summaryrefslogtreecommitdiff
path: root/sbin/ifconfig
AgeCommit message (Collapse)Author
2009-08-13remove description of link0 for vlan interfaces; this part missed whenStuart Henderson
vlan link0 was replaced with IFCAP_VLAN_HWTAGGING in 2001. prompted by a mail from Insan Praja. ok deraadt@
2009-06-23tweak previous;Jason McIntyre
2009-06-19after long discussion with many...Henning Brauer
ifconfig <if> inet6 used to print all inet6 addresses, and last not least the installer relies on that behaviour. so don't. to turn inet6 on again you have to assign any inet6 address or run rtsol. nobody happy about this asymmetry, but that is the best we could come up with for now.
2009-06-19Document the defer option for pfsync(4) interfaces. ok dlg@Stuart Henderson
2009-06-14enable support for deferring the packet that creates a state so that yourDavid Gwynne
sync peers are able to get the states before the replies. previously there was a race where the reply could hit a partner firewall before it had the state for it, which caused the reply to get processed by the ruleset which probably would drop it. this behaviour is off by default because it does delay packets, which is only wanted in active-active firewalls or when an upstream router is slow to learn that you're moved the active member of the pfsync cluster. it also uses memory keeping the packets in the kernel. use "ifconfig pfsync0 defer" to enable it, "ifconfig pfsync0 -defer" to disable. tested by sthen@ who loves it. he's got manpage changes coming up for me.
2009-06-11remove unused variableCharles Longeau
ok claudio@
2009-06-05seperate -> separateJason McIntyre
2009-06-05Document rdomainClaudio Jeker
2009-06-05Make it possible to bind an interface to a rdomain. Manpage will follow soon.Claudio Jeker
2009-06-04i care about theo's hydration level. make him stop whining by documentingHenning Brauer
inet6/-inet6
2009-06-04allow IPvShit to be turned off completely per-interface.Henning Brauer
ifconfig em0 -inet6 deletes all v6 addresses including link-local and prevents new ones from being added. ifconfig em0 inet6 <addr> re-enables v6, brings the link local back and adds optional <addr> ok theo reyk
2009-04-27let vlan functionality make it into the -DSMALL ifconfig binaryTheo de Raadt
ok sthen
2009-02-16Allow username and password to be up to 255 characters in length.Can Erkin Acar
Tested by many, thanks. Put it in" deraadt@
2009-02-16sync the wpa example with those in the driver pages, as pointed outJason McIntyre
by damien;
2009-02-15Give an example of how to use wpa-psk(8) to connect to WPABret Lambert
networks in the wpapsk section of the page. ok deraadt@ henning@
2009-02-15make "ifconfig if0 chan" list the channels supported by the device.Damien Bergamini
add "ifconfig if0 scan" to scan for access points or to list known stations in Host AP mode. remove the [-]wmm command while i'm here. QoS is mandatory with 802.11n so there's not much point into making it an option. fix parsing of the "powersave" command too. discussed with deraadt@ man page hints from jmc@ display hints from sobrado@ "i like it" cnst@, grange@
2009-02-13Change ifconfig wpaakms default setting to `psk' instead of `psk,802.1x'.Damien Bergamini
Some supplicants will autoselect 802.1X without giving users the possibility to choose between PSK or 802.1X. Similarly, no longer announce `PSK with SHA-256 based KDF' AKMP (defined in Draft 802.11w) by default in the RSN IE of beacons and probe responses as it confuses some broken supplicants. This kind of sacrifies security for interoperability with shitty (but unfortunately widespread) clients that do not follow the 802.11 standard properly. This fixes associations from Intel PROSet on XP and also reportedly fixes some Mac OS clients. I will likely make `psk-sha256' configurable through ifconfig wpaakms after the 4.5 release.
2009-02-06Remove bogus casts of integer constants SPPPIO[GS]DEFS to caddr_tAlexander Yurchenko
and fix typo while here. ok canacar@
2008-12-15remove unused vars; damien@ ok.Federico G. Schwindt
2008-12-12ifconfig(8) part to make it possible to set an interface priority.Claudio Jeker
OK deraadt@
2008-11-24remove trailing "\n" from errx()Kevin Steves
2008-11-17Fix printing of partner link aggregation group ID.Marco Pfatschbacher
OK brad@
2008-10-20add an example of how to scan for wireless networks, since it is notJason McIntyre
immediately obvious from reading the main text or the wireless pages; i killed the "ifconfig gif1 destroy" example to do this, since i want to keep EXAMPLES relatively short, and we already provide an example of how to create an interface;
2008-09-30compress powersleep commands into one; ok damienTheo de Raadt
2008-09-10some pflow tweaks;Jason McIntyre
2008-09-09fix printing by group name (eg. ifconfig em), do not abort in theReyk Floeter
initial getinfo(), and remove a few superfluous warnings there. ok deraadt@
2008-09-09document pflow stuff, Joerg Goltermann <jg@osn.de> with some changes by meHenning Brauer
(I am sure jmc will make this even betterer)
2008-09-09welcome pflow(4), a netflow v5 compatible flow export interface.Henning Brauer
flows export data gathered from pf states. initial implementation by Joerg Goltermann <jg@osn.de>, guidance and many changes by me. 'put it in' theo
2008-09-07update wireless synopsis too: nwid requires an argument, chan does not;Jason McIntyre
2008-09-07nwid requires an arg; ok deraadtJason McIntyre
2008-09-07- say what "media" w/o args doesJason McIntyre
- chan argument is n, not id
2008-09-07Allow some set-style commands to have zero arguments. If there is anTheo de Raadt
argument after that command, check if it is a keyword, and if it is, that means the original command really has no argument. Get it? Now.. replace -m with media (no options), and -M with chan (no options). Try 'ifconfig -a media chan' on a wireless & ethernet machine after this. ok henning, reyk, thanks for the comments from others
2008-07-29s/affect/assign/ in wmm option.Damien Bergamini
2008-07-19Correct missed capitalization of MPLS.Brad Smith
2008-07-17Pasto in error message for setspppkey()Stuart Henderson
ok mbalmer@
2008-06-26First pass at removing clauses 3 and 4 from NetBSD licenses.Ray Lai
Not sure what's more surprising: how long it took for NetBSD to catch up to the rest of the BSDs (including UCB), or the amount of code that NetBSD has claimed for itself without attributing to the actual authors. OK deraadt@
2008-06-15put carppeer in the right place;Jason McIntyre
2008-06-15Add 802.3ad LACP support for trunk(4).Marco Pfatschbacher
Implementation from NetBSD. Ported via FreeBSD's version in trunk^Wlagg(4). This is still work in progress. Tested with a HP ProCurve 3500. OK reyk@
2008-06-14add carppeer; an option to specify a different multicast address orReyk Floeter
even the unicast address of the remote carp peer. this especially helps when the multicast carp advertisements are causing problems in the network (some crappy switches don't do well with multicast), there are conflicts with VRRP, or the policy of the network does not allow multicast (most Internet eXchange points didn't allow carped OpenBGP routers because of the multicast advertisements). discussed with many ok mpf@
2008-06-13INADDR_PFSYNC_GROUP is defined as network byte order in the kernel butReyk Floeter
as host byte order in userland. ifconfig didn't get this and always printed the pfsync syncpeer on little endian machines because the check to prevent printing the default address assumed the wrong byte order. ok claudio@ rainer@
2008-05-07Remove references to routed.Claudio Jeker
2008-05-07put the mpe bits in the right place;Jason McIntyre
2008-05-07Document the new mpe interface and explain the appropriate commandsPierre-Yves Ritschard
in ifconfig(8). The man pages reference mpls(8) which doesn't exist, but claudio promises it will follow shortly. a thumb up and ok from claudio@
2008-05-06bring in the mpe interface - for ``MPLS Provider Edge'' - this is a workPierre-Yves Ritschard
in progress and some bits need to be cleaned up but will be in-tree for convenience. ok claudio@, norby@
2008-05-06print IN6_IFF_AUTOCONF flag, too; ok henning some time agoMarkus Friedl
2008-04-18remove wparekey from the list of 802.11 ifconfig options.Damien Bergamini
pointed out by drahn@
2008-04-16- wpa-psk is section 8, not 1Jason McIntyre
- one more passphrase tweak
2008-04-16Kernel implementation of the 4-way handshake and group-keyDamien Bergamini
handshake protocols (both supplicant and authenticator state machines) as defined in the IEEE 802.11i standard. Software implementation of the TKIP (Temporal Key Integrity Protocol) and CCMP (CTR with CBC-MAC Protocol) protocols. This diff doesn't implement any of the 802.1X authentication protocols and thus only PSK authentication (using pre-shared keys) is currently supported. In concrete terms, this adds support for WPA-PSK and WPA2-PSK protocols, both in station and hostap modes. The following drivers are marked as WPA-capable and should work: bwi(4), malo(4), ral(4), iwn(4), wpi(4), ural(4), rum(4), upgt(4), and zyd(4) The following options have been added to ifconfig(8): wpa, wpapsk, wpaprotos, wpaakms, wpaciphers, wpagroupcipher wpa-psk(8) can be used to generate keys from passphrases. tested by many@ ok deraadt@
2008-03-29fix a free(NULL) in setcarp_nodes().Damien Bergamini
ok mpf@, chl@ "i agree with the diagnosis" oga@
2008-03-19document "netboot" interface group;Jason McIntyre
based on a diff originally from bsd openbsd rutgers edu