Age | Commit message (Expand) | Author |
2003-05-10 | Pass ICMP error messages referring to non-TCP/UDP/ICMP packets statefully, | Daniel Hartmeier |
2003-05-10 | Support return-icmp for 'other' protocols (non-TCP/UDP/ICMP), for instance | Daniel Hartmeier |
2003-05-10 | Prepare pf_change_icmp() for parameter ip == NULL use. | Daniel Hartmeier |
2003-05-06 | Fix a bug that prevents rdr/binat (but not nat) from working for protocols | Daniel Hartmeier |
2003-05-06 | string cleaning; tedu ok | Theo de Raadt |
2003-05-03 | string fixes; tedu ok | Theo de Raadt |
2003-05-03 | just as a safety measure, set m_flags to 0 for mbufs allocated on stack. | Jun-ichiro itojun Hagino |
2003-05-01 | use "tokenbroadcastaddr" throughout the code for consistency. deraadt ok | Jun-ichiro itojun Hagino |
2003-04-30 | Allow tables to be loaded into anchors. | Cedric Berger |
2003-04-27 | Update the pfioc_table IOCTL structure. | Cedric Berger |
2003-04-25 | Fix nat proxy port allocation. In case a range was manually specified, | Daniel Hartmeier |
2003-04-23 | Move m_copyback() to uipc_mbuf where it makes some kinda sense; ok dhartmei | Jason Wright |
2003-04-18 | Add code to set the TUN_* flags for INET6 addresses too. This allows a | Jason Wright |
2003-04-11 | set/update the queue IDs on filter rules (qid and pqid) on | Henning Brauer |
2003-04-09 | KNF | Henning Brauer |
2003-04-09 | Change pf_state structure to point to both a rule and the anchor, | Cedric Berger |
2003-04-07 | Catch and refuse rules with invalid ICMP types (> 40), ok cedric@ | Daniel Hartmeier |
2003-04-05 | Stick pf_default_rule everytime a packet pass because of the | Cedric Berger |
2003-04-05 | Replace the timeout variables by the content of the timeout | Cedric Berger |
2003-04-05 | Cleanup by replacing a bunch of "(*rm)" by just "r" | Cedric Berger |
2003-04-04 | KNF | Theo de Raadt |
2003-04-03 | Back out my last change, which was incorrect or incomplete. | Cedric Berger |
2003-04-03 | Remove (state->rule.ptr != NULL) tests: this is always true now. | Cedric Berger |
2003-04-01 | When using bpf(4) in immediate mode, and using kevent(2) to receive | Artur Grabowski |
2003-03-31 | Protect tdb access w/ spltdb; Patrick Latifi | Todd C. Miller |
2003-03-31 | Only delete rule structure when no state refer to it. | Cedric Berger |
2003-03-25 | Missing splx(); Patrick Latifi | Todd C. Miller |
2003-03-24 | Tree patches from c.pascoe at itee dot uq dot edu dot au: | Jason Wright |
2003-03-21 | - Add missing "\n" to some pf_table.c printf() | Cedric Berger |
2003-03-14 | Correctly flag out radix_node entries with RNF_ROOT flag set: this is not | Cedric Berger |
2003-03-13 | Plug slow memory leak (radix_mask structure). | Cedric Berger |
2003-03-11 | forward 8021Q packets with vlan header if the destination interface has | Markus Friedl |
2003-03-11 | Missing break, unintentional fall-through. Found by Kimmo Mösö. | Daniel Hartmeier |
2003-03-09 | tighten the TCP state code in relation to a FIN before any server responses | Mike Frantzen |
2003-03-09 | use MGETHDR instead of MGET for the first mbuf. | Kenjiro Cho |
2003-03-05 | Small fixes after code review, mostly on error path. | Cedric Berger |
2003-03-04 | (really) support user/group rules with 'inet6' | Philipp Buehler |
2003-03-03 | Make "pfctl -ss" output easier to parse. NO TRAFFIC -> NO_TRAFFIC. | Cedric Berger |
2003-03-02 | Use priority queue for TCP ACKs that have no payload. Very useful on | Daniel Hartmeier |
2003-02-28 | splsoftnet() around rn_lookup() which is not thread-safe. | Cedric Berger |
2003-02-27 | make packet classification for altq work in the IPv6 case | Henning Brauer |
2003-02-27 | Repair IPv6 support for tables. | Cedric Berger |
2003-02-25 | - Handle src and dst comparisons correctly for binat so that it works | Ryan Thomas McBride |
2003-02-24 | SADB_X_CALG_MAX is supposed to be the highest numbered supported algorithm | Jason Wright |
2003-02-23 | typo in export_auth; ok ho@ | Markus Friedl |
2003-02-21 | Plug two mbuf leak on error bugs, one from dhartmei one from me. | Jason Wright |
2003-02-18 | Enforce min-ttl and random-id on inbound scrub as well as outbound. | Camiel Dobbelaar |
2003-02-17 | enqueue the copy that was just made, not the original (probably fixes kernel/... | Jason Wright |
2003-02-16 | KNF | Theo de Raadt |
2003-02-16 | KNF | Jason Wright |