File: changelog

package info (click to toggle)
netscript-2.4 5.5.1
links: PTS
area: main
in suites: stretch
size: 480 kB
ctags: 123
sloc: sh: 2,166; makefile: 85
file content (791 lines) | stat: -rw-r--r-- 30,097 bytes
netscript-2.4 (5.5.1) unstable; urgency=medium

  * Don't hotplug bridges.  Works around a kernel race.
  * Add note to not default disable IPv6 for Openstack.

 -- Matthew Grant <matt@mattgrant.net.nz>  Tue, 27 Dec 2016 11:12:09 +1300

netscript-2.4 (5.5.0) unstable; urgency=medium

  * Add /etc/netscript/network.conf.d
  * Add proper systemd support, and fixes
  * Update changelog for 5.4.12~2.gbp2c652b release
  * Update gbp.conf
  * Convert ifupdown hotplug script for netscript
  * Update changelog for 5.4.12~3.gbp183f7f release
  * Add depends on lsb-base for init scripts
  * Update changelog for 5.4.12~4.gbp7a776d release
  * Update debhelper to v6 and deb standards to 3.9.8
  * Update changelog for 5.4.12~5.gbpa05941 release
  * Update debhelper compat version to 10.
  * Update changelog for 5.4.12~6.gbpe6fab5 release
  * Fix network.conf.d include line in network.conf
  * Convert inbrdr outbrdr to use ICMP RETURN chain.
  * Update changelog for 5.4.12~7.gbpd5fe80 release
  * Update changelog for 5.4.12~8.gbp323004 release
  * Add IPV6 DAD wait address settle time on boot.
  * Fix one line type in ipf6_icmphost exec function.
  * Make Interface functions handle - in dev names
  * Fix icmpv6 protocol psecfication in outbrdr
  * More IPv6 CIMP filter fixes for inbrdr and outbrdr
  * Fix IPv6 ipf6_log() icmpv6 rule
  * Update changelog for 5.4.12~15.gbpc73267 release

 -- Matthew Grant <matt@mattgrant.net.nz>  Thu, 15 Dec 2016 23:13:59 +1300

netscript-2.4 (5.4.11) unstable; urgency=medium

  * Fix iptables filters not bening loaded with kernel versions 4.x - 9.x
  * Update standards version to 3.9.6

 -- Matthew Grant <matt@mattgrant.net.nz>  Sun, 11 Oct 2015 08:06:44 +1300

netscript-2.4 (5.4.10) unstable; urgency=medium

  * Fix /etc/init.d dependency loop with ifupdown (Closes: #717871)
  * Add sysvinit/insserv back in
  * Add /etc/iniserv.conf.d /etc/inserv.conf.d segment to correctly
    set up boot dependencies for above.
  * Update changelog for 5.4.10 release

 -- Matthew Grant <matt@mattgrant.net.nz>  Wed, 28 Jan 2015 22:24:09 +1300

netscript-2.4 (5.4.8) unstable; urgency=medium

  * Remove sysvint/inserv support for package. (Closes: #771871)
    Revert totally removing ifupdown emulation/Provides as this breaks too
    many things.  This just removes the dependency loop in /etc/init.d files 
    which is unfixable.

 -- Matthew Grant <matt@mattgrant.net.nz>  Tue, 23 Dec 2014 17:50:04 +1300

netscript-2.4 (5.4.7) unstable; urgency=medium

  * Convert '-' in interface names to '_' (Closes: #773772)

 -- Matthew Grant <matt@mattgrant.net.nz>  Mon, 22 Dec 2014 21:10:30 +1300

netscript-2.4 (5.4.6) unstable; urgency=medium

  * Remove ifupdown emulation

 -- Matthew Grant <matt@mattgrant.net.nz>  Mon, 22 Dec 2014 19:48:20 +1300

netscript-2.4 (5.4.5) unstable; urgency=medium

  * Add dependency for iproute2|iproute (for backport)
    (Closes: #705169)

 -- Matthew Grant <matt@mattgrant.net.nz>  Sat, 19 Jul 2014 16:27:58 +1200

netscript-2.4 (5.4.4) unstable; urgency=medium

  * Fix netscript ifrestart <interface>
  * Add ability to restart radvd/dnsmasq on ifup

 -- Matthew Grant <matt@mattgrant.net.nz>  Sun, 18 May 2014 12:58:13 +1200

netscript-2.4 (5.4.3) unstable; urgency=medium

  * Change back to Architecture: all (Closes: #745597)
  * Add missing conflicts netscript-ipfilter

 -- Matthew Grant <matt@mattgrant.net.nz>  Sun, 11 May 2014 08:42:01 +1200

netscript-2.4 (5.4.2) unstable; urgency=medium

  * Fix netscript-2.4 systemd service file
  * Fix netscript-ipfilter systemd service file - start up order

 -- Matthew Grant <matt@mattgrant.net.nz>  Sun, 13 Apr 2014 13:42:52 +1200

netscript-2.4 (5.4.0) unstable; urgency=medium

  * Remove filters after interface down.
  * Add better support for pppoe and IPv6 sit tunnels
  * Add systemd support - debian rules stuff
  * Change description for netscript-ipfilter
  * Fix dangling manpage symlink in netscript-ipfilter
  * Depend on isc-dhcp-client (Closes: #681252)
  * Fix email address on latest changes.
  * Fix dh_systemd_enable command line switch
  * Add gitignore file
  * Fix effective RUNLVL under systemd
  * Removed kernel module loading code as locked kernel

 -- Matthew Grant <matt@mattgrant.net.nz>  Sat, 12 Apr 2014 12:57:23 +1200

netscript-2.4 (5.3.2) unstable; urgency=medium

  * Updated documentation - copyright, rm stale stuff
  * Initial complete netscript-ipfilter package.

 -- Matthew Grant <matt@mattgrant.net.nz>  Thu, 16 Jan 2014 11:06:07 +1300

netscript-2.4 (5.3.1) unstable; urgency=medium

  * Add NEWS file advising of removal og netscript-compile

 -- Matthew Grant <matt@mattgrant.net.nz>  Tue, 07 Jan 2014 17:58:40 +1300

netscript-2.4 (5.3.0) unstable; urgency=medium

  * Add full IPv6 filter helper function support
  * Properly update ipfilter.conf
  * Remove netscript-compile functionality and docs.
  * Fix module loading/unloading on restart
  * Commit changelog for 5.3.0
  * Update debian/control with new email address
  * Really update debain/control maintainer
  * Fix lintian warnings.

 -- Matthew Grant <matt@mattgrant.net.nz>  Mon, 06 Jan 2014 13:12:28 +1300

netscript-2.4 (5.2.12) unstable; urgency=low

  * Fix missing quotes in brg_iface up call (Closes: #681641)

 -- Matthew Grant <matthewgrant5@gmail.com>  Sun, 15 Jul 2012 12:27:10 +1200

netscript-2.4 (5.2.11) unstable; urgency=low

  * Update module loading for kernel 3.2+
  * Add device to IPv6 default route command.
  * Add ability to not set IPv6 address from SLAC.
  * resolvconf option + unsetting new IPv6 RPrefix option
  * Removed netscript-2.4-upstart package as upstart is a moving target.
  * Removed netscript-2.4-upstart from debian/rules.

 -- Matthew Grant <matthewgrant5@gmail.com>  Wed, 23 May 2012 13:21:28 +1200

netscript-2.4 (5.2.10) unstable; urgency=low

  * Fix IPv6 MTU override and add IPv6 icmp-host chain.

 -- Matthew Grant <matthewgrant5@gmail.com>  Sun, 19 Feb 2012 10:05:01 +1300

netscript-2.4 (5.2.9) unstable; urgency=low

  * Made netscript depend on /bin/bash as it needs the ability to list 
    shell script functions. Dash does not provide this.

 -- Matthew Grant <matthewgrant5@gmail.com>  Sun, 25 Sep 2011 20:53:28 +1300

netscript-2.4 (5.2.8) unstable; urgency=low

  * Fix issue with filters not being loaded on IPv6 due to kernel version
    not being detected. 

 -- Matthew Grant <matthewgrant5@gmail.com>  Fri, 09 Sep 2011 08:50:02 +1200

netscript-2.4 (5.2.7) unstable; urgency=low

  * Module unloading/loading for linux kernel v 3.0.  Includes ipi_set and 
    ip_vs modules. 

 -- Matthew Grant <matthewgrant5@gmail.com>  Sat, 20 Aug 2011 14:38:41 +1200

netscript-2.4 (5.2.6) unstable; urgency=low

  * Inital support for Linux 3.0 in terms of version checking. 

 -- Matthew Grant <matthewgrant5@gmail.com>  Wed, 17 Aug 2011 07:40:49 +1200

netscript-2.4 (5.2.5) unstable; urgency=low

  * Add support for accept RA advertised routes based on mask length 
  * Upgraded standards version to 3.9.2. 
  * Overrode lintian errors and warnings about remote_fs - this package
    configures the network, which is needed for remote_fs! 
  * Fixed problem with dh_installinit installing start up scripts on
    upstart version of the package.
  * Made netscript recognise upstart runlevel 'unknown'.
  * Fixed race condition in upstart /etc/init/*.conf files.
  * Introduced /etc/init/netscript-shutdown.conf for clean shutdown with
    upstart.

 -- Matthew Grant <matthewgrant5@gmail.com>  Sun, 24 Apr 2011 20:06:57 +1200

netscript-2.4 (5.2.4) unstable; urgency=low

  * Fix problems with upstart package not initialising correctly due to
    start up races.
  * Remove /32 and /128 from address deletion in if.conf 

 -- Matthew Grant <matthewgrant5@gmail.com>  Thu, 27 Jan 2011 20:58:36 +1300

netscript-2.4 (5.2.3) unstable; urgency=low

  * Remove  conflict with network-manager, as this can cause too much pain on
    laptops with wicd being unmaintained now.  It is better to install 
    netscript-2.4-upstart, configure it, and then tell network-manager to
    interfaces alone by setting [ifupdown]\nmanage = false.

 -- Matthew Grant <matthewgrant5@gmail.com>  Wed, 22 Dec 2010 15:41:03 +1300

netscript-2.4 (5.2.2) unstable; urgency=low

  * Fix missing quotes around script for activating 'chained'
    interfaces (Closes: #592340).
  * Add missing overrides for /etc/init.d/netscript-2.4 startup.
  * Added linitian overrides for errors about missing init dependencies on
    $remote-fs
  * Increased Standards Version to 3.9.1 

 -- Matthew Grant <matthewgrant5@gmail.com>  Wed, 18 Aug 2010 11:52:39 +1200

netscript-2.4 (5.2.1) unstable; urgency=low

  * Fix up netscript-interface.conf upstart file, make it ignore interface
    lo. 
  * Add dependency on virtual package dhcp-client for initial system install. 
  * Added or depends on dhcp3-client as well, and dhcp3-client does not also
    provide the dhcp-client virtual package.

 -- Matthew Grant <matthewgrant5@gmail.com>  Tue, 22 Dec 2009 13:02:34 +1300

netscript-2.4 (5.2) unstable; urgency=low

  * Add switch to disable IPv6
  * Auto enable/disable IPv6 when adding/deleting an interface to a bridge.
  * Fix bug with deleting interfaces from bridges other than brg0
  * Set up default for disabling IPv6 on dynamic interfaces.
  * Add switch to remove bridges from netfilter filtering.
  * Add ability to name bridges. 
  * Install udev file correctly
  * Fix a few typos
  * Change IPv6 default route prefix to 'default'
  * Changed compatibility level to 5.
  * Fix lintin errors in man pages.
  * Remved empty maintainer script debian/prerm.
  * Updated to latest Debian Standards version 3.8.3 etc.
  * Added xt_cluster to correct insmod secion.
  * Split package to provide for different init environments
  * Added initial support for upstart initctl

 -- Matthew Grant <matthewgrant5@gmail.com>  Mon, 21 Dec 2009 22:28:25 +1300

netscript-2.4 (5.1.10) unstable; urgency=low

  * Fixed netscript to work better with 2.6.31.  Doesn't load modules
    when IP_KERNEL_FILTER is set to NONE, and netscript reload adjusts
    loaded modules according to setting.
  * Recording adding of patches for nmu2. (Closes: #546459) 
  * Recording adding of patches for nmu3. (Closes: #547509) 

 -- Matthew Grant <matthewgrant5@gmail.com>  Tue, 20 Oct 2009 21:38:39 +1300

netscript-2.4 (5.1.9) unstable; urgency=low

  * Bumping version to force upload. 

 -- Matthew Grant <matthewgrant5@gmail.com>  Sun, 04 Oct 2009 14:40:47 +1300

netscript-2.4 (5.1.8) unstable; urgency=low

  * Fixing module loading for kernel 2.6.31. 

 -- Matthew Grant <matthewgrant5@gmail.com>  Thu, 01 Oct 2009 09:01:32 +1300

netscript-2.4 (5.1.7+nmu3) unstable; urgency=low

  * Non-maintainer upload to fix release goal.
  * Make ifupdown init.d scrtip dependency optional, to avoid having the
    package depend on ifupdown.  Fixes installation problem detected by
    piuparts.

 -- Petter Reinholdtsen <pere@debian.org>  Sun, 20 Sep 2009 14:45:23 +0200

netscript-2.4 (5.1.7+nmu2) unstable; urgency=low

  * Non-maintainer upload.
  * Patched the wrong file in the last upload.  Patch netscript.init,
    not debian/init.  Make sure to remove the debian/init copy in the
    clean target of debian/rules.  Last NMU is obsolete (Closes: #546457).

 -- Petter Reinholdtsen <pere@debian.org>  Sun, 13 Sep 2009 12:55:24 +0200

netscript-2.4 (5.1.7+nmu1) unstable; urgency=low

  * Non-maintainer upload to fix release goal.
  * Fix init.d script dependency headers (Closes: 542246).

 -- Petter Reinholdtsen <pere@debian.org>  Sun, 13 Sep 2009 11:58:38 +0200
 
netscript-2.4 (5.1.7) unstable; urgency=low

  * Remove suggests entry in debian/control for waproamd.  (Closes: #509392)  

 -- Matthew Grant <matthewgrant5@gmail.com>  Mon, 29 Dec 2008 17:19:53 +1300

netscript-2.4 (5.1.6) unstable; urgency=low

  * Fix netscript so that it will run with dash as /bin/sh.
  * Update my maintainer address to matthewgrant5@gmail.com 

 -- Matthew Grant <matthewgrant5@gmail.com>  Mon, 29 Dec 2008 13:17:53 +1300

netscript-2.4 (5.1.5-0.1) unstable; urgency=low

  * Non-maintainer upload.
  * Fix bashism in netscript-compile. The problems reported in netscript
    by checkbashisms are false positives, it has a local definition of
    a source function. (Closes: #465011)

 -- Marc 'HE' Brockschmidt <he@debian.org>  Sat, 08 Mar 2008 23:54:46 +0100

netscript-2.4 (5.1.5) unstable; urgency=low

  * Fix lintian warnings debian-rules-sets-DH_COMPAT,
    out-of-date-standards-version, init.d-script-missing-lsb-section,
    and package-contains-empty-directory /usr/sbin
  * Update to Standards Version 3.7.3

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed, 06 Feb 2008 04:22:55 +0000

netscript-2.4 (5.1.4) unstable; urgency=low

  * Fixed typos in package description in debian/control (closes: #274815)
  * Fixed linitian warning about standards version 3.6.2 -> 3.7.6
  * Replaced Build-Depends-Indep: with Build-Depends in debian/control
    to fix lintian warning.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sat,  2 Feb 2008 13:18:00 +1300

netscript-2.4 (5.1.3) unstable; urgency=low

  * Updated to support kernel 2.6.22
  * Merged IPV4_FILTER_KERNEL and IPV6_FILTER_KERNEL switches
    to IP_FILTER_KERNEL switch because of merging of upstream netfilter
    v4 and v6 modules to enable connection tracking in IPv6

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sat, 02 Feb 2008 12:06:44 +1300

netscript-2.4 (5.1.2) unstable; urgency=low

  * Add support to control sending of redirects on an interface.  This is
    useful for use with openvpn which can route packets in and out of the
    VPN tun device.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 30 Jan 2007 11:55:05 +1300

netscript-2.4 (5.1.1) unstable; urgency=low

  * Updated to support 2.6.14 and 2.6.16 kernels.
  * Updated debhelper compatibility to 4 from 3.  Sarge support is needed. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sat, 18 Feb 2006 20:21:57 +0000


netscript-2.4 (5.1.0) unstable; urgency=low

  * Added initial support for laptops and whereami.  This still needs some 
    work, but I am getting it out there as it is now usable.
  * Added entries to README.Debian to document how to set above up.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri, 29 Oct 2004 08:38:27 +1300

netscript-2.4 (5.0.14) unstable; urgency=medium

  * Merge in work down for NMU.
  * Get rid of startup and shutdown init calls in maintainer scripts. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed, 13 Oct 2004 08:40:55 +1300

netscript-2.4 (5.0.13-0.1) unstable; urgency=high

  * Non-maintainer upload.
  * High-urgency upload for (trivial,) sarge-targetted RC bugfix
  * Replace zebra with quagga in Recommends:, since the former is no
    longer available (closes: #273043).

 -- Steve Langasek <vorlon@debian.org>  Sat,  2 Oct 2004 03:07:00 -0700

netscript-2.4 (5.0.13) unstable; urgency=low
 
  * Added fix proposed by Bart Samwel <bart@samwel.tk>, fixing problem with
    saving of filters with  'netscript ipfilter save'  Local vars MANGLE and 
    FILTER were not initialised to zero in ipv4filter_check(). Also fixed
    ipv6filter_check(). (Closes: #267151)

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sat, 28 Aug 2004 19:12:06 +1200

netscript-2.4 (5.0.12) unstable; urgency=low

  * Fix  prerm script by editing out #DEBHELPER# This fixes problem
    where netscript closes down all interfaces on package remove or purge.
    Leaving proper clean up for a month to allow people to get rid of the
    bad prerm package maintainer scripts - will go to telling debhelper
    to only install /etc/rc.d startup/shutdown symlinks. (Closes: #241989)

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed,  9 Jun 2004 12:07:49 +1200

netscript-2.4 (5.0.11) unstable; urgency=low

  * Add support for iptables policy match module to close new ipsec
    packet injection hole.
  * Changed ipfilter-defs(5) man page for new IPSEC interface name
    directives.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri, 23 Apr 2004 14:28:40 +1200

netscript-2.4 (5.0.10) unstable; urgency=low

  * Initial work to  netscript to work with the 2.6 kernel.
  * Removed configuration samples for deprecated Free S/WAN support. Free
    S/WAN KLIPS is a real mess in terms of interfaces, routing and confg
    scripts!
  * Added mentions of 2.6 kernel in most places needed.  Man pages may need
    it.
  * Removed suggestion for vrrpd - this was a failed experiment.
  * Upgraded standards version to 3.6.1. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri, 26 Mar 2004 08:03:43 +1200

netscript-2.4 (5.0.9) unstable; urgency=low

  * Fix default case in init script. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 23 Dec 2003 15:48:23 +1300

netscript-2.4 (5.0.8) unstable; urgency=low

  * Basically a clean up to get ready to go into unstable.
  * Changed 'net' command to 'netscript' to stop a clash with samba-comon
    in sarge and sid.
  * Changed 'net-compile' to 'netscript-compile to match above.
  * Adjusted config files and other files to match above.
  * Removed conffile as this results in duplicate config file lintian
    warnings.
  * Fixed lintian warning about 'Upstream Author(s)'.
  * Updated Debian Standards version to 3.5.7 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Mon, 15 Dec 2003 22:05:30 +0000

netscript-2.4 (5.0.7) unstable; urgency=low

  * Added work around for kernel crash bug with psd and limit modules. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sun,  8 Jun 2003 00:12:04 +1200

netscript-2.4 (5.0.6) unstable; urgency=low

  * Added support for adjusting portscan chain psd module parameters
    to deal with high traffic situations.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Thu,  5 Jun 2003 16:12:25 +1200

netscript-2.4 (5.0.5) unstable; urgency=low

  * Previous change lost chaings in 5.0.3 with ipfilter-defs.conf.  Fixed. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue,  3 Jun 2003 15:45:20 +1200

netscript-2.4 (5.0.4) unstable; urgency=low

  * Fixed problem with startup getting order of chains in iplcl and ipfwd 
    in correct.  This was due to 2 ways of adding chains into these, a simple
    add on start up, and then indexing for manual incremental add ins.  Gone
    to indexing mode for all additions, and made function that returns index
    into iplcl and ipfwd a lot faster (O(n) instead of O(n2).). The change
    is only in /etc/netscript/ipfilter-defs.conf, has been tested carefully, 
    and does nto affect the rest of the netscript system.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue,  3 Jun 2003 14:16:41 +1200

netscript-2.4 (5.0.3) unstable; urgency=low

  * Fixed problem with REJECT_UDP_NET - '-m STATE' should be '-m state'.
  * Added new alternative FreeS/WAN start up code for multiple interfaces.
    network.conf needs a cleanup for next release that is backwards
    compatible.
  * Fixed --pkt-type argmuents in ipfilter-defs.conf.  Fixes dropping
    of BROADCAST packets for INPUT and FORWARD chains.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Thu, 29 May 2003 09:47:28 +1200

netscript-2.4 (5.0.2) unstable; urgency=low

  * Updated ipfilter-defs.5 manpage for new compile rules below. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed, 23 Apr 2003 07:58:08 +1200

netscript-2.4 (5.0.1) unstable; urgency=low

  * Added support for more logging targets, for each type of new coonnection,
    so that strings can be prepended to log messages.  New compile targets
    are LOG_BROADCAST, LOG_PROTO, LOG_UDP, LOG_TCP, LOG_UDP_NET, LOG_TCP_NET,
    LOG_NET, LOG_IFACE, LOG. The new LOG_MSG and LOG_MSG_RESET are used to 
    set the log text.
  * Added support for network addresses for UDP, and TCP.  Targets are 
    ACCEPT_TCP_NET, ACCEPT_UDP_NET, REJECT_TCP_NET, REJECT_UDP_NET,
    DROP_TCP_NET, and DROP_UDP_NET, as well as above log targets.
  * Fixed spelling bug with the net-compile run messages.
  * Fixed net-compile bug where script would compile then give up with and
    error exit, and not complete compiling when there where no rules
    defined in ipfilter-defs files.
  * Manpages left to next minor release as this one has to get out the door...

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 15 Apr 2003 11:30:46 +1200

netscript-2.4 (5.0.0) unstable; urgency=low

  * Changed netscript so that it can support compiling and configuring 
    from ipfilter-defs on start up.
  * Added type checking as much as practical to the net-compile command.
  * Updated manpages for existing commands.
  * Created manpages for ipfilter-defs.
  * Moved net-compile to /sbin from /usr/sbin.
  * Set permissions on install to 700 for ipfilter-defs directory as it
    contains security information.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Mon, 24 Mar 2003 15:09:50 +1200

netscript-2.4 (4.23) unstable; urgency=low

  * Added MARTIAN_BYPASS to ipf4_martians so that some source addresses
    can be by passed in martians check.
  * Fixed some of the examples in ipfilter-defs configuration.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed, 26 Feb 2003 15:36:08 +1300

netscript-2.4 (4.22) unstable; urgency=low

  * Made some corrections for missing files etc.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 25 Feb 2003 14:08:57 +1300

netscript-2.4 (4.21) unstable; urgency=low

  * Initial packaging of net compile functionality for IPv4.
    Documentation will be in next one, this is a trial build an run package.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 25 Feb 2003 13:38:46 +1300

netscript-2.4 (4.20) unstable; urgency=low

  * Fix bug with interface type stop functions not execuiting due to 
    missing 'type' keyword.
  * Made /sbin/net work with non modular kernels, in the case where lsmod
    is not installed, and where it is.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sat,  1 Feb 2003 17:03:45 +1300

netscript-2.4 (4.19) unstable; urgency=low

  * Install missing changelog... 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Thu, 16 Jan 2003 11:43:13 +1300

netscript-2.4 (4.18) unstable; urgency=low

  * Removed Debian sub versioning as the debian package is maintained in 
    parallel to the source.
  * Removed vrrpd code as the daemon is unstable.  Included example of how
    to get package going with heartbeat.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Thu, 16 Jan 2003 10:53:45 +1300

netscript-2.4 (4.17-1) unstable; urgency=low

  * Fixed bug with /32 and /128 netmasks not being given in ethx_IPADDR.
  * Made VRRPD code work properly... - stopped new address code removing 
    VRRPD IP addresses.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed,  8 Jan 2003 10:13:03 +1300

netscript-2.4 (4.16-1) unstable; urgency=low

  * Adjusted module loading for ipt_helper module in 2.4.20
  * Fixed bug with deleting extraneous bridges where interfaces
    on running bridges were assumed to be disused bridges.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri,  3 Jan 2003 12:10:38 +1300

netscript-2.4 (4.15-1) unstable; urgency=low

  * Add support for vrrpd daemon.
  * Revamp the handling of the forwarding switch, and add commands to help 
    handle it.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Mon, 30 Dec 2002 15:38:56 +1300

netscript-2.4 (4.14-1) unstable; urgency=low

  * Add ingress check rule and portscan chan for psd module to ipfilter.conf
  * Make ipfilter.conf test for and load /etc/netscript/ipfilter-local.conf
    if present.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 26 Nov 2002 13:12:19 +1300

netscript-2.4 (4.13-1) unstable; urgency=low

  * Fix ipsec modules not unloading on 'net stop'.  Function
    call was missing in stop_mod().

 -- Matthew Grant <grantma@anathoth.gen.nz>  Mon, 18 Nov 2002 15:00:34 +1300

netscript-2.4 (4.12-1) unstable; urgency=low

  * Fixed ipsec startup to deal with Free S/WAN .pid files if the machine
    went off because of power failure - ipsec0 was not starting
  * Fixed problem with source blocking in the IPv4 inbrdr chain creation
    - inbound source blocking was setting the destination instead of the 
    source address.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sun, 10 Nov 2002 10:03:49 +1300

netscript-2.4 (4.11-1) unstable; urgency=low

  * Added support to load and unload Free S/WAN ipsec module, and extension
    modules as found in Debian Woody, and used in the Debian Router Project.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 29 Oct 2002 22:57:36 +1300

netscript-2.4 (4.10-2) unstable; urgency=low

  * Fixed some of the comments in the network.conf file to make things 
    clearer.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 29 Oct 2002 06:55:51 +1300

netscript-2.4 (4.10-1) unstable; urgency=low

  * New Upstream Version
  * Fix problem with mangling set up preventing Free S/WAN from working 
    properly - packet mangling was causing rerouting of ESP packets back
    into ipsec0 tunnel device...
  * Added support for adding static routes/static ARPs on interface 
    start/reload.
  * Added support for subordinate interfaces (for controlling
    tunnels etc).

 -- Matthew Grant <grantma@anathoth.gen.nz>  Mon, 28 Oct 2002 23:22:56 +1300

netscript-2.4 (4.04-2) unstable; urgency=low

  * Fix up Free S/WAN start up so that rp_filter can be used...

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri, 18 Oct 2002 10:24:24 +1300

netscript-2.4 (4.04-1) unstable; urgency=low

  * Fix IPv4 icmp chain creation barfing because of conflict with protocol 
    name... go figure.
  * Add support for Free S/WAN ipsec on one interface.
  * Add support for interface shutdown to chain shutdown of tunnel interfaces
    with manual manipulation...

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed, 16 Oct 2002 11:28:30 +1300

netscript-2.4 (4.03-1) unstable; urgency=low

  * New upstream release with fix for dynamic interfaces that don't exist 
    at boot, otherwise you cannot manually start them.
  * Fix minor problem with hlp output and long interface lists.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri,  4 Oct 2002 11:26:08 +1200

netscript-2.4 (4.02-1) unstable; urgency=low

  * New upstream release with tweaks and support for new 2.4.18-ac3 router
    kernels.
  * Added support for having iptables base modules compiled into the kernel
    by putting test into /sbin/net load_module() to test if base module
    is on the file system.
  * Added support for the following iptables 1.2.6a modules which have special
    dependencies:
    ipt_conntrack, ipt_NETMAP, ipt_SAME, ipt_POOL, ip_pool, and ipt_pool.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Tue, 26 Mar 2002 12:17:56 +1200

netscript-2.4 (4.01-1) unstable; urgency=low

  * Added corrected ppp interface stuff to network.conf
  * Corrected some documentation in network.conf about QoS

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri, 28 Dec 2001 14:25:27 +1300

netscript-2.4 (4.0-4) unstable; urgency=low

  * Changed permissions of /etc/netscript/network.conf and ipfilter.conf 
    to 0644 from 0600  as they do not contain information that is that 
    sensitive anymore.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Mon, 10 Dec 2001 20:52:24 +1300

netscript-2.4 (4.0-3) unstable; urgency=low

  * Fixed problems with build depends by switching to 'Build-Depends-Indep'. 

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sat,  8 Dec 2001 11:26:46 +1300

netscript-2.4 (4.0-2) unstable; urgency=low

  * Fixed problem with Build-Depends being in binary section of control file,
    and not being in the Source section as required.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Wed,  5 Dec 2001 15:05:02 +1300

netscript-2.4 (4.0-1) unstable; urgency=low

  * New version 4.0 with the following major changes
  * Converted to kernel 2.4.x, and iptables
  * Added IPv6 support, ip6tables and IPv6 interface configuration.
  * Removed filter and masquerade listing support as people should be using 
    the iptables commands
  * All the old ipchains filtering scripts have been removed and
    replaced with shell script fragments via the ipfilter exec command.
  * Configuration is now saved to disk using the iptables-restore 
    and iptables save commands (IPv4 and IPv6).
  * Converted output messages to Debian format
  * Added code to load/unload iptables and QoS modules on start
    and stop.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sat,  1 Dec 2001 14:33:21 +1300

netscript-2.2 (3.03-0potato1) unstable; urgency=low

  * Added ability to set/override multicast fflag and mtu of interface
  * Added IP source IP/network specification to DMZ_OPEN_DEST and 
    DMZ_CLOSED_DEST lists for DMZ network access control filters

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sun, 21 Jan 2001 22:54:16 +1300

netscript-2.2 (3.02-0potato1) unstable; urgency=low

  * Fixed problem with OSPF multicasts being blocked by the external 
    interface filtering.  The obstruction could cause problems with 
    Zebra ospfd and other OSPF daemons in general.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Thu,  7 Dec 2000 08:35:49 +1300

netscript-2.2 (3.01-0potato1) unstable; urgency=low

  * Removed unused INTERN_IF variable from network.conf
  * Fixed QoS reload for PPP interfaces
  * Reworked QoS loading for PP interfaces to make it nicer

 -- Matthew Grant <grantma@anathoth.gen.nz>  Sun,  3 Dec 2000 17:41:22 +1300

netscript-2.2 (3.0-0.9) unstable; urgency=low

  * Initial Release.
  * first release in a tar ball format.  This basically a
    rehash of what is in LRP Eiger.
  * More chains used to reduce CPU load on router filtering
    operations,
  * QoS made usable b y adding reload commands and providing
    facility to set aside lumps of bandwidth
  * More options provided to net command to make it more
    intiuitive to use
  * Added ability to list individual chains
  * Adapted for Debian and overhauled it to increase effeciency.
  * As this package will change rapidly, man pages are not available but
    will be written when stabilised.

 -- Matthew Grant <grantma@anathoth.gen.nz>  Fri, 24 Nov 2000 17:07:15 +1300

Local variables:
mode: debian-changelog
End: