Release Notes: This release implements IPLIMIT so that it works with 2.4 and 2.6 kernels, implements port forwarding to other interfaces (no longer limited to DMZ), fixes an error in the install script that omitted a mkdir, and removes the TCP port 445 (microsoft-ds) from TCP_PROBE.
Release Notes: Even more sanity checking was added. A new experimental install script was added. The default logging level was changed from kern.=info to kern.=debug in narc.conf. Please modify your syslog.conf to accommodate the change. The LOG_LIMIT_EXCEED option was added to log TCP connections that exceed the LIMIT_RATE in narc.conf.
Release Notes: Errant detection of the ipchains module has been fixed. Modules detection has been changed to include /lib for certain distributions. An AUTOGET_EXTERNAL_IP option has been added for narc-forward.conf. More typos have been fixed.
Release Notes: rp_filter (ingress filtering) and ENABLE_IPLIMIT have been fixed. This is the first NARC release to be compatible with the previous (0.6) narc.conf file.
Release Notes: The NARC executable path is now configurable (used by /etc/init.d/iptables). NARC was rewritten to make adding future options easier. Support for general rate limiting was added. Support for IP/network based connection limit (TCP only) was added. More logging options were added (ICMP, packet length, iplimit). General code cleanup and optimizations were made.
Release Notes: CHECK_SYN_PACKET_LENGTH and an error in the installation directions were fixed. LOOPBACK_MODE and more sanity checking of the config file added.
Release Notes: Default location of /etc/narc.conf moved to /etc/narc/narc.conf. Default location of /usr/bin/narc moved to /usr/sbin/narc. iptables init.d script modified to support chkconfig for Redhat users, and path info modified. Implemented port range matching implemented (allows for more than 15 ports). /etc/narc-custom.conf added to allow execution of custom commands. AUTH_REJECT improved. FORWARD_LAN_TO_DMZ fixed. Optimizations in rule reordering and logging, more sanity checking of the config file, and general bugfixes added.
Release Notes: The logging section has been improved and fixed. The port forwarding section has been reworked and fixed. The narc-forward.conf file has been added. CHECK_SYN_PACKET_LENGTH has been made configurable so that NARC can be used with stock kernels that do not support packet length checking. Spoof checking has been tweaked.