| Age | Commit message (Expand) | Author |
|---|
| 2007-02-03 | in decide_address_family(), only limit a rule to a specific address family | Daniel Hartmeier |
| 2006-11-07 | Unbreak authpf by handling non-inline anchors separately from the { } anchors | Ryan Thomas McBride |
| 2006-10-31 | Allow pfctl ruleset optimizer to be controlled from the ruleset. | Ryan Thomas McBride |
| 2006-10-31 | - don't allow anchors with _* names to be cleared or loaded from the | Ryan Thomas McBride |
| 2006-10-28 | Load all rules into memory before loading into the kernel, and add support | Ryan Thomas McBride |
| 2006-10-25 | make absolutely sure logif is 0 unless set specifically, even if log is 0. | Henning Brauer |
| 2006-10-25 | and another nit, $$.log should be set to 0 explicitely on quick without log | Henning Brauer |
| 2006-10-25 | urgs, $$.quick needs to be set to 0 explicitely on log (without quick) | Henning Brauer |
| 2006-10-25 | allow the log interface to be selected like | Henning Brauer |
| 2006-10-17 | Don't automatically set 'flags S/SA' on stateless rules. | Ryan Thomas McBride |
| 2006-10-11 | quotes around filename, pr 5253, sthen@zephyr.spacehopper.org | Theo de Raadt |
| 2006-10-11 | Allow the 'quick' keyword on an anchor. IFF there is a matching rule inside | Ryan Thomas McBride |
| 2006-10-06 | Oops, flags S/SA doesn't work on fragments. | Ryan Thomas McBride |
| 2006-10-06 | Make 'flags S/SA keep state' the implicit for filter rules, based on | Ryan Thomas McBride |
| 2006-08-22 | back out -r1.497 (support for "tagged {}" lists), it broke "tagged" support | Daniel Hartmeier |
| 2006-07-06 | add "rtable" to select alternate routing tables. | Henning Brauer |
| 2006-06-17 | KNF | Henning Brauer |
| 2006-05-28 | Make per-rule adaptive timeouts behave the same way as the global adaptive | Ryan Thomas McBride |
| 2006-05-26 | \<char> is <char> except for \<newline> -- no exceptions. much like how | Theo de Raadt |
| 2006-05-02 | fix creation of sub-anchors, e.g. if you create an anchor /foo/bar, create | Daniel Hartmeier |
| 2006-05-01 | add support for "tagged {}" lists, from Pierre-Yves Ritschard | Daniel Hartmeier |
| 2006-04-06 | allow lists inside lists for address specs, has been in my tree for | Henning Brauer |
| 2006-03-14 | implement a Unicast Reverse Path Forwarding (uRPF) check for pf(4) | Damien Miller |
| 2005-11-17 | for pfctl -f rules, open the file before resetting options. when opening | Daniel Hartmeier |
| 2005-10-13 | unused parameters | Henning Brauer |
| 2005-06-14 | no need to restrict tagging to stateful rules any more, dhartmei ok | Henning Brauer |
| 2005-05-27 | get rid of 'log-all'. now that we have 'log (options)', make 'all' an | Daniel Hartmeier |
| 2005-05-27 | get rid of shift/reduce conflicts, don't support empty logopts | Daniel Hartmeier |
| 2005-05-27 | log two pairs of uid/pid through pflog: the uid/pid of the process that | Daniel Hartmeier |
| 2005-05-27 | allow 'tagged' in 'anchor' rules (without complaining about missing | Daniel Hartmeier |
| 2005-05-26 | The illegalness of "no nat log" is already enforced by the grammar. | Camiel Dobbelaar |
| 2005-05-26 | support 'log' and 'log-all' in 'nat/rdr/binat pass' rules. original patch | Daniel Hartmeier |
| 2005-05-23 | remove code that duplicates getservice() | Camiel Dobbelaar |
| 2005-05-21 | clean up and rework the interface absraction code big time, rip out multiple | Henning Brauer |
| 2005-04-22 | Catch bad flags, ie. flags that always evaluate to false. This happens | Camiel Dobbelaar |
| 2005-03-07 | print unsigned long with %lu, not with %d and not with %ld. | Henning Brauer |
| 2005-03-06 | allow commas in the hfsc service curve spec, inconsistency pointed out in | Henning Brauer |
| 2005-03-06 | print "set skip on" with -v in such a way that the output is valid input | Daniel Hartmeier |
| 2005-02-27 | support 'tagged' in translation rules, non-delayed tag lookup | Daniel Hartmeier |
| 2005-02-26 | ypu sure get the impression the number of memory leaks in error pathes | Henning Brauer |
| 2005-02-07 | KNF; ok henning@ | David Krause |
| 2005-01-28 | add messages for syntax errors that caused silent failure before. | Daniel Hartmeier |
| 2005-01-27 | dynamic interface names must start with a letter. catches the nonsensical | Daniel Hartmeier |
| 2005-01-05 | Modify pfctl behaviour so that 'set ...' options are no longer "sticky", ie. | Ryan Thomas McBride |
| 2004-12-29 | Print 'set fingerprints' correctly when parsing verbosely. | Ryan Thomas McBride |
| 2004-12-23 | set rule_flag PFRULE_SRCTRACK when setting srctrack, found by camield@ | Daniel Hartmeier |
| 2004-12-22 | Introduce 'set skip on <ifspec>' to support a list of interfaces where no | Daniel Hartmeier |
| 2004-12-15 | missing free()s; with pat | Henning Brauer |
| 2004-12-10 | allow pf to filter on route labels | Henning Brauer |
| 2004-12-08 | Add "'overload' requires 'max-src-conn' or 'max-src-conn-rate'" sanity check, | Ryan Thomas McBride |
