| Age | Commit message (Expand) | Author |
|---|
| 2010-01-14 | When printing states in debug output, print the rule number that created | Ryan Thomas McBride |
| 2010-01-14 | i forgot to remove a now obsolete comment in pf_create_state about | Henning Brauer |
| 2010-01-14 | in pf_create_state, when we fixed the leaks, we were a bit too trigger | Henning Brauer |
| 2010-01-13 | in pf_state_key_detach, ensure that the state key pointer on the state | Henning Brauer |
| 2010-01-13 | cleanup pipex code. ok henning@ | YASUOKA Masahiko |
| 2010-01-13 | replace static on functions with Static so openbsd can define it away | David Gwynne |
| 2010-01-13 | Preliminary rdomain support in bridge(4). Make sure that m->m_pkthdr.rdomain | Claudio Jeker |
| 2010-01-13 | make ifa_ifwithaddr use the shiny new ifaddr RB tree instead of traversing | Henning Brauer |
| 2010-01-13 | maintain a global RB tree of all local addresses in the system. this | Henning Brauer |
| 2010-01-13 | instead of fiddling with the per-interface address lists directly in | Henning Brauer |
| 2010-01-13 | Remove extern reference to pf_pabuf which uses a struct | Jonathan Gray |
| 2010-01-12 | factor m_pulldown out of the message handlers up into pfsync_input now | David Gwynne |
| 2010-01-12 | delete more left-over stuff from vether development | Theo de Raadt |
| 2010-01-12 | the bridge does bpf for us, so we do not need bpf.h | Theo de Raadt |
| 2010-01-12 | delete the unused debug macros | Theo de Raadt |
| 2010-01-12 | do not need rndvar.h anymore | Theo de Raadt |
| 2010-01-12 | check the new pfsync_subheader len field on input. | David Gwynne |
| 2010-01-12 | After calling pipex_pppoe_input(), we must goto done to restore the spl. | YASUOKA Masahiko |
| 2010-01-12 | Remove simple_unlock() that is mistakenly introduced and add required | YASUOKA Masahiko |
| 2010-01-12 | Move initialization of the MCLGETI ticker to mbinit(), instead of ifinit() | Theo de Raadt |
| 2010-01-12 | Unify the various fake ethernet generators as ether_fakeaddr() which | Theo de Raadt |
| 2010-01-12 | First pass at removing the 'pf_pool' mechanism for translation and routing | Ryan Thomas McBride |
| 2010-01-12 | Remove bpfdetach() call right in front of the if_detach() call since | Claudio Jeker |
| 2010-01-12 | Delete unused structures. Pointed out by deraadt@. | YASUOKA Masahiko |
| 2010-01-12 | fix ioctl number that conflicted with tun(4)'s ioctl number. | YASUOKA Masahiko |
| 2010-01-12 | set the length of the send queue to 1. | David Gwynne |
| 2010-01-12 | Make the structures for ifa_msghdr and friends even more like | Theo de Raadt |
| 2010-01-11 | "final" leak in state creation: in pf_state_key_setup, if we actually | Henning Brauer |
| 2010-01-11 | fix a bug in pf_create_state that was a major source of amusement for me | Henning Brauer |
| 2010-01-11 | Initial import PIPEX. PIPEX(Pppac IP EXtension) is a IP forwarding | YASUOKA Masahiko |
| 2010-01-11 | remove some debug code that snuck in somehow. | David Gwynne |
| 2010-01-10 | replace a pad in the pfsync subheader with a length field. it stores the | David Gwynne |
| 2010-01-09 | No need to call bpfdetach() in mpe_clone_destroy() since this is done in | Claudio Jeker |
| 2010-01-08 | During "ifconfig $if -inet6" remove v6 addresses even if the | Stefan Sperling |
| 2009-12-26 | Initial rdomain support for mpe(4). Caveat: assumes MPLS is always in | Claudio Jeker |
| 2009-12-24 | add support to pf for filtering a packet by the interface it was received | David Gwynne |
| 2009-12-14 | fix sticky-address - by pretty much re-implementing it. still following | Henning Brauer |
| 2009-12-13 | Ensure that if_start() is called at IPL_NET. | Joel Sing |
| 2009-12-08 | move "pf: key search" and "pf: key setup" messages to PF_DEBUG_NOISY | Stuart Henderson |
| 2009-12-03 | fix order dependency of pfsync interface setup, with claudio; | Otto Moerbeek |
| 2009-11-26 | magical fix for a fault which reliably brings my firewalls down. i think | David Gwynne |
| 2009-11-24 | kill obsolete natpass | Henning Brauer |
| 2009-11-23 | with the old code we initialized the state keys early in some cases | Henning Brauer |
| 2009-11-23 | one kinda-missing log |= PFLOG_FORCE in the v6 case, spotted by claudio | Henning Brauer |
| 2009-11-23 | sync the handling of the log flag from pf_test (where it is correct) | Henning Brauer |
| 2009-11-23 | pf_test_fragment: we need to bail out if action == PF_DROP, not | Henning Brauer |
| 2009-11-23 | sync some comments with reality | Henning Brauer |
| 2009-11-23 | remove the nat_rule pointer on pf_state and pf_pdesc, obsolete after | Henning Brauer |
| 2009-11-22 | cleanup after the NAT changes. we used to have multiple rulesets (scrub, | Henning Brauer |
| 2009-11-22 | Add a lot of bpf and counter manipulation to the bridge. The bridge | Theo de Raadt |
