[1904] in linux-net channel archive
Ipfwadm 2.0beta1 for 1.3.61 and higher
daemon@ATHENA.MIT.EDU (Jos Vos)
Mon Feb 12 13:36:39 1996
To: linux-kernel@vger.rutgers.edu, linux-net@vger.rutgers.edu
Date: Mon, 12 Feb 1996 17:30:31 +0100
From: Jos Vos <jos@xos.nl>
The IP firewall and accounting code has been changed in Linux 1.3.61.
Existing ipfwadm and ipfw tools will not work anymore with this kernel.
There is a new version of ipfwadm, 2.0beta1, available at
ftp://ftp.xos.nl/pub/linux/ipfwadm/ipfwadm-2.0beta1.tar.gz
Important: this version will only work on Linux 1.3.61 and newer!
The previous version of ipfwadm, 1.2, only works on 1.2.x kernels
(and may, occasionally, happen to work on some older 1.3.x kernels...).
Please note that this is a BETA TEST version. We hope to have
a final version ready some time next week. Please do upgrade to
the final version when available.
Changes include:
- Separate input and output rulesets (i.s.o. the blocking ruleset).
- Masquerading support when forwarding packets.
- Support for changing the precedence (TOS field) of a packet when
accepting it.
- Support for matching with the TCP ACK bit.
- Changed accounting semantics: see the ipfw(4) manual page,
currently provided as part of the ipfwadm package.
- Changed firewall semantics: see the ipfw(4) manual page.
Manual pages, ipfw(4) and ipfwadm(8), are included.
We are also working on some examples, but these are not finished yet.
--
-- Jos Vos <jos@xos.nl>
-- X/OS Experts in Open Systems BV | Phone: +31 20 6938364
-- Amsterdam, The Netherlands | Fax: +31 20 6948204
