summaryrefslogtreecommitdiff
path: root/sys/net
AgeCommit message (Expand)Author
2002-12-01KNFHenning Brauer
2002-12-01- Clean up pf_ioctl mainly by adding new functions to handle cleaning andRyan Thomas McBride
2002-12-01pfsync currently causes kernel faults, so we don't want to call these functionsRyan Thomas McBride
2002-11-29minor KNFHenning Brauer
2002-11-29expose state table changesMichael Shalayeff
2002-11-29Get the address pool in DIOCCHANGEADDR for all operations, preventsRyan Thomas McBride
2002-11-28- MD5 too slow, replace with pf_hash (based on hash from if_bridge.c)Ryan Thomas McBride
2002-11-26Call the enable function, don't set the variable directly.Jason Wright
2002-11-26pass struct pfioc_changeaddr to DIOCCHANGEADDRRyan Thomas McBride
2002-11-261000baseTX -> 1000baseTNathan Binkert
2002-11-26fix "pfctl -Fq".Kenjiro Cho
2002-11-24move } outside #ifdef INET6Ryan Thomas McBride
2002-11-23KNFTheo de Raadt
2002-11-23pass a pointer to the hash, not the first chunk of itRyan Thomas McBride
2002-11-23kernel code to allow multiple redirection addresses to be specified for natRyan Thomas McBride
2002-11-22on block rules, let queue apply to the RST packets in the return-rst caseHenning Brauer
2002-11-20KNFTheo de Raadt
2002-11-12Missing splx.Mike Pechkin
2002-11-07Short-circuit evaluation can leave invalid pointers, closes PR2874.Daniel Hartmeier
2002-11-02Compare dynamic addresses correctly in pf_compare_*: check the interface nameRyan Thomas McBride
2002-11-02Make PF_ANEQ(), PF_ANEQ() and PF_AZERO() check the whole address if afRyan Thomas McBride
2002-10-29keep all pflog goodies in pflog sources, avoids code duplications; okski fran...Michael Shalayeff
2002-10-25Compare pf_rule->label in pf_compare_rules(), too.Daniel Hartmeier
2002-10-22Convert "int af" and "u_int8_t af" declarations and function argumentsRyan Thomas McBride
2002-10-22check the correct return value from ifunit()Ryan Thomas McBride
2002-10-20Move pf_compare_(rules|nats|binats|rdrs) to pf_ioctl.c. Simplifies andRyan Thomas McBride
2002-10-14Allow one to specify a netblock in a binat rule:Henning Brauer
2002-10-10Missing m_pullup() and mbuf corruption. This potentially causedDaniel Hartmeier
2002-10-10padd pf_state; dhartmei@ okMichael Shalayeff
2002-10-08the first step of pf/altq merge.Kenjiro Cho
2002-10-07-Wsign-compare cleanDaniel Hartmeier
2002-10-07set block-policy [drop|return]Henning Brauer
2002-10-07support a generic returnHenning Brauer
2002-10-07make return-icmp work for rules covering both v4 and v6Henning Brauer
2002-10-07use a new rule_flag PFRULE_RETURNICMP to decide wether to return-icmp or notHenning Brauer
2002-10-07Add 'reply-to' to filter rules, similar to route-to, but applying toDaniel Hartmeier
2002-10-05Allow filtering based on IP header's tos field.Daniel Hartmeier
2002-10-04[to the right branch this time]Jason Ish
2002-09-27daddr was used where saddr was meant while checking incoming packets forHenning Brauer
2002-09-26BSD-style license from Serge Vakulenko <vak@cronyx.ru>Chris Cappuccio
2002-09-24sizeof(structure) not sizeof(structure *); pointed out by dvamsi@yahoo.com.Jason Wright
2002-09-15Make compile with -Werror (unused vars warnings)Niklas Hallqvist
2002-09-13Paul Mackerras and the Australian National University have worked thingsTheo de Raadt
2002-09-11KNF - return is not a function.Jun-ichiro itojun Hagino
2002-08-28Fix a problem where passing NULL as a pointer with varargs does not promotePer Fogelstrom
2002-08-12Use state tree instead of separate (flat) list to find NAT proxy ports,Daniel Hartmeier
2002-08-08th_flags doesn't have to be equal to TH_SYN to generate modulator, it'sDaniel Hartmeier
2002-08-07consistently check byte order of ether_type; pointed out by dhartmeiJason Wright
2002-07-31fix potential NULL pointer deref. From: tedu <grendel@zeitbombe.org>Jun-ichiro itojun Hagino
2002-07-30no need for check if m0 is NULL, as we have touched it already.Jun-ichiro itojun Hagino
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-24 23:06:42 +0000