Age | Commit message (Expand) | Author |
2002-12-06 | Introduce anchors and named rule sets, allowing to load additional rule | Daniel Hartmeier |
2002-11-23 | kernel code to allow multiple redirection addresses to be specified for nat | Ryan Thomas McBride |
2002-10-29 | keep all pflog goodies in pflog sources, avoids code duplications; okski fran... | Michael Shalayeff |
2002-10-22 | Convert "int af" and "u_int8_t af" declarations and function arguments | Ryan Thomas McBride |
2002-10-07 | -Wsign-compare clean | Daniel Hartmeier |
2002-06-28 | KNF | Theo de Raadt |
2002-06-11 | split the grammar of scrub(fragcache) into scrub ... 'fragment reassemble', | Mike Frantzen |
2002-06-11 | KNF (tabs, return (x)) | Daniel Hartmeier |
2002-06-11 | SCRUB(fragcache) to do gap tracking and overlap pruning of IPv4 fragments | Mike Frantzen |
2002-06-10 | Don't #include <sys/malloc.h> | Daniel Hartmeier |
2002-06-08 | keep the count of fragments consistent when we have to do a fail safe drop | Mike Frantzen |
2002-06-07 | switch from AVL tree's to herr Provos' red-black trees | Mike Frantzen |
2002-05-21 | Junk gcc's deprecated __FUNCTION__. Use standard __func__ instead. | Marc Espie |
2002-05-19 | KNF again | Theo de Raadt |
2002-05-09 | Add a max-mss option to the scrub rule which will enforce a maximum mss | jasoni |
2002-05-06 | typo in comment | jasoni |
2002-04-24 | Add dynamic (in-kernel) interface name -> address translation. Instead of | Daniel Hartmeier |
2002-04-20 | Move normalization messages from log level 'urgent' to 'misc'. | Daniel Hartmeier |
2002-04-20 | All calls to pool_get(9) should use PR_xx flags, not M_xx. | Federico G. Schwindt |
2002-03-27 | implement a "no-route" keyword. | Michael Shalayeff |
2002-02-26 | Add optional pool memory hard limits, mainly as temporary solution | Daniel Hartmeier |
2002-02-25 | Change timeouts from microtime() to time.tv_sec like in pf.c, | Daniel Hartmeier |
2002-02-14 | Add skip steps for rule action (pass/block vs. scrub) and direction | Daniel Hartmeier |
2002-01-23 | Pool deals fairly well with physical memory shortage, but it doesn't deal | Artur Grabowski |
2001-12-03 | reason int -> u_short. From Mike Pechkin. | Daniel Hartmeier |
2001-11-06 | Use #defines for skip step values. From dgregor@net.ohio-state.edu. | Daniel Hartmeier |
2001-10-17 | make sure we use same key for removal (AF_INET was missing), ok deraadt@, dha... | Markus Friedl |
2001-10-07 | fixes pr/2105 | Niels Provos |
2001-09-15 | Don't use m_pkthdr.rcvif in pflog_packet(), it doesn't work for outgoing | Daniel Hartmeier |
2001-09-15 | IPv6 support from Ryan McBride (mcbride@countersiege.com) | Mike Frantzen |
2001-09-08 | initialize variable and more careful bounts checking; okay frantzen@ | Niels Provos |
2001-09-06 | Reflect skip step changes. Spotted by Ryan McBride. | Daniel Hartmeier |
2001-09-04 | #define empty PFLOG_PACKET correctly (no side effects). Closes PR2044. | Daniel Hartmeier |
2001-08-31 | Forgot to commit frag expire tuning before | Mike Frantzen |
2001-08-11 | Add support for ICMP errors referring to ICMP queries/replies. Fixes | Daniel Hartmeier |
2001-08-02 | KNF | Theo de Raadt |
2001-08-01 | stateless tcp normalization along the lines of the normalization paper by | Niels Provos |
2001-07-17 | support min-ttl, okay dhartmei@ | Niels Provos |
2001-07-17 | normalize ip_off, make IP_DF stripping optional, return rst is a flag now. | Niels Provos |
2001-07-17 | ip normalization code | Niels Provos |