From c5d76ff8a6477d4902cd03b6b4c410ce5384a35f Mon Sep 17 00:00:00 2001 From: Hiroki Sato Date: Sat, 24 Apr 2004 17:30:32 +0000 Subject: [PATCH] New release note: acpi_asus(4) added, versrcreach option of ipfw(4), and Israel Hebrew locale he_IL.UTF-8 added. Update release note: The random ephemeral port allocation can be disabled using the net.inet.ip.portrange.randomized sysctl. MFC: ng_hub(4), vr(4) polling support, per-interface polling(4) support, and random ephemeral port allocation. --- .../doc/en_US.ISO8859-1/relnotes/article.sgml | 31 ++++++++++++++++--- .../en_US.ISO8859-1/relnotes/common/new.sgml | 31 ++++++++++++++++--- 2 files changed, 54 insertions(+), 8 deletions(-) diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml index 31dea602a7b..48ac8208058 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml @@ -186,6 +186,10 @@ Kernel Changes + The &man.acpi.asus.4; driver has been added + to use ACPI-controlled hardware features such as hot keys and + LCD on ASUSTek laptops. + The &man.acpi.toshiba.4; driver has been added to use Toshiba's Hardware Control Interface to manipulate certain hardware features on Toshiba laptops. @@ -358,7 +362,7 @@ The &man.ng.hub.4; Netgraph node type, which supports a simple packet distribution that acts like an Ethernet hub - has been added. + has been added. &merged; The &man.ng.vlan.4; Netgraph node type, which supports IEEE 802.1Q VLAN tagging has been added. &merged; @@ -390,7 +394,7 @@ support for USB Ethernet adapters based on the Davicom DM9601 chipset. - The &man.vr.4; driver now supports &man.polling.4;. + The &man.vr.4; driver now supports &man.polling.4;. &merged; The hardware TX checksum support in the &man.xl.4; driver has been disabled as it does not work correctly and slows down @@ -401,7 +405,7 @@ (&man.dc.4;, &man.fxp.4;, &man.em.4;, &man.nge.4;, &man.re.4;, &man.rl.4;, &man.sis.4;, &man.ste.4;, and &man.vr.4;) now also support this capability and it can be controlled - via &man.ifconfig.8;. + via &man.ifconfig.8;. &merged; @@ -414,6 +418,20 @@ The &man.gre.4; tunnel driver now supports WCCP version 2. + &man.ipfw.4; rules now support the versrcreach + option to verify that a valid route to the source address + of a packet exists in the routing table. + This option is very useful for routers with a complete view of + the Internet (BGP) in the routing table to reject packets with + spoofed or unroutable source addresses. For example, + + deny ip from any to any not versrcreach + + is equivalent to the following in Cisco IOS syntax: + + ip verify unicast source reachable-via any + + Some bugs in the IPsec implementation from the KAME Project have been fixed. These bugs were related to freeing memory objects before all references to them were removed, and @@ -455,7 +473,9 @@ be increasing, no matter how quickly the port is recycled. The random ephemeral port allocation, which come from OpenBSD - has been implemented. + has been implemented. This is enabled by default and can be disabled + using the net.inet.ip.portrange.randomized + sysctl. &merged; @@ -649,6 +669,9 @@ for the benefit of the misc/utf8locale port. + An Israel Hebrew locale he_IL.UTF-8 + has been added. + The &man.logins.1; utility has been added to display information about user and system accounts. diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml index 31dea602a7b..48ac8208058 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml @@ -186,6 +186,10 @@ Kernel Changes + The &man.acpi.asus.4; driver has been added + to use ACPI-controlled hardware features such as hot keys and + LCD on ASUSTek laptops. + The &man.acpi.toshiba.4; driver has been added to use Toshiba's Hardware Control Interface to manipulate certain hardware features on Toshiba laptops. @@ -358,7 +362,7 @@ The &man.ng.hub.4; Netgraph node type, which supports a simple packet distribution that acts like an Ethernet hub - has been added. + has been added. &merged; The &man.ng.vlan.4; Netgraph node type, which supports IEEE 802.1Q VLAN tagging has been added. &merged; @@ -390,7 +394,7 @@ support for USB Ethernet adapters based on the Davicom DM9601 chipset. - The &man.vr.4; driver now supports &man.polling.4;. + The &man.vr.4; driver now supports &man.polling.4;. &merged; The hardware TX checksum support in the &man.xl.4; driver has been disabled as it does not work correctly and slows down @@ -401,7 +405,7 @@ (&man.dc.4;, &man.fxp.4;, &man.em.4;, &man.nge.4;, &man.re.4;, &man.rl.4;, &man.sis.4;, &man.ste.4;, and &man.vr.4;) now also support this capability and it can be controlled - via &man.ifconfig.8;. + via &man.ifconfig.8;. &merged; @@ -414,6 +418,20 @@ The &man.gre.4; tunnel driver now supports WCCP version 2. + &man.ipfw.4; rules now support the versrcreach + option to verify that a valid route to the source address + of a packet exists in the routing table. + This option is very useful for routers with a complete view of + the Internet (BGP) in the routing table to reject packets with + spoofed or unroutable source addresses. For example, + + deny ip from any to any not versrcreach + + is equivalent to the following in Cisco IOS syntax: + + ip verify unicast source reachable-via any + + Some bugs in the IPsec implementation from the KAME Project have been fixed. These bugs were related to freeing memory objects before all references to them were removed, and @@ -455,7 +473,9 @@ be increasing, no matter how quickly the port is recycled. The random ephemeral port allocation, which come from OpenBSD - has been implemented. + has been implemented. This is enabled by default and can be disabled + using the net.inet.ip.portrange.randomized + sysctl. &merged; @@ -649,6 +669,9 @@ for the benefit of the misc/utf8locale port. + An Israel Hebrew locale he_IL.UTF-8 + has been added. + The &man.logins.1; utility has been added to display information about user and system accounts.