shorewall-5.0.15.6.ebuild 16 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452
  1. # Copyright 1999-2017 Gentoo Foundation
  2. # Distributed under the terms of the GNU General Public License v2
  3. EAPI="6"
  4. inherit linux-info prefix systemd versionator
  5. DESCRIPTION='A high-level tool for configuring Netfilter'
  6. HOMEPAGE="http://www.shorewall.net/"
  7. LICENSE="GPL-2"
  8. SLOT="0"
  9. IUSE="doc +init +ipv4 ipv6 lite4 lite6"
  10. MY_PV=${PV/_rc/-RC}
  11. MY_PV=${MY_PV/_beta/-Beta}
  12. MY_P=${PN}-${MY_PV}
  13. MY_MAJOR_RELEASE_NUMBER=$(get_version_component_range 1-2)
  14. MY_MAJORMINOR_RELEASE_NUMBER=$(get_version_component_range 1-3)
  15. # shorewall
  16. MY_PN_IPV4=Shorewall
  17. MY_P_IPV4=${MY_PN_IPV4/#S/s}-${MY_PV}
  18. # shorewall6
  19. MY_PN_IPV6=Shorewall6
  20. MY_P_IPV6=${MY_PN_IPV6/#S/s}-${MY_PV}
  21. # shorewall-lite
  22. MY_PN_LITE4=Shorewall-lite
  23. MY_P_LITE4=${MY_PN_LITE4/#S/s}-${MY_PV}
  24. # shorewall6-lite
  25. MY_PN_LITE6=Shorewall6-lite
  26. MY_P_LITE6=${MY_PN_LITE6/#S/s}-${MY_PV}
  27. # shorewall-init
  28. MY_PN_INIT=Shorewall-init
  29. MY_P_INIT=${MY_PN_INIT/#S/s}-${MY_PV}
  30. # shorewall-core
  31. MY_PN_CORE=Shorewall-core
  32. MY_P_CORE=${MY_PN_CORE/#S/s}-${MY_PV}
  33. # shorewall-docs-html
  34. MY_PN_DOCS=Shorewall-docs-html
  35. MY_P_DOCS=${MY_PN_DOCS/#S/s}-${MY_PV}
  36. # Upstream URL schema:
  37. # Beta: $MIRROR/pub/shorewall/development/4.6/shorewall-4.6.4-Beta2/shorewall-4.6.4-Beta2.tar.bz2
  38. # RC: $MIRROR/pub/shorewall/development/4.6/shorewall-4.6.4-RC1/shorewall-4.6.4-RC1.tar.bz2
  39. # Release: $MIRROR/pub/shorewall/4.6/shorewall-4.6.3/shorewall-4.6.3.3.tar.bz2
  40. MY_URL_PREFIX=
  41. MY_URL_SUFFIX=
  42. if [[ ${MY_PV} = *-Beta* ]] || [[ ${MY_PV} = *-RC* ]]; then
  43. MY_URL_PREFIX='development/'
  44. _tmp_last_index=$(($(get_last_version_component_index ${MY_PV})+1))
  45. _tmp_suffix=$(get_version_component_range ${_tmp_last_index} ${MY_PV})
  46. if [[ ${_tmp_suffix} = *Beta* ]] || [[ ${_tmp_suffix} = *RC* ]]; then
  47. MY_URL_SUFFIX="-${_tmp_suffix}"
  48. fi
  49. # Cleaning up temporary variables
  50. unset _tmp_last_index
  51. unset _tmp_suffix
  52. else
  53. KEYWORDS="~alpha ~amd64 ~hppa ~ppc ~ppc64 ~sparc ~x86"
  54. fi
  55. SRC_URI="
  56. http://www.shorewall.net/pub/shorewall/${MY_URL_PREFIX}${MY_MAJOR_RELEASE_NUMBER}/shorewall-${MY_MAJORMINOR_RELEASE_NUMBER}${MY_URL_SUFFIX}/shorewall-core-${MY_PV}.tar.bz2
  57. ipv4? ( http://www.shorewall.net/pub/shorewall/${MY_URL_PREFIX}${MY_MAJOR_RELEASE_NUMBER}/shorewall-${MY_MAJORMINOR_RELEASE_NUMBER}${MY_URL_SUFFIX}/shorewall-${MY_PV}.tar.bz2 )
  58. ipv6? ( http://www.shorewall.net/pub/shorewall/${MY_URL_PREFIX}${MY_MAJOR_RELEASE_NUMBER}/shorewall-${MY_MAJORMINOR_RELEASE_NUMBER}${MY_URL_SUFFIX}/shorewall6-${MY_PV}.tar.bz2 )
  59. lite4? ( http://www.shorewall.net/pub/shorewall/${MY_URL_PREFIX}${MY_MAJOR_RELEASE_NUMBER}/shorewall-${MY_MAJORMINOR_RELEASE_NUMBER}${MY_URL_SUFFIX}/shorewall-lite-${MY_PV}.tar.bz2 )
  60. lite6? ( http://www.shorewall.net/pub/shorewall/${MY_URL_PREFIX}${MY_MAJOR_RELEASE_NUMBER}/shorewall-${MY_MAJORMINOR_RELEASE_NUMBER}${MY_URL_SUFFIX}/shorewall6-lite-${MY_PV}.tar.bz2 )
  61. init? ( http://www.shorewall.net/pub/shorewall/${MY_URL_PREFIX}${MY_MAJOR_RELEASE_NUMBER}/shorewall-${MY_MAJORMINOR_RELEASE_NUMBER}${MY_URL_SUFFIX}/shorewall-init-${MY_PV}.tar.bz2 )
  62. doc? ( http://www.shorewall.net/pub/shorewall/${MY_URL_PREFIX}${MY_MAJOR_RELEASE_NUMBER}/shorewall-${MY_MAJORMINOR_RELEASE_NUMBER}${MY_URL_SUFFIX}/${MY_P_DOCS}.tar.bz2 )
  63. "
  64. # - Shorewall6 requires Shorewall
  65. # - Installing Shorewall-init or just the documentation doesn't make any sense,
  66. # that's why we force the user to select at least one "real" Shorewall product
  67. #
  68. # See http://shorewall.net/download.htm#Which
  69. REQUIRED_USE="
  70. ipv6? ( ipv4 )
  71. || ( ipv4 lite4 lite6 )
  72. "
  73. # No build dependencies! Just plain shell scripts...
  74. DEPEND=""
  75. RDEPEND="
  76. >=net-firewall/iptables-1.4.20
  77. >=sys-apps/iproute2-3.8.0[-minimal]
  78. >=sys-devel/bc-1.06.95
  79. ipv4? (
  80. >=dev-lang/perl-5.16
  81. virtual/perl-Digest-SHA
  82. )
  83. ipv6? (
  84. >=dev-perl/Socket6-0.230.0
  85. >=net-firewall/iptables-1.4.20[ipv6]
  86. >=sys-apps/iproute2-3.8.0[ipv6]
  87. )
  88. lite6? (
  89. >=net-firewall/iptables-1.4.20[ipv6]
  90. >=sys-apps/iproute2-3.8.0[ipv6]
  91. )
  92. init? ( >=sys-apps/coreutils-8.20 )
  93. !net-firewall/shorewall-core
  94. !net-firewall/shorewall6
  95. !net-firewall/shorewall-lite
  96. !net-firewall/shorewall6-lite
  97. !net-firewall/shorewall-init
  98. !<sys-apps/systemd-214
  99. "
  100. S=${WORKDIR}
  101. pkg_pretend() {
  102. local CONFIG_CHECK="~NF_CONNTRACK"
  103. local WARNING_CONNTRACK="Without NF_CONNTRACK support, you will be unable"
  104. local WARNING_CONNTRACK+=" to run any shorewall-based firewall on the local system."
  105. if use ipv4 || use lite4; then
  106. CONFIG_CHECK="${CONFIG_CHECK} ~NF_CONNTRACK_IPV4"
  107. local WARNING_CONNTRACK_IPV4="Without NF_CONNTRACK_IPV4 support, you will"
  108. local WARNING_CONNTRACK_IPV4+=" be unable to run any shorewall-based IPv4 firewall on the local system."
  109. fi
  110. if use ipv6 || use lite6; then
  111. CONFIG_CHECK="${CONFIG_CHECK} ~NF_CONNTRACK_IPV6"
  112. local WARNING_CONNTRACK_IPV6="Without NF_CONNTRACK_IPV6 support, you will"
  113. local WARNING_CONNTRACK_IPV6+=" be unable to run any shorewall-based IPv6 firewall on the local system."
  114. fi
  115. check_extra_config
  116. }
  117. pkg_setup() {
  118. if [[ -n "${DIGEST}" ]]; then
  119. einfo "Unsetting environment variable \"DIGEST\" to prevent conflicts with package's \"install.sh\" script ..."
  120. unset DIGEST
  121. fi
  122. }
  123. src_prepare() {
  124. # We are moving each unpacked source from MY_P_* to MY_PN_*.
  125. # This allows us to use patches from upstream and keeps epatch_user working
  126. einfo "Preparing shorewallrc ..."
  127. cp "${FILESDIR}"/shorewallrc "${S}"/shorewallrc.gentoo || die "Copying shorewallrc failed"
  128. eprefixify "${S}"/shorewallrc.gentoo
  129. # shorewall-core
  130. mv "${S}"/${MY_P_CORE} "${S}"/${MY_PN_CORE} || die "Failed to move '${S}/${MY_P_CORE}' to '${S}/${MY_PN_CORE}'"
  131. ebegin "Applying Gentoo-specific changes to ${MY_P_CORE} ..."
  132. ln -s ../shorewallrc.gentoo ${MY_PN_CORE}/shorewallrc.gentoo || die "Failed to symlink shorewallrc.gentoo"
  133. eend 0
  134. # shorewall
  135. if use ipv4; then
  136. mv "${S}"/${MY_P_IPV4} "${S}"/${MY_PN_IPV4} || die "Failed to move '${S}/${MY_P_IPV4}' to '${S}/${MY_PN_IPV4}'"
  137. ebegin "Applying Gentoo-specific changes to ${MY_P_IPV4}"
  138. ln -s ../shorewallrc.gentoo ${MY_PN_IPV4}/shorewallrc.gentoo || die "Failed to symlink shorewallrc.gentoo"
  139. cp "${FILESDIR}"/shorewall.confd-r1 "${S}"/${MY_PN_IPV4}/default.gentoo || die "Copying shorewall.confd-r1 failed"
  140. cp "${FILESDIR}"/shorewall.initd-r2 "${S}"/${MY_PN_IPV4}/init.gentoo.sh || die "Copying shorewall.initd-r2 failed"
  141. cp "${FILESDIR}"/shorewall.systemd "${S}"/${MY_PN_IPV4}/gentoo.service || die "Copying shorewall.systemd failed"
  142. eend 0
  143. fi
  144. # shorewall6
  145. if use ipv6; then
  146. mv "${S}"/${MY_P_IPV6} "${S}"/${MY_PN_IPV6} || die "Failed to move '${S}/${MY_P_IPV6}' to '${S}/${MY_PN_IPV6}'"
  147. ebegin "Applying Gentoo-specific changes to ${MY_P_IPV6}"
  148. ln -s ../shorewallrc.gentoo ${MY_PN_IPV6}/shorewallrc.gentoo || die "Failed to symlink shorewallrc.gentoo"
  149. cp "${FILESDIR}"/shorewall.confd-r1 "${S}"/${MY_PN_IPV6}/default.gentoo || die "Copying shorewall.confd-r1 failed"
  150. cp "${FILESDIR}"/shorewall.initd-r2 "${S}"/${MY_PN_IPV6}/init.gentoo.sh || die "Copying shorewall.initd-r2 failed"
  151. cp "${FILESDIR}"/shorewall6.systemd "${S}"/${MY_PN_IPV6}/gentoo.service || die "Copying shorewall6.systemd failed"
  152. eend 0
  153. fi
  154. # shorewall-lite
  155. if use lite4; then
  156. mv "${S}"/${MY_P_LITE4} "${S}"/${MY_PN_LITE4} || die "Failed to move '${S}/${MY_P_LITE4}' to '${S}/${MY_PN_LITE4}'"
  157. ebegin "Applying Gentoo-specific changes to ${MY_P_LITE4}"
  158. ln -s ../shorewallrc.gentoo ${MY_PN_LITE4}/shorewallrc.gentoo || die "Failed to symlink shorewallrc.gentoo"
  159. cp "${FILESDIR}"/shorewall-lite.confd-r1 "${S}"/${MY_PN_LITE4}/default.gentoo || die "Copying shorewall-lite.confd-r1 failed"
  160. cp "${FILESDIR}"/shorewall-lite.initd-r2 "${S}"/${MY_PN_LITE4}/init.gentoo.sh || die "Copying shorewall-lite.initd-r2 failed"
  161. cp "${FILESDIR}"/shorewall-lite.systemd "${S}"/${MY_PN_LITE4}/gentoo.service || die "Copying shorewall-lite.systemd failed"
  162. eend 0
  163. fi
  164. # shorewall6-lite
  165. if use lite6; then
  166. mv "${S}"/${MY_P_LITE6} "${S}"/${MY_PN_LITE6} || die "Failed to move '${S}/${MY_P_LITE6}' to '${S}/${MY_PN_LITE6}'"
  167. ebegin "Applying Gentoo-specific changes to ${MY_P_LITE6}"
  168. ln -s ../shorewallrc.gentoo ${MY_PN_LITE6}/shorewallrc.gentoo || die "Failed to symlink shorewallrc.gentoo"
  169. cp "${FILESDIR}"/shorewall-lite.confd-r1 "${S}"/${MY_PN_LITE6}/default.gentoo || die "Copying shorewall-lite.confd-r1 failed"
  170. cp "${FILESDIR}"/shorewall-lite.initd-r2 "${S}"/${MY_PN_LITE6}/init.gentoo.sh || die "Copying shorewall-lite.initd-r2 failed"
  171. cp "${FILESDIR}"/shorewall6-lite.systemd "${S}"/${MY_PN_LITE6}/gentoo.service || die "Copying shorewall6-lite.systemd failed"
  172. eend 0
  173. fi
  174. # shorewall-init
  175. if use init; then
  176. mv "${S}"/${MY_P_INIT} "${S}"/${MY_PN_INIT} || die "Failed to move '${S}/${MY_P_INIT}' to '${S}/${MY_PN_INIT}'"
  177. ebegin "Applying Gentoo-specific changes to ${MY_P_INIT}"
  178. ln -s ../shorewallrc.gentoo ${MY_PN_INIT}/shorewallrc.gentoo || die "Failed to symlink shorewallrc.gentoo"
  179. cp "${FILESDIR}"/shorewall-init.confd "${S}"/${MY_PN_INIT}/default.gentoo || die "Copying shorewall-init.confd failed"
  180. cp "${FILESDIR}"/shorewall-init.initd "${S}"/${MY_PN_INIT}/init.gentoo.sh || die "Copying shorewall-init.initd failed"
  181. cp "${FILESDIR}"/shorewall-init.systemd "${S}"/${MY_PN_INIT}/gentoo.service || die "Copying shorewall-init.systemd failed"
  182. cp "${FILESDIR}"/shorewall-init.readme "${S}"/${MY_PN_INIT}/shorewall-init.README.Gentoo.txt || die "Copying shorewall-init.systemd failed"
  183. eend 0
  184. eprefixify "${S}"/${MY_PN_INIT}/init.gentoo.sh
  185. cd "${S}"/${MY_PN_INIT} || die
  186. eapply -p2 "${FILESDIR}"/shorewall-init-01_remove-ipset-functionality.patch
  187. cd "${S}" || die
  188. fi
  189. # shorewall-docs-html
  190. if use doc; then
  191. mv "${S}"/${MY_P_DOCS} "${S}"/${MY_PN_DOCS} || die "Failed to move '${S}/${MY_P_DOCS}' to '${S}/${MY_PN_DOCS}'"
  192. fi
  193. eapply_user
  194. }
  195. src_configure() {
  196. :;
  197. }
  198. src_compile() {
  199. :;
  200. }
  201. src_install() {
  202. # shorewall-core
  203. einfo "Installing ${MY_P_CORE} ..."
  204. DESTDIR="${D%/}" ${MY_PN_CORE}/install.sh shorewallrc.gentoo || die "${MY_PN_CORE}/install.sh failed"
  205. dodoc "${S}"/${MY_PN_CORE}/changelog.txt "${S}"/${MY_PN_CORE}/releasenotes.txt
  206. # shorewall
  207. if use ipv4; then
  208. einfo "Installing ${MY_P_IPV4} ..."
  209. keepdir /var/lib/shorewall
  210. DESTDIR="${D%/}" ${MY_PN_IPV4}/install.sh shorewallrc.gentoo || die "${MY_PN_IPV4}/install.sh failed"
  211. if use doc; then
  212. dodoc -r "${S}"/${MY_PN_IPV4}/Samples
  213. fi
  214. fi
  215. # shorewall6
  216. if use ipv6; then
  217. einfo "Installing ${MY_P_IPV6} ..."
  218. keepdir /var/lib/shorewall6
  219. DESTDIR="${D%/}" ${MY_PN_IPV6}/install.sh shorewallrc.gentoo || die "${MY_PN_IPV6}/install.sh failed"
  220. if use doc; then
  221. dodoc -r "${S}"/${MY_PN_IPV6}/Samples6
  222. fi
  223. fi
  224. # shorewall-lite
  225. if use lite4; then
  226. einfo "Installing ${MY_P_LITE4} ..."
  227. keepdir /var/lib/shorewall-lite
  228. DESTDIR="${D%/}" ${MY_PN_LITE4}/install.sh shorewallrc.gentoo || die "${MY_PN_LITE4}/install.sh failed"
  229. fi
  230. # shorewall6-lite
  231. if use lite6; then
  232. einfo "Installing ${MY_P_LITE6} ..."
  233. keepdir /var/lib/shorewall6-lite
  234. DESTDIR="${D%/}" ${MY_PN_LITE6}/install.sh shorewallrc.gentoo || die "${MY_PN_LITE6}/install.sh failed"
  235. fi
  236. # shorewall-init
  237. if use init; then
  238. einfo "Installing ${MY_P_INIT} ..."
  239. DESTDIR="${D%/}" ${MY_PN_INIT}/install.sh shorewallrc.gentoo || die "${MY_PN_INIT}/install.sh failed"
  240. dodoc "${S}"/${MY_PN_INIT}/shorewall-init.README.Gentoo.txt
  241. if [[ -f "${D}etc/logrotate.d/shorewall-init" ]]; then
  242. # On Gentoo, shorewall-init will not create shorewall-ifupdown.log,
  243. # so we don't need a logrotate configuration file for shorewall-init
  244. einfo "Removing unused \"${D}etc/logrotate.d/shorewall-init\" ..."
  245. rm -rf "${D}"etc/logrotate.d/shorewall-init || die "Removing \"${D}etc/logrotate.d/shorewall-init\" failed"
  246. fi
  247. if [[ -d "${D}etc/NetworkManager" ]]; then
  248. # On Gentoo, we don't support NetworkManager
  249. # so we don't need this folder at all
  250. einfo "Removing unused \"${D}etc/NetworkManager\" ..."
  251. rm -rf "${D}"etc/NetworkManager || die "Removing \"${D}etc/NetworkManager\" failed"
  252. fi
  253. if [[ -f "${D}usr/share/shorewall-init/ifupdown" ]]; then
  254. # This script isn't supported on Gentoo
  255. rm -rf "${D}"usr/share/shorewall-init/ifupdown || die "Removing \"${D}usr/share/shorewall-init/ifupdown\" failed"
  256. fi
  257. fi
  258. if use doc; then
  259. einfo "Installing ${MY_P_DOCS} ..."
  260. docinto html && dodoc -r "${S}"/${MY_PN_DOCS}/*
  261. fi
  262. }
  263. pkg_postinst() {
  264. if [[ -z "${REPLACING_VERSIONS}" ]]; then
  265. # This is a new installation
  266. # Show first steps for shorewall/shorewall6
  267. local _PRODUCTS=""
  268. if use ipv4; then
  269. _PRODUCTS="shorewall"
  270. if use ipv6; then
  271. _PRODUCTS="${_PRODUCTS}/shorewall6"
  272. fi
  273. fi
  274. if [[ -n "${_PRODUCTS}" ]]; then
  275. elog "Before you can use ${_PRODUCTS}, you need to edit its configuration in:"
  276. elog ""
  277. elog " /etc/shorewall/shorewall.conf"
  278. if use ipv6; then
  279. elog " /etc/shorewall6/shorewall6.conf"
  280. fi
  281. elog ""
  282. elog "To activate your shorewall-based firewall on system start, please add ${_PRODUCTS} to your default runlevel:"
  283. elog ""
  284. elog " # rc-update add shorewall default"
  285. if use ipv6; then
  286. elog " # rc-update add shorewall6 default"
  287. fi
  288. fi
  289. # Show first steps for shorewall-lite/shorewall6-lite
  290. _PRODUCTS=""
  291. if use lite4; then
  292. _PRODUCTS="shorewall-lite"
  293. fi
  294. if use lite6; then
  295. if [[ -z "${_PRODUCTS}" ]]; then
  296. _PRODUCTS="shorewall6-lite"
  297. else
  298. _PRODUCTS="${_PRODUCTS}/shorewall6-lite"
  299. fi
  300. fi
  301. if [[ -n "${_PRODUCTS}" ]]; then
  302. if use ipv4; then
  303. elog ""
  304. fi
  305. elog "Before you can use ${_PRODUCTS}, you need to provide a configuration, which you can"
  306. elog "create using ${CATEGORY}/shorewall (with \"ipv4\" and or \"ipv6\" USE flag)."
  307. elog ""
  308. elog "To read more about ${_PRODUCTS}, please visit"
  309. elog " http://shorewall.net/CompiledPrograms.html"
  310. elog ""
  311. elog "To activate your shorewall-lite-based firewall on system start, please add ${PRODUCTS} to your default runlevel:"
  312. elog ""
  313. if use lite4; then
  314. elog " # rc-update add shorewall-lite default"
  315. fi
  316. if use lite6; then
  317. elog " # rc-update add shorewall6-lite default"
  318. fi
  319. fi
  320. if use init; then
  321. elog ""
  322. elog "To secure your system on boot, please add shorewall-init to your boot runlevel:"
  323. elog ""
  324. elog " # rc-update add shorewall-init boot"
  325. elog ""
  326. elog "and review \$PRODUCTS in"
  327. elog ""
  328. elog " /etc/conf.d/shorewall-init"
  329. fi
  330. fi
  331. local v
  332. for v in ${REPLACING_VERSIONS}; do
  333. if ! version_is_at_least ${MY_MAJOR_RELEASE_NUMBER} ${v}; then
  334. # This is an upgrade
  335. elog "You are upgrading from a previous major version. It is highly recommended that you read"
  336. elog ""
  337. elog " - /usr/share/doc/shorewall*/releasenotes.tx*"
  338. elog " - http://shorewall.net/Shorewall-5.html#idp51151872"
  339. if use ipv4; then
  340. elog ""
  341. elog "You can auto-migrate your configuration using"
  342. elog ""
  343. elog " # shorewall update -A"
  344. if use ipv6; then
  345. elog " # shorewall6 update -A"
  346. fi
  347. elog ""
  348. elog "But if you are not familiar with the \"shorewall[6] update\" command,"
  349. elog "please read the shorewall[6] man page first."
  350. fi
  351. # Show this elog only once
  352. break
  353. fi
  354. done
  355. if ! use init; then
  356. elog ""
  357. elog "Consider emerging ${CATEGORY}/${PN} with USE flag \"init\" to secure your system on boot"
  358. elog "before your shorewall-based firewall is ready to start."
  359. elog ""
  360. elog "To read more about shorewall-init, please visit"
  361. elog " http://www.shorewall.net/Shorewall-init.html"
  362. fi
  363. if ! has_version "net-firewall/conntrack-tools"; then
  364. elog ""
  365. elog "Your Shorewall firewall can utilize \"conntrack\" from the \"net-firewall/conntrack-tools\""
  366. elog "package. if you want to use this feature, you need to install \"net-firewall/conntrack-tools\"!"
  367. fi
  368. if ! has_version "dev-perl/Devel-NYTProf"; then
  369. elog ""
  370. elog "If you want to profile your Shorewall firewall you need to install \"dev-perl/Devel-NYTProf\"!"
  371. fi
  372. }