summaryrefslogtreecommitdiff
path: root/sys/net/pf.c
AgeCommit message (Expand)Author
2004-04-17when the input queue congestion flag is set stop evaluating the rulesetHenning Brauer
2004-04-05make pftag ** (pass pointer by reference), otherwise it's never updated.Daniel Hartmeier
2004-03-26Properly m_copyback() modified TCP sequence number after demodulationDaniel Hartmeier
2004-03-25Fix icmp checksum when sequence number modlation is being used.Ryan Thomas McBride
2004-03-22Support for best effort bulk transfers of states when pfsync syncif isRyan Thomas McBride
2004-03-11Don't call pf_src_tree_remove_state() on error in pf_insert_state(),Ryan Thomas McBride
2004-03-09KNF, ok cedric@ deraadt@Ryan Thomas McBride
2004-02-24Remove redundant logging from pf_test_other().Ryan Thomas McBride
2004-02-24KNFRyan Thomas McBride
2004-02-20Make pfsync deal with clearing states bound to a group or interface (egRyan Thomas McBride
2004-02-19the 2nd round of the qid assignment change.Kenjiro Cho
2004-02-10KNFDaniel Hartmeier
2004-02-10plug mbuf leak (ip_fragment() always free mbuf on error). tested by cedric,Jun-ichiro itojun Hagino
2004-02-10KNFHenning Brauer
2004-02-04Fix a number of bugs with setting pool limits which I introduced withRyan Thomas McBride
2004-02-02Do not evaluate pfi_index2kif[ifp->if_index] if PF is disabled.Cedric Berger
2004-01-27drop packet if kif == NULL; ok henning deraadtMarkus Friedl
2004-01-06Drop UDP packets with destination port 0, or zero or oversized payloadDaniel Hartmeier
2004-01-050 -> (void *)NULL for last argument of icmp_error(), which is of typeDaniel Hartmeier
2004-01-04better macro name (IF_LOCKED -> BOUND_IFACE). from markus.Cedric Berger
2003-12-31spacing. note this, cedricTheo de Raadt
2003-12-31Many improvements to the handling of interfaces in PF.Cedric Berger
2003-12-19i wrote much of these, assert my copyrightHenning Brauer
2003-12-18resolve compiler warnings, from Pyun YongHyeon, ok cedric@, mcbride@Daniel Hartmeier
2003-12-15ryan left a few for me ;-)Henning Brauer
2003-12-15Fix whitespace screwups before henning wakes up.Ryan Thomas McBride
2003-12-15Add initial support for pf state synchronization over the network.Ryan Thomas McBride
2003-12-15Add support to track stateful connections by source ip. This allows usRyan Thomas McBride
2003-12-12Move PF interface code to new net/pf_if.cCedric Berger
2003-12-11Fix PR3587 and other related problems with NAT and table stats.Cedric Berger
2003-12-08Mbuf tag tcp and udp packets which are translated to localhost, andRyan Thomas McBride
2003-11-28More pf stats fixups:Ryan Thomas McBride
2003-11-21Remove redundant arguments to pf_sockaddr_lookup(); proto and af are alreadyRyan Thomas McBride
2003-11-21Remove unused "ipoff" arguments.Ryan Thomas McBride
2003-11-16pf_test() and pf_test6() consistency:Ryan Thomas McBride
2003-11-09remove stale forward declarationDaniel Hartmeier
2003-11-04add in(6)_pcblookup_listen() and replace all calls to in_pcblookup()Markus Friedl
2003-11-03pf_route() can change output NIC, so we need to check its capabilities.Cedric Berger
2003-10-31Remove remenants of pf_tree stuff that I missed.Ryan Thomas McBride
2003-10-29fix binat for incoming connections when a netblock (not just a singleDaniel Hartmeier
2003-10-25Build state search indexes directly on pf_state instead of pf_tree_node.Ryan Thomas McBride
2003-10-10make sure pd is initialized before use (or byte counters may increaseDaniel Hartmeier
2003-10-02correct endian handling of ip->ip_off.Jun-ichiro itojun Hagino
2003-09-26Rearchitecture of the userland/kernel IOCTL interface for transactions.Cedric Berger
2003-09-26Move statistics counters from individual pf_test_<proto>() andRyan Thomas McBride
2003-09-24Remove state setup no-ops.Ryan Thomas McBride
2003-09-01KNFHenning Brauer
2003-09-01Make nat rule update the table counters when no filtering rule is used.Cedric Berger
2003-08-28fix "pfctl -vvsr" output for rules with tables inside anchors.Cedric Berger
2003-08-21Add Michal Zalewski's p0f v2 style passive OS fingerprinting to PF.Mike Frantzen
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-21 11:11:20 +0000