summaryrefslogtreecommitdiff
path: root/sys/net
AgeCommit message (Expand)Author
2001-06-28forgot to init fr_timeoutNiels Provos
2001-06-28first stab at packet normalization. includes full ip reassembly.Niels Provos
2001-06-28Disallow filter modification when the system is "highly secure".Hugh Graham
2001-06-27change pf_tree_key->addr[2] from u_int32_t to struct in_addr for NielsDaniel Hartmeier
2001-06-27in rdr rules, let port 0 be the port wildcard; ok dhartmei@jasoni
2001-06-27change pf_tree_node->state to void *, so Niels can use a tree for fragment ha...Daniel Hartmeier
2001-06-27use proper icmp defineNiels Provos
2001-06-27add -z flag for zeroing statistics. -s status no longer resets anythingKjell Wooding
2001-06-27add microtime, which seems to have gotten lost.Kjell Wooding
2001-06-27IPFILTER->NPFAngelos D. Keromytis
2001-06-27introduce the ALTQ queue macros into sys/net files.Kenjiro Cho
2001-06-27ALTQ base modifications to the kernel.Kenjiro Cho
2001-06-27Don't bzero() after doing a TAILQ_INIT()...Angelos D. Keromytis
2001-06-27Initialize acquire state list in newly allocated policy.Angelos D. Keromytis
2001-06-27state counter changesTheo de Raadt
2001-06-27big KNFTheo de Raadt
2001-06-27remove unneccessary check in ioctlTheo de Raadt
2001-06-27Get rid of M_COPY_* macros; either use M_MOVE_* or M_DUP_*, dependingAngelos D. Keromytis
2001-06-27typoDug Song
2001-06-27for other protocols, keep correct track of match statsNiels Provos
2001-06-27handle non-TCP/UDP/ICMP protocolsDug Song
2001-06-27remove print_ip, its unusedNiels Provos
2001-06-27clean up TAILQ usageNiels Provos
2001-06-27KNFNiels Provos
2001-06-27KNFNiels Provos
2001-06-27only set reason code match if there was a rule that we matchedNiels Provos
2001-06-27Don't cache packets that hit policies -- we'll do that at the PCB forAngelos D. Keromytis
2001-06-26update match countsNiels Provos
2001-06-26name comparison operatorsDug Song
2001-06-26fix PFRES_MAX handlingTheo de Raadt
2001-06-26array of counters indexed by reason codesTheo de Raadt
2001-06-26rules have numbers now, use them. add two spl locks.Daniel Hartmeier
2001-06-26clean up copyrightNiels Provos
2001-06-26rule nr is in rule nowNiels Provos
2001-06-26add rule nr for NielsDaniel Hartmeier
2001-06-26pass rule to logging for state matchesNiels Provos
2001-06-26log-all causes state matches to log packets to pflogNiels Provos
2001-06-26add rule pointer and log option to statesDaniel Hartmeier
2001-06-26get rid of another printfNiels Provos
2001-06-26use reasons in pull_hdr, default log if pull_hdr fails. okay deraadt@Niels Provos
2001-06-26Use pool(9) for IPsec policy structures.Angelos D. Keromytis
2001-06-26Keep the PFKEY sequence number at the TDB, plus a little bit of KNFAngelos D. Keromytis
2001-06-26no longer pass around **mTheo de Raadt
2001-06-26deal with NULL rule being passed to loggingNiels Provos
2001-06-26fix logging. the ip header is contained in the first mbuf. itojun and me.Niels Provos
2001-06-26forgot htonsNiels Provos
2001-06-26add a subreason to the link header to allow us to determine why a packet wasNiels Provos
2001-06-26allow 0.0.0.0/x in rulesPeter Stromberg
2001-06-26more suitable error values when DIOCSTART/STOP fail; peters@telia.netDaniel Hartmeier
2001-06-26no // commentsMarkus Friedl
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-16 11:26:48 +0000