Projects / FireHOL / Releases

All releases of FireHOL

  •  31 Jul 2008 04:24
Avatar

    Release Notes: This version was updated to parse the latest format of the IANA reservations page. Support for custom actions for services was added. This opens a way to allow actions that can be controlled externally without restarting the firewall. Several minor issues were fixed, providing better NAT support for all services, handling for external pager commands, kernel config parsing, a config wizard, etc.

    •  23 May 2007 04:57
    Avatar

      Release Notes: Minor updates were made for the latest IANA reservations. A check-iana.sh cron job script was provided to notify the administrator when IANA reservations change.

      •  21 May 2007 10:29
      Avatar

        Release Notes: This maintenance release mainly fixed kernel 2.6.20+ and BASH 3.2 issues and added support for external definitions of all IP address space definitions. All users are advised to upgrade to this release.

        •  30 Jan 2005 08:19
        Avatar

          Release Notes: This version fixes issues with the security of the created temporary files.

          •  25 Jan 2005 06:04
          Avatar

            Release Notes: This release fixed vulnerabilities where malicious local system users could use FireHOL's temporary files to overwrite arbitrary files on the system. All users are advised to update to this version. This release included new service definitions: ANYSTATELESS, TIMESTAMP, and DICT. A TRANSPARENT_PROXY helper was added. Support for knockd as an argument to the accept action was added.

            •  01 Nov 2004 02:56
            Avatar

              Release Notes: This is a major release and all users are advised to update. It includes new services: NIS, NUT, NNTPS, ASTERISK, DISTCC, ESERVER, GIFT, H323, IAX, ICP, RTP, SIP, STUN, UPNP, RDP, and more. Updated services: DHCP, SAMBA, and NFS. New helpers: TOS, DSCP, TCPMSS, and ECN_SHAME. New parameters: TOS, MARK, and DSCP. It has support for automatic installation of service definitions, better interoperability with various Linux distributions, updated RESERVED_IPS for current IANA IPv4 reservations, finer control on ACCEPTed traffic, the ability to control loopback access, and support for service groups.

              •  03 May 2004 01:41
              Avatar

                Release Notes: This release features more services, including Oracle, Gkrellmd, DCC, and whois. CUPS has been fixed and Samba has been enhanced. There are new optional rule parameters, including PHYSIN and PHYSOUT. There is an updated MAC helper, better compatibility, better kernel module management, support for ULOG logging, and better iptables statement generation. PRIVATE_IPS has been updated for IANA reservations. There are various bugfixes. All users are advised to update to this version.

                •  13 Oct 2003 02:29
                Avatar

                  Release Notes: This release features more services (MSN, DCPP, Jabber, Jabberd, Webmin, time, Postgres, Hylafax, XDMCP, TFTP, and Veritas NetBackup). It has new helpers: MAC (global pairing of MAC and IP addresses), BLACKLIST (blacklist certain IPs, unidirectional or bidirectional), and MARK (mark packets for use by QoS). There are two new optional rule parameters: MAC (match source MAC address) and OWNER (match the user sending traffic). There is better interoperability with various distributions (mainly Gentoo), more control on kernel module management, cleaner iptables rules generation, better support for kernel 2.6.x, and more.

                  •  06 Apr 2003 00:08
                  Avatar

                    Release Notes: The main new feature of this release is the HELPME function that detects and produces the FireHOL configuration for the host run. Additionally, this release introduces a new PANIC mode which is now handled entirely by FireHOL, has better handling of the MIRROR target, has wider support for SNMPTRAP and SYSLOG, a definition for the SOCKS service, and better interoperability with various Linux distributions (e.g., Debian).

                    •  18 Feb 2003 23:34
                    Avatar

                      Release Notes: This release adds support for controlling log levels on a per rule basis, updated RESERVED_IPS variable according to the latest releases of IANA, and a few minor fixes to increase compatibility on various Linux distributions.

                      Screenshot

                      Project Spotlight

                      episoder

                      A tool to tell you about new episodes of your favourite TV shows.

                      Screenshot

                      Project Spotlight

                      BalanceNG

                      A modern software IP load balancer.