| Bart De Schuymer | 6622a01 | 2005-01-19 21:09:05 +0000 | [diff] [blame] | 1 | 20051701 |
| 2 | Since last entry: |
| 3 | * added ulog watcher |
| 4 | * made the ebtables code modular (make library functions). |
| 5 | * added the ebtablesd/ebtablesu scheme to allow faster |
| 6 | addition of rules (and to test the modular code). |
| 7 | * some small fixes |
| Bart De Schuymer | ff58720 | 2005-02-08 20:02:28 +0000 | [diff] [blame] | 8 | * added -c option (initialize counters) |
| 9 | * added -C option (change counters) |
| Bart De Schuymer | 519ebb7 | 2003-11-02 16:37:07 +0000 | [diff] [blame] | 10 | 20031102 |
| 11 | Since last entry: |
| 12 | * <grzes_at_gnu.univ.gda.pl> added arpreply and among modules |
| 13 | * <tommy_at_home.tig-grr.com> added limit match |
| Bart De Schuymer | 60c2009 | 2003-07-23 21:34:21 +0000 | [diff] [blame] | 14 | 20030724 |
| Bart De Schuymer | 083ac21 | 2003-07-26 10:15:21 +0000 | [diff] [blame] | 15 | * added (automatic) Sparc64 support, thanks to Michael Bellion and |
| 16 | Thomas Heinz from hipac.org for providing a test-box. |
| Bart De Schuymer | 60c2009 | 2003-07-23 21:34:21 +0000 | [diff] [blame] | 17 | 20030717 |
| 18 | * added stp frames match type |
| 19 | 20030713 |
| 20 | * added support for deleting all user-defined chains (-X option |
| 21 | without specified chain) |
| Bart De Schuymer | 5fd425b | 2003-06-01 16:41:01 +0000 | [diff] [blame] | 22 | 20030601 |
| 23 | * added --Lmac2 |
| 24 | * <csv_at_bluetail.com> Chris Vitale: basic 802.3/802.2 filtering |
| 25 | (experimental, kernel files are in the CVS) |
| 26 | |
| 27 | 20030503 |
| 28 | * added negative rule counter support |
| 29 | * bugfix: bcnt was not updated correctly |
| 30 | * <blancher_at_cartel-securite.fr> Cedric Blancher: add ARP MAC |
| 31 | matching support |
| 32 | * added pkttype match |
| Bart De Schuymer | 36aee75 | 2003-04-01 16:59:57 +0000 | [diff] [blame] | 33 | 20030402 |
| 34 | * fixed check bug in ebt_ip.c (report from |
| 35 | joe_judge_at_guardium.com). |
| 36 | 20030111 |
| 37 | * fixed problem when removing a chain (report from |
| 38 | ykphuah_at_greenpacket.com). |
| 39 | * Added --help list_extensions which, well, lists the extensions |
| Bart De Schuymer | 27b121c | 2002-12-03 20:53:19 +0000 | [diff] [blame] | 40 | 20021203 |
| 41 | * changed the way to use the atomic operations. It's now possible |
| 42 | to use the EBTABLES_ATOMIC_FILE environment variable, so it's no |
| 43 | longer necessary to explicitly state the file name. See the man. |
| Bart De Schuymer | 832f09c | 2002-11-20 19:40:28 +0000 | [diff] [blame] | 44 | 20021120 |
| 45 | * changed the way of compiling. New releases will now contain their |
| 46 | own set of kernel includes. No more copying of kernel includes to |
| 47 | /usr/include/linux |
| 48 | * added getethertype.c (Nick) and use it. Removed name_to_number() |
| 49 | and number_to_name(). |
| 50 | 20021106 |
| 51 | * added possibility to specify a rule number interval when deleting |
| 52 | rules |
| 53 | 20021102 |
| 54 | * added ! - option possibility, which is equivalent to - ! option |
| 55 | 20021102 |
| 56 | * since last entry: added byte counters and udp/tcp port matching |
| Bart De Schuymer | b44c5f4 | 2002-08-30 20:33:36 +0000 | [diff] [blame] | 57 | 20020830 |
| 58 | * updated the kernel files for 2.4.20-pre5 and 2.5.32 |
| 59 | * last big cleanup of kernel and userspace code just finished |
| 60 | 20020820 |
| 61 | * ARP module bugfix |
| 62 | * IP module bugfix |
| 63 | * nat module bugfix |
| Bart De Schuymer | b2c4e37 | 2002-07-30 20:59:17 +0000 | [diff] [blame] | 64 | 20020730 |
| 65 | * other things done before 2.0-rc1 that I can think of, |
| 66 | including kernel: |
| 67 | * cache align counters for better smp performance |
| 68 | * simplify snat code |
| 69 | * check for --xxxx-target RETURN on base chain |
| 70 | * cleanup code |
| 71 | * minor bugfixes |
| 72 | 20020724 |
| 73 | * code cleanup |
| 74 | * bugfix for --atomic-commit |
| Bart De Schuymer | a501b78 | 2002-07-20 16:15:39 +0000 | [diff] [blame] | 75 | 20020720 |
| 76 | * added mark target+match |
| Bart De Schuymer | 52b6fd2 | 2002-07-14 19:23:56 +0000 | [diff] [blame] | 77 | 20020714 |
| 78 | * added --atomic options |
| 79 | 20020710 |
| 80 | * some unlogged changes (due to lazyness) |
| 81 | * added --Lc, --Ln, --Lx |
| Bart De Schuymer | fc62a34 | 2002-06-25 21:11:40 +0000 | [diff] [blame] | 82 | 20020625 |
| 83 | * user defined chains support: added -N, -X, -E options. |
| Bart De Schuymer | 41e8a19 | 2002-06-23 08:03:12 +0000 | [diff] [blame] | 84 | 20020621 |
| 85 | * some unlogged changes (due to lazyness) |
| 86 | * change the output for -L to make it look like it would look when |
| 87 | the user inputs the command. |
| 88 | * try to autoload modules |
| 89 | * some minor bugfixes |
| 90 | * add user defined chains support (without new commands yet, |
| 91 | deliberately) |
| 92 | * comparing rules didn't take the logical devices into account |
| Bart De Schuymer | 1abc55d | 2002-06-01 19:23:47 +0000 | [diff] [blame] | 93 | 20020520 |
| 94 | * update help for -s and -d |
| 95 | * add VLAN in ethertypes |
| 96 | * add SYMLINK option for compiling |
| 97 | 20020501 |
| 98 | * allow -i and --logical-in in BROUTING |
| 99 | * update the manual page |
| 100 | * rename /etc/etherproto into /etc/ethertypes (seems to be a more |
| 101 | standard name) |
| 102 | * add MAC mask for -s and -d, also added Unicast, Multicast and |
| 103 | Broadcast specification for specifying a (family of) MAC |
| 104 | addresses. |
| 105 | 20020427 |
| 106 | * added broute table. |
| 107 | * added redirect target. |
| 108 | * added --redirect-target, --snat-target and --dnat-target options. |
| 109 | * added logical_out and logical_in |
| 110 | * snat bugfix (->size) |
| 111 | 20020414 |
| 112 | * fixed some things in the manual. |
| 113 | * fixed -P problem. |
| 114 | 20020411 |
| 115 | * -j standard no longer works, is this cryptic? good :) |
| 116 | * lots of beautification. |
| 117 | - made some code smaller |
| 118 | - made everything fit within 80 columns |
| 119 | * fix problems with -i and -o option |
| 120 | * print_memory now prints useful info |
| 121 | * trying to see the tables when ebtables is not loaded in kernel |
| 122 | no longer makes this be seen as a bug. |
| 123 | 20020403 |
| 124 | ebtables v2.0 released, changes: |
| 125 | * A complete rewrite, made everything modular. |
| 126 | * Fixed a one year old bug in br_db.c. A similar bug was present |
| 127 | in ebtables.c. It was visible when the number of rules got |
| 128 | bigger (around 90). |
| 129 | * Removed the option to allow/disallow counters. Frames passing |
| 130 | by are always counted now. |
| 131 | * Didn't really add any new functionality. However, it will be |
| 132 | _alot_ easier and prettier to do so now. Feel free to add an |
| 133 | extension yourself. |
| 134 | * There are 4 types of extensions: |
| 135 | - Tables. |
| 136 | - Matches: like iptables has. |
| 137 | - Watchers: these only watch frames that passed all the matches |
| 138 | of the rule. They don't change the frame, nor give a verdict. |
| 139 | The log extension is a watcher. |
| 140 | - Targets. |
| 141 | * user32/kernel64 architectures like the Sparc64 are unsupported. |
| 142 | If you want me to change this, give me access to such a box, |
| 143 | and don't pressure me. |