Hi everybody,
here's firewalld-0.3.12 https://fedorahosted.org/released/firewalld/firewalld-0.3.12.tar.bz2 sha1sum: 265fab1899b600f9f1dead109ef5d53143aba6cb
Changelog: The most visible change is a new feature, which allows you to save active runtime configuration and overwrite permanent configuration with it. The way this is supposed to work is that when configuring firewalld you do runtime changes only and once you're happy with the configuration and you tested that it works the way you want, you save the configuration to disk.
You do that by running: $ firewall-cmd --runtime-to-permanent or selecting 'Runtime To Permanent' in firewall-config menu. (while I'm writing this I've noticed that it's not documented in firewall-cmd man page and also the firewall-config says 'permant' instead of 'permanent' - but that needs to wait for another release)
Second most significant change (even not visible to end users) is that D-Bus interfaces for permanent changes are now more fine grained and there are new methods for permanent changes of zones, services, icmptypes, direct and policies (lockdown whitelist) so the permanent interfaces are more in sync with runtime ones.
Other changes: - firewalld: - richLanguage: allow using destination with forward-port - Rich_Rule.check(): action can't be used with icmp-block/forward-port/masquerade - fixed Python specific D-Bus exception (RHBZ#1132441) - firewall-cmd: - use new D-Bus methods for permanent changes - show target REJECT instead of %%REJECT%% (RHBZ#1058794) - --direct: make fail messages consistent (RHBZ#1141835) - firewall-config: - richRuleDialog - OK button tooltip indicates problem - use new D-Bus methods for permanent changes - show target REJECT instead of %%REJECT%% (RHBZ#1058794) - update "Change Zones of Connections" menu on default zone change (RHBZ#11120212) - fixed rename of zones, services and icmptypes to not create new entry (RBHZ#1131064) - configuration: - new service for Squid HTTP proxy server - new service for Kerberos admin server - new services for syslog and syslog-tls - new services for SNMP and SNMP traps - add Keywords to .desktop to improve software searchability - docs: - updated translations - firewalld.richlanguage: improvements suggested by Rufe Glick - firewalld.dbus: various improvements - firewalld.zone: better description of Limit tag - mention new homepage everywhere
Enjoy, Jiri
firewalld-users@lists.fedorahosted.org