summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Collapse)Author
2008-05-16no need to quote the argument to .Nd, now that it's nice and short;Jason McIntyre
2008-05-16There is not really a network address translation device.Marco Pfatschbacher
Remove it from the name section. OK mcbride, henning
2008-05-13Disable more wscons bits on socppc.Miod Vallat
2008-05-13Make socppc on par with macppc for now.Miod Vallat
2008-05-13fix an error in the example partition table; from Adam PattersonJason McIntyre
ok nick
2008-05-12Error out with usage line if additional arguments are given after thePierre-Yves Ritschard
option parsing. Found out the hard way by jdixon on ifstated. ok sobrado@, jdixon@, millert@
2008-05-09Add support to kill states by rule label or state id.Marco Pfatschbacher
Fix printing of the state id in pfctl -ss -vv. Remove the psnk_af hack to return the number of killed states. OK markus, beck. "I like it" henning, deraadt. Manpage help from jmc.
2008-05-09Replace a crockpot of semi-cloned productions for handling portTheo de Raadt
numbers with one, and fix a few other bugs along the way ok mpf henning
2008-05-09using the rtm_priority to translate priority number into nice name isHenning Brauer
working much better than using rtm_version for that
2008-05-09on route get, display the priority and a cleartext name (like, "bgp" for 48)Henning Brauer
claudio ok
2008-05-09convert port byte order in the production; add port keyword; ok deraadt@Markus Friedl
2008-05-09- don't give up when the link is not available on startup: dhclientReyk Floeter
goes to background and listens on the routing socket for link to come up before it retries. - renew the lease whenever the link was lost and becomes active again. - listen for link state changes on non-ethernet devices like wireless, the link state becomes active when the wireless has been associated to the AP and becomes active. this helps to automatically renew the lease when the user is roaming. ok beck@, deraadt@
2008-05-09divert packets to local socket without modifying the ip header;Markus Friedl
makes transparent proxies much easier; ok beck@, feedback claudio@
2008-05-08add missing header for exitCharles Longeau
ok damien@
2008-05-08make "to any" optional in binat, or well, the implied default.Theo de Raadt
requested by reyk, ok reyk mpf
2008-05-08Loosen grammer to permit any number of newlines within most kinds of { }Theo de Raadt
blocks, as requested by reyk; ok reyk mpf henning
2008-05-08spaceClaudio Jeker
2008-05-08Fix fallout from the route priority thing.Esben Norby
Don't display out label interface in the second column. ok claudio@
2008-05-08Don't display the outlabel and interface for POP operations.Esben Norby
ok claudio@
2008-05-08Bring back (in a more yacc friendly way) support for setting variablesTheo de Raadt
to a sequence of strings and numbers, which get folded together into one string (and later, when used, is re-lexed) ok mpf
2008-05-07Remove references to routed.Claudio Jeker
2008-05-07RIP routed.Claudio Jeker
You were a nice thing in the 4.2BSD times but now it is time for you to go. Superseded by the shiny privseped ripd that does not have the evil habit to use kernel internals in userland. OK everybody in the onsen 'cause it unbreaks the tree
2008-05-07unlink routed. unbreaks the tree (it is obvious claudio has it removed inHenning Brauer
his tree already)
2008-05-07do not assume PF_INOUT is 0 in the enum; ok mcbrideTheo de Raadt
2008-05-07put the mpe bits in the right place;Jason McIntyre
2008-05-07scrub packets based on tags; ok henningMarkus Friedl
2008-05-07Document -priority. looks good norby@Claudio Jeker
2008-05-07allow setting TOS with scrub; ok mcbride, claudioMarkus Friedl
2008-05-07Add support to show and modify rtm_priority.Claudio Jeker
2008-05-07Document the new mpe interface and explain the appropriate commandsPierre-Yves Ritschard
in ifconfig(8). The man pages reference mpls(8) which doesn't exist, but claudio promises it will follow shortly. a thumb up and ok from claudio@
2008-05-06bring in the mpe interface - for ``MPLS Provider Edge'' - this is a workPierre-Yves Ritschard
in progress and some bits need to be cleaned up but will be in-tree for convenience. ok claudio@, norby@
2008-05-06Yet another missing RTM_VERSION check. Found by norby@. OK henning@Claudio Jeker
2008-05-06print IN6_IFF_AUTOCONF flag, too; ok henning some time agoMarkus Friedl
2008-05-06Document new state creation counter for pfctl -s labelsMarco Pfatschbacher
2008-05-06Add code to specify the mpls label switching operation. OK norby@Claudio Jeker
2008-05-06Add a counter to record how many states have been created by a rule.Marco Pfatschbacher
It shows up in pfctl verbose mode and in the 7th field of the labels output. Also remove the label printing for scrub rules, as they do not support labels. OK dhartmei@ (on an earlier version), henning@, mcbride@
2008-05-06Labels in the sockaddr are stored like on the wire so shift and byte swapClaudio Jeker
them. This makes route lookups work again. OK norby@
2008-05-06regenClaudio Jeker
2008-05-06Add pop, push and swap options used by MPLS. OK norby@Claudio Jeker
2008-05-06Minor cleanup. OK norby@Claudio Jeker
2008-05-03remove unused functionsCharles Longeau
from tobias@ ok ray@ tobias@
2008-04-30Correct MPLS output of route -n show.Esben Norby
ok claudio@
2008-04-28Teach sysctl about mpls.Esben Norby
Claudio did all the code, I'm just comitting it... ok claudio@ laurent@ dlg@
2008-04-28It is now possible to enter static MPLS routes into the kernel.Esben Norby
It is still not possible to set the desired opration for an entry. ok claudio@ laurent@ dlg@
2008-04-21optnl is a crutch for those who do not understand yacc. itTheo de Raadt
leads to a variety of errors; ok mcbride
2008-04-18remove wparekey from the list of 802.11 ifconfig options.Damien Bergamini
pointed out by drahn@
2008-04-17remove a word i misinterpreted;Jason McIntyre
2008-04-16mkfifo makes fifos, not directories; from Ben CalvertJason McIntyre
while here, make the description of -m more consistent for mkdir, mkfifo, and mknod. add a touch of .Ex for mkdir too.
2008-04-16- wpa-psk is section 8, not 1Jason McIntyre
- one more passphrase tweak
2008-04-16Kernel implementation of the 4-way handshake and group-keyDamien Bergamini
handshake protocols (both supplicant and authenticator state machines) as defined in the IEEE 802.11i standard. Software implementation of the TKIP (Temporal Key Integrity Protocol) and CCMP (CTR with CBC-MAC Protocol) protocols. This diff doesn't implement any of the 802.1X authentication protocols and thus only PSK authentication (using pre-shared keys) is currently supported. In concrete terms, this adds support for WPA-PSK and WPA2-PSK protocols, both in station and hostap modes. The following drivers are marked as WPA-capable and should work: bwi(4), malo(4), ral(4), iwn(4), wpi(4), ural(4), rum(4), upgt(4), and zyd(4) The following options have been added to ifconfig(8): wpa, wpapsk, wpaprotos, wpaakms, wpaciphers, wpagroupcipher wpa-psk(8) can be used to generate keys from passphrases. tested by many@ ok deraadt@