| Age | Commit message (Expand) | Author |
|---|
| 2003-06-25 | add a pf_tagname field to ifbrlreq and a pf_tag field to ifbrlnode. | Henning Brauer |
| 2003-06-24 | in the ipv6 case, allow route-to to route to link-local addresses | Henning Brauer |
| 2003-06-24 | KNF | Henning Brauer |
| 2003-06-24 | recover code that requires exact match on rtm_change/lock (lost in netbsd 1.16). | Jun-ichiro itojun Hagino |
| 2003-06-23 | Don't remove anchor too early in table code, it makes PF use freed memory. | Cedric Berger |
| 2003-06-21 | count packets and bidirectionally on state entries, allowing for fine-grained | Damien Miller |
| 2003-06-20 | Add MSS support to the synproxy. The client's MSS is sent to the server, | Daniel Hartmeier |
| 2003-06-20 | Extend 'BAD ICMP' debug message, include icmp type/code and outer IP header | Daniel Hartmeier |
| 2003-06-18 | Do not panic on no memory available when allocating bufs, pass ENOBUFS | Henning Brauer |
| 2003-06-14 | Use source's window scaling factor (instead of destination's) when | Daniel Hartmeier |
| 2003-06-12 | in FIONREAD and FREAD, use IFQ_POLL instead of looking at if_snd.ifq_len / | Henning Brauer |
| 2003-06-10 | It would kind of help if the flags member was initialized, otherwise random | Daniel Hartmeier |
| 2003-06-09 | Attempt to resolve byte order confusion in nat code once and for all. | Ryan Thomas McBride |
| 2003-06-08 | Returns the correct array size. | Cedric Berger |
| 2003-06-08 | A table in an anchor creates a real anchor: pfctl -sA works. | Cedric Berger |
| 2003-06-03 | move some prototypes to pfvar.h. needed soon. | Henning Brauer |
| 2003-06-03 | provide pf_tag2tagname which is the reverse of pf_tagname2tag. needed soon. | Henning Brauer |
| 2003-06-02 | Remove the advertising clause in the UCB license which Berkeley | Todd C. Miller |
| 2003-06-02 | nuke clause 3 & 4 | Jason Wright |
| 2003-05-30 | KNF & ANSI, jason agrees | Henning Brauer |
| 2003-05-30 | o the timeout is int, not u_int32_t | Henning Brauer |
| 2003-05-24 | Unused variable. | Cedric Berger |
| 2003-05-18 | speed hack: delay fetching the mbuf tag until we really need it (hit a | Henning Brauer |
| 2003-05-18 | Merge pf_send_ack() and _send_syn() into a generic _send_tcp(). | Daniel Hartmeier |
| 2003-05-17 | Correct two comment typos. | Daniel Hartmeier |
| 2003-05-17 | With rdr we want the source IP from the packet, not the source IP from | Ryan Thomas McBride |
| 2003-05-17 | allow inverse matching on tags | Henning Brauer |
| 2003-05-17 | Add an 'action' code that allows the SYN proxy to swallow/drop a packet | Daniel Hartmeier |
| 2003-05-16 | TCP SYN proxy. Instead of 'keep state' or 'modulate state', one can use | Daniel Hartmeier |
| 2003-05-14 | - modulate TCP Timestamps so they can't be used to detect NAT and to preclude | Mike Frantzen |
| 2003-05-14 | tag on each matching rule, not just the last one. | Henning Brauer |
| 2003-05-14 | unifdef __FreeBSD__ and stuff. markus ok | Jun-ichiro itojun Hagino |
| 2003-05-14 | Use official (from pcap people) link type for pflog. | Can Erkin Acar |
| 2003-05-14 | 2 lines of code bring us tags on nat rules | Henning Brauer |
| 2003-05-14 | move ETHERTYPE_xx declarations to <net/ethertypes.h>. meets netbsd practice. | Jun-ichiro itojun Hagino |
| 2003-05-14 | fix use after free race when purging the new PF tags | Mike Frantzen |
| 2003-05-13 | add support for tagging packets with arbitary tags and filtering based on | Henning Brauer |
| 2003-05-13 | back out. these changes were not tested. it might come as a surprise | Theo de Raadt |
| 2003-05-13 | move ethernet protocol type defs into sys/net/, as it is not just for ethernet | Jun-ichiro itojun Hagino |
| 2003-05-13 | Kill a bunch more commons (very few left =) | Jason Wright |
| 2003-05-13 | nuke common: ifnet_addrs | Jason Wright |
| 2003-05-12 | - TCP window scaling is not applied to the SYNs' window so we must retract the | Mike Frantzen |
| 2003-05-12 | Add comment about special (non-index) PFTM_* values. | Daniel Hartmeier |
| 2003-05-12 | Reorder IPv6 address comparisons to check the least significant parts | Ryan Thomas McBride |
| 2003-05-12 | Correctness nit. Initialise state search trees properly. | Ryan Thomas McBride |
| 2003-05-12 | Adaptive timeout value scaling. Allows to reduce timeout values as the | Daniel Hartmeier |
| 2003-05-12 | Nuke a whole bunch of commons; ok tedu (still more to come *sigh*) | Jason Wright |
| 2003-05-12 | missing include | Henning Brauer |
| 2003-05-11 | the start of stateful TCP scrubbing. dynamically determine the highest TTL of | Mike Frantzen |
| 2003-05-11 | Use sizeof(struct icmp6_hdr) instead of ICMP_MINLEN for IPv6, both are | Daniel Hartmeier |
