| Age | Commit message (Expand) | Author |
|---|
| 2002-07-15 | cosmetics/consolidations to manpage in yyerror()s | Philipp Buehler |
| 2002-07-15 | o complain about keep state on block rules | Henning Brauer |
| 2002-07-13 | add list expansion for interface and proto in nat rules and for proto in rdr | Henning Brauer |
| 2002-07-09 | check sin6_scope_id field, just in case we change the routing socket API | Jun-ichiro itojun Hagino |
| 2002-07-09 | getifaddrs(3) grabs link-local addrs in kernel internal form, convert them | Jun-ichiro itojun Hagino |
| 2002-07-09 | rework the interface-to-IP routines. | Henning Brauer |
| 2002-07-08 | Don't allow 'flags' option in non-TCP rules, found by mpech@ | Daniel Hartmeier |
| 2002-07-05 | unbreak. | Henning Brauer |
| 2002-07-05 | another small bug I found while installing a -current pf firewall. | Henning Brauer |
| 2002-07-01 | streamline parse buffer handling (no need to copy value that is not | Marc Espie |
| 2002-07-01 | KNF | Theo de Raadt |
| 2002-06-28 | Don't check for address family conflicts in nat/rdr before expansion, | Daniel Hartmeier |
| 2002-06-25 | move pfctl options -t, -m, -O and -l to pf.conf. These are set using the | Henning Brauer |
| 2002-06-24 | Use interface when specified in scrub rule. No support for ! or {} yet. | Daniel Hartmeier |
| 2002-06-23 | uid_t and gid_t are unsigned | Theo de Raadt |
| 2002-06-20 | Copy address family from inet/inet6 keyword, if specified. | Daniel Hartmeier |
| 2002-06-18 | propogate a '!' when a host resolves to multiple IP addresses | Mike Frantzen |
| 2002-06-18 | don't allow individual keep state rules to specify timeouts for 'interval' and | Mike Frantzen |
| 2002-06-16 | Rules must in order -> Rules must be in order | Aaron Campbell |
| 2002-06-15 | Reset rulestate in parse_rules(), so consecutive calls (like from authpf) | Daniel Hartmeier |
| 2002-06-13 | Fix the numbering of scrub rules. pointed out and oked by frantzen@ | Kjell Wooding |
| 2002-06-12 | Fix uninitialized access. Spotted by danh@ This is a good reason to | Kjell Wooding |
| 2002-06-11 | split the grammar of scrub(fragcache) into scrub ... 'fragment reassemble', | Mike Frantzen |
| 2002-06-11 | SCRUB(fragcache) to do gap tracking and overlap pruning of IPv4 fragments | Mike Frantzen |
| 2002-06-11 | Make NAT proxy port range configurable per rule, for instance privileged | Daniel Hartmeier |
| 2002-06-10 | Merge the NAT and rules files into a single rulefile. Rules must be | Kjell Wooding |
| 2002-06-10 | Allow ports to be specified in nat rules, useful later on for individual | Daniel Hartmeier |
| 2002-06-10 | Move enum out of struct (gcc 3.1 wasn't happy), from David Krause | Daniel Hartmeier |
| 2002-06-10 | split scrub rule processing into its own yacc target, | Kjell Wooding |
| 2002-06-09 | Make pf_nat.saddr/daddr a pf_rule_addr instead of pf_addr_wrap, so it | Daniel Hartmeier |
| 2002-06-09 | spaced out developers... | Theo de Raadt |
| 2002-06-09 | Add list parsing in RDR rules: e.g. | Kjell Wooding |
| 2002-06-08 | nuke unused parameter af to expand_label_port | Henning Brauer |
| 2002-06-08 | Change remaining read-only lookup tables to const, suggestion drahn@ | Daniel Hartmeier |
| 2002-06-08 | comment on IPv6 link-local twists | Jun-ichiro itojun Hagino |
| 2002-06-08 | add list expansion to src/dest in NAT rules. i.e. | Kjell Wooding |
| 2002-06-08 | remove macro concatenation via += per Theo's advice | Henning Brauer |
| 2002-06-08 | allow macro concatenation like | Henning Brauer |
| 2002-06-08 | Make state timeouts configurable per rule, like | Daniel Hartmeier |
| 2002-06-08 | expand $nr -> rule number in rule labels | Henning Brauer |
| 2002-06-08 | expand $proto in rule labels | Henning Brauer |
| 2002-06-07 | Handle realloc() failure gracefully. Terminates with err() anyway in this | Daniel Hartmeier |
| 2002-06-07 | henning, read this to see what i mean by KNF | Theo de Raadt |
| 2002-06-07 | add the possibility to configure a TTL while return-rst | Philipp Buehler |
| 2002-06-07 | Add "(max <number>)" option for "keep/modulate state" to limit the number | Daniel Hartmeier |
| 2002-06-07 | allow using $srcaddr, $srcport, $dstaddr and $dstport in rule labels, | Henning Brauer |
| 2002-06-07 | make IPv6 scope identification work for dst (from any to fe80::1%lo0) | Jun-ichiro itojun Hagino |
| 2002-06-07 | support scoped IPv6 address in from/to portion. | Jun-ichiro itojun Hagino |
| 2002-06-01 | ECN flag support for pf. Committed in consultation with Daniel. | Hugh Graham |
| 2002-05-24 | Support mixed (IPv4/v6) address lists, expand to all possible and valid | Daniel Hartmeier |
