Age | Commit message (Expand) | Author |
2010-06-29 | Fix use after free. Found by regress tests. | Charles Longeau |
2010-06-28 | Clean up iterface stats handling: | Ryan Thomas McBride |
2010-06-25 | remove -m (merge). | Henning Brauer |
2010-05-16 | plug memory leak. `ps' was allocated with strdup(3), but on error path | zinovik |
2010-04-02 | Use a dedicated variable to prevent attempting to open multiple | Stuart Henderson |
2010-03-23 | oops - i obviously missed -r1.142; | Jason McIntyre |
2010-03-23 | remove -A, -O, -R and -T load | Henning Brauer |
2010-03-22 | Following diff fixes memory leak. `debug' is allocated via asprintf(3) so we | Theo de Raadt |
2010-03-18 | Fix rdr-to printing in pfctl -sr when reply-to is in use. | Stuart Henderson |
2010-01-18 | Convert pf debug logging to using log()/addlog(), a single standardised | Ryan Thomas McBride |
2010-01-13 | Move tokens before productions into more consistant places | Theo de Raadt |
2010-01-13 | repair a double-free suggested by parfait; ok mcbride | Theo de Raadt |
2010-01-13 | fix some leaks found by parfait | Jonathan Gray |
2010-01-13 | In some cases the netmask gets set to a full 128 bit mask even if no | Ryan Thomas McBride |
2010-01-13 | Allow /netmask notation in redir spec, fix the rest of the regress | Ryan Thomas McBride |
2010-01-12 | We actually have to keep the translate/route spec addresses around after | Ryan Thomas McBride |
2010-01-12 | Set roundrobin flag correctly, and don't treat a bare interface | Ryan Thomas McBride |
2010-01-12 | Only print route specs with @if notation if there is an IP address. | Ryan Thomas McBride |
2010-01-12 | Add restrictions to make @if illegal in outside of routing specs; | Ryan Thomas McBride |
2010-01-12 | Unbreak 10/8 and friends. | Ryan Thomas McBride |
2010-01-12 | Fix some issues in redir spec handling, discovered thanks to dlg testing | Ryan Thomas McBride |
2010-01-12 | Don't leak @if0 format routing host names, pointed out by claudio. | Ryan Thomas McBride |
2010-01-12 | First pass at removing the 'pf_pool' mechanism for translation and routing | Ryan Thomas McBride |
2010-01-10 | lex <=, >=, and != into a single token for correctness and to reduce the | Theo de Raadt |
2010-01-10 | In the non-optimized case, an address list containing "any" (ie. { any 10.0.0... | Theo de Raadt |
2009-12-24 | spelling fixes, from Brad Tilley; we will not fix src/sbin/dump/dump.h | Igor Sobrado |
2009-12-24 | add support to pf for filtering a packet by the interface it was received | David Gwynne |
2009-12-14 | fix sticky-address - by pretty much re-implementing it. still following | Henning Brauer |
2009-12-10 | plug some memory leaks; found by parfait, ok henning | Theo de Raadt |
2009-11-23 | since "nat/rdr pass" are history natpass can go | Henning Brauer |
2009-11-22 | cleanup after the NAT changes. we used to have multiple rulesets (scrub, | Henning Brauer |
2009-11-09 | A few more places to be updated for the route pool change. | Jonathan Gray |
2009-11-03 | rtables are stacked on rdomains (it is possible to have multiple routing | Claudio Jeker |
2009-10-28 | Add a dedicated pf pool for route options as suggested by henning, | Jonathan Gray |
2009-10-28 | route_host initializes the netmask to a /128 no matter what af is used so | Claudio Jeker |
2009-10-28 | Correct function name in err and errx. | Claudio Jeker |
2009-10-04 | Add (again) support for divert sockets. They allow you to: | Michele Marchetto |
2009-09-29 | sort usage(); | Jason McIntyre |
2009-09-28 | add -S and -L options to store and load the pf state table from a file. | David Gwynne |
2009-09-08 | I had not enough oks to commit this diff. | Michele Marchetto |
2009-09-08 | Add support for divert sockets. They allow you to: | Michele Marchetto |
2009-09-07 | implement binat-to as a macro-like rule: a rule using the new binat-to | Reyk Floeter |
2009-09-03 | remove -N from usage(); | Jason McIntyre |
2009-09-03 | this time i commit the right diff that was | Reyk Floeter |
2009-09-03 | fix two route-to vs. rdr-to conflicts. | Reyk Floeter |
2009-09-03 | remove NAT specific command line options | Peter Hessler |
2009-09-02 | all the new *-to options are part of the "filteropts" section at the | Reyk Floeter |
2009-09-01 | the diff theo calls me insanae for: | Henning Brauer |
2009-08-21 | remove the ``;'' at the end of INDENT() macro definition using | Alexandre Ratchov |
2009-07-28 | Bring back rev. 1.560: | Claudio Jeker |