summaryrefslogtreecommitdiff
path: root/sbin/pfctl/pfctl_parser.c
AgeCommit message (Expand)Author
2002-12-30Change ipv6-icmp-type to icpm6-type. pf.conf files will need to be adjustedRyan Thomas McBride
2002-12-18Store translation rule pointer in state entries, so pfctl -vsn can printDaniel Hartmeier
2002-12-17Match merge of pf_nat/pf_binat/pf_rdr structs into pf_ruleRyan Thomas McBride
2002-12-13allow a second queue for higher priorized (currently: tos=lowdelay) packetsHenning Brauer
2002-12-07Support parameters in anchor rules. Allows conditional evaluation, like:Daniel Hartmeier
2002-12-07shadow cleanupHenning Brauer
2002-12-06let pfctl -v print out "block drop" instead of just "block" in the dropHenning Brauer
2002-12-06Introduce anchors and named rule sets, allowing to load additional ruleDaniel Hartmeier
2002-12-05one step further to "program output is valid program input" and the relatedHenning Brauer
2002-11-30move unmask back into pf_print_state.c where it was, and please keep it there...Michael Shalayeff
2002-11-28- Remove extra space before -> in print_rdrRyan Thomas McBride
2002-11-28- Adjust to match replacement of md5 with pf_hashRyan Thomas McBride
2002-11-23Cosmetic fixes for print_*() functions, so they match the old regressDaniel Hartmeier
2002-11-23fix parens "(" ")" when printingRyan Thomas McBride
2002-11-23KNFTheo de Raadt
2002-11-23Missing {}Daniel Hartmeier
2002-11-23check to make sure a list item exists before checking to see if the nextRyan Thomas McBride
2002-11-23missing prototype, remember to use sa_family_t for afRyan Thomas McBride
2002-11-23code to support loading of pf rules with multiple redirection addressesRyan Thomas McBride
2002-11-19minor cosmetics, space after "label %s", in case both label and queue areDaniel Hartmeier
2002-11-18KNFTheo de Raadt
2002-11-18altq and pf mergedHenning Brauer
2002-10-25- more sa_family_tCamiel Dobbelaar
2002-10-22More conversion of "int af" and "u_int8_t af" declarations and functionRyan Thomas McBride
2002-10-14Allow one to specify a netblock in a binat rule:Henning Brauer
2002-10-07set block-policy [drop|return]Henning Brauer
2002-10-07support a generic returnHenning Brauer
2002-10-07make return-icmp work for rules covering both v4 and v6Henning Brauer
2002-10-07Add 'reply-to' to filter rules, similar to route-to, but applying toDaniel Hartmeier
2002-10-05Allow filtering based on IP header's tos field.Daniel Hartmeier
2002-07-20properly split yacc and lex useTheo de Raadt
2002-07-15add support forHenning Brauer
2002-07-01KNFTheo de Raadt
2002-06-27repair formatting - the new "enabled since" format is longer than the oldHenning Brauer
2002-06-19"Enabled for Ss" -> "Enabled for D days HH:MM:SS", ok frantzen@Daniel Hartmeier
2002-06-11split the grammar of scrub(fragcache) into scrub ... 'fragment reassemble',Mike Frantzen
2002-06-11SCRUB(fragcache) to do gap tracking and overlap pruning of IPv4 fragmentsMike Frantzen
2002-06-11Make NAT proxy port range configurable per rule, for instance privilegedDaniel Hartmeier
2002-06-11rework pfctl statistics displayHenning Brauer
2002-06-10Allow ports to be specified in nat rules, useful later on for individualDaniel Hartmeier
2002-06-09Make pf_nat.saddr/daddr a pf_rule_addr instead of pf_addr_wrap, so itDaniel Hartmeier
2002-06-09spaced out developers...Theo de Raadt
2002-06-08Change remaining read-only lookup tables to const, suggestion drahn@Daniel Hartmeier
2002-06-08pf_timeouts is shared between pfctl and authpf, put it in the shared file.Dale Rahn
2002-06-08Make state timeouts configurable per rule, likeDaniel Hartmeier
2002-06-07add the possibility to configure a TTL while return-rstPhilipp Buehler
2002-06-07Add "(max <number>)" option for "keep/modulate state" to limit the numberDaniel Hartmeier
2002-06-07minor KNF while I'm hereHenning Brauer
2002-06-06split out the pf_state printing functions to be used elsewhere, no functional...Michael Shalayeff
2002-06-01ECN flag support for pf. Committed in consultation with Daniel.Hugh Graham
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-28 01:30:02 +0000