-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-04bc794931 2025-04-23 01:59:45.656610+00:00 --------------------------------------------------------------------------------
Name : foomuuri Product : Fedora 40 Version : 0.28 Release : 1.fc40 URL : https://github.com/FoobarOy/foomuuri Summary : Multizone bidirectional nftables firewall Description : Foomuuri is a firewall generator for nftables based on the concept of zones. It is suitable for all systems from personal machines to corporate firewalls, and supports advanced features such as a rich rule language, IPv4/IPv6 rule splitting, dynamic DNS lookups, a D-Bus API and FirewallD emulation for NetworkManager's zone support. -------------------------------------------------------------------------------- Update Information: Upstream update to version 0.28. Merge iplist and resolve sections to unified iplist. Old config will work as is, but updating it to new iplist format is recommended: simply rename resolve {} to iplist {} and check timeout and refresh options. Add url_timeout=10d, url_refresh=1d, dns_timeout=24h and dns_refresh=15m options to iplist section to specify expiry timeout and refresh interval for URLs (HTTP or file) and resolved hostnames. Old timeout and refresh options are deprecated. They set both url_XXX and dns_XXX values. Downloaded iplist content can be filtered: |shell:/path/to/command pipe it via external command. |json:filter use external jq command to parse it as JSON data. |html:XPath parse it as HTML data. |xml:XPath parse it as XML data. |missing-ok don't print warning if URL download or DNS resolve fails. Improve template foo handling to support matchers and everything else that macros support. Add prerouting filter raw and similar sections to allow specifying chain type and hook priority. Add notrack statement to be used in prerouting section to mark packet to not be added to conntrack. Add 10 mbytes/second per byte support to rate limits (global_rate etc). Add over support to rate limits to be used with drop statement. Add dscp matcher to match packet's DSCP value. Add bgp macro to default services. -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 15 2025 Kim B. Heino <[email protected]> - 0.28-1 - Upgrade to 0.28 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-04bc794931' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
