Age | Commit message (Expand) | Author |
2005-05-27 | get rid of 'log-all'. now that we have 'log (options)', make 'all' an | Daniel Hartmeier |
2005-05-27 | get rid of shift/reduce conflicts, don't support empty logopts | Daniel Hartmeier |
2005-05-27 | log two pairs of uid/pid through pflog: the uid/pid of the process that | Daniel Hartmeier |
2005-05-27 | allow 'tagged' in 'anchor' rules (without complaining about missing | Daniel Hartmeier |
2005-05-26 | The illegalness of "no nat log" is already enforced by the grammar. | Camiel Dobbelaar |
2005-05-26 | support 'log' and 'log-all' in 'nat/rdr/binat pass' rules. original patch | Daniel Hartmeier |
2005-05-23 | remove code that duplicates getservice() | Camiel Dobbelaar |
2005-05-21 | clean up and rework the interface absraction code big time, rip out multiple | Henning Brauer |
2005-04-22 | Catch bad flags, ie. flags that always evaluate to false. This happens | Camiel Dobbelaar |
2005-03-07 | print unsigned long with %lu, not with %d and not with %ld. | Henning Brauer |
2005-03-06 | allow commas in the hfsc service curve spec, inconsistency pointed out in | Henning Brauer |
2005-03-06 | print "set skip on" with -v in such a way that the output is valid input | Daniel Hartmeier |
2005-02-27 | support 'tagged' in translation rules, non-delayed tag lookup | Daniel Hartmeier |
2005-02-26 | ypu sure get the impression the number of memory leaks in error pathes | Henning Brauer |
2005-02-07 | KNF; ok henning@ | David Krause |
2005-01-28 | add messages for syntax errors that caused silent failure before. | Daniel Hartmeier |
2005-01-27 | dynamic interface names must start with a letter. catches the nonsensical | Daniel Hartmeier |
2005-01-05 | Modify pfctl behaviour so that 'set ...' options are no longer "sticky", ie. | Ryan Thomas McBride |
2004-12-29 | Print 'set fingerprints' correctly when parsing verbosely. | Ryan Thomas McBride |
2004-12-23 | set rule_flag PFRULE_SRCTRACK when setting srctrack, found by camield@ | Daniel Hartmeier |
2004-12-22 | Introduce 'set skip on <ifspec>' to support a list of interfaces where no | Daniel Hartmeier |
2004-12-15 | missing free()s; with pat | Henning Brauer |
2004-12-10 | allow pf to filter on route labels | Henning Brauer |
2004-12-08 | Add "'overload' requires 'max-src-conn' or 'max-src-conn-rate'" sanity check, | Ryan Thomas McBride |
2004-12-07 | re-commit mcbride@'s 'flush global', this time without the breakage in | Daniel Hartmeier |
2004-12-07 | real backout | Theo de Raadt |
2004-12-07 | oops, incomplete backout | Theo de Raadt |
2004-12-07 | tree does not compile, spotted by dlg (not obvious how to fix) | Theo de Raadt |
2004-12-07 | Change the default for 'overload <table> flush' to flush only states from the | Ryan Thomas McBride |
2004-12-05 | initialize $$->tail and $$->next for MAXSRCCONNRATE | Daniel Hartmeier |
2004-12-04 | Userland support for limiting open tcp connections per source. eg: | Ryan Thomas McBride |
2004-09-21 | Implement "no scrub" to allow exclusion of specific traffic from scrub rules. | Aaron Campbell |
2004-06-29 | remove cedric's bogus interface name verification code. | Henning Brauer |
2004-06-29 | convert a few memcpy()s to strlcpy() so we don't copy uninitialized junk into | Mike Frantzen |
2004-06-26 | add back PF_INOUT, fixes reassemble tcp | David Krause |
2004-06-25 | repair tree nanobreak by the nanobum | Theo de Raadt |
2004-06-10 | rename struct pf_rule_addr member 'not' to 'neg', as 'not' is a reserved | Daniel Hartmeier |
2004-05-21 | Use '/' instead of ':' as separator for anchor path components. Note that | Daniel Hartmeier |
2004-05-19 | Allow recursive anchors (anchors within anchors, up to 64 | Daniel Hartmeier |
2004-04-24 | Add "probability xxx" rule modifier. ok deraadt@ | Cedric Berger |
2004-04-22 | typo, From: Jared Yanovich <jjy2+@pitt.edu> | Henning Brauer |
2004-04-14 | make antispoof work with dynamic addresses. ok dhartmei@ mcbride@ | Cedric Berger |
2004-03-20 | spelling fix; ok dhartmei@ henning@ deraadt@ | David Krause |
2004-03-14 | #include fixes, from Max Laier, ok beck@ henning@ | Daniel Hartmeier |
2004-03-08 | plug 124 memory leaks | Henning Brauer |
2004-03-06 | from bgpd: | Henning Brauer |
2004-03-01 | support "tagged <name>" on anchor rules, suggested by vd@vmunix.lt, | Daniel Hartmeier |
2004-02-24 | 'max-src-nodes' requires 'source-track rule'. Set that automatically, | Ryan Thomas McBride |
2004-02-24 | fixup. | Cedric Berger |
2004-02-24 | Check for 'source-track rule' with 'max-src-nodes'. | Ryan Thomas McBride |