[Firewall] Firewall version 2.0.1f-RC1 available for download

Arno van Amersfoort arnova at rocky.eld.leidenuniv.nl
Mon Aug 24 08:13:44 CEST 2015

Hi all,

The RC for the new upcoming stable release of AIF. No major changes, 
just more polishing what we already have. It contains some improvements 
concerning the plugins and enhanced error handling.

You can grab it from:


Version 2.0.1f-RC1 (August 24, 2015)
! Enable xtables lock "wait" option found in iptables 1.4.20+, Issue #17
! Using NAT_STATIC_IP with multiple ext interfaces would fail in case 
not enough ext IPs were specified
* Don't hardcode IP4TABLES/IP6TABLES binary in the config file. Just 
autodetect it like the other binaries
! Misc. fixes for newer SuSE & Redhat systems concerning systemd & init
* Moved get host cache logic from traffic accounting plugin to 
environment to avoid (future) code duplication
! Fixed NAT_LOCAL_REDIRECT=1 packets from being logged as if they were 
+ Added tcp_be_liberal option
+ Allow rp_filter to be mode 2 (loose)
! Fixed functions get_ifs() and get_ips() with a '#', distinguish IPv4 
from VLAN interfaces and check for
   IPv6 addresses (thanks to Mike C. Fletcher)
* Improve y/n user handling
* Improve log handling for dyndns plugin
+ Try to auto detect external net settings automatically on start
* Improve error handling especially for plugins
* Several plugin updates


Arno van Amersfoort
E-mail    : arnova at rocky.eld.leidenuniv.nl
Donations are welcome through Paypal!
Arno's (Linux IPTABLES Firewall) Homepage:

 From - Thu

More information about the Firewall mailing list