| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2003-03-08 | inlcude queue interals in -gsr and -gsq output; will make debugging easier. | Henning Brauer | |
| ok cedric@ pb@ | |||
| 2003-03-07 | don't include debugging output, namely, the result of teh skip steps | Henning Brauer | |
| calculation, in verbose output (pfctl -vvsr). Instead, use a new flag -g for that. result of a longer discussion with dhartmei@ and jakob@ ok cedric@ pb@ | |||
| 2003-02-20 | extra plurals; openbsd@davidkrause.com | Theo de Raadt | |
| 2003-02-20 | Fix table syntax documentation, from David Krause. | Cedric Berger | |
| 2003-02-19 | cmdline options in alphabetical order in usage() and manpage; and sync them | Henning Brauer | |
| from krause | |||
| 2003-02-18 | fix load option handling (-A, -N, -R) for options. | Henning Brauer | |
| due to a bug in the loadopt check options were always loaded no matter which loadopts where specified. while beeing there, move the prints for that to where they belong, into the appropriate pfctl_set_* functions, and thus only print when the options are actually loaded. fixes regress tests pfopt3, pfopt4, pfopt5 I added earlier. ok dhartmei@ | |||
| 2003-02-17 | pfctl_clear_pool doesn't need to be prototyped twice either | Henning Brauer | |
| 2003-02-17 | no need to prototype pfctl_add_pool twice | Henning Brauer | |
| 2003-02-17 | We want err() after failed ioctl() here too. | Mike Pechkin | |
| mcbride@, dhartmei@ ok | |||
| 2003-02-14 | remove explicit table creation ( -T create ), it's useless. | Henning Brauer | |
| ok pb@ mcbride@ deraadt@ | |||
| 2003-02-11 | allow macro definition on the command line: | Henning Brauer | |
| pfctl -Dextif=wi0 -f /etc/pf.conf command line macro definitions override the ones made in the file (idea theo), very handy if your notebook has another NIC at some conference, as well as for debugging etc. idea rezine@mistrusted.net via pb@ hacked live at FOSDEM ok pb@ dhartmei@ cedric@ | |||
| 2003-02-05 | Simplify more. | Cedric Berger | |
| 2003-02-05 | Simplify. | Cedric Berger | |
| 2003-02-03 | remove loadopt global definition and cleanup a bit. | Cedric Berger | |
| ok henning@ | |||
| 2003-02-03 | zap dead code | Henning Brauer | |
| 2003-02-03 | fix a problem with queue definitions when load options (like -N etc) are | Henning Brauer | |
| given; they used to check for their parent interface/queue even in this case. ok dhartmei@ cedric@ | |||
| 2003-02-02 | there is no need to pass opts to parse_rules explicitely; it's passed as | Henning Brauer | |
| part of the struct pfctl. | |||
| 2003-01-27 | When -a is specified, the operation affects an anchor only, so don't try | Daniel Hartmeier | |
| to replace queues (or options) which are global and can't be loaded into an anchor. Found by j@pureftpd.org. | |||
| 2003-01-24 | let pfctl -vvsq loop and display measured bandwidth and packets/s per queue. | Henning Brauer | |
| cbq only for now. | |||
| 2003-01-21 | remove redundant if | Camiel Dobbelaar | |
| ok dhartmei | |||
| 2003-01-20 | Remove unused argument from print_name() and fix two other nits | Camiel Dobbelaar | |
| found by lint. ok henning | |||
| 2003-01-19 | Simplify and KNF anchoropt processing. | Camiel Dobbelaar | |
| ok dhartmei henning | |||
| 2003-01-19 | The -s option to show anchors is 'A' or 'Anchors', not 'a' (which is used | Daniel Hartmeier | |
| to show 'all' information). | |||
| 2003-01-18 | Move freeaddrinfo() so it doesn't get called with an uninitialized | Daniel Hartmeier | |
| pointer (which segfaults). From Julien Bordet. | |||
| 2003-01-18 | Cleanup PF_OPT_NOACTION with tables. No changes on current behaviour, | Cedric Berger | |
| but do something useful when the user has no access to /dev/pf. Tested on i386, sparc64. ok henning@ | |||
| 2003-01-15 | what a bogus message | Theo de Raadt | |
| 2003-01-15 | Repair table "load" command. | Cedric Berger | |
| 2003-01-11 | whitespace KNF _AGAIN_ | Henning Brauer | |
| 2003-01-10 | Be a bit more strict when parsing options. | Cedric Berger | |
| Disallow "pfctl -s rabbits" and friends. ok dhartmei@ | |||
| 2003-01-09 | strlcpy return checks. | Daniel Hartmeier | |
| 2003-01-09 | use a verbose flag in pfctl_show_altq instead of carrying around opts from | Henning Brauer | |
| pfctl.c, and get rid of the #include "pfctl_parser.h" | |||
| 2003-01-09 | first attack at pfctl queue statistics, to be displayed with pfctl -vsq | Henning Brauer | |
| This commit is dedicated to the cute KLM girls who made part of this possible with giving me a seat in the plane where you actually have enough place to hack. Thanks, girls. ok markus@ dhartmei@ | |||
| 2003-01-09 | Add support for active/inactive tablesets in the kernel. | Cedric Berger | |
| Add table definition/initialisation construct in pfctl parser. Add and fix documentation for pf.4 and pf.conf.5. Tested on i386 and sparc64 by myself, macppc by Daniel. ok dhartmei@ | |||
| 2003-01-07 | the "default" alias for "normal" optimization in pf_hints is dead for some | Henning Brauer | |
| time now... catched by david krause | |||
| 2003-01-05 | don't whine about missing altq support in the kernel in the -q case | Henning Brauer | |
| ok dhartmei@ | |||
| 2003-01-05 | Move ifname from pf_addr to pf_addr_wrap, prepare pf_addr_wrap for table | Daniel Hartmeier | |
| name. ok henning@, mcbride@, cedric@ | |||
| 2003-01-04 | I do not know where this policy of "one .h file for every .c file" comes | Theo de Raadt | |
| from, but whoever thought of it is stupid. | |||
| 2003-01-03 | no need to close | Theo de Raadt | |
| 2003-01-03 | (a && (b & c)) | Theo de Raadt | |
| 2003-01-03 | simplify ioctl access | Theo de Raadt | |
| 2003-01-03 | Bring in userland code for accessing PF radix tables. | Cedric Berger | |
| ok dhartmei@ mcbride@ | |||
| 2003-01-01 | KNF | Henning Brauer | |
| 2003-01-01 | Remove skip step for action (scrub vs. non-scrub), as scrub rules are | Daniel Hartmeier | |
| stored in a separate list now. Regress tests still pass after sed "s/ a=end / /g", other skip steps are not affected. | |||
| 2003-01-01 | Extend two error messages, change one err() -> errx() where there's no | Daniel Hartmeier | |
| errno to translate. From Andrey Matveev. | |||
| 2002-12-31 | Match kernel changes splitting scrub rules into their own ruleset type. | Ryan Thomas McBride | |
| ok henning@ dhartmei@ | |||
| 2002-12-31 | err() doesn't return. from Andrey Matveev. | Daniel Hartmeier | |
| 2002-12-29 | Make pfctl -a name -sr/-sn show all rules of all rulesets within the | Daniel Hartmeier | |
| anchor. From discussion with Michael Lucas. ok henning@ | |||
| 2002-12-25 | Honour -R/-N and don't attempt to load other rules in those cases. | Daniel Hartmeier | |
| Found by Michael Lucas. | |||
| 2002-12-22 | Handle pool addresses in binat rules, ok mcbride@ | Daniel Hartmeier | |
| 2002-12-18 | Store translation rule pointer in state entries, so pfctl -vsn can print | Daniel Hartmeier | |
| evaluation, packet, byte and state entry counters similar to -vsr. Helps verify whether/how often translation rules are evaluated/matched. ok frantzen@, henning@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |