| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
| |
Remove the remaining unused source files. These were never used.
This is the last of a three commit series to move ipfilter.
Discussed with: glebius
Reviewed by: glebius, kp (for #network)
MFC after: 1 month
Differential Revision: https://reviews.freebsd.org/D33510
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Through fixes and improvements our ipfilter sources have diverged
enough to warrant move from contrib into sbin/ipf. Now that I'm
planning on implementing MSS clamping as in iptables it makes more
sense to move ipfilter to sbin.
This is the second of three commits of the ipfilter move.
Suggested by glebius on two occaions.
Suggested by and discussed with: glebius
Reviewed by: glebius, kp (for #network)
MFC after: 1 month
Differential Revision: https://reviews.freebsd.org/D33510
|
| |
|
|
|
|
|
| |
The MSN RPC proxy is incomplete and does not do any address
translation. Remove it.
MFC after: 1 week
|
| |
|
|
|
|
| |
Remove duplicate ipf_dstlist.* files. They live in sys/.
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
|
|
| |
Remove duplicate radix_ipf.* files. They live in sys/.
MFC after: 1 week
|
| |
|
|
|
|
|
| |
Display of stats from a kernel core dump was never fully implemented.
Remove the dangling vars and remove the documentation.
MFC after: 3 days
|
| |
|
|
| |
MFC after: 3 days
|
| |
|
|
| |
MFC after: 3 days
|
| |
|
|
| |
MFC after: 3 days
|
| |
|
|
| |
MFC after: 3 days
|
| |
|
|
| |
MFC after: 3 days
|
| |
|
|
|
|
|
|
|
| |
- s/addresss/address/
This is a direct commit to contrib since the upstream is
no longer active.
MFC after: 3 days
|
| |
|
|
|
|
|
| |
X-NetApp-PR: 35
Sponsored by: NetApp, Inc.
Sponsored by: Klara Inc.
Differential Revision: https://reviews.freebsd.org/D27335
|
| |
|
|
|
|
|
|
| |
Rather than rely on __FreeBSD_version, defined in sys/param.h, use
__FreeBSD__ defined by the compiler.
Reported by: emaste
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
| |
MFC after: 1 week
|
| |
|
|
|
|
| |
All FreeBSD and NetBSD are BSD >= 199306 and have been for a long time.
MFC after: 1 week
|
| |
|
|
|
|
|
| |
MENTAT and SOLARIS are synonymous. Remove the extraneous duplicate
macro.
MFC after: 1 week
|
| |
|
|
|
|
|
|
|
| |
In the old days when K&R C and STD C were each in use a workaround
(read hack) was required to allow the same code to work on each
without modification. All C compilers support STD C. We can finally
put the __P prototype to rest.
MFC after: 1 week
|
| |
|
|
|
|
|
|
| |
All C compilers in 2021 support standard C and architectures that did
not were retired long ago. Simplify by removing now redundant
pre-standard C code.
MFC after: 1 week
|
| |
|
|
|
|
| |
man page..
MFC after: 3 days
|
| |
|
|
|
|
|
|
|
|
|
| |
It's a syntax error.
PR: 210303
Reported by: leventelist at gmail.com
MFC after: 3 days
Notes:
svn path=/head/; revision=367070
|
| |
|
|
|
|
|
|
|
| |
complete description.
MFC after: 3 days
Notes:
svn path=/head/; revision=367069
|
| |
|
|
|
|
|
| |
MFC after: 2 months
Notes:
svn path=/head/; revision=366286
|
| |
|
|
|
|
|
|
|
| |
function.
MFC after: 2 months
Notes:
svn path=/head/; revision=366285
|
| |
|
|
|
|
|
| |
MFC after: 1 week
Notes:
svn path=/head/; revision=366203
|
| |
|
|
|
|
|
|
|
| |
never to be used again checks.
MFC after: 1 week
Notes:
svn path=/head/; revision=366202
|
| |
|
|
|
|
|
|
|
| |
complete description.
MFC after: 1 week
Notes:
svn path=/head/; revision=363916
|
| |
|
|
|
|
|
|
|
| |
complete description.
MFC after: 1 week
Notes:
svn path=/head/; revision=363670
|
| |
|
|
|
|
|
|
|
| |
PR: 248088
Reported by: joeb1@a1poweruser.com
MFC after: 1 week
Notes:
svn path=/head/; revision=363453
|
| |
|
|
|
|
|
|
| |
PR: 247952
MFC after: 1 week
Notes:
svn path=/head/; revision=363283
|
| |
|
|
|
|
|
|
|
|
| |
is not compiled in.
PR: 247952
MFC after: 1 week
Notes:
svn path=/head/; revision=363282
|
| |
|
|
|
|
|
|
|
|
| |
displayed in the same display.
PR: 247952
MFC after: 1 week
Notes:
svn path=/head/; revision=363281
|
| |
|
|
|
|
|
|
|
|
|
| |
and ipfstat -o where without an argument IPv4 and IPv6 states are
shown. Use -4 and -6 to limit the display to IPv4 or IPv6 respectively.
PR: 247952
MFC after: 1 week
Notes:
svn path=/head/; revision=363280
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ipfstat would list IPv4 outputs by default while -6 would produce IPv6
outputs. This commit combines the ipfstat -i and -o outputs into one
listing of IPv4 and IPv6 rules. The -4 option lists only IPv4 rules
(as the default before) while -6 continues to list only rules that affect
IPv6.
PR: 247952
Reported by: joeb1@a1poweruser.com
MFC after: 1 week
Notes:
svn path=/head/; revision=363279
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
the kernel, not an arbitrary 4 or 6.
This only affected printing ipfilter stats and rules from a kernel
dump. (This is currently undocumented.)
PR: 247952
MFC after: 1 week
Notes:
svn path=/head/; revision=363278
|
| |
|
|
|
|
|
|
|
|
|
| |
This is a prerequisite to upcoming argument processing cleanups which
will resolve consistency as was done with ippool previously.
PR: 247952
MFC after: 1 week
Notes:
svn path=/head/; revision=363277
|
| |
|
|
|
|
|
|
|
| |
filter rule lists.
MFC after: 3 days
Notes:
svn path=/head/; revision=361721
|
| |
|
|
|
|
|
|
|
|
|
|
| |
thishost is already defined in lib/initparse.c; no need for this one. This
fixes the ipfilter build with -fno-common.
-fno-common will become the default in GCC10/LLVM11.
MFC after: 3 days
Notes:
svn path=/head/; revision=359413
|
| |
|
|
|
|
|
|
|
|
|
| |
files. This allows for loading, during the same invocation of ippool, of
multiple sources of input using multiple tools to concurrently maintain the
files such as fail2ban, macro preprocessors, and manually.
MFC after: 1 week
Notes:
svn path=/head/; revision=358064
|
| |
|
|
|
|
|
| |
MFC after: 3 days
Notes:
svn path=/head/; revision=355300
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
from the command line. Prior to this the functionality was mostly there
however since the pool type (-t) was not recognized by the -A and -R
command options -- not recognized by getopt(). Additionally the code to
implement the dynamic add and removal of pools didn't work.
When dynamically adding (-A) a pool a type (-t) to specify if the pool
is a tree or hash pool must be specified. When dynamically removing (-R)
a pool, omitting -t will cause a search-and-destroy which will remove
both types of pools matching the name given (-m).
PR: 218433
MFC after: 1 week
Notes:
svn path=/head/; revision=352786
|
| |
|
|
|
|
|
|
|
|
|
| |
conflicts with the command option of the same name (also -R).
Remove the superfluous and confusing non-global non-command -R option.
PR: 218433
MFC after: 1 week
Notes:
svn path=/head/; revision=352785
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Only a role of "ipf" is currentlysupported as the other documented
(and undocumented) roles are #ifdef'd out.
The plan is to complete ippool(8) as it is even in its current state
a powerful feature/tool.
PR: 218433
MFC after: 1 month
Notes:
svn path=/head/; revision=352784
|
| |
|
|
|
|
|
| |
MFC after: 3 days
Notes:
svn path=/head/; revision=352783
|
| |
|
|
|
|
|
|
|
|
| |
to implementing IPv6 support within ippool which requires reworking
radix_ipf.c.
MFC after: 1 month
Notes:
svn path=/head/; revision=352738
|
| |
|
|
|
|
|
|
|
| |
PR: 238816
MFC after: 1 week
X-MFC with: r349503
Notes:
svn path=/head/; revision=349504
|
| |
|
|
|
|
|
|
|
|
| |
Reference the ipmon.5 man page and ipmon.conf.
PR: 238816
MFC after: 1 week
Notes:
svn path=/head/; revision=349503
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
reviewing and rewriting a patch in PR/238816.
PR: 238816
Reported by: rgrimes@
Pointy hat to: cy@
MFC after: 1 week
X-MFC with: r349450
Notes:
svn path=/head/; revision=349451
|
