r7001 - in trunk/BOOK: . introduction/welcome postlfs/security

dnicholson at linuxfromscratch.org dnicholson at linuxfromscratch.org
Thu Aug 2 07:50:18 PDT 2007


Author: dnicholson
Date: 2007-08-02 08:50:17 -0600 (Thu, 02 Aug 2007)
New Revision: 7001

Modified:
   trunk/BOOK/general.ent
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/postlfs/security/iptables.xml
Log:
Updated to iptables-1.3.8


Modified: trunk/BOOK/general.ent
===================================================================
--- trunk/BOOK/general.ent	2007-08-02 13:55:18 UTC (rev 7000)
+++ trunk/BOOK/general.ent	2007-08-02 14:50:17 UTC (rev 7001)
@@ -66,7 +66,7 @@
 <!ENTITY cracklib-version             "2.8.10">
 <!ENTITY linux-pam-version            "0.99.7.1">
 <!ENTITY shadow-version               "4.0.18.1">
-<!ENTITY iptables-version             "1.3.6">
+<!ENTITY iptables-version             "1.3.8">
 <!ENTITY gnupg-version                "1.4.7">
 <!ENTITY tripwire-version             "2.4.0.1">
 <!ENTITY heimdal-version              "0.7.2">

Modified: trunk/BOOK/introduction/welcome/changelog.xml
===================================================================
--- trunk/BOOK/introduction/welcome/changelog.xml	2007-08-02 13:55:18 UTC (rev 7000)
+++ trunk/BOOK/introduction/welcome/changelog.xml	2007-08-02 14:50:17 UTC (rev 7001)
@@ -45,6 +45,9 @@
       <para>August 2nd, 2007</para>
       <itemizedlist>
         <listitem>
+          <para>[dnicholson] - Updated to Iptables-1.3.8.</para>
+        </listitem>
+        <listitem>
           <para>[dnicholson] - Updated the libusb udev rule for raw USB device
           ownership to work with Linux-2.6.22.</para>
         </listitem>

Modified: trunk/BOOK/postlfs/security/iptables.xml
===================================================================
--- trunk/BOOK/postlfs/security/iptables.xml	2007-08-02 13:55:18 UTC (rev 7000)
+++ trunk/BOOK/postlfs/security/iptables.xml	2007-08-02 14:50:17 UTC (rev 7001)
@@ -6,9 +6,9 @@
 
   <!ENTITY iptables-download-http "http://www.netfilter.org/projects/iptables/files/iptables-&iptables-version;.tar.bz2">
   <!ENTITY iptables-download-ftp  "ftp://ftp.netfilter.org/pub/iptables/iptables-&iptables-version;.tar.bz2">
-  <!ENTITY iptables-md5sum        "077e886a9c90a11bb47f3d7a4fc4a689">
-  <!ENTITY iptables-size          "185 KB">
-  <!ENTITY iptables-buildsize     "5.5 MB">
+  <!ENTITY iptables-md5sum        "0a9209f928002e5eee9cdff8fef4d4b3">
+  <!ENTITY iptables-size          "169 KB">
+  <!ENTITY iptables-buildsize     "4.0 MB">
   <!ENTITY iptables-time          "0.1 SBU">
 ]>
 
@@ -112,21 +112,29 @@
     <para>Install <application>iptables</application> by running the following
     commands:</para>
 
-<screen><userinput>make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin KERNEL_DIR=/usr</userinput></screen>
+<screen><userinput>sed -i 's/name="$node/name="node/' iptables.xslt &&
+make LIBDIR=/lib KERNEL_DIR=/usr</userinput></screen>
 
     <para>This package does not come with a test suite.</para>
 
     <para>Now, as the <systemitem class="username">root</systemitem> user:</para>
 
-<screen role="root"><userinput>make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin KERNEL_DIR=/usr install</userinput></screen>
+<screen role="root"><userinput>
+make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin \
+    MANDIR=/usr/share/man install &&
+install -v -m644 iptables.xslt /lib/iptables</userinput></screen>
 
   </sect2>
 
   <sect2 role="commands">
     <title>Command Explanations</title>
 
+    <para><command>sed -i 's/name="$node/name="node/' iptables.xslt</command>:
+    This corrects a syntax error in the XSLT stylesheet for use with
+    <command>iptables-xml</command>.</para>
+
     <para><parameter>PREFIX=/usr LIBDIR=/lib BINDIR=/sbin</parameter>:
-    Compiles and installs <application>iptables</application> libraries
+    Compiles and installs <application>iptables</application> modules
     into <filename class="directory">/lib</filename>, binaries into
     <filename class="directory">/sbin</filename> and the remainder into
     the <filename class="directory">/usr</filename> hierarchy instead of
@@ -174,7 +182,8 @@
       <segtitle>Installed Directory</segtitle>
 
       <seglistitem>
-        <seg>iptables, iptables-restore, iptables-save and ip6tables</seg>
+        <seg>iptables, iptables-restore, iptables-save, iptables-xml and
+        ip6tables</seg>
         <seg>libip6t_*.so and libipt_*.so</seg>
         <seg>/lib/iptables</seg>
       </seglistitem>
@@ -220,6 +229,19 @@
         </listitem>
       </varlistentry>
 
+      <varlistentry id="iptables-xml">
+        <term><command>iptables-xml</command></term>
+        <listitem>
+          <para>is used to convert the output of
+          <command>iptables-save</command> to an XML format. Using the
+          <filename>iptables.xslt</filename> stylesheet converts the XML
+          bask to the format of <command>iptables-restore</command>.</para>
+          <indexterm zone="iptables iptables-xml">
+            <primary sortas="b-iptables-xml">iptables-xml</primary>
+          </indexterm>
+        </listitem>
+      </varlistentry>
+
       <varlistentry id="ip6tables">
         <term><command>ip6tables</command></term>
         <listitem>




More information about the blfs-book mailing list