| Age | Commit message (Expand) | Author |
|---|
| 2002-06-07 | make IPv6 scope identification work for dst (from any to fe80::1%lo0) | Jun-ichiro itojun Hagino |
| 2002-06-07 | support scoped IPv6 address in from/to portion. | Jun-ichiro itojun Hagino |
| 2002-06-01 | ECN flag support for pf. Committed in consultation with Daniel. | Hugh Graham |
| 2002-05-24 | Support mixed (IPv4/v6) address lists, expand to all possible and valid | Daniel Hartmeier |
| 2002-05-23 | tiny KNF, some malloc checks, etc | Theo de Raadt |
| 2002-05-23 | new_addr is not used from anywhere. daniel@benzedrine.cx ok | Jun-ichiro itojun Hagino |
| 2002-05-19 | KNF | Theo de Raadt |
| 2002-05-12 | Explain that user/group 'unknown' can only be used with operators = and != | Daniel Hartmeier |
| 2002-05-12 | Add gid based filtering, reduce to one (effective) uid, rename parser | Daniel Hartmeier |
| 2002-05-10 | Handle host name resolution returning multiple addresses in the rule | Daniel Hartmeier |
| 2002-05-09 | Add a max-mss option to the scrub rule which will enforce a maximum mss | jasoni |
| 2002-05-09 | Introduce user based filtering. Rules can specify ruid and euid (real and | Daniel Hartmeier |
| 2002-04-24 | Add dynamic (in-kernel) interface name -> address translation. Instead of | Daniel Hartmeier |
| 2002-04-23 | Allow explicit filtering of fragments when they are not reassembled. | Daniel Hartmeier |
| 2002-04-18 | use strlcpy | Theo de Raadt |
| 2002-04-17 | Reset lineno for each file, so pfctl -R ... -N ... reports the right | Daniel Hartmeier |
| 2002-03-27 | implement a "no-route" keyword. | Michael Shalayeff |
| 2002-02-27 | Instead of printing useless @0 rule numbers from pfctl -vR, increase a | Daniel Hartmeier |
| 2002-01-11 | use bsearch() for keywords lookup, swap couple of entries to make the keyword... | Michael Shalayeff |
| 2002-01-10 | Let port 0 be specified as it's not special here. | Hugh Graham |
| 2002-01-09 | Port must be >0 and <=65535. Idea while have fun with ssh. | Mike Pechkin |
| 2002-01-09 | free() 'interface' in {nat,binat,rdr}rule | Mike Pechkin |
| 2002-01-09 | Add labels to rules. These are arbitrary names (not to be confused with | Daniel Hartmeier |
| 2002-01-08 | Add "no nat/rdr/binat" to nat.conf. The first matching rule applies. | Daniel Hartmeier |
| 2002-01-07 | remove 3rd argument from ipmask(), not used. | Mike Pechkin |
| 2001-12-23 | find correct line number in lval, instead of val | Theo de Raadt |
| 2001-12-10 | Add stateful filtering for other (non-TCP/UDP/ICMP) protocol, based on | Daniel Hartmeier |
| 2001-12-05 | Correctly parse hex numbers. Spotted by Claudio Jeker. Closes PR 2234. | Daniel Hartmeier |
| 2001-12-03 | For nat, binat and rdr rules, don't allow different address families in | Daniel Hartmeier |
| 2001-11-26 | add fastroute options similar to what is found in ipf | jasoni |
| 2001-11-05 | noone responds. | Theo de Raadt |
| 2001-10-24 | Check interface names using ifa0_lookup() and print error message for | Daniel Hartmeier |
| 2001-10-15 | Add 'allow-opts' to rules. Packets with IP options will be blocked by | Daniel Hartmeier |
| 2001-10-11 | Don't htonl() past buffer bounds if ipmask == 128 | Mike Frantzen |
| 2001-10-07 | Add interface name to address translation to pfctl, document it and add | Daniel Hartmeier |
| 2001-10-01 | print variable asignments only if -v is given. ok dhartmei/deraadt | Markus Friedl |
| 2001-09-28 | Support underscores in macro names and document it in the man page. | Daniel Hartmeier |
| 2001-09-20 | Fix uninitialized structure fields. Problem reported by Cedric Berger. | Daniel Hartmeier |
| 2001-09-15 | Implement return-icmp(number), return-icmp6(number) | Peter Stromberg |
| 2001-09-15 | Fix 'binat ... to any ...' (binat.af wasn't set). | Daniel Hartmeier |
| 2001-09-15 | Parse bug, found by wilfried@ | Daniel Hartmeier |
| 2001-09-15 | IPv6 support from Ryan McBride (mcbride@countersiege.com) | Mike Frantzen |
| 2001-09-12 | check calloc() return value | Markus Friedl |
| 2001-09-06 | - you can only binat between hosts | jasoni |
| 2001-09-06 | 1:1 bidrectional NAT (binat); ok dhartmei@ and frantzen@ | jasoni |
| 2001-09-04 | Support parameter lists {} for interfaces in filter rules, like | Daniel Hartmeier |
| 2001-08-28 | move '!' from host_list to host: "xhost : '!' host | host;"; ok dhartmei@ | Markus Friedl |
| 2001-08-28 | check for malloc/strdup == NULL | Markus Friedl |
| 2001-08-28 | Support ! operator in host parameter lists. Fixes PR system/2030. Reported | Daniel Hartmeier |
| 2001-08-26 | sort keywords | Theo de Raadt |
