| Age | Commit message (Expand) | Author |
|---|
| 2006-06-17 | KNF | Henning Brauer |
| 2006-05-28 | Make per-rule adaptive timeouts behave the same way as the global adaptive | Ryan Thomas McBride |
| 2006-05-26 | \<char> is <char> except for \<newline> -- no exceptions. much like how | Theo de Raadt |
| 2006-05-02 | fix creation of sub-anchors, e.g. if you create an anchor /foo/bar, create | Daniel Hartmeier |
| 2006-05-01 | add support for "tagged {}" lists, from Pierre-Yves Ritschard | Daniel Hartmeier |
| 2006-04-06 | allow lists inside lists for address specs, has been in my tree for | Henning Brauer |
| 2006-03-14 | implement a Unicast Reverse Path Forwarding (uRPF) check for pf(4) | Damien Miller |
| 2005-11-17 | for pfctl -f rules, open the file before resetting options. when opening | Daniel Hartmeier |
| 2005-10-13 | unused parameters | Henning Brauer |
| 2005-06-14 | no need to restrict tagging to stateful rules any more, dhartmei ok | Henning Brauer |
| 2005-05-27 | get rid of 'log-all'. now that we have 'log (options)', make 'all' an | Daniel Hartmeier |
| 2005-05-27 | get rid of shift/reduce conflicts, don't support empty logopts | Daniel Hartmeier |
| 2005-05-27 | log two pairs of uid/pid through pflog: the uid/pid of the process that | Daniel Hartmeier |
| 2005-05-27 | allow 'tagged' in 'anchor' rules (without complaining about missing | Daniel Hartmeier |
| 2005-05-26 | The illegalness of "no nat log" is already enforced by the grammar. | Camiel Dobbelaar |
| 2005-05-26 | support 'log' and 'log-all' in 'nat/rdr/binat pass' rules. original patch | Daniel Hartmeier |
| 2005-05-23 | remove code that duplicates getservice() | Camiel Dobbelaar |
| 2005-05-21 | clean up and rework the interface absraction code big time, rip out multiple | Henning Brauer |
| 2005-04-22 | Catch bad flags, ie. flags that always evaluate to false. This happens | Camiel Dobbelaar |
| 2005-03-07 | print unsigned long with %lu, not with %d and not with %ld. | Henning Brauer |
| 2005-03-06 | allow commas in the hfsc service curve spec, inconsistency pointed out in | Henning Brauer |
| 2005-03-06 | print "set skip on" with -v in such a way that the output is valid input | Daniel Hartmeier |
| 2005-02-27 | support 'tagged' in translation rules, non-delayed tag lookup | Daniel Hartmeier |
| 2005-02-26 | ypu sure get the impression the number of memory leaks in error pathes | Henning Brauer |
| 2005-02-07 | KNF; ok henning@ | David Krause |
| 2005-01-28 | add messages for syntax errors that caused silent failure before. | Daniel Hartmeier |
| 2005-01-27 | dynamic interface names must start with a letter. catches the nonsensical | Daniel Hartmeier |
| 2005-01-05 | Modify pfctl behaviour so that 'set ...' options are no longer "sticky", ie. | Ryan Thomas McBride |
| 2004-12-29 | Print 'set fingerprints' correctly when parsing verbosely. | Ryan Thomas McBride |
| 2004-12-23 | set rule_flag PFRULE_SRCTRACK when setting srctrack, found by camield@ | Daniel Hartmeier |
| 2004-12-22 | Introduce 'set skip on <ifspec>' to support a list of interfaces where no | Daniel Hartmeier |
| 2004-12-15 | missing free()s; with pat | Henning Brauer |
| 2004-12-10 | allow pf to filter on route labels | Henning Brauer |
| 2004-12-08 | Add "'overload' requires 'max-src-conn' or 'max-src-conn-rate'" sanity check, | Ryan Thomas McBride |
| 2004-12-07 | re-commit mcbride@'s 'flush global', this time without the breakage in | Daniel Hartmeier |
| 2004-12-07 | real backout | Theo de Raadt |
| 2004-12-07 | oops, incomplete backout | Theo de Raadt |
| 2004-12-07 | tree does not compile, spotted by dlg (not obvious how to fix) | Theo de Raadt |
| 2004-12-07 | Change the default for 'overload <table> flush' to flush only states from the | Ryan Thomas McBride |
| 2004-12-05 | initialize $$->tail and $$->next for MAXSRCCONNRATE | Daniel Hartmeier |
| 2004-12-04 | Userland support for limiting open tcp connections per source. eg: | Ryan Thomas McBride |
| 2004-09-21 | Implement "no scrub" to allow exclusion of specific traffic from scrub rules. | Aaron Campbell |
| 2004-06-29 | remove cedric's bogus interface name verification code. | Henning Brauer |
| 2004-06-29 | convert a few memcpy()s to strlcpy() so we don't copy uninitialized junk into | Mike Frantzen |
| 2004-06-26 | add back PF_INOUT, fixes reassemble tcp | David Krause |
| 2004-06-25 | repair tree nanobreak by the nanobum | Theo de Raadt |
| 2004-06-10 | rename struct pf_rule_addr member 'not' to 'neg', as 'not' is a reserved | Daniel Hartmeier |
| 2004-05-21 | Use '/' instead of ':' as separator for anchor path components. Note that | Daniel Hartmeier |
| 2004-05-19 | Allow recursive anchors (anchors within anchors, up to 64 | Daniel Hartmeier |
| 2004-04-24 | Add "probability xxx" rule modifier. ok deraadt@ | Cedric Berger |
