| Age | Commit message (Expand) | Author |
|---|
| 2005-01-05 | Modify pfctl behaviour so that 'set ...' options are no longer "sticky", ie. | Ryan Thomas McBride |
| 2005-01-03 | don't merge a rule's source address into a table if we're already trying to | Mike Frantzen |
| 2004-12-29 | Print 'set fingerprints' correctly when parsing verbosely. | Ryan Thomas McBride |
| 2004-12-29 | Make sure that fingerprint_count gets reset to 0 correctly when we flush | Ryan Thomas McBride |
| 2004-12-29 | change last commit so that the test for PF_OPT_NOACTION is actually in | Dan Harnett |
| 2004-12-29 | don't clear interface flags if '-n' option was given. | Dan Harnett |
| 2004-12-29 | be quiet about resetting the interface flags omn ruleset load, only | Henning Brauer |
| 2004-12-28 | reset skip interface flags on reloads and for -Fall | Henning Brauer |
| 2004-12-27 | unbreak tree | Theo de Raadt |
| 2004-12-27 | reset skip interface flags on reloads and for -Fall | Henning Brauer |
| 2004-12-23 | set rule_flag PFRULE_SRCTRACK when setting srctrack, found by camield@ | Daniel Hartmeier |
| 2004-12-22 | Introduce 'set skip on <ifspec>' to support a list of interfaces where no | Daniel Hartmeier |
| 2004-12-19 | use strchr instead of index | Theo de Raadt |
| 2004-12-15 | missing free()s; with pat | Henning Brauer |
| 2004-12-14 | &&/|| inversion would try to merge IP addresses with non-addresses into a | Mike Frantzen |
| 2004-12-14 | add two warn() calls to make sure a warning message gets printed if one of | Mike Frantzen |
| 2004-12-13 | sync authpf anchor syntax; | Jason McIntyre |
| 2004-12-10 | allow pf to filter on route labels | Henning Brauer |
| 2004-12-08 | Add "'overload' requires 'max-src-conn' or 'max-src-conn-rate'" sanity check, | Ryan Thomas McBride |
| 2004-12-07 | re-commit mcbride@'s 'flush global', this time without the breakage in | Daniel Hartmeier |
| 2004-12-07 | real backout | Theo de Raadt |
| 2004-12-07 | oops, incomplete backout | Theo de Raadt |
| 2004-12-07 | tree does not compile, spotted by dlg (not obvious how to fix) | Theo de Raadt |
| 2004-12-07 | Change the default for 'overload <table> flush' to flush only states from the | Ryan Thomas McBride |
| 2004-12-05 | initialize $$->tail and $$->next for MAXSRCCONNRATE | Daniel Hartmeier |
| 2004-12-04 | Userland support for limiting open tcp connections per source. eg: | Ryan Thomas McBride |
| 2004-11-09 | do not assume entries in pf_timeouts[] are ordererd like PFTM_* in pfvar.h | Daniel Hartmeier |
| 2004-09-30 | print invalid hostmask when refusing it, ok deraadt@ | Daniel Hartmeier |
| 2004-09-27 | anchor rules referencing anchors using slashes may need quotes. | Jared Yanovich |
| 2004-09-21 | Implement "no scrub" to allow exclusion of specific traffic from scrub rules. | Aaron Campbell |
| 2004-08-26 | sync usage for -a | Jared Yanovich |
| 2004-08-26 | update w.r.t. recursive anchors | Jared Yanovich |
| 2004-08-08 | spacing | Theo de Raadt |
| 2004-07-23 | - make SYNOPSIS and usage() clear that -t precedes -T; | Jason McIntyre |
| 2004-07-19 | print the correct labels when displaying timeouts with pfctl (eg, pfctl -st). | David Gwynne |
| 2004-07-16 | 'pfctl -o' ruleset optimizer that doesnt change the meaning of the final ruleset | Mike Frantzen |
| 2004-06-29 | remove cedric's bogus interface name verification code. | Henning Brauer |
| 2004-06-29 | convert a few memcpy()s to strlcpy() so we don't copy uninitialized junk into | Mike Frantzen |
| 2004-06-26 | add back PF_INOUT, fixes reassemble tcp | David Krause |
| 2004-06-25 | repair tree nanobreak by the nanobum | Theo de Raadt |
| 2004-06-21 | Update manpage to reflect changes in anchor naming | Mathieu Sauve-Frankel |
| 2004-06-14 | Remove unused functions. ok beck@ henning@ | Cedric Berger |
| 2004-06-12 | Fix table add/replace commands with securelevel=2. | Cedric Berger |
| 2004-06-10 | Work around an uncovered gcc problem on m88k until it receives proper cure. | Miod Vallat |
| 2004-06-10 | rename struct pf_rule_addr member 'not' to 'neg', as 'not' is a reserved | Daniel Hartmeier |
| 2004-05-30 | various improvements and fixes from jared yanovich; | Jason McIntyre |
| 2004-05-27 | plug memleak in error path | Henning Brauer |
| 2004-05-21 | Use '/' instead of ':' as separator for anchor path components. Note that | Daniel Hartmeier |
| 2004-05-20 | bzero() ifr before use, From: Andrey Matveev <andrushock@korovino.net> | Henning Brauer |
| 2004-05-19 | Allow recursive anchors (anchors within anchors, up to 64 | Daniel Hartmeier |
