|
Revision 143, 0.9 KB
(checked in by mbr, 7 years ago)
|
|
added 0.6 stuff
|
-
Property svn:eol-style set to
native
-
Property svn:keywords set to
Author Date Id Revision
|
| Line | |
|---|
| 1 | fwsnort-0.6 (01/04/2003): |
|---|
| 2 | - Speed increase and disk access decrease by writing iptables |
|---|
| 3 | commands to the iptables script only after all lines have been |
|---|
| 4 | generated. |
|---|
| 5 | - Bugfix for DMZ interface. |
|---|
| 6 | - Bugfix for multiple ip_proto fields. |
|---|
| 7 | - Removed the ip protocol as an allowed protocol for translation. |
|---|
| 8 | - Bugfix for negated port numbers. |
|---|
| 9 | - Removed "<-" rule direction since not even snort supports this. |
|---|
| 10 | - Fixed snort rule updates from snort.org. |
|---|
| 11 | |
|---|
| 12 | fwsnort-0.5 (12/21/2003): |
|---|
| 13 | - Added "-j REJECT --reject-with tcp-reset" for tcp sessions |
|---|
| 14 | if the --ipt-block option is specified. |
|---|
| 15 | - Added ability to download latest snort rules from snort.org. |
|---|
| 16 | - Added --no-ipt-jumps. |
|---|
| 17 | - Added better checking for iptables build characteristics such |
|---|
| 18 | as the LOG target and wether or not the ipv4options extension |
|---|
| 19 | is compiled in. |
|---|
| 20 | - Added config preservation code from psad in install.pl. |
|---|
