%define name shorewall %define samples_version 1.4.8 %define version 1.4.8 %define md5sums_version %version %define release 3mdk %define ftp_path ftp://ftp.shorewall.net Summary: Shoreline Firewall is an iptables-based firewall for Linux systems. Name: %{name} Version: %{version} Release: %{release} Source0: %ftp_path/%{name}-%{version}.tgz Source1: %ftp_path/samples-%{version}/samples-%{samples_version}.tar.bz2 Source2: %ftp_path/%{version}.md5sums Source3: init.sh License: GPL Group: System/Servers Prefix: %{_prefix} URL: http://www.shorewall.net/ BuildArch: noarch Requires: iptables Requires: chkconfig Provides: shorewall Conflicts: kernel <= 2.2 BuildRoot: %{_tmppath}/%{name}-buildroot PreReq: rpm-helper %description The Shoreline Firewall, more commonly known as "Shorewall", is a Netfilter (iptables) based firewall that can be used on a dedicated firewall system, a multi-function gateway/ router/server or on a standalone GNU/Linux system. %package doc Summary: Firewall scripts Group: System/Servers %description doc The Shoreline Firewall, more commonly known as "Shorewall", is a Netfilter (iptables) based firewall that can be used on a dedicated firewall system, a multi-function gateway/ router/server or on a standalone GNU/Linux system. This package contains the docs. %prep %setup cp -f %SOURCE3 $RPM_BUILD_DIR/%{name}-%{version} tar xjf %SOURCE1 cd $RPM_BUILD_DIR/%{name}-%{version}/samples-%{samples_version}/ for i in `ls *.tar.bz2`; do tar xjf $i done; rm -rf *.bz2 mv $RPM_BUILD_DIR/%{name}-%{version}/samples-%{samples_version}/ $RPM_BUILD_DIR/%{name}-%{version}/documentation %build find -name CVS | xargs rm -fr find -name "*~" | xargs rm -fr find documentation/ -type f | xargs chmod 0644 %install rm -rf %{buildroot} export PREFIX=%{buildroot} ; \ export OWNER=`id -n -u` ; \ export GROUP=`id -n -g` ;\ ./install.sh %{_initrddir} # Suppress automatic replacement of "echo" by "gprintf" in the shorewall # startup script by RPM. This automatic replacement is broken. export DONT_GPRINTIFY=1 %clean rm -rf %{buildroot} %post %_post_service shorewall %preun %_preun_service shorewall %files %defattr(-,root,root) %doc %attr(-,root,root) COPYING INSTALL changelog.txt releasenotes.txt tunnel %attr(700,root,root) %dir /etc/shorewall %attr(750,root,root) %{_initrddir}/shorewall %config(noreplace) %{_sysconfdir}/%{name}/accounting %config(noreplace) %{_sysconfdir}/%{name}/users %config(noreplace) %{_sysconfdir}/%{name}/usersets %config(noreplace) %{_sysconfdir}/%{name}/blacklist %config(noreplace) %{_sysconfdir}/%{name}/common.def %config(noreplace) %{_sysconfdir}/%{name}/hosts %config(noreplace) %{_sysconfdir}/%{name}/interfaces %config(noreplace) %{_sysconfdir}/%{name}/ecn %config(noreplace) %{_sysconfdir}/%{name}/masq %config(noreplace) %{_sysconfdir}/%{name}/modules %config(noreplace) %{_sysconfdir}/%{name}/nat %config(noreplace) %{_sysconfdir}/%{name}/params %config(noreplace) %{_sysconfdir}/%{name}/policy %config(noreplace) %{_sysconfdir}/%{name}/proxyarp %config(noreplace) %{_sysconfdir}/%{name}/rfc1918 %config(noreplace) %{_sysconfdir}/%{name}/routestopped %config(noreplace) %{_sysconfdir}/%{name}/rules %config(noreplace) %{_sysconfdir}/%{name}/shorewall.conf %config(noreplace) %{_sysconfdir}/%{name}/tcrules %config(noreplace) %{_sysconfdir}/%{name}/tos %config(noreplace) %{_sysconfdir}/%{name}/tunnels %config(noreplace) %{_sysconfdir}/%{name}/zones %config(noreplace) %{_sysconfdir}/%{name}/maclist %config(noreplace) %{_sysconfdir}/%{name}/start %config(noreplace) %{_sysconfdir}/%{name}/stop %config(noreplace) %{_sysconfdir}/%{name}/stopped %config(noreplace) %{_sysconfdir}/%{name}/init %attr(544,root,root) /sbin/shorewall %{_datadir}/%{name}/* %files doc %doc %attr(-,root,root) documentation/* %changelog * Tue Dec 02 2003 Florin <florin@mandrakesoft.com> 1.4.8-3mdk - check before start/restart in the initscript to avoid remote connection loss - iptables and shorewall have the same chkconfig entries * Tue Nov 18 2003 Florin <florin@mandrakesoft.com> 1.4.8-2mdk - rebuild * Wed Nov 12 2003 Florin <florin@mandrakesoft.com> 1.4.8-1mdk - 1.4.8 - samples 1.4.8 * Sun Nov 02 2003 Florin <florin@mandrakesoft.com> 1.4.8-0.RC2.1mdk - 1.4.8-RC2 * Sun Oct 26 2003 Florin <florin@mandrakesoft.com> 1.4.7c-1mdk - 1.4.7c * Sat Oct 25 2003 Florin <florin@mandrakesoft.com> 1.4.7b-1mdk - 1.4.7b * Tue Oct 07 2003 Florin <florin@mandrakesoft.com> 1.4.7b-1mdk - 1.4.7 and samples 1.4.7 - add accounting, users and usersets new configuration files * Mon Sep 08 2003 Florin <florin@mandrakesoft.com> 1.4.6c-2mdk - replace the stop patch with SOURCE1 * Wed Sep 03 2003 Florin <florin@mandrakesoft.com> 1.4.6c-1mdk - 1.4.6c * Thu Aug 07 2003 Florin <florin@mandrakesoft.com> 1.4.6b-1mdk - 1.4.6b - samples 1.4.6 * Mon Jun 23 2003 Florin <florin@mandrakesoft.com> 1.4.5-1mdk - 1.4.5 * Tue Jun 10 2003 Florin <florin@mandrakesoft.com> 1.4.4-1mdk - 1.4.4b - samples 1.4.4 * Fri Apr 25 2003 Florin <florin@mandrakesoft.com> 1.4.2-1mdk - 1.4.2 * Thu Apr 03 2003 Florin <florin@mandrakesoft.com> 1.4.1a-1mdk - 1.4.1a - 1.4.0 samples version - icmp.def has been removed - _libdir files are now in _datadir - ecn is the new file * Fri Feb 21 2003 Florin <florin@mandrakesoft.com> 1.3.14-3mdk - use simplified initscript - stop acts as clear - stop-> rstopped * Thu Feb 20 2003 Florin <florin@mandrakesoft.com> 1.3.14-2mdk - really fix chkconfig * Mon Feb 17 2003 Florin <florin@mandrakesoft.com> 1.3.14-1mdk - 1.3.14 - fix the chkconfig part * Tue Jan 21 2003 Florin <florin@mandrakesoft.com> 1.3.13-1mdk - 1.3.13 - samples 1.3.12 * Fri Jan 10 2003 Florin <florin@mandrakesoft.com> 1.3.12-1mdk - 1.3.12 - add missing files * Fri Nov 29 2002 Florin <florin@mandrakesoft.com> 1.3.11-1mdk - 1.3.11 - samples-1.3.11 * Fri Nov 22 2002 Florin <florin@mandrakesoft.com> 1.3.10-1mdk - 1.3.10 - samples-1.3.10 - add the forgotten maclist - add PreReq on rpm-helper - remove some weird config(noreplace)s * Mon Oct 28 2002 Florin <florin@mandrakesoft.com> 1.3.9b-4mdk - use the post|preun_service macros * Thu Oct 24 2002 Florin <florin@mandrakesoft.com> 1.3.9b-3mdk - remove the chkconfig add in post * Tue Oct 15 2002 Thierry Vignaud <tvignaud@mandrakesoft.com> 1.3.9b-2mdk - fix cvs-internal-file - fix %%preun * Tue Oct 15 2002 Florin <florin@mandrakesoft.com> 1.3.9b-1mdk - 1.3.9b - 1.3.9 samples * Mon Oct 7 2002 Florin <florin@mandrakesoft.com> 1.3.9a-1mdk - 1.3.9a - _libdir instead of /var/lib * Tue Sep 10 2002 Florin <florin@mandrakesoft.com> 1.3.7c-1mdk - 1.3.7c fixes a DNAT bug - clear the rules in preun (thx to aginies) * Wed Aug 28 2002 Florin <florin@mandrakesoft.com> 1.3.7b-2mdk - split the docs in a special package * Tue Aug 27 2002 Oden Eriksson <oden.eriksson@kvikkjokk.net> 1.3.7b-1mdk - new version - ditch P0 - samples_version is 1.3.7, not 1.3.7a * Mon Aug 26 2002 Oden Eriksson <oden.eriksson@kvikkjokk.net> 1.3.7a-2mdk - update the firewall script (P0) - misc spec file fixes * Fri Aug 23 2002 Oden Eriksson <oden.eriksson@kvikkjokk.net> 1.3.7a-1mdk - new version * Thu Aug 01 2002 Florin <florin@mandrakesoft.com> 1.3.5b-2mdk - update the URL - add the md5sums - update the description * Thu Aug 01 2002 Florin <florin@mandrakesoft.com> 1.3.5b-1mdk - 1.3.5b - remove the useless so-called comptability with SNF * Tue Jul 16 2002 Oden Eriksson <oden.eriksson@kvikkjokk.net> 1.3.4-1mdk - new version - misc spec file fixes * Mon Jun 10 2002 Oden Eriksson <oden.eriksson@kvikkjokk.net> 1.3.1-1mdk - new version * Fri May 17 2002 Florin <florin@mandrakesoft.com> 1.2.13-1mdk - 1.2.13 * Fri May 03 2002 Florin <florin@mandrakesoft.com> 1.2.12-1mdk - 1.2.12 - samples 1.2.1 * Tue Apr 09 2002 Florin <florin@mandrakesoft.com> 1.2.10-1mdk - 1.2.10 * Mon Mar 11 2002 Florin <florin@mandrakesoft.com> 1.2.9-1mdk - shorewall 1.2.9 - samples 1.2.1 - fiw some doc files permissions * Wed Feb 20 2002 Florin <florin@mandrakesoft.com> 1.2.6-2mdk - add misc, pptp and cbq examples in samples archive * Tue Feb 12 2002 Florin <florin@mandrakesoft.com> 1.2.6-1mdk - 1.2.6 - use the install.sh script - move shorewall to /sbin - add conflicts to the kernel <= 2.2 * Tue Jan 22 2002 Florin <florin@mandrakesoft.com> 1.2.3-2mdk - fix the ADSL entry in description (thx to Y.Duret) * Tue Jan 22 2002 Florin <florin@mandrakesoft.com> 1.2.3-1mdk - 1.2.3 * Thu Jan 10 2002 Florin <florin@mandrakesoft.com> 1.2.2-1mdk - 1.2.2 - 1.2.0 samples version - add the /%{_sysconfdir}/%{name}/{blacklist,tcrules} files - fix some rpmlint errors * Mon Dec 31 2001 Florin <florin@mandrakesoft.com> 1.2.0-1mdk - 1.2.0 - update the samples files * Tue Dec 18 2001 Florin <florin@mandrakesoft.com> 1.1.18-2mdk - add the original sample files - use the ftp_path macro - forbid the echo/gprintf substitution in the initscript - fix the docs permissions * Mon Dec 17 2001 Florin <florin@mandrakesoft.com> 1.1.18-1mdk - 1.1.18 * Thu Oct 11 2001 Florin <florin@mandrakesoft.com> 1.1.13-3mdk - add the /etc/shorewall/params file * Wed Sep 26 2001 Florin <florin@mandrakesoft.com> 1.1.13-2mdk - fix a typo in description (thx to Alvaro Herrera) * Mon Sep 24 2001 Florin <florin@mandrakesoft.com> 1.1.13-1mdk - 1.1.13 * Mon Sep 03 2001 Lenny Cartier <lenny@mandrakesoft.com> 1.1.12-1mdk - rebuild * Wed Aug 1 2001 Sylvain de Tilly <sdetilly@ke.mandrakesoft.com> 1.1.10-1mdk - Transforme original spec file to Mandrake's spec file * Fri Jul 06 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 10 * Tue Jun 19 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 9 - Added tunnel file - Readded tunnels file * Mon Jun 18 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 8 * Sat Jun 02 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 7 - Changed iptables dependency. * Tue May 22 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 6 - Added tunnels file * Sat May 19 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 5 - Added modules and tos files * Sat May 12 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 4 - Added changelog.txt and releasenotes.txt * Sat Apr 28 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed release to 3 * Mon Apr 9 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Added files common.def and icmpdef.def - Changed release to 2 * Wed Apr 4 2001 Tom Eastep <tom@seattlefirewall.dyndns.org> - Changed the release to 1. * Mon Mar 26 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Changed the version to 1.1 - Added hosts file * Sun Mar 18 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Changed the release to 4 - Added Zones and Functions files * Mon Mar 12 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Change ipchains dependency to an iptables dependency and changed the release to 3 * Fri Mar 9 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Add additional files. * Thu Mar 8 2001 Tom EAstep <teastep@seattlefirewall.dyndns.org> - Change version to 1.0.2 * Tue Mar 6 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Change version to 1.0.1 * Sun Mar 4 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Changes for Shorewall * Thu Feb 22 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Change version to 4.1.0 * Fri Feb 2 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Change version to 4.0.4 * Mon Jan 22 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Change version to 4.0.2 * Sat Jan 20 2001 Tom Eastep <teastep@seattlefirewall.dyndns.org> - Changed version to 4.0 * Fri Jan 5 2001 Tom Eastep <teastep@evergo.net> - Added dmzclients file * Sun Dec 24 2000 Tom Eastep <teastep@evergo.net> - Added ftpserver file * Sat Aug 12 2000 Tom Eastep <teastep@evergo.net> - Added "nat" and "proxyarp" files for 4.0 * Mon May 20 2000 Tom Eastep <teastep@evergo.net> - added updown file * Sat May 20 2000 Simon Piette <spiette@generation.net> - Corrected the group - Networking/Utilities - Added "noreplace" attributes to config files, so current confis is not changed. - Added the version file. * Sat May 20 2000 Tom Eastep <teastep@evergo.net> - Converted Simon's patch to version 3.1 * Sat May 20 2000 Simon Piette <spiette@generation.net> - 3.0.2 Initial RPM Patched the install script so it can take a PREFIX variable