summaryrefslogtreecommitdiff
path: root/sbin/pfctl/pfctl_parser.h
AgeCommit message (Expand)Author
2005-11-17for pfctl -f rules, open the file before resetting options. when openingDaniel Hartmeier
2005-10-13unused parametersHenning Brauer
2005-10-13dead definesHenning Brauer
2005-02-07KNF; ok henning@David Krause
2005-01-05Modify pfctl behaviour so that 'set ...' options are no longer "sticky", ie.Ryan Thomas McBride
2004-12-22Introduce 'set skip on <ifspec>' to support a list of interfaces where noDaniel Hartmeier
2004-07-16'pfctl -o' ruleset optimizer that doesnt change the meaning of the final rulesetMike Frantzen
2004-05-19Allow recursive anchors (anchors within anchors, up to 64Daniel Hartmeier
2004-04-14make antispoof work with dynamic addresses. ok dhartmei@ mcbride@Cedric Berger
2004-02-10KNFDaniel Hartmeier
2004-01-29Clean up 'pfctl -s all' output.Ryan Thomas McBride
2003-12-31Many improvements to the handling of interfaces in PF.Cedric Berger
2003-12-15Add initial support for pf state synchronization over the network.Ryan Thomas McBride
2003-12-15Add support to track stateful connections by source ip. This allows usRyan Thomas McBride
2003-11-14allow the debuglevel to be set from pf.conf (set debug)Henning Brauer
2003-09-26Rearchitecture of the userland/kernel IOCTL interface for transactions.Cedric Berger
2003-08-21Add Michal Zalewski's p0f v2 style passive OS fingerprinting to PF.Mike Frantzen
2003-07-31Make table tickets per-ruleset instead of global.Cedric Berger
2003-07-18Simplify handling of flags (-R, -N...). Remove PFCTL_FLAG_ALL.Cedric Berger
2003-07-11Better parsing and -v support for tables:Cedric Berger
2003-07-03Bye bye atexit(), bye bye globals...Cedric Berger
2003-07-03This patch finally cleanup pfctl_table.c. No more global buffer,Cedric Berger
2003-05-19reject invalid netmasks like 10.0.0.0/68, and fix up the netmask forHenning Brauer
2003-05-10support loading of anchors from within the main ruleset viaHenning Brauer
2003-04-30Allow tables to be loaded into anchors.Cedric Berger
2003-04-15pass down the unparsed queue opts (struct node_queue_opt) toHenning Brauer
2003-04-14let print_altq and print_queue take a struct node_queue_bw parameter insteadHenning Brauer
2003-04-13new struct node_hfsc_opts for, surprise, hfsc options. needed because theyHenning Brauer
2003-04-13pass down the struct node_queue_opts from the altqif/queuespec yacc targetsHenning Brauer
2003-04-13move the structs node_queue_bw and node_queue_opt to pfctl_parser.h.Henning Brauer
2003-04-05ease netmask handling a bitHenning Brauer
2003-04-03Simplify pfctl printing code.Cedric Berger
2003-03-27lotsa const char *Henning Brauer
2003-03-07don't include debugging output, namely, the result of teh skip stepsHenning Brauer
2003-02-18fix load option handling (-A, -N, -R) for options.Henning Brauer
2003-02-16cosmeticsHenning Brauer
2003-02-03remove loadopt global definition and cleanup a bit.Cedric Berger
2003-02-03fix a problem with queue definitions when load options (like -N etc) areHenning Brauer
2003-02-02there is no need to pass opts to parse_rules explicitely; it's passed asHenning Brauer
2003-02-02const'ify params for the host stuffHenning Brauer
2003-01-25Fix NOACTION with table statements.Cedric Berger
2003-01-25Permit initialisation of a table content from a file in pf.conf.Cedric Berger
2003-01-18Cleanup PF_OPT_NOACTION with tables. No changes on current behaviour,Cedric Berger
2003-01-14unified IP parser:Henning Brauer
2003-01-09Add support for active/inactive tablesets in the kernel.Cedric Berger
2003-01-04I do not know where this policy of "one .h file for every .c file" comesTheo de Raadt
2002-12-22Instead of inserting and removing rules at the top/bottom of the mainDaniel Hartmeier
2002-12-18Store translation rule pointer in state entries, so pfctl -vsn can printDaniel Hartmeier
2002-12-18Maintain separate pfioc_rule structures for each type of rule,Ryan Thomas McBride
2002-12-17Match merge of pf_nat/pf_binat/pf_rdr structs into pf_ruleRyan Thomas McBride