summaryrefslogtreecommitdiff
path: root/sbin
AgeCommit message (Expand)Author
2003-05-19print out the full netmask; don't just ignore the upper bits in the v4 caseHenning Brauer
2003-05-19reject invalid netmasks like 10.0.0.0/68, and fix up the netmask forHenning Brauer
2003-05-19all host() receivers have to test for NULLHenning Brauer
2003-05-19err out on obviously wrong netmasksHenning Brauer
2003-05-19if host() returns NULL, it is an error, so err the fuck out and don'tHenning Brauer
2003-05-19don't print altq en-/disabled - there's no point, you can't turn them onHenning Brauer
2003-05-19style consistencyHenning Brauer
2003-05-19Use a decaying average for smoother rate estimates.Camiel Dobbelaar
2003-05-18Add some path sanitation; only permit write operations to /tmp,Hakan Olsson
2003-05-18Style tweak.Hakan Olsson
2003-05-18Add a debug message to sa_reinit() to indicate when we renegotiateHakan Olsson
2003-05-18indent here in the same way as in -vsr for consistencyHenning Brauer
2003-05-18in the pfctl -vsr output (-vvsr/-gvvsr as well), indent instead of extraHenning Brauer
2003-05-18Forgot to remove a couple of debug messagesHakan Olsson
2003-05-18struct sockaddr is not large enough in itself to contain the addressHakan Olsson
2003-05-18More isakmpd privsep work. X509 private keys are now kept in the privilegedHakan Olsson
2003-05-18Sysdep for native Linux IPSec, 2.5 and later. From Thomas Walpuski, withHakan Olsson
2003-05-17Better return codes from mm_send_fd and mm_receive_fdHakan Olsson
2003-05-17Use log_error(), not log_fatal().Hakan Olsson
2003-05-17tweak;Jason McIntyre
2003-05-17Fix proxy related output.Daniel Hartmeier
2003-05-17A little bugfix. We want pfioc_states, not pfioc_state.Ryan Thomas McBride
2003-05-17support inverse matching on tags likeHenning Brauer
2003-05-16If the "Renegotiate-on-HUP" tag is defined in the [General] section, aHakan Olsson
2003-05-16TCP SYN proxy. Instead of 'keep state' or 'modulate state', one can useDaniel Hartmeier
2003-05-15make getifaddrs(3) a default, as all BSD has it by nowJun-ichiro itojun Hagino
2003-05-15properly complain about too long tagsHenning Brauer
2003-05-15Correct a two year old typo, which might actually makeHakan Olsson
2003-05-15Cleanup. Do not store the private key in either the exchange or sa structs.Hakan Olsson
2003-05-15Work around some OpenSSL BIO "features" to read the key correctly.Hakan Olsson
2003-05-15Proper exit of the monitor process.Hakan Olsson
2003-05-15wait() for the child processHakan Olsson
2003-05-15Start of privilege separation for isakmpd.Hakan Olsson
2003-05-15(c)Hakan Olsson
2003-05-14add scrub modifier "reassemble tcp" to turn on stateful TCP normalizationsMike Frantzen
2003-05-14properly terminate debug string (levels >=40)Kjell Wooding
2003-05-14Remove the .if/.endif stuff that gmake does not understand.Hakan Olsson
2003-05-14tagging on binatHenning Brauer
2003-05-14enabled tagging on rdr rulesHenning Brauer
2003-05-14Call the FreeS/WAN sysdep 'freeswan'. The 'linux' sysdep will be native Linux...Hakan Olsson
2003-05-14Default public key directory definition sanity.Hakan Olsson
2003-05-14Policy file default defined twice, kill the local copy.Hakan Olsson
2003-05-14Fix a typo (in unused code).Hakan Olsson
2003-05-14I did not test this enough. Unbreak.Hakan Olsson
2003-05-14pflogd now uses the new pflog link type. Trying to append to an existingCan Erkin Acar
2003-05-14Minor format string correctness.Chad Loder
2003-05-14The ramdac's hater club is proud to present new yet another SBus frameMiod Vallat
2003-05-14with tag/tagged given, only whine about missing keep state on pass rulesHenning Brauer
2003-05-14allow SCRUB rules to specify protocol again. broken sometime in the past.Mike Frantzen
2003-05-14tags on nat rules:Henning Brauer
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-26 20:17:04 +0000