastep tom@shorewall.net
- Updated to 5.0.14-0RC3
* Sat Oct 29 2016 Tom Eastep tom@shorewall.net
diff -Naurd -X /home/teastep/shorewall/tools/build/exclude.txt shorewall6-5.0.14/uninstall.sh shorewall6-5.0.15/uninstall.sh
--- shorewall6-5.0.14/uninstall.sh 2016-11-03 15:07:35.886678396 -0700
+++ shorewall6-5.0.15/uninstall.sh 2016-12-02 15:08:38.113679106 -0800
@@ -26,7 +26,7 @@
# You may only use this script to uninstall the version
# shown below. Simply run this script to remove Shorewall Firewall
-VERSION=5.0.14
+VERSION=5.0.15
PRODUCT=shorewall6
Product=Shorewall6