summaryrefslogtreecommitdiff
path: root/sys/net
AgeCommit message (Expand)Author
2002-06-15unnecessary () on castJason Wright
2002-06-15Transparent IPsec processing on the bridge; for now works only withAngelos D. Keromytis
2002-06-14spelling; from Brian Poole <raj@cerias.purdue.edu>Todd T. Fries
2002-06-12import of netbsd's vlan multicast codeChris Cappuccio
2002-06-11split the grammar of scrub(fragcache) into scrub ... 'fragment reassemble',Mike Frantzen
2002-06-11sprinkle splasserts where function comments tell us to.Artur Grabowski
2002-06-11splassert(IPL_NET) where comment says that we should.Artur Grabowski
2002-06-11splassert(IPL_SOFTNET) where comment indicate that.Artur Grabowski
2002-06-11KNF (tabs, return (x))Daniel Hartmeier
2002-06-11enumerate UDP and OTHER state levels (similar to tcp_fsm.h)Mike Frantzen
2002-06-11SCRUB(fragcache) to do gap tracking and overlap pruning of IPv4 fragmentsMike Frantzen
2002-06-11Make NAT proxy port range configurable per rule, for instance privilegedDaniel Hartmeier
2002-06-11Don't panic when pf_insert_state() detects an attempt to insert aDaniel Hartmeier
2002-06-11KNF return x -> return (x), ok frantzen@Daniel Hartmeier
2002-06-11rework pfctl statistics displayHenning Brauer
2002-06-10- stop abusing IFF_UP.Jun-ichiro itojun Hagino
2002-06-10Split common code which converts a multicast address to an ethernetChris Cappuccio
2002-06-10Allow ports to be specified in nat rules, useful later on for individualDaniel Hartmeier
2002-06-10#include <sys/timeout.h>, from Chris KuetheDaniel Hartmeier
2002-06-10easy error checks first.Jun-ichiro itojun Hagino
2002-06-10Don't #include <sys/malloc.h>Daniel Hartmeier
2002-06-10prevent mbuf leak on icmp_do_error() failure.Jun-ichiro itojun Hagino
2002-06-09Export compression info only if the SA (xform) is initialized.Angelos D. Keromytis
2002-06-09don't need device.hJason Wright
2002-06-09Make pf_nat.saddr/daddr a pf_rule_addr instead of pf_addr_wrap, so itDaniel Hartmeier
2002-06-09if_addrlen need not be 4, set to 0. From: Martin Husemann <martin@duskware.de>Jun-ichiro itojun Hagino
2002-06-09make sure to bzero sockaddr_inJun-ichiro itojun Hagino
2002-06-09support SIO*PHYADDR, so that we can configure outer address with ifconfig(8)Jun-ichiro itojun Hagino
2002-06-09reapply patch from jasoni@ for ICMP6_PACKET_TOO_BIGPhilipp Buehler
2002-06-09reapply patch from jasoni@ for pf_route[6]Philipp Buehler
2002-06-09split ioctl functions out of pf.c into pf_ioctl.cPhilipp Buehler
2002-06-09no need to log() on outgoing packet on !IFF_UP caseJun-ichiro itojun Hagino
2002-06-09force FDDI link MTU be FDDI IPv4 MTU. PR 2714. jason okJun-ichiro itojun Hagino
2002-06-09This commit commit commit without testing has to STOP. BE CAREFUL.Theo de Raadt
2002-06-09uncommit, broken (by corrupt diff)Philipp Buehler
2002-06-09new file sys/net/pf_ioctl.cPhilipp Buehler
2002-06-09increment ifs6_in_toobig if ipv6 packet too large for interface injasoni
2002-06-09in pf_route{6}, if too large for outgoing interface and not allowed tojasoni
2002-06-08use consistent style in function declarationsjasoni
2002-06-08If a IP packet is too large for the outgoing interface and DF is set,jasoni
2002-06-08splnet -> splsoftnet where appropriateJun-ichiro itojun Hagino
2002-06-08more splnet protection to dom_ifattachJun-ichiro itojun Hagino
2002-06-08protect dom_ifattach by splnetJun-ichiro itojun Hagino
2002-06-08keep the count of fragments consistent when we have to do a fail safe dropMike Frantzen
2002-06-08Make state timeouts configurable per rule, likeDaniel Hartmeier
2002-06-07Detect wrap-around of timeout and set it to its maximum value. HackyAngelos D. Keromytis
2002-06-07increase rule label length from 32 to 64 charsHenning Brauer
2002-06-07add the possibility to configure a TTL while return-rstPhilipp Buehler
2002-06-07in pf_route{6}, do not pass thru pf_test again if the outgoingjasoni
2002-06-07Add "(max <number>)" option for "keep/modulate state" to limit the numberDaniel Hartmeier
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-22 19:21:07 +0000