                         Firewall Builder Release Notes

Version 2.0.11

   Released 04/08/2006
   GUI and compilers v2.0.11 require API library libfwbuilder version 2.0.11

Summary

   This is a bug fix release

   For those who wish to build from source, instructions are outlined in the
   document "Install and Build instructions" on our web site here

Bugs fixed in this releaase:

     * fixes to make code compile with g++ 4.1; patch by Martin Michlmayr
       <tbm@cyrius.com>
     * bug #1455772: "Problem with UTF8 Descriptions in FW Objects". Properly
       converting comments to/from UTF-8 to ensure the script is not
       corrupted when copied to the firewall
     * bug #1455748: "make firewall script executable". Iptables script is
       made executable using "chmod +x" when it is copied to the firewall y
       built-in installer.

Bugs fixed in policy compiler for iptables:

     * bug #1375432: "fwb_ipt with twice -m state". Compiler used to generate
       options "-m state --state XYZ" twice in a situation when administrator
       uses custom service that already includes this code and rule is not
       stateless.
     * bug#1364060: "conntrack modules not found". The name of the
       'conntrack' module in Linux 2.6 is 'ip_conntrack.ko' and
       'ipt_conntack.ko'. Changed shell pattern to match new modules as well
       as old ones.

Bugs fixed in policy compiler for ipfilter:

     * bug #1386226: "generated -nat.conf is not removed when nat rules
       removed.". Old fw-nat.conf was left in place when user deleted all NAT
       rules (the new one was not created either). Now compiler deletes
       *-ipf.conf and *-nat.conf files before creating new ones, also
       installer gets correct list of files to read
     * bug #1393004: "Solaris does not have 'egrep -q'". Since egrep shipped
       with Solaris does not have option '-q', using '-s'
