0.66wip 2013-11-12 0.66wip 2014-05-02 PB
\end_layout
@@ -255,7 +264,7 @@ Copyright
\end_layout
\begin_layout Standard
-Written and Copyright (C) 2001-2013 by Peter Bieringer
+Written and Copyright (C) 2001-2014 by Peter Bieringer
\end_layout
\begin_layout Subsection
@@ -288,7 +297,7 @@ Copyright
\lang ngerman
©
\lang english
- 2001-2013 Peter Bieringer
+ 2001-2014 Peter Bieringer
\begin_inset Newline newline
\end_inset
@@ -10174,8 +10183,17 @@ reference "IPv6-security-auditing"
\end_layout
\begin_layout Standard
-Since kernel version 2.6.20 IPv6 connection tracking is fully working (and
- does not break IPv4 NAT anymore like versions before)
+Since kernel version 2.6.20 (February 2007) IPv6 connection tracking is fully
+ working (and does not break IPv4 NAT anymore like versions before)
+\end_layout
+
+\begin_layout Standard
+Since kernel version 3.9.0 (April 2013) NAT for IPv6 is supported with ip6tables
+ >= 1.4.18
+\end_layout
+
+\begin_layout Standard
+Since kernel version 3.13 (April 2014) new framework introduced named: nftables
\end_layout
\begin_layout Subsection
@@ -10560,7 +10578,7 @@ Perhaps it's necessary to create a softlink for iptables libraries where
\end_layout
\begin_layout Section
-Usage
+Usage of ip6tables
\end_layout
\begin_layout Subsection
@@ -11624,6 +11642,277 @@ A dedicated specified port can be forwarded to an internal system, e.g.
nation [fec0::1234]:80
\end_layout
+\begin_layout Section
+Firewalling using nftables
+\end_layout
+
+\begin_layout Standard
+nftables adds support for a IPv4/IPv6 aware table named
+\begin_inset Quotes sld
+\end_inset
+
+inet
+\begin_inset Quotes srd
+\end_inset
+
+, here only one rule matches both protocols
+\end_layout
+
+\begin_layout Subsection
+Preparation for nftables usage
+\end_layout
+
+\begin_layout Standard
+Install a Linux distribution which has nftables support already included.
+ At time of writing (May 2014) at least Fedora Rawhide (upcoming version
+ 21) has support in conjunction with nftables version 0.2.0.
+\end_layout
+
+\begin_layout Subsection
+Basic nftables configuration
+\end_layout
+
+\begin_layout Standard
+Load kernel modules
+\end_layout
+
+\begin_layout Code
+# modprobe nf_tables
+\end_layout
+
+\begin_layout Code
+# modprobe nf_tables_ipv4
+\end_layout
+
+\begin_layout Code
+# modprobe nf_tables_ipv6
+\end_layout
+
+\begin_layout Code
+# modprobe nf_tables_inet
+\end_layout
+
+\begin_layout Standard
+Create filter tables
+\end_layout
+
+\begin_layout Code
+# nft add table ip filter
+\end_layout
+
+\begin_layout Code
+# nft add table ip6 filter
+\end_layout
+
+\begin_layout Code
+# nft add table inet filter
+\end_layout
+
+\begin_layout Standard
+Create input chain in each filter table
+\end_layout
+
+\begin_layout Code
+# nft add chain ip filter input { type filter hook input priority 1
+\backslash
+; }
+\end_layout
+
+\begin_layout Code
+# nft add chain ip6 filter input { type filter hook input priority 1
+\backslash
+; }
+\end_layout
+
+\begin_layout Code
+# nft add chain inet filter input { type filter hook input priority 0
+\backslash
+; }
+\end_layout
+
+\begin_layout Subsection
+Simple filter policy with nftables
+\end_layout
+
+\begin_layout Subsubsection
+Configuration
+\end_layout
+
+\begin_layout Standard
+Allow packets which are related to existing connection tracking entries
+\end_layout
+
+\begin_layout Code
+# nft add rule inet filter input ct state established,related counter accept
+
+\end_layout
+
+\begin_layout Standard
+Allow IPv4 and IPv6 ICMP echo-request (aka ping)
+\end_layout
+
+\begin_layout Code
+# nft add rule ip filter input icmp type { echo-request } counter accept
+
+\end_layout
+
+\begin_layout Code
+# nft add rule ip6 filter input icmpv6 type echo-request counter accept
+
+\end_layout
+
+\begin_layout Standard
+Allow some important IPv6 ICMP traffic, without counter, but checking hop-limit
+ for security
+\end_layout
+
+\begin_layout Code
+# nft add rule ip6 filter input icmpv6 type { nd-neighbor-solicit, nd-router-adv
+ert, nd-neighbor-advert } ip6 hoplimit 1 accept # nft add rule ip6 filter
+ input icmpv6 type { nd-neighbor-solicit, nd-router-advert, nd-neighbor-advert
+ } ip6 hoplimit 255 accept
+\end_layout
+
+\begin_layout Standard
+Allow incoming SSH for IPv4 and IPv6, using therefore the IP version aware
+ table
+\begin_inset Quotes sld
+\end_inset
+
+inet
+\begin_inset Quotes srd
+\end_inset
+
+
+\end_layout
+
+\begin_layout Code
+# nft add rule inet filter input tcp dport 22 ct state new tcp flags
+\backslash
+&
+\backslash
+(syn
+\backslash
+| ack
+\backslash
+) == syn counter accept
+\end_layout
+
+\begin_layout Subsubsection
+Result
+\end_layout
+
+\begin_layout Standard
+Table for IPv4 filter
+\end_layout
+
+\begin_layout Code
+# nft list table ip filter
+\end_layout
+
+\begin_layout Code
+table ip filter {
+\end_layout
+
+\begin_layout Code
+ chain input {
+\end_layout
+
+\begin_layout Code
+ type filter hook input priority 1;
+\end_layout
+
+\begin_layout Code
+ icmp type { echo-request} counter packets 0 bytes 0 accept
+\end_layout
+
+\begin_layout Code
+ }
+\end_layout
+
+\begin_layout Code
+}
+\end_layout
+
+\begin_layout Standard
+Table for IPv6 filter
+\end_layout
+
+\begin_layout Code
+# nft list table ip6 filter
+\end_layout
+
+\begin_layout Code
+table ip6 filter {
+\end_layout
+
+\begin_layout Code
+ chain input {
+\end_layout
+
+\begin_layout Code
+ type filter hook input priority 1;
+\end_layout
+
+\begin_layout Code
+ icmpv6 type echo-request counter packets 0 bytes 0 accept
+\end_layout
+
+\begin_layout Code
+ ip6 hoplimit 1 icmpv6 type { nd-neighbor-advert, nd-neighbor-solicit,
+ nd-router-advert} accept
+\end_layout
+
+\begin_layout Code
+ ip6 hoplimit 255 icmpv6 type { nd-neighbor-advert, nd-neighbor-solicit,
+ nd-router-advert} accept
+\end_layout
+
+\begin_layout Code
+ }
+\end_layout
+
+\begin_layout Code
+}
+\end_layout
+
+\begin_layout Standard
+Table for IP version aware filter
+\end_layout
+
+\begin_layout Code
+# nft list table inet filter
+\end_layout
+
+\begin_layout Code
+table inet filter {
+\end_layout
+
+\begin_layout Code
+ chain input {
+\end_layout
+
+\begin_layout Code
+ type filter hook input priority 0;
+\end_layout
+
+\begin_layout Code
+ ct state established,related counter packets 44 bytes 2288 accept
+\end_layout
+
+\begin_layout Code
+ tcp dport ssh ct state new tcp flags & (syn | ack) == syn counter packets
+ 0 bytes 0 accept
+\end_layout
+
+\begin_layout Code
+ }
+\end_layout
+
+\begin_layout Code
+}
+\end_layout
+
\begin_layout Chapter
\begin_inset CommandInset label
LatexCommand label
@@ -27849,7 +28138,7 @@ Major Mailinglists are listed in following table:
\begin_layout Standard
\begin_inset Tabular
-
+
@@ -28825,7 +29114,8 @@ Releases 0.x
\begin_layout Description
0.66 2010-04-20/PB: extend QoS section with examples, 20130513/PB: add IPv6
- NAT hints, 20130521/PB: review dhcpd, 20131019/bie: general review
+ NAT hints, 20130521/PB: review dhcpd, 20131019/bie: general review, 20140502/bi
+e: add hints for nftables
\end_layout
\begin_layout Description
diff --git a/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.pdf b/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.pdf
index d72edd5a..511ae16f 100644
Binary files a/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.pdf and b/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.pdf differ
diff --git a/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.sgml b/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.sgml
index 126cdc0c..1bed3dca 100644
--- a/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.sgml
+++ b/LDP/users/Peter-Bieringer/Linux+IPv6-HOWTO.sgml
@@ -6,14 +6,14 @@
]>
-
Linux IPv6 HOWTO (en)
Peter Bieringer pb at bieringer dot de
- 0.66wip 2013-11-12 PB
+ 0.66wip 2014-05-02 PB
0.65 2009-12-13 PB
0.64 2009-06-11 PB
0.60 2007-05-31 PB
@@ -26,13 +26,13 @@
Copyright, license and others
Copyright
-Written and Copyright (C) 2001-2013 by Peter Bieringer
+Written and Copyright (C) 2001-2014 by Peter Bieringer
License
This Linux IPv6 HOWTO is published under GNU GPL version 2:
The Linux IPv6 HOWTO, a guide how to configure and use IPv6 on Linux systems.
-Copyright © 2001-2013 Peter Bieringer
+Copyright © 2001-2014 Peter Bieringer
This documentation is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
@@ -1631,7 +1631,9 @@ In versions 8.x they completly change their configuration setup.
Native IPv6 firewalling is only supported in kernel versions 2.4+. In older 2.2- you can only filter IPv6-in-IPv4 by protocol 41.
Attention: no warranty that described rules or examples can really protect your system!
Audit your ruleset after installation, see for more.
-Since kernel version 2.6.20 IPv6 connection tracking is fully working (and does not break IPv4 NAT anymore like versions before)
+Since kernel version 2.6.20 (February 2007) IPv6 connection tracking is fully working (and does not break IPv4 NAT anymore like versions before)
+Since kernel version 3.9.0 (April 2013) NAT for IPv6 is supported with ip6tables >= 1.4.18
+Since kernel version 3.13 (April 2014) new framework introduced named: nftables
More information
Netfilter project maillist archive of netfilter users maillist archive of netfilter developers Unofficial status informations
@@ -1710,7 +1712,7 @@ Extensions found: IPv6:owner IPv6:limit IPv6:mac IPv6:multiport
]]>Perhaps it's necessary to create a softlink for iptables libraries where iptables looks for them
-Usage
+Usage of ip6tables
Check for support
Load module, if so compiled
@@ -1979,7 +1981,68 @@ Chain intOUT (1 references)
IPv6 Port Forwarding
A dedicated specified port can be forwarded to an internal system, e.g.
+]]>
+Firewalling using nftables
+nftables adds support for a IPv4/IPv6 aware table named “inet”, here only one rule matches both protocols
+Preparation for nftables usage
+Install a Linux distribution which has nftables support already included. At time of writing (May 2014) at least Fedora Rawhide (upcoming version 21) has support in conjunction with nftables version 0.2.0.
+Basic nftables configuration
+Load kernel modules
+ Create filter tables
+ Create input chain in each filter table
+
+Simple filter policy with nftables
+
+Configuration
+Allow packets which are related to existing connection tracking entries
+ Allow IPv4 and IPv6 ICMP echo-request (aka ping)
+ Allow some important IPv6 ICMP traffic, without counter, but checking hop-limit for security
+ Allow incoming SSH for IPv4 and IPv6, using therefore the IP version aware table “inet”
+
+Result
+Table for IPv4 filter
+ Table for IPv6 filter
+ Table for IP version aware filter
+
Security
Node security
@@ -5033,7 +5096,7 @@ Publisher: MarketResearch.com; ISBN B00006334Y; (November 1, 2001)
Versions x.y.z are work-in-progress and published as LyX and SGML file on CVS. Because Deep Space 6 mirrors these SGML files and generate independend from TLDP public versions, this versions will show up there and also on its mirrors.
Releases 0.x
-0.66 2010-04-20/PB: extend QoS section with examples, 20130513/PB: add IPv6 NAT hints, 20130521/PB: review dhcpd, 20131019/bie: general review 0.65 2009-12-13/PB: minor fixes 0.64 2009-06-11/PB: extend DHCP server examples (ISC DHCP, Dibbler) 0.63 2009-02-14/PB: Fix FSF address, major update on 4in6 tunnels, add new section for address resolving, add some URLs, remove broken URLs 0.62 2008-11-09/PB: Adjust URL to Turkish howto, add some HIP related URLs, remove broken URLs 0.61.1 2007-11-11/PB: fix broken description of shortcut BIND 0.61 2007-10-06/PB: fix broken URLs to TLDP-CVS, minor URL update. 0.60.2 2007-10-03/PB: fix description of sysctl/autoconf (credits to Francois-Xavier Le Bail) 0.60.1 2007-06-16/PB: speling fixes (credits to Larry W. Burton) 0.60 2007-05-29/PB: import major contribution to Programming using C-API written by John Wenker, minor fixes 0.52 2007-05-23/PB: update firewalling chapter, improve document for proper SGML validation, minor bugfixes 0.51 2006-11-08/PB: remove broken URLs, add a new book (credits to Bryan Vukich) 0.50.2 2006-10-25/PB: fix typo in dhcp6 section (credits to Michele Ferritto) 0.50.1 2006-09-23/PB: add some URLs 0.50 2006-08-24/PB: check RFC URLs, fix URL to Chinese translation, finalize for publishing 0.49.5 2006-08-23/PB: fix/remove broken URLs 0.49.4 2006-08-21/PB: some review, update and enhancement of the content, replace old 6bone example addresses with the current defined ones. 0.49.3 2006-08-20/PB: fix bug in maillist entries, 'mobility' is now a separate chapter 0.49.2 2006-08-20/PB: update and cleanup of maillist entries 0.49.1 2006-06-13/PB: major update of mobility section (contributed by Benjamin Thery) 0.49 2005-10-03/PB: add configuration hints for DHCPv6, major broken URL cleanup (credits to Necdet Yucel) 0.48.1 2005-01-15/PB: minor fixes 0.48 2005-01-11/PB: grammar check and minor review of IPv6 IPsec section 0.47.1 2005-01-01/PB: add information and examples about IPv6 IPsec, add some URLs 0.47 2004-08-30/PB: add some notes about proftpd, vsftpd and other daemons, add some URLs, minor fixes, update status of Spanish translation 0.46.4 2004-07-19/PB: minor fixes 0.46.3 2004-06-23/PB: add note about started Greek translation, replace Taiwanese with Chinese for related translation 0.46.2 2004-05-22/PB: minor fixes 0.46.1 2004-04-18/PB: minor fixes 0.46 2004-03-04/PB: announce Italian translation, add information about DHCPv6, minor updates 0.45.1 2004-01-12/PB: add note about the official example address space 0.45 2004-01-11/PB: minor fixes, add/fix some URLs, some extensions 0.44.2 2003-10-30/PB: fix some copy&paste text bugs 0.44.1 2003-10-19/PB: add note about start of Italian translation 0.44 2003-08-15/PB: fix URLs, add hint on tcp_wrappers (about broken notation in some versions) and Apache2 0.43.4 2003-07-26/PB: fix URL, add archive URL for maillist users at ipv6.org, add some ds6 URLs 0.43.3 2003-06-19/PB: fix typos 0.43.2 2003-06-11/PB: fix URL 0.43.1 2003-06-07/PB: fix some URLs, fix credits, add some notes at IPsec 0.43 2003-06-05/PB: add some notes about configuration in SuSE Linux, add URL of French translation 0.42 2003-05-09/PB: minor fixes, announce French translation 0.41.4 2003-05-02/PB: Remove a broken URL, update some others. 0.41.3 2003-04-23/PB: Minor fixes, remove a broken URL, fix URL to Taiwanese translation 0.41.2 2003-04-13/PB: Fix some typos, add a note about a French translation is in progress 0.41.1 2003-03-31/PB: Remove a broken URL, fix another 0.41 2003-03-22/PB: Add URL of German translation 0.40.2 2003-02-27/PB: Fix a misaddressed URL 0.40.1 2003-02-12/PB: Add Debian-Linux-Configuration, add a minor note on translations 0.40 2003-02-10/PB: Announcing available German version 0.39.2 2003-02-10/GK: Minor syntax and spelling fixes 0.39.1 2003-01-09/PB: fix an URL (draft adopted to an RFC) 0.39 2003-01-13/PB: fix a bug (forgotten 'link” on “ip link set” (credits to Yaniv Kaul) 0.38.1 2003-01-09/PB: a minor fix 0.38 2003-01-06/PB: minor fixes 0.37.1 2003-01-05/PB: minor updates 0.37 2002-12-31/GK: 270 new links added (searched in 1232 SearchEngines) in existing and 53 new (sub)sections 0.36.1 2002-12-20/PB: Minor fixes 0.36 2002-12-16/PB: Check of and fix broken links (credits to Georg Käfer), some spelling fixes 0.35 2002-12-11/PB: Some fixes and extensions 0.34.1 2002-11-25/PB: Some fixes (e.g. broken linuxdoc URLs) 0.34 2002-11-19/PB: Add information about German translation (work in progress), some fixes, create a small shortcut explanation list, extend “used terms” and add two German books 0.33 2002-11-18/PB: Fix broken RFC-URLs, add parameter ttl on 6to4 tunnel setup example 0.32 2002-11-03/PB: Add information about Taiwanese translation 0.31.1 2002-10-06/PB: Add another maillist 0.31 2002-09-29/PB: Extend information in proc-filesystem entries 0.30 2002-09-27/PB: Add some maillists 0.29 2002-09-18/PB: Update statement about nmap (triggered by Fyodor) 0.28.1 2002-09-16/PB: Add note about ping6 to multicast addresses, add some labels 0.28 2002-08-17/PB: Fix broken LDP/CVS links, add info about Polish translation, add URL of the IPv6 Address Oracle 0.27 2002-08-10/PB: Some minor updates 0.26.2 2002-07-15/PB: Add information neighbor discovery, split of firewalling (got some updates) and security into extra chapters 0.26.1 2002-07-13/PB: Update nmap/IPv6 information 0.26 2002-07-13/PB: Fill /proc-filesystem chapter, update DNS information about depricated A6/DNAME, change P-t-P tunnel setup to use of “ip” only 0.25.2 2002-07-11/PB: Minor spelling fixes 0.25.1 2002-06-23/PB: Minor spelling and other fixes 0.25 2002-05-16/PB: Cosmetic fix for 2^128, thanks to José Abílio Oliveira Matos for help with LyX 0.24 2002-05-02/PB: Add entries in URL list, minor spelling fixes 0.23 2002-03-27/PB: Add entries in URL list and at maillists, add a label and minor information about IPv6 on RHL 0.22 2002-03-04/PB: Add info about 6to4 support in kernel series 2.2.x and add an entry in URL list and at maillists 0.21 2002-02-26/PB: Migrate next grammar checks submitted by John Ronan 0.20.4 2002-02-21/PB: Migrate more grammar checks submitted by John Ronan, add some additional hints at DNS section 0.20.3 2002-02-12/PB: Migrate a minor grammar check patch submitted by John Ronan 0.20.2 2002-02-05/PB: Add mipl to maillist table 0.20.1 2002-01-31/PB: Add a hint how to generate 6to4 addresses 0.20 2002-01-30/PB: Add a hint about default route problem, some minor updates 0.19.2 2002-01-29/PB: Add many new URLs 0.19.1 2002-01-27/PB: Add some forgotten URLs 0.19 2002-01-25/PB: Add two German books, fix quote entinities in exported SGML code 0.18.2 2002-01-23/PB: Add a FAQ on the program chapter 0.18.1 2002-01-23/PB: Move “the end” to the end, add USAGI to maillists 0.18 2002-01-22/PB: Fix bugs in explanation of multicast address types 0.17.2 2002-01-22/PB: Cosmetic fix double existing text in history (at 0.16), move all credits to the end of the document 0.17.1 2002-01-20/PB: Add a reference, fix URL text in online-test-tools 0.17 2002-01-19/PB: Add some forgotten information and URLs about global IPv6 addresses 0.16 2002-01-19/PB: Minor fixes, remove “bold” and “emphasize” formats on code lines, fix “too long unwrapped code lines” using selfmade utility, extend list of URLs. 0.15 2002-01-15/PB: Fix bug in addresstype/anycast, move content related credits to end of document 0.14 2002-01-14/PB: Minor review at all, new chapter “debugging”, review “addresses”, spell checking, grammar checking (from beginning to 3.4.1) by Martin Krafft, add tcpdump examples, copy firewalling/netfilter6 from IPv6+Linux-HowTo, minor enhancements 0.13 2002-01-05/PB: Add example BIND9/host, move revision history to end of document, minor extensions 0.12 2002-01-03/PB: Merge review of David Ranch 0.11 2002-01-02/PB: Spell checking and merge review of Pekka Savola 0.10 2002-01-02/PB: First public release of chapter 1
+0.66 2010-04-20/PB: extend QoS section with examples, 20130513/PB: add IPv6 NAT hints, 20130521/PB: review dhcpd, 20131019/bie: general review, 20140502/bie: add hints for nftables 0.65 2009-12-13/PB: minor fixes 0.64 2009-06-11/PB: extend DHCP server examples (ISC DHCP, Dibbler) 0.63 2009-02-14/PB: Fix FSF address, major update on 4in6 tunnels, add new section for address resolving, add some URLs, remove broken URLs 0.62 2008-11-09/PB: Adjust URL to Turkish howto, add some HIP related URLs, remove broken URLs 0.61.1 2007-11-11/PB: fix broken description of shortcut BIND 0.61 2007-10-06/PB: fix broken URLs to TLDP-CVS, minor URL update. 0.60.2 2007-10-03/PB: fix description of sysctl/autoconf (credits to Francois-Xavier Le Bail) 0.60.1 2007-06-16/PB: speling fixes (credits to Larry W. Burton) 0.60 2007-05-29/PB: import major contribution to Programming using C-API written by John Wenker, minor fixes 0.52 2007-05-23/PB: update firewalling chapter, improve document for proper SGML validation, minor bugfixes 0.51 2006-11-08/PB: remove broken URLs, add a new book (credits to Bryan Vukich) 0.50.2 2006-10-25/PB: fix typo in dhcp6 section (credits to Michele Ferritto) 0.50.1 2006-09-23/PB: add some URLs 0.50 2006-08-24/PB: check RFC URLs, fix URL to Chinese translation, finalize for publishing 0.49.5 2006-08-23/PB: fix/remove broken URLs 0.49.4 2006-08-21/PB: some review, update and enhancement of the content, replace old 6bone example addresses with the current defined ones. 0.49.3 2006-08-20/PB: fix bug in maillist entries, 'mobility' is now a separate chapter 0.49.2 2006-08-20/PB: update and cleanup of maillist entries 0.49.1 2006-06-13/PB: major update of mobility section (contributed by Benjamin Thery) 0.49 2005-10-03/PB: add configuration hints for DHCPv6, major broken URL cleanup (credits to Necdet Yucel) 0.48.1 2005-01-15/PB: minor fixes 0.48 2005-01-11/PB: grammar check and minor review of IPv6 IPsec section 0.47.1 2005-01-01/PB: add information and examples about IPv6 IPsec, add some URLs 0.47 2004-08-30/PB: add some notes about proftpd, vsftpd and other daemons, add some URLs, minor fixes, update status of Spanish translation 0.46.4 2004-07-19/PB: minor fixes 0.46.3 2004-06-23/PB: add note about started Greek translation, replace Taiwanese with Chinese for related translation 0.46.2 2004-05-22/PB: minor fixes 0.46.1 2004-04-18/PB: minor fixes 0.46 2004-03-04/PB: announce Italian translation, add information about DHCPv6, minor updates 0.45.1 2004-01-12/PB: add note about the official example address space 0.45 2004-01-11/PB: minor fixes, add/fix some URLs, some extensions 0.44.2 2003-10-30/PB: fix some copy&paste text bugs 0.44.1 2003-10-19/PB: add note about start of Italian translation 0.44 2003-08-15/PB: fix URLs, add hint on tcp_wrappers (about broken notation in some versions) and Apache2 0.43.4 2003-07-26/PB: fix URL, add archive URL for maillist users at ipv6.org, add some ds6 URLs 0.43.3 2003-06-19/PB: fix typos 0.43.2 2003-06-11/PB: fix URL 0.43.1 2003-06-07/PB: fix some URLs, fix credits, add some notes at IPsec 0.43 2003-06-05/PB: add some notes about configuration in SuSE Linux, add URL of French translation 0.42 2003-05-09/PB: minor fixes, announce French translation 0.41.4 2003-05-02/PB: Remove a broken URL, update some others. 0.41.3 2003-04-23/PB: Minor fixes, remove a broken URL, fix URL to Taiwanese translation 0.41.2 2003-04-13/PB: Fix some typos, add a note about a French translation is in progress 0.41.1 2003-03-31/PB: Remove a broken URL, fix another 0.41 2003-03-22/PB: Add URL of German translation 0.40.2 2003-02-27/PB: Fix a misaddressed URL 0.40.1 2003-02-12/PB: Add Debian-Linux-Configuration, add a minor note on translations 0.40 2003-02-10/PB: Announcing available German version 0.39.2 2003-02-10/GK: Minor syntax and spelling fixes 0.39.1 2003-01-09/PB: fix an URL (draft adopted to an RFC) 0.39 2003-01-13/PB: fix a bug (forgotten 'link” on “ip link set” (credits to Yaniv Kaul) 0.38.1 2003-01-09/PB: a minor fix 0.38 2003-01-06/PB: minor fixes 0.37.1 2003-01-05/PB: minor updates 0.37 2002-12-31/GK: 270 new links added (searched in 1232 SearchEngines) in existing and 53 new (sub)sections 0.36.1 2002-12-20/PB: Minor fixes 0.36 2002-12-16/PB: Check of and fix broken links (credits to Georg Käfer), some spelling fixes 0.35 2002-12-11/PB: Some fixes and extensions 0.34.1 2002-11-25/PB: Some fixes (e.g. broken linuxdoc URLs) 0.34 2002-11-19/PB: Add information about German translation (work in progress), some fixes, create a small shortcut explanation list, extend “used terms” and add two German books 0.33 2002-11-18/PB: Fix broken RFC-URLs, add parameter ttl on 6to4 tunnel setup example 0.32 2002-11-03/PB: Add information about Taiwanese translation 0.31.1 2002-10-06/PB: Add another maillist 0.31 2002-09-29/PB: Extend information in proc-filesystem entries 0.30 2002-09-27/PB: Add some maillists 0.29 2002-09-18/PB: Update statement about nmap (triggered by Fyodor) 0.28.1 2002-09-16/PB: Add note about ping6 to multicast addresses, add some labels 0.28 2002-08-17/PB: Fix broken LDP/CVS links, add info about Polish translation, add URL of the IPv6 Address Oracle 0.27 2002-08-10/PB: Some minor updates 0.26.2 2002-07-15/PB: Add information neighbor discovery, split of firewalling (got some updates) and security into extra chapters 0.26.1 2002-07-13/PB: Update nmap/IPv6 information 0.26 2002-07-13/PB: Fill /proc-filesystem chapter, update DNS information about depricated A6/DNAME, change P-t-P tunnel setup to use of “ip” only 0.25.2 2002-07-11/PB: Minor spelling fixes 0.25.1 2002-06-23/PB: Minor spelling and other fixes 0.25 2002-05-16/PB: Cosmetic fix for 2^128, thanks to José Abílio Oliveira Matos for help with LyX 0.24 2002-05-02/PB: Add entries in URL list, minor spelling fixes 0.23 2002-03-27/PB: Add entries in URL list and at maillists, add a label and minor information about IPv6 on RHL 0.22 2002-03-04/PB: Add info about 6to4 support in kernel series 2.2.x and add an entry in URL list and at maillists 0.21 2002-02-26/PB: Migrate next grammar checks submitted by John Ronan 0.20.4 2002-02-21/PB: Migrate more grammar checks submitted by John Ronan, add some additional hints at DNS section 0.20.3 2002-02-12/PB: Migrate a minor grammar check patch submitted by John Ronan 0.20.2 2002-02-05/PB: Add mipl to maillist table 0.20.1 2002-01-31/PB: Add a hint how to generate 6to4 addresses 0.20 2002-01-30/PB: Add a hint about default route problem, some minor updates 0.19.2 2002-01-29/PB: Add many new URLs 0.19.1 2002-01-27/PB: Add some forgotten URLs 0.19 2002-01-25/PB: Add two German books, fix quote entinities in exported SGML code 0.18.2 2002-01-23/PB: Add a FAQ on the program chapter 0.18.1 2002-01-23/PB: Move “the end” to the end, add USAGI to maillists 0.18 2002-01-22/PB: Fix bugs in explanation of multicast address types 0.17.2 2002-01-22/PB: Cosmetic fix double existing text in history (at 0.16), move all credits to the end of the document 0.17.1 2002-01-20/PB: Add a reference, fix URL text in online-test-tools 0.17 2002-01-19/PB: Add some forgotten information and URLs about global IPv6 addresses 0.16 2002-01-19/PB: Minor fixes, remove “bold” and “emphasize” formats on code lines, fix “too long unwrapped code lines” using selfmade utility, extend list of URLs. 0.15 2002-01-15/PB: Fix bug in addresstype/anycast, move content related credits to end of document 0.14 2002-01-14/PB: Minor review at all, new chapter “debugging”, review “addresses”, spell checking, grammar checking (from beginning to 3.4.1) by Martin Krafft, add tcpdump examples, copy firewalling/netfilter6 from IPv6+Linux-HowTo, minor enhancements 0.13 2002-01-05/PB: Add example BIND9/host, move revision history to end of document, minor extensions 0.12 2002-01-03/PB: Merge review of David Ranch 0.11 2002-01-02/PB: Spell checking and merge review of Pekka Savola 0.10 2002-01-02/PB: First public release of chapter 1
Credits
The quickest way to be added to this nice list is to send bug fixes, corrections, and/or updates to me ;-).
If you want to do a major review, you can use the native LyX file (see original source) and send diffs against it, because diffs against SGML don't help too much.
diff --git a/LDP/users/Peter-Bieringer/generate-en-de.sh b/LDP/users/Peter-Bieringer/generate-en-de.sh
index bb138a0a..7d0d8dfd 100755
--- a/LDP/users/Peter-Bieringer/generate-en-de.sh
+++ b/LDP/users/Peter-Bieringer/generate-en-de.sh
@@ -5,7 +5,7 @@
list="Linux+IPv6-HOWTO.sgml Linux+IPv6-HOWTO.de.sgml"
for lyx in $list; do
- ./generate.sh $lyx
+ ./generate.sh $lyx $*
done
echo -en "\a"
diff --git a/LDP/users/Peter-Bieringer/generate.sh b/LDP/users/Peter-Bieringer/generate.sh
index 32b2f027..fb4d6174 100755
--- a/LDP/users/Peter-Bieringer/generate.sh
+++ b/LDP/users/Peter-Bieringer/generate.sh
@@ -197,9 +197,9 @@ create_html_multipage() {
}
create_html_singlepage() {
- echo "INFO : Create HTML singlepage '$file_html'"
+ echo "INFO : Create HTML singlepage '$file_html' from '$file_input'"
[ $loglevel -ge 7 ] && set -x
- $JADE -t sgml -i html -V nochunks -d "${file_ldpdsl}#html" -o $file_html $file_input >/dev/null
+ $JADE -t sgml -i html -V nochunks -d "${file_ldpdsl}#html" $file_input >$file_html
local retval=$?
[ $loglevel -ge 7 ] && set +x