| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2000-02-10 | add PPPoE Discovery- and Session-Stage ETHERTYPEs | Jason Wright | |
| 2000-02-09 | improve RFC2553/2292 conformance. netinet6/{ip6,icmp6,in6}.h should not | Jun-ichiro itojun Hagino | |
| be included. neitnet6/{ip6,icmp6}.h includes #error statements only - i'll remove them couple of days later. | |||
| 2000-02-09 | don't need netinet6/in6.h | Jun-ichiro itojun Hagino | |
| 2000-02-07 | s/DIAGNOSTIC/DEBUG/ | Jun-ichiro itojun Hagino | |
| 2000-02-07 | fix include file path related to ip6. | Jun-ichiro itojun Hagino | |
| 2000-02-07 | for more strict rfc2292 compliance swap netinet{,6}/{ip6,icmp6}.h. | Jun-ichiro itojun Hagino | |
| netinet6/{ip6,icmp6}.h will be nuked afterwards. | |||
| 2000-02-01 | Update to IPFilter 3.3.8. Man pages still to go. See sbin/ipf/HISTORY | Kjell Wooding | |
| for details. | |||
| 2000-01-27 | Merge "old" and "new" ESP and AH in two files (one for each). | Angelos D. Keromytis | |
| Fix a couple of buglets with ingress flow deletion. tcpdump on enc0 should now show all outgoing packets *before* being processed, and all incoming packets *after* being processed. Good to be in Canada (land of the free commits). | |||
| 2000-01-26 | new bindresvport() semantics that itojun, shin, jean-luc and i have agreed ↵ | Theo de Raadt | |
| on, which will be happy for the future. bindresvport_sa() for sockaddr *, too. docs later.. | |||
| 2000-01-25 | Ok, so setsoftnet is md. | Marc Espie | |
| Well, on the amiga, setsoftnet *REQUIRES* machine/cpu.h to work... and no include mentioned in those files pulls machine/cpu.h... Nit-fix: / * INET6 */ -> /* INET6 */ | |||
| 2000-01-21 | Fix comment. | Angelos D. Keromytis | |
| 2000-01-21 | Typo. | Angelos D. Keromytis | |
| 2000-01-21 | Forgot to delete this. | Angelos D. Keromytis | |
| 2000-01-21 | Rename the ip4_* routines to ipip_*, make it so GIF tunnels are not | Angelos D. Keromytis | |
| affected by net.inet.ipip.allow (the sysctl formerly known as net.inet.ip4.allow), rename the VIF ipip_input to ipip_mroute_input. | |||
| 2000-01-18 | Bump IPPROTO_MAX to include IPPROTO_MOBILE and IPPROTO_ETHERIP. | Angelos D. Keromytis | |
| 2000-01-17 | fix pullup and otos saving code for ip6 | Jun-ichiro itojun Hagino | |
| (ip4_input will be visited with IPv6 packet! better change the func name...) | |||
| 2000-01-17 | fix "traceroute -P 41", outgoing side. incoming side needs fix in | Jun-ichiro itojun Hagino | |
| ip4_input(). Requested from: Niels Provos <provos@citi.umich.edu> | |||
| 2000-01-16 | ETHERTYPE_ATALK -> ETHERTYPE_AT (op21@squish.org) | Angelos D. Keromytis | |
| 2000-01-15 | Remove unnecessary definition. | Angelos D. Keromytis | |
| 2000-01-15 | Add function prototype. | Angelos D. Keromytis | |
| 2000-01-15 | Change function type to non-static. | Angelos D. Keromytis | |
| 2000-01-13 | mbuf **, not mbuf * you twit... | Angelos D. Keromytis | |
| 2000-01-13 | Print number of ingress flows in /kern/ipsec | Angelos D. Keromytis | |
| 2000-01-13 | Add an ip4_input6() for use with IPv6 (just a wrapper for | Angelos D. Keromytis | |
| ip4_input()), add prototype, ifdef include files. | |||
| 2000-01-13 | put_flow(), find_flow(), and delete_flow() get a third argument (for | Angelos D. Keromytis | |
| ingress or egress flow) | |||
| 2000-01-11 | The entry for IP4 should always be there. | Angelos D. Keromytis | |
| 2000-01-11 | Mostly cosmetic changes, and avoid an m_pullup() | Angelos D. Keromytis | |
| 2000-01-11 | Correct sa_require handling. | Angelos D. Keromytis | |
| 2000-01-11 | Fix check for sen_type. | Angelos D. Keromytis | |
| 2000-01-11 | Remove ifdef'ed out definitions. | Angelos D. Keromytis | |
| 2000-01-11 | Use default values when requesting dynamic VPNs. | Angelos D. Keromytis | |
| 2000-01-11 | Only use defaults if they have sane values. | Angelos D. Keromytis | |
| 2000-01-10 | Add 10 new ipsec-related sysctl variables...they are currently under | Angelos D. Keromytis | |
| net.inet.ip; perhaps they should be moved under net.inet.ipsec or some such. | |||
| 2000-01-10 | Some more code for dealing with socket IPsec options. | Angelos D. Keromytis | |
| 2000-01-10 | Only setup an expiration for embryonic SAs if | Angelos D. Keromytis | |
| net.inet.ip.ipsec-invalid-life >=0 | |||
| 2000-01-10 | Add net.inet.ip.ipsec-invalid-life, default value 60 seconds; the | Angelos D. Keromytis | |
| amount of time embryonic SAs will be kept before they have to be initialized by key management (this only affects automated key management). | |||
| 2000-01-10 | No need for extern definition of pfkeyv2_acquire() | Angelos D. Keromytis | |
| 2000-01-10 | 1) Setup a silent TDB expiration for embryonic SAs. | Angelos D. Keromytis | |
| 2) Fix check_ipsec_policy() to deal with v6 PCBs. 3) Fix ACL protocol check. | |||
| 2000-01-10 | Fix tdbi setup for TCP and UDP packets. | Angelos D. Keromytis | |
| 2000-01-10 | Typo. | Angelos D. Keromytis | |
| 2000-01-10 | Quick-drop packets (before real processing) if ingress filtering is on | Angelos D. Keromytis | |
| and the SA ACL is empty. | |||
| 2000-01-10 | Free ACL when deleting TDB. | Angelos D. Keromytis | |
| 2000-01-10 | Fix error message. | Angelos D. Keromytis | |
| 2000-01-09 | Add ingress ACL for IPsec: after being processed, IPsec packets are | Angelos D. Keromytis | |
| matched against a list of acceptable packet classes, if sysctl variable net.inet.ip.ipsec-acl is set to 1. | |||
| 2000-01-09 | Ports in network order... | Angelos D. Keromytis | |
| 2000-01-09 | Transport port is in network order... | Angelos D. Keromytis | |
| 2000-01-09 | externalize ipsec_acl | Angelos D. Keromytis | |
| 2000-01-09 | Rename newly-introduced variable to better reflect use. | Angelos D. Keromytis | |
| 2000-01-09 | Add a sysctl for IPsec ingress access control (better explanation on a | Angelos D. Keromytis | |
| follow-up commit). | |||
| 2000-01-08 | Fix serious crash-and-burn bug I introduced with last revision. | Angelos D. Keromytis | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |