|Version 2 (modified by victor, 6 years ago) (diff)|
0.5.73 alpha 7 (2007-09-08)
- Memory problems (corruption & leaks) in the connection viewer were fixed.
- Russian translation updated by Alex.
0.5.73 alpha 6 (2007-09-01)
- Add a separate message for when a user wants to apply changes when the Vuurmuur daemon is not running.
- Add support for conntack 'unknown' lines with unreplied state.
0.5.73 alpha 5 (2007-08-23)
- Fix in_int and out_int not working in rules from and to the firewall. Thanks for reporting Jorijn.
- Updated Dutch translation.
0.5.73 alpha 4 (2007-07-22)
- Add the option to limit rules per minute, hour and day.
- Allow limit option for all rules.
- Fix for the prevention of duplicate NFQUEUE rules.
- Make sure only one set of rules is created per queue number in the NFQUEUE chains. This prevents lot's of unneeded and uneffective rules.
0.5.73 alpha 3 (2007-06-01)
- Added support for NFQUEUE
- Fixed loading of modules and checking of capabilities on more recent systems.
- Removed the obsolete markiptstate option.
0.5.73 alpha 2 (2007-01-21)
- Fixed the killing of grouped connections.
- Fixed the Debian initscript for systems not linking /bin/sh to /bin/bash
0.5.73 alpha 1 (2007-01-08)
- Fixed the killing of DNAT/PORTFW connections.
- No changes since alpha7.
0.5.72 alpha 7 (2006-12-23)
- Hide 'wait window' after the logmanagement was called on an empty logviewer.
- Updated Russian translation.
- Make grouplist window wider so long names work correctly.
0.5.72 alpha 6 (2006-12-15)
- Added a work-around to the install script for issues with older versions of automake and newer versions of gettext.
- Make a few cosmetic changes to Vuurmuur_conf
- Updated Russian (thanx Alex!) and Dutch translations.
0.5.72 alpha 5 (2006-11-18)
- Fixed a 'post error' for the log- and connection management.
- The top menu is now properly restored after the log management has been used.
- Added a wait-window for loading the log management.
- Addition of a new string creation function, one that allows limiting the length.
- Update helpfile for connection and log management.
- Add support for help in the code for the log and connection management.
- Small cosmetic manpage updates by Alex.
- Fix connection killing for unknown objects. Handle filtered connections and logs better.
- NL translation update.
- Updated pt_BR translation by Hugo
0.5.72.alpha 4 (2006-11-07)
- Connection viewer will now also do reverse lookup of the service name if the service is unrecognized. This matches the behaviour of vuurmuur_log.
- Don't set an inactive rule to active because the 'in_int' is active.
- Don't show 'kill this connection' for DROP and REJECT logs.
- Added nicer error message for removal failure of a non-empty zone. Fixed connection killing when the connection viewer was set to grouping.
- Fixed new parts of the gui not being translatable. Updated Russian translation.
0.5.72.alpha 3 (2006-10-31)
- Extended the connection management GUI to the logviewer.
- Applied patch by Alerandre SIMON that adds pre vuurmuur chains to all tables.
0.5.72.alpha 2 (2006-09-03)
- Switched SCM from Bazaar 1.4 to Bazaar-NG 0.8.
- Changed page up and page down behaviour in logview. It now scrolls an entire page instead of just 1/3.
- Prepared support for pre-vuurmuur chains in non-filter tables.
- Cosmetic updates to connection management.
- Updated nl and ru translations.
0.5.72 alpha 1 (2006-08-16)
- Add a function to the library to search an interface by its ip address.
- Don't try to open a plugin if the plugin name is not set.
- Don't use the mac addres in the postrouting rule for the bounce action since it makes the ruleset fail.
- Dhcp rules fixes and cleanups.
- Add support for pre-vuurmuur chains. Patch and idea by Alexandre Simon.
- Replace all strcpy calls with memset and strlcpy just to be sure, although there was no real risk.
- Added initial version of new gui abstraction functions, still in development.
- Added connection killing option to the connection viewer. Needs the conntrack tool.
- No changes since 0.5.71 alpha 5.
0.5.71 alpha 5 (2006-04-28)
- Hide mark option for SNAT, DNAT and MASQ. Show listen- and remoteport options for DNAT.
- Fix a race condition where a logline that was to big caused vuurmuur_log and vuurmuur_conf to keep retrying to read it.
- Fix showing traffic volume for the previous month.
0.5.71 alpha 4 (2006-04-21)
- Add anti-spoof and bad packet checks also to outgoing traffic. Bad packet checks are now also enforced for incoming forwarded traffic.
- Updated Russian translation.
- Small cosmetic fixes.
0.5.71 alpha 3 (2006-04-18)
- fix a crash in setting up the rule description when not in bash mode
- changed the way it is prevented that multiple identical iptables are created for one vuurmuur rule. This is especially relevant for setups with many virtual interfaces.
- more topmenu changes
- updated Russian translation by Alex.
- made the description in the helpfile of the via-option more clear. Thanx for the suggestion Alex.
- hide (more) indication on an empty ruleslist
- added a translatable check and warning for the presence of the via-option when using the bounce action and the redirectport option for the redirect action.
0.5.71 alpha 2 (2006-04-15)
- add build script for creating slackware package. By Nicolas Dejardin.
- separator rules are now also printed in the bash output mode
- fix capabilities checking on kernel 2.6.16 with the xt_tcpudp module.
- dont save log option for separator rule
- fix dhcp-server rules. Thanks to Danny for the patch and the report.
- fix rule numbers in bash out sometimes being wrong.
- fix renaming an interface would not update in_int and out_int options in rules. Also via_int is now also updated.
- fix error when adding a host to a network that has no network address and/or netmask set.
- fixed the try-load-modules-question not being displayed right on a 80-column screen.
- fix wrong titles and topmenu being shown in log selection dialog.
- fix portfw and bounce not looking yellow in the logviewer
- updated translations for Russian, French and Brazilian Portuguese! Thanx to Alex, Nicolas and Hugo.
- add descriptions for new actions to helpfile
0.5.71 alpha 1 (2006-04-10)
- Added a description to the Debian default file.
- Added a separate DNAT action, which acts like the PORTFW action, but it creates rules in the nat table only. In the logs PORTFW rules now say 'PORTFW' instead of 'DNAT'.
- Added a new action 'Bounce'. Bounce solves the problem that it isn't it possible to access NATed services by the public IP address from LAN. Normally this should be solved on dns-level, but that is not always possible in every environment.
- Fixed a problem with rules from a group to the firewall where the firewall has more than one interface in the groups network.
- Fixed two cosmetic issues in vuurmuur_conf.
- Fix small issue with 'Mark IptState?' toggle in Edit Rule window.
- Fix typo in error message in Debian initscript.
0.5.70 alpha 8 (2006-03-27)
- Fix scrolling issue in vuurmuur_conf logview.
- Fix log parsing issues on Ubuntu Breezy and with some syslog-ng setups.
- Fix portfw and redirect not using NEWACCEPT for rules in filter table.
0.5.70 alpha 7 (2006-03-12)
- Fix interface filters for rules with both firewall and any in them.
- fix wrong d_list_append calls
- fixed a few memoryleaks in vuurmuur_script
- add option --list-devices to vuurmuur_script so we can list the devices _and_ their ipaddresses in the wizard which will be created for 0.5.71. The ip command can also do this but on many systems it is not installed by default. The ifconfig command has different output with different localizations, which has bitten me in the past...
splint fixes for textdir
- Show interfaces in the right order in interface filter selection (was in reverse order).
- updated Russian translation by Alex.
- fix an error in status window with getting system load.
- Filter window is now also translateble.
- Updated Dutch translation.
- Small cosmetic fix to status screen to indicate that memory is in megabytes.
0.5.70 alpha 6 (2006-03-08)
- updated default dns service to include server to server communications as well.
- fixed errors with creating dhcp rules for virtual interfaces
- fixed udp connections always showing state 'disconnecting' in the connection viewer.
- updated the Dutch translation.
- interfaces are now in a sorted list, which means they are sorted in the GUI
- fixed many mostly harmless issues found by the splint source code checker
- fixed the interface filter for incoming rules (destination firewall)
- fixed two memoryleaks in bashout mode
0.5.70 alpha 5 (2005-02-14)
- fix a crash with parsing 'unknown' connections.
- only start vuurmuur when vuurmuur is configured (Adi Kriegisch)
- improved initscript so we dont try to kill vuurmuur if it is not running (Adi Kriegisch)
- Russian manual pages added (Aleksandr Shubnik)
- fixed another widec/utf-8 issue
0.5.70 alpha 4 (2006-01-28)
- Gentoo ebuilds
- an improved connection viewer (including accounting data if your system supports it)
- the possibility to filter on interface for all rules, not just snat/portfw
- improved verbose output for vuurmuur and vuurmuur_script
- SIGTERM support for vuurmuur
- traffic volume bug with showing data for the last month if is was in the previous year.
0.5.70 alpha 3 (2005-12-27)
- Many fixes for UTF-8 support in vuurmuur_conf.
- Improved connection viewer, which supports showing accounting data per connection.
- Vuurmuur, vuurmuur_log and vuurmuur_conf now also have long options thanx to Stefan Ubbink!
- Added manual pages for vuurmuur, vuurmuur_log, vuurmuur_script and vuurmuur_conf.
- Many fixes for manipulating an empty ruleset.
0.5.70 alpha 2 (2005-12-18)
- UTF-8 support for translations in vuurmuur_conf
0.5.70 alpha 1 (2005-12-07)
- Made the logging of INVALID packets, SCAN probes, new TCP no SYN and fragments optional.
- Synlimits and udplimits are now enforced against accepted and queue'd connections, not against all packets.
- Added a -k (keep) option to the 'vuurmuur'-command, that does not remove the input file for iptables-restore. Useful for debugging.
- If you change the devicename, the interface will automaticly be set 'virtual' if the devicename contains a ":"-character.
- Added a fix for vuurmuur_conf not being able to use any other path for its config than /etc/vuurmuur/vuurmuur_conf.conf
- The rpm specs now also support Fedora Core, Mandriva and Redwall. Thanx Alex!
- Added Norwegian translation. Thanx Per Olav Siggerud!
- Fixed a crash in saving the vuurmuur_conf settings if the configfile could not be found.