diff options
| author | Angelos D. Keromytis <angelos@cvs.openbsd.org> | 2001-07-01 22:05:52 +0000 |
|---|---|---|
| committer | Angelos D. Keromytis <angelos@cvs.openbsd.org> | 2001-07-01 22:05:52 +0000 |
| commit | a5655ff2f306ce8f10fa943b530f6505cab1223d (patch) | |
| tree | 6570c29b0a44d3598ccd37c629721bf08569004c | |
| parent | 6e27fbea60296b9b7b71337d7622d9f5c4a14468 (diff) | |
IPF cleanups; openbsd@davidkrause.com
| -rw-r--r-- | share/man/man4/ipsec.4 | 5 | ||||
| -rw-r--r-- | share/man/man4/lo.4 | 12 | ||||
| -rw-r--r-- | share/man/man4/pf.4 | 14 |
3 files changed, 18 insertions, 13 deletions
diff --git a/share/man/man4/ipsec.4 b/share/man/man4/ipsec.4 index 402a80baf51..0b5f6cdafe3 100644 --- a/share/man/man4/ipsec.4 +++ b/share/man/man4/ipsec.4 @@ -1,4 +1,4 @@ -.\" $OpenBSD: ipsec.4,v 1.45 2001/06/26 23:24:11 angelos Exp $ +.\" $OpenBSD: ipsec.4,v 1.46 2001/07/01 22:05:50 angelos Exp $ .\" .\" Copyright 1997 Niels Provos <provos@physnet.uni-hamburg.de> .\" All rights reserved. @@ -275,8 +275,7 @@ which can be used in packet filters to specify those packets that have been or will be processed by .Tn IPsec. .Pp -.Xr ipnat 8 -can also be applied to +NAT can also be applied to .Nm enc# interfaces, but special care should be taken because of the interactions between NAT and the IPsec flow matching, especially on the packet output path. diff --git a/share/man/man4/lo.4 b/share/man/man4/lo.4 index 938944d92df..17bc29eae02 100644 --- a/share/man/man4/lo.4 +++ b/share/man/man4/lo.4 @@ -1,4 +1,4 @@ -.\" $OpenBSD: lo.4,v 1.13 2001/06/01 06:22:27 fgsch Exp $ +.\" $OpenBSD: lo.4,v 1.14 2001/07/01 22:05:50 angelos Exp $ .\" $NetBSD: lo.4,v 1.3 1994/11/30 16:22:23 jtc Exp $ .\" .\" Copyright (c) 1983, 1991, 1993 @@ -107,9 +107,7 @@ automatically, using a nonstandard Internet address (127.1). Use of that address is now discouraged; a reserved host address for the local network should be used instead. .Pp -.\"You should be careful using -.\".Xr ipnat 8 -.\"with -.\".Em link1 -.\"set on an interface, because it may believe the packets are coming -.\"from a loopback address. +Care should be taken when using NAT with interfaces that have the +.Em link1 +flag set, because it may believe the packets are coming from a +loopback address. diff --git a/share/man/man4/pf.4 b/share/man/man4/pf.4 index 72bb050fc2a..a34f6e9de83 100644 --- a/share/man/man4/pf.4 +++ b/share/man/man4/pf.4 @@ -1,4 +1,4 @@ -.\" $OpenBSD: pf.4,v 1.2 2001/06/25 05:45:52 kjell Exp $ +.\" $OpenBSD: pf.4,v 1.3 2001/07/01 22:05:51 angelos Exp $ .\" .\" Copyright (C) 2001, Kjell Wooding. All rights reserved. .\" @@ -43,9 +43,17 @@ interface is a packet filter pseudo-device for IPv4. is administered using the .Xr pfctl 8 utility, or through an ioctl interface. +.Sh FILES +.Bl -tag -width /dev/pf -compact +.It Pa /dev/pf +packet filtering device. .Sh SEE ALSO .Xr bridge 4 , .Xr pfctl 8 -.\" +.Sh HISTORY +The +.Nm +packet filtering mechanism first appeared in +.Ox 3.0 . .Sh BUGS -Probably Several +Probably several. |