summaryrefslogtreecommitdiff
path: root/sbin/pfctl/pfctl.c
AgeCommit message (Expand)Author
2002-07-05allow unsetting the statusinterface viaHenning Brauer
2002-07-01KNFTheo de Raadt
2002-06-25move pfctl options -t, -m, -O and -l to pf.conf. These are set using theHenning Brauer
2002-06-14make the output of pfctl -k look nice againHenning Brauer
2002-06-12this stuff really belongs to stderr, not stdoutHenning Brauer
2002-06-11Typo in err()Kjell Wooding
2002-06-11nuke an unused parameter in pfctl_timeout. ok frantzen@Kjell Wooding
2002-06-11Add -N and -R options. When used in conjunction withKjell Wooding
2002-06-11sync usage() with realityHenning Brauer
2002-06-10Merge the NAT and rules files into a single rulefile. Rules must beKjell Wooding
2002-06-10some olde version piece crept into my diffski; pt out by dfa@Michael Shalayeff
2002-06-09use strchr() instead of index()Theo de Raadt
2002-06-08pf_timeouts is shared between pfctl and authpf, put it in the shared file.Dale Rahn
2002-06-08Make state timeouts configurable per rule, likeDaniel Hartmeier
2002-06-07Add "(max <number>)" option for "keep/modulate state" to limit the numberDaniel Hartmeier
2002-06-06split out the pf_state printing functions to be used elsewhere, no functional...Michael Shalayeff
2002-06-03Also print labels in 'pfctl -s all'. ok dhartmei@Kjell Wooding
2002-05-23tiny KNF, some malloc checks, etcTheo de Raadt
2002-05-19KNFTheo de Raadt
2002-05-19KNFTheo de Raadt
2002-05-19KNFTheo de Raadt
2002-05-19nicer usageTheo de Raadt
2002-04-24Add dynamic (in-kernel) interface name -> address translation. Instead ofDaniel Hartmeier
2002-04-01change return values back from EX_* to 0/1Daniel Hartmeier
2002-04-01style(9) improvements from Raymond M SchneiderDaniel Hartmeier
2002-03-28prototype pfctl_kill_states()Daniel Hartmeier
2002-03-26tidy up usage statement and sort headers. patch from dfa@solo.eeMike Frantzen
2002-03-25add -k option to shootdown all the state entries from the specified hostMike Frantzen
2002-03-11Add -r to reverse lookup addresses when displaying states.Daniel Hartmeier
2002-02-28Don't force /dev/pf to be opened read-write for pfctl -t/-m when valuesDaniel Hartmeier
2002-02-27Instead of printing useless @0 rule numbers from pfctl -vR, increase aDaniel Hartmeier
2002-02-26Add optional pool memory hard limits, mainly as temporary solutionDaniel Hartmeier
2002-01-09Add labels to rules. These are arbitrary names (not to be confused withDaniel Hartmeier
2002-01-06-x needs read-write access for DIOCSETDEBUG ioctlDaniel Hartmeier
2001-12-31only open device for writing if we gonna modify anythingMichael Shalayeff
2001-12-10Add stateful filtering for other (non-TCP/UDP/ICMP) protocol, based onDaniel Hartmeier
2001-10-04Honour -v flag when printing states, print only one line per state whenDaniel Hartmeier
2001-10-02Remove duplication from simultaneous commitsMike Frantzen
2001-10-02Typo fixes (thanks gwyllion@ace.ulyssis.org)Mike Frantzen
2001-10-02'pfctl -O foo' dumped core. A check was there, but didn't work.Daniel Hartmeier
2001-10-01print variable asignments only if -v is given. ok dhartmei/deraadtMarkus Friedl
2001-10-01Print error message when pfctl -N/-R can't open the specified fileDaniel Hartmeier
2001-09-30Selectable preset FSM optimizations for several network environments.Mike Frantzen
2001-09-22remove debug printfTheo de Raadt
2001-09-061:1 bidrectional NAT (binat); ok dhartmei@ and frantzen@jasoni
2001-08-28Bump state timeouts and allow tweaking them from pfctl.Mike Frantzen
2001-08-23for -s all, do not error out when the first ioctl failsTheo de Raadt
2001-08-19do not spin if no states are foundTheo de Raadt
2001-08-19Add per-rule byte counter, so mickey can do accounting. We're counting theDaniel Hartmeier
2001-08-19Print per-rule statistics when -v is used with -sr (show rules).Daniel Hartmeier
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-03 20:39:28 +0000