Permalink
Find file
Fetching contributors…
Cannot retrieve contributors at this time
112 lines (83 sloc) 4.92 KB

Changelog

0.8.9 - 2016/12/08

  • Feature: Add Systemd for Xenial

0.8.8 - 2016/12/02

  • Bug: Support for an array of protocols (@elmobp)
  • Bug: Support Ruby 2.0+ (@elmobp)
  • Feature: Protocol validation using /etc/protocols, by adding this support in the validation ensures many other parts of the software performed correctly (@elmobp)
  • Feature: Protocol validation whitelist (@elmobp)

0.8.7 - 2013/06/23

  • Bug: The I forgot to push to github release, just a version bump (@johnf)

0.8.6 - 2013/06/23

  • Feature: Add ript rules flush command to flush all rules (@johnf)

0.8.5 - 2013/04/16

  • Bug: Write the output of ript diff to a file and execute that, so sh doesn't choke on huge insertions #8

0.8.4 - 2012/08/12

  • Bug: DNAT rules from one port to another were adding a filter rule for the source instead of destination port (@johnf)

0.8.3 - 2012/07/19

  • Bug: Default the protocol for filter rules to TCP, so filter rules are generated correctly (@auxesis)

0.8.2 - 2012/07/19

  • Bug: Fix a regression where we don't generate rules without an explicit from. (@auxesis)

0.8.1 - 2012/07/17

  • Bug: Generate the iptables clean commands in Ruby, to eliminate bogus clean command generation (@auxesis)
  • Chore: Refactor test internals to re-use common iptables cleaning routines (@auxesis)

0.8.0 - 2012/07/17

  • Feature: Allow multiple froms to be specified in a DNAT rewrite (@auxesis)
  • Feature: Provide a default label named "all", that represents the IPv4 zero-address 0.0.0.0/0 (@auxesis)

0.7.1 - 2012/07/16

  • Bug: Ensure the list of chains to clean up is unique, so we don't delete the same chains multiple times (@auxesis)

0.7.0 - 2012/07/09

  • Feature: Show a custom message if exceptions appear to be generated by Ript (@auxesis)
  • Feature: Add support for specifying protocols in rewrites (@auxesis)
  • Chore: Move example rules to examples/. Point tests at the new directory (@auxesis)

0.6.1 - 2012/06/06

  • Feature: Make init script executable (@johnf)

0.6.0 - 2012/06/06

  • Feature: add "rules save", outputs rules in a format suitable for iptables-restore (@johnf)
  • Feature: Add an init script to dist/ that performs iptables-restore at boot (@johnf)

0.5.0 - 2012/05/31

  • Feature: rename "customer" to "partition", to make terminology more friendly for use on standalone hosts (thanks @jessereynolds)

0.4.3 - 2012/05/27

  • Bug: Fix clean subcommand so it ignores important chains (before-a, etc) (@johnf)

0.4.2 - 2012/05/24

  • Bug: Use the destination address in the FORWARD chain when building the implicit accept on DNAT, so traffic actually gets accepted (@auxesis)

0.4.1 - 2012/05/23

  • Bug: Emit --protocol when generating ACCEPT rules, so the --dport argument works (@auxesis)

0.4.0 - 2012/05/23

  • Feature: Automatically create ACCEPT rules on the FORWARD chain, so NAT works in environments where DROP is the default policy(@auxesis)
  • Feature: Reject multiple partition definitions in the same file, to maintain clean definitions(@auxesis)
  • Feature: Make the DSL documentation awesome(@auxesis)

0.3.6 - 2012/05/03

  • Bug: Tests were broken and weren't matching empty output correctly (@johnf)
  • Bug: raw tables were being applied repeatedly (@johnf)

0.3.5 - 2012/05/03

  • Bug: Bring back generate functionality (@johnf)

0.3.4 - 2012/05/03

  • Chore: Remove timestamps from chain names (@johnf)
  • Feature: Add partition-X chain (@johnf)
  • Feature: Add cleanup functionality (@johnf)
  • Chore: Update CLI arguments (@johnf)

0.3.3 - 2012/05/02

  • Bug: Split SNAT/DNAT partition rule generation into separate chains, so rules apply correctly (@johnf)
  • Feature: Check that ript is being run as root (@arthurbarton)

0.3.2 - 2012/04/25

  • Feature: Add validation for duplicate partition names (@auxesis)
  • Feature: Add validation for bad characters in partition names (@auxesis)
  • Feature: Add validation for partition names longer than 12 characters (@auxesis)

0.3.1 - 2012/04/24

  • Feature: Add support for specifying multiple to addresses in a single accept/drop/reject definition (@auxesis)

0.3.0 - 2012/04/23

  • Feature: Attempt to suggest alternative method names when a user uses one that doesn't exist (@auxesis)
  • Feature: Extend accept, reject, drop, log blocks in the DSL to handle interfaces, protocols, and ports (@auxesis)
  • Feature: Allow ript to run against an arbitrary path or file to the relative path (@auxesis)
  • Feature: Add logging support throughout the DSL (@auxesis)
  • Chore: Rename 'address' to 'label' in the DSL, as that's what they are (@auxesis)
  • Chore: Rename 'forward' to 'rewrite' in the DSL, to reduce terminology collisions (@auxesis)
  • Chore: Add a test harness script for running ript + tests in an rbenv environment as root (@auxesis)

0.2.0 - 2012/04/10

  • Add support for SNAT rules (@auxesis)
  • Split tests into more managable files (@auxesis)

0.1.0 - 2012/03/26

  • Add installation + development documentation. (@auxesis)
  • Build a gem release. (@auxesis)