120100203
2	Changelog for v2.0.9-2
3	* fix unwanted zeroing of counters in the last user-defined chain
4	  (reported by Jon Lewis)
5	* fix hidden symbol compilation error when using ld directly
6	* fix return value checking of creat to give a correct error
7	  message if the atomic file couldn't be created
8	* correct info in INSTALL about compilation of ulog
920090621
10	Changelog for v2.0.9 vs v2.0.8-2
11	* added ip6 module for filtering IPv6 traffic (Kuo-Lang Tseng,
12	  Manohar Castelino)
13	* added --log-ip6 option for logging IPv6 traffic (Kuo-Lang Tseng,
14	  Manohar Castelino)
15	* added nflog watcher for logging packets to userspace (Peter Warasin)
16	* bugfix in ebtables.sysv (Michal Soltys)
17	* bugfix for among match on x86-64 (reported by Pavel Emelyanov)
1820061217
19	Since last entry:
20	* fixed a few reported bugs
21	* ebt_among --among-dst-file and --among-src-file: allow
22	  the list to be given in a file (circumvents command line max.
23	  line length
24	* ebt_nat --snat-arp: if it's an arp packet, also change the source
25	  address in the arp header
26	* ebt_mark --mark-or, --mark-xor, --mark-and
2720051020
28	Since last entry:
29	* ebtables modules are now located in /usr/lib/ebtables/
30	* added '/sbin/service ebtables' support
31	* added ebtables-save (thanks to Rok Papez <rok.papez@arnes.si>)
32	  and ebtables-restore (the first one a perl script, the second
33	  one written in c (fast))
34	* optimized the code for the '-A' command, making ebtables-restore
35	  very fast.
36	* ebtablesd/ebtablesu is deprecated and not compiled by default
37	  the ebtables-save/ebtables-restore scheme is much better
3820050117
39	Since last entry:
40	* added ulog watcher
41	* made the ebtables code modular (make library functions).
42	* added the ebtablesd/ebtablesu scheme to allow faster
43	  addition of rules (and to test the modular code).
44	* some small fixes
45	* added -c option (initialize counters)
46	* added -C option (change counters)
4720031102
48	Since last entry:
49	* <grzes_at_gnu.univ.gda.pl> added arpreply and among modules
50	* <tommy_at_home.tig-grr.com> added limit match
5120030724
52	* added (automatic) Sparc64 support, thanks to Michael Bellion and
53	  Thomas Heinz from hipac.org for providing a test-box.
5420030717
55	* added stp frames match type
5620030713
57	* added support for deleting all user-defined chains (-X option
58	  without specified chain)
5920030601
60	* added --Lmac2
61	* <csv_at_bluetail.com> Chris Vitale: basic 802.3/802.2 filtering
62	  (experimental, kernel files are in the CVS)
63
6420030503
65	* added negative rule counter support
66	* bugfix: bcnt was not updated correctly
67	* <blancher_at_cartel-securite.fr> Cedric Blancher: add ARP MAC
68	  matching support
69	* added pkttype match
7020030402
71	* fixed check bug in ebt_ip.c (report from
72	  joe_judge_at_guardium.com).
7320030111
74	* fixed problem when removing a chain (report from
75	  ykphuah_at_greenpacket.com).
76	* Added --help list_extensions which, well, lists the extensions
7720021203
78	* changed the way to use the atomic operations. It's now possible
79	  to use the EBTABLES_ATOMIC_FILE environment variable, so it's no
80	  longer necessary to explicitly state the file name. See the man.
8120021120
82	* changed the way of compiling. New releases will now contain their
83	  own set of kernel includes. No more copying of kernel includes to
84	  /usr/include/linux
85	* added getethertype.c (Nick) and use it. Removed name_to_number()
86	  and number_to_name().
8720021106
88	* added possibility to specify a rule number interval when deleting
89	  rules
9020021102
91	* added ! - option possibility, which is equivalent to - ! option
9220021102
93	* since last entry: added byte counters and udp/tcp port matching
9420020830
95	* updated the kernel files for 2.4.20-pre5 and 2.5.32
96	* last big cleanup of kernel and userspace code just finished
9720020820
98	* ARP module bugfix
99	* IP module bugfix
100	* nat module bugfix
10120020730
102	* other things done before 2.0-rc1 that I can think of,
103	  including kernel:
104	* cache align counters for better smp performance
105	* simplify snat code
106	* check for --xxxx-target RETURN on base chain
107	* cleanup code
108	* minor bugfixes
10920020724
110	* code cleanup
111	* bugfix for --atomic-commit
11220020720
113	* added mark target+match
11420020714
115	* added --atomic options
11620020710
117	* some unlogged changes (due to lazyness)
118	* added --Lc, --Ln, --Lx
11920020625
120	* user defined chains support: added -N, -X, -E options.
12120020621
122	* some unlogged changes (due to lazyness)
123	* change the output for -L to make it look like it would look when
124	  the user inputs the command.
125	* try to autoload modules
126	* some minor bugfixes
127	* add user defined chains support (without new commands yet,
128	  deliberately)
129	* comparing rules didn't take the logical devices into account
13020020520
131	* update help for -s and -d
132	* add VLAN in ethertypes
133	* add SYMLINK option for compiling
13420020501
135	* allow -i and --logical-in in BROUTING
136	* update the manual page
137	* rename /etc/etherproto into /etc/ethertypes (seems to be a more
138	  standard name)
139	* add MAC mask for -s and -d, also added Unicast, Multicast and
140	  Broadcast specification for specifying a (family of) MAC
141	  addresses.
14220020427
143	* added broute table.
144	* added redirect target.
145	* added --redirect-target, --snat-target and --dnat-target options.
146	* added logical_out and logical_in
147	* snat bugfix (->size)
14820020414
149	* fixed some things in the manual.
150	* fixed -P problem.
15120020411
152	* -j standard no longer works, is this cryptic? good :)
153	* lots of beautification.
154	  - made some code smaller
155	  - made everything fit within 80 columns
156	* fix problems with -i and -o option
157	* print_memory now prints useful info
158	* trying to see the tables when ebtables is not loaded in kernel
159	  no longer makes this be seen as a bug.
16020020403
161	ebtables v2.0 released, changes:
162	* A complete rewrite, made everything modular.
163	* Fixed a one year old bug in br_db.c. A similar bug was present
164	  in ebtables.c. It was visible when the number of rules got
165	  bigger (around 90).
166	* Removed the option to allow/disallow counters. Frames passing
167	  by are always counted now.
168	* Didn't really add any new functionality. However, it will be
169	  _alot_ easier and prettier to do so now. Feel free to add an
170	  extension yourself.
171	* There are 4 types of extensions:
172	  - Tables.
173	  - Matches: like iptables has.
174	  - Watchers: these only watch frames that passed all the matches
175	    of the rule. They don't change the frame, nor give a verdict.
176	    The log extension is a watcher.
177	  - Targets.
178	* user32/kernel64 architectures like the Sparc64 are unsupported.
179	  If you want me to change this, give me access to such a box,
180	  and don't pressure me.
181