Software-update: Vuurmuur 0.5.72

Voor het configureren en beheren van een firewall gebaseerd op netfilter/iptables kan je gebruik maken van het programma vuurmuur. Dit programma maakt het leven van een systeembeheerder iets eenvoudiger door de complexiteit van het configureren van netfilter uit handen te nemen. Via de meegeleverde interface kan je overzichtelijk rules, hosts, groups, zones, interfaces en services aangeven en in real-time de logbestanden uitlezen. Voor een overzicht van een aantal screenshots verwijzen we jullie door naar deze pagina. De ontwikkelaars hebben vuurmuur 0.5.72 naar buiten gebracht met de volgende aankondiging:

Vuurmuur 0.5.72 is finally released! It has taken way longer than I originally planned, but I've had a very busy year. People wanting to help in the development are very welcome! Like described in the alpha announcements the main focus of this release was the connection killing options in Vuurmuur_conf. It requires the conntrack tool to be installed. You can find the release at the sourceforge project page and on the ftp server. Looking forward, I intend to add support for the NFQUEUE and CLASSIFY iptables targets. The former for advanced use of tools like Snort_inline in combination with Vuurmuur, the latter for easier traffic shaping. For more details about my ideas keep an eye on my blog.

Version 0.5.72:

• No changes since alpha7.

Version 0.5.72 alpha 7:

• Hide 'wait window' after the logmanagement was called on an empty logviewer.
• Updated Russian translation.
• Make grouplist window wider so long names work correctly.

Version 0.5.72 alpha 6:

• Added a work-around to the install script for issues with older versions of automake and newer versions of gettext.
• Make a few cosmetic changes to Vuurmuur_conf
• Updated Russian (thanx Alex!) and Dutch translations.

Version 0.5.72 alpha 5:

• Fixed a 'post error' for the log- and connection management.
• The top menu is now properly restored after the log management has been used.
• Added a wait-window for loading the log management.
• Addition of a new string creation function, one that allows limiting the length.
• Update helpfile for connection and log management.
• Add support for help in the code for the log and connection management.
• Small cosmetic manpage updates by Alex.
• Fix connection killing for unknown objects. Handle filtered connections and logs better.
• NL translation update.
• Updated pt_BR translation by Hugo

Version 0.5.72.alpha 4:

• Connection viewer will now also do reverse lookup of the service name if the service is unrecognized. This matches the behaviour of vuurmuur_log.
• Don't set an inactive rule to active because the 'in_int' is active.
• Don't show 'kill this connection' for DROP and REJECT logs.
• Added nicer error message for removal failure of a non-empty zone.
• Fixed connection killing when the connection viewer was set to grouping.
• Fixed new parts of the gui not being translatable.
• Updated Russian translation.

Version 0.5.72.alpha 3:

• Extended the connection management GUI to the logviewer.
• Applied patch by Alerandre SIMON that adds pre vuurmuur chains to all tables.

Version 0.5.72.alpha 2:

• Switched SCM from Bazaar 1.4 to Bazaar-NG 0.8.
• Changed page up and page down behaviour in logview. It now scrolls an entire page instead of just 1/3.
• Prepared support for pre-vuurmuur chains in non-filter tables.
• Cosmetic updates to connection management.
• Updated nl and ru translations.

Version 0.5.72 alpha 1:

• Add a function to the library to search an interface by its ip address.
• Don't try to open a plugin if the plugin name is not set.
• Don't use the mac addres in the postrouting rule for the bounce action since it makes the ruleset fail.
• Dhcp rules fixes and cleanups.
• Add support for pre-vuurmuur chains. Patch and idea by Alexandre Simon.
• Replace all strcpy calls with memset and strlcpy just to be sure, although there was no real risk.
• Added initial version of new gui abstraction functions, still in development.
• Added connection killing option to the connection viewer. Needs the conntrack tool.