Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- [PATCH 3/3] datatype: fix double-free resulting in use-after-free in datatype_free, (continued)
- strage iptables counts of wireguard traffic,
Reindl Harald
- [PATCH v1 1/1] xtables-addons: geoip: install and document xt_geoip_fetch,
Philip Prindeville
- [PATCH 00/15] gcc-10 warning fixes,
Arnd Bergmann
- [PATCH 00/37] net: manually convert files to ReST format - part 2,
Mauro Carvalho Chehab
- [nft PATCH 0/4] Two bugfixes around prefixes in sets,
Phil Sutter
- [PATCH nft] rule: fix element cache update in __do_add_setelems(), Pablo Neira Ayuso
- [PATCH AUTOSEL 5.6 43/79] netfilter: nat: fix error handling upon registering inet hook, Sasha Levin
- [PATCH AUTOSEL 5.4 29/57] netfilter: nat: fix error handling upon registering inet hook, Sasha Levin
- [PATCH nft] rule: memleak in __do_add_setelems(),
Pablo Neira Ayuso
- [PATCH] netfilter: nf_osf: avoid passing pointer to local var,
Arnd Bergmann
- [PATCH nft] nat: transform range to prefix expression when possible, Pablo Neira Ayuso
- [PATCH nft] evaluate: incorrect byteorder with typeof and integer_datatype, Pablo Neira Ayuso
- [PATCH nft,v3 0/9] netmap support for nft,
Pablo Neira Ayuso
- [PATCH nft,v3 2/9] include: resync nf_nat.h kernel header, Pablo Neira Ayuso
- [PATCH nft,v3 5/9] evaluate: fix crash when handling concatenation without map, Pablo Neira Ayuso
- [PATCH nft,v3 3/9] src: add netmap support, Pablo Neira Ayuso
- [PATCH nft,v3 4/9] src: add STMT_NAT_F_CONCAT flag and use it, Pablo Neira Ayuso
- [PATCH nft,v3 6/9] tests: py: concatenation, netmap and nat mappings, Pablo Neira Ayuso
- [PATCH nft,v3 9/9] tests: shell: add NAT mappings tests, Pablo Neira Ayuso
- [PATCH nft,v3 8/9] tests: py: remove range test with service names, Pablo Neira Ayuso
- [PATCH nft,v3 7/9] mnl: restore --debug=netlink output with sets, Pablo Neira Ayuso
- [PATCH nft,v3 1/9] src: NAT support for intervals in maps, Pablo Neira Ayuso
- [iptables PATCH] tests: shell: Add test for nfbz#1391, Phil Sutter
- Issues with nft typeof,
michael-dev
- [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase,
Phil Sutter
- [iptables PATCH v2 15/18] nft-cache: Introduce __fetch_chain_cache(), Phil Sutter
- [iptables PATCH v2 05/18] ebtables-restore: Table line to trigger implicit commit, Phil Sutter
- [iptables PATCH v2 11/18] nft: cache: Simplify rule and set fetchers, Phil Sutter
- [iptables PATCH v2 17/18] nft: cache: Optimize caching for flush command, Phil Sutter
- [iptables PATCH v2 08/18] nft: restore among support, Phil Sutter
- [iptables PATCH v2 03/18] nft: cache: Init per table set list along with chain list, Phil Sutter
- [iptables PATCH v2 12/18] nft: cache: Improve fake cache integration, Phil Sutter
- [iptables PATCH v2 06/18] nft: split parsing from netlink commands, Phil Sutter
- [iptables PATCH v2 18/18] nft: Fix for '-F' in iptables dumps, Phil Sutter
- [iptables PATCH v2 16/18] nft: cache: Fetch cache for specific chains, Phil Sutter
- [iptables PATCH v2 09/18] nft: remove cache build calls, Phil Sutter
- [iptables PATCH v2 07/18] nft: calculate cache requirements from list of commands, Phil Sutter
- [iptables PATCH v2 02/18] nft: cache: Eliminate init_chain_cache(), Phil Sutter
- [iptables PATCH v2 14/18] nft-cache: Fetch cache per table, Phil Sutter
- [iptables PATCH v2 13/18] nft: cache: Introduce struct nft_cache_req, Phil Sutter
- [iptables PATCH v2 01/18] ebtables-restore: Drop custom table flush routine, Phil Sutter
- [iptables PATCH v2 04/18] nft: cache: Fetch sets per table, Phil Sutter
- [iptables PATCH v2 10/18] nft: missing nft_fini() call in bridge family, Phil Sutter
- Re: [iptables PATCH v2 00/18] iptables: introduce cache evaluation phase, Pablo Neira Ayuso
- WARNING in __nf_unregister_net_hook, syzbot
- [PATCH conntrack-tools] conntrack: add support for the IPS_HW_OFFLOAD flag, Pablo Neira Ayuso
- [PATCH libnetfilter_conntrack] src: add IPS_HW_OFFLOAD flag, Pablo Neira Ayuso
- [PATCH nft,v2 0/9] netmap support for nftables,
Pablo Neira Ayuso
- [PATCH nft,v2 2/9] include: resync nf_nat.h kernel header, Pablo Neira Ayuso
- [PATCH nft,v2 5/9] evaluate: fix crash when handling concatenation without map, Pablo Neira Ayuso
- [PATCH nft,v2 3/9] src: add netmap support, Pablo Neira Ayuso
- [PATCH nft,v2 4/9] src: add STMT_NAT_F_CONCAT flag and use it, Pablo Neira Ayuso
- [PATCH nft,v2 8/9] tests: py: remove range test with service names, Pablo Neira Ayuso
- [PATCH nft,v2 6/9] tests: py: concatenation, netmap and nat mappings, Pablo Neira Ayuso
- [PATCH nft,v2 7/9] mnl: restore --debug=netlink output with sets, Pablo Neira Ayuso
- [PATCH nft,v2 9/9] tests: shell: add NAT mappings tests, Pablo Neira Ayuso
- [PATCH nft,v2 1/9] src: NAT support for intervals in maps, Pablo Neira Ayuso
- [PATCH libnftnl] udata: add NFTNL_UDATA_SET_DATA_INTERVAL, Pablo Neira Ayuso
- [PATCH libnetfilter_queue 0/3] pktbuff API updates,
Pablo Neira Ayuso
- FW: pktb_alloc2, Duncan Roe
- [nft 1/3] src: NAT support for intervals in maps,
Pablo Neira Ayuso
- [PATCH nf-next 0/5] netmap support for nftables,
Pablo Neira Ayuso
- mlx5: Panic with conntrack offload,
Marcelo Ricardo Leitner
- [PATCH nft] src: NAT support for intervals in maps, Pablo Neira Ayuso
- Problem with flushing nftalbes sets,
Milan JEANTON
- [PATCH ghak25 v4 0/3] Address NETFILTER_CFG issues,
Richard Guy Briggs
- Re: nfnetlink: This library is not meant as a public API for application developers., Duncan Roe
- [nf-next V2] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit,
Bodong Wang
- [iptables PATCH] xshared: Drop pointless assignment in add_param_to_argv(), Phil Sutter
- [iptables PATCH 1/3] tests: shell: Improve ipt-restore/0001load-specific-table_0 a bit,
Phil Sutter
- [PATCH] libxt_IDLETIMER.c - fix target v1 help alignment and doc,
Maciej Żenczykowski
- [PATCH] do not typedef socklen_t on Android,
Maciej Żenczykowski
- [PATCH] iptables: flush stdout after every verbose log.,
Maciej Żenczykowski
- [PATCH] xshared.h - include sys/time.h to fix lack of struct timeval declaration,
Maciej Żenczykowski
- [PATCH] libxt_addrtype.c - include strings.h for the definition of ffs(),
Maciej Żenczykowski
- [PATCH] libipt_ULOG.c - include strings.h for the definition of ffs(),
Maciej Żenczykowski
- [PATCH net] netfilter: nat: never update the UDP checksum when it's 0,
Guillaume Nault
- [PATCH net-next] net/sched: act_ct: update nf_conn_acct for act_ct SW offload in flowtable,
wenxu
- Re: [PATCH 4.19 00/40] 4.19.117-rc1 review,
Naresh Kamboju
- [nf-next] netfilter: nf_conntrack, add IPS_HW_OFFLOAD status bit,
Bodong Wang
- [PATCH v1 1/1] Update download script for DBIP database,
Philip Prindeville
- [PATCH v1 1/1] xtables-addons: geoip: Update download script for DBIP database, Philip Prindeville
- [PATCH net] net: flow_offload: skip hw stats check for FLOW_ACTION_HW_STATS_DISABLED,
Pablo Neira Ayuso
- WARNING in nf_nat_unregister_fn,
syzbot
- Message not available
[PATCH] [nf,v3] idletimer extension : Add alarm timer option,
Manoj Basapathi
[PATCH parser_bison] parser_bison: proper ct timeout list initialization, Pablo Neira Ayuso
[PATCH iptables] nft-shared: skip check for jumpto if cs->target is unset, Pablo Neira Ayuso
[PATCH iptables] extensions: libxt_CT: add translation for NOTRACK, Pablo Neira Ayuso
[PATCH] [nf,v2] idletimer extension : Add alarm timer option,
Manoj Basapathi
[PATCH] idletimer extension : Add alarm timer option,
Manoj Basapathi
Re: [PATCH] libnetfilter_conntrack.pc.in: add LIBMNL_LIBS to Libs.Private, Pablo Neira Ayuso
[PATCH nft 0/2] Prevent kernel from adding concatenated ranges if they're not supported,
Stefano Brivio
libmnl & rtnetlink questions,
Ian Pilcher
[PATCH net] netfilter: flowtable: Free block_cb when being deleted,
Roi Dayan
[PATCH AUTOSEL 5.6 003/149] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Sasha Levin
[PATCH AUTOSEL 5.6 117/149] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Sasha Levin
[PATCH AUTOSEL 5.5 002/121] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Sasha Levin
[PATCH AUTOSEL 5.5 095/121] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Sasha Levin
[PATCH AUTOSEL 5.4 002/108] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Sasha Levin
[PATCH AUTOSEL 5.4 083/108] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Sasha Levin
[PATCH nft] segtree: broken error reporting with mappings, Pablo Neira Ayuso
BUG: Anonymous maps with adjacent intervals broken since Linux 5.6,
Thorsten Knabe
ipv6 rpfilter and.. fw mark? problems with wireguard,
Dominique Martinet
[PATCH nftables] build: Allow building from tarballs without yacc/lex,
Matt Turner
[iptables PATCH] ebtables-restore: Table line to trigger implicit commit, Phil Sutter
[PATCH nftables] doc: Include generated man pages in dist tarball,
Matt Turner
[nft PATCH 2/2] expr: add jool expressions,
Alberto Leiva Popper
[libnftnl PATCH 1/2] expr: add jool support, Alberto Leiva Popper
[PATCH nf 1/2] netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object type,
Pablo Neira Ayuso
[iptables PATCH 0/3] nft: cache: Minor review,
Phil Sutter
[PATCH AUTOSEL 5.5 28/35] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start(), Sasha Levin
[PATCH AUTOSEL 5.5 29/35] netfilter: nft_set_rbtree: Detect partial overlaps on insertion, Sasha Levin
[PATCH AUTOSEL 5.4 24/32] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
[PATCH AUTOSEL 5.4 26/32] netfilter: nft_set_rbtree: Detect partial overlaps on insertion, Sasha Levin
[PATCH AUTOSEL 5.4 25/32] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start(), Sasha Levin
[PATCH AUTOSEL 4.19 08/13] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
[PATCH AUTOSEL 4.19 09/13] netfilter: nft_set_rbtree: Introduce and use nft_rbtree_interval_start(), Sasha Levin
[PATCH AUTOSEL 4.19 10/13] netfilter: nft_set_rbtree: Detect partial overlaps on insertion, Sasha Levin
[PATCH AUTOSEL 4.14 6/9] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
[PATCH AUTOSEL 4.9 3/5] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion, Sasha Levin
[PATCH AUTOSEL 5.5 27/35] netfilter: nf_tables: Allow set back-ends to report partial overlaps on insertion,
Sasha Levin
[PATCH] nft_set_pipapo: remove unused pointer lt,
Colin King
flowtable crash in nf_flow_table_indr_block_cb, wenxu
segfault while trying to load module br_netfilter, Benjamin Doppler
[PATCH] segtree: bail out on concatenations,
Pablo Neira Ayuso
[ANNOUNCE] conntrack-tools 1.4.6, Pablo Neira Ayuso
[ANNOUNCE] libnetfilter_conntrack 1.0.8 release, Pablo Neira Ayuso
[PATCH nf 1/1] netfilter: nf_tables: do not leave dangling pointer in nf_tables_set_alloc_name,
Eric Dumazet
[PATCH libnetfilter_conntrack] expect: parse_mnl: fix gcc compile warning, Pablo Neira Ayuso
[PATCH nft] tests: shell: add typeof with concatenations,
Pablo Neira Ayuso
[PATCH nft] doc: add hashing expressions description,
Laura Garcia Liebana
[PATCH nf v2] nft_set_rbtree: Drop spurious condition for overlap detection on insertion,
Stefano Brivio
[PATCH nf] nft_set_rbtree: Drop spurious condition for overlap detection on insertion,
Stefano Brivio
[ANNOUNCE] libnftnl 1.1.6 release, Pablo Neira Ayuso
[ANNOUNCE] nftables 0.9.4 release,
Pablo Neira Ayuso
[PATCH nft] concat: provide proper dtype when parsing typeof udata,
Florian Westphal
[PATCH nf-next] netfilter: nf_tables: do not update stateful expressions if lookup is inverted, Pablo Neira Ayuso
[PATCH nft 1/2] evaluate: check for device in non-netdev chains,
Pablo Neira Ayuso
[ANNOUNCE] nftlb 0.6 release,
Laura Garcia
[PATCH] netfilter: IDLETIMER target v1 - match Android layout,
Maciej Żenczykowski
[PATCH nft 1/3] rule: add hook_spec,
Pablo Neira Ayuso
Re: [PATCH 5.5 138/170] netfilter: nft_fwd_netdev: allow to redirect to ifb via ingress,
Pablo Neira Ayuso
[PATCH nf-next v5 1/1] netfilter: ctnetlink: add kernel side filtering for dump,
Romain Bellan
[PATCH 00/28] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 20/28] netfilter: nf_queue: prefer nf_queue_entry_free, Pablo Neira Ayuso
- [PATCH 21/28] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Pablo Neira Ayuso
- [PATCH 02/28] netfilter: nf_tables: pass context to nft_set_destroy(), Pablo Neira Ayuso
- [PATCH 23/28] netfilter: nft_dynset: validate set expression definition, Pablo Neira Ayuso
- [PATCH 05/28] netfilter: nf_tables: add nft_set_elem_expr_destroy() and use it, Pablo Neira Ayuso
- [PATCH 06/28] netfilter: flowtable: fix NULL pointer dereference in tunnel offload support, Pablo Neira Ayuso
- [PATCH 15/28] netfilter: flowtable: Use rw sem as flow block lock, Pablo Neira Ayuso
- [PATCH 18/28] netfilter: nf_queue: place bridge physports into queue_entry struct, Pablo Neira Ayuso
- [PATCH 14/28] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Pablo Neira Ayuso
- [PATCH 16/28] netfilter: flowtable: Use work entry per offload command, Pablo Neira Ayuso
- [PATCH 13/28] netfilter: flowtable: Fix incorrect tc_setup_type type, Pablo Neira Ayuso
- [PATCH 10/28] netfilter: conntrack: export nf_ct_acct_update(), Pablo Neira Ayuso
- [PATCH 27/28] netfilter: nft_exthdr: fix endianness of tcp option cast, Pablo Neira Ayuso
- [PATCH 09/28] ipvs: optimize tunnel dumps for icmp errors, Pablo Neira Ayuso
- [PATCH 12/28] netfilter: flowtable: add counter support, Pablo Neira Ayuso
- [PATCH 17/28] netfilter: nf_queue: make nf_queue_entry_release_refs static, Pablo Neira Ayuso
- [PATCH 11/28] netfilter: nf_tables: add enum nft_flowtable_flags to uapi, Pablo Neira Ayuso
- [PATCH 25/28] netfilter: conntrack: add nf_ct_acct_add(), Pablo Neira Ayuso
- [PATCH 08/28] netfilter: conntrack: Add missing annotations for nf_conntrack_all_lock() and nf_conntrack_all_unlock(), Pablo Neira Ayuso
- [PATCH 28/28] ipvs: fix uninitialized variable warning, Pablo Neira Ayuso
- [PATCH 07/28] netfilter: ctnetlink: Add missing annotation for ctnetlink_parse_nat_setup(), Pablo Neira Ayuso
- [PATCH 26/28] netfilter: flowtable: add counter support in HW offload, Pablo Neira Ayuso
- [PATCH 04/28] netfilter: nf_tables: fix double-free on set expression from the error path, Pablo Neira Ayuso
- [PATCH 24/28] netfilter: nf_tables: skip set types that do not support for expressions, Pablo Neira Ayuso
- [PATCH 03/28] netfilter: nf_tables: allow to specify stateful expression in set definition, Pablo Neira Ayuso
- [PATCH 22/28] netfilter: nft_set_bitmap: initialize set element extension in lookups, Pablo Neira Ayuso
- [PATCH 01/28] netfilter: nf_tables: move nft_expr_clone() to nf_tables_api.c, Pablo Neira Ayuso
- [PATCH 19/28] netfilter: nf_queue: do not release refcouts until nf_reinject is done, Pablo Neira Ayuso
- Re: [PATCH 00/28] Netfilter/IPVS updates for net-next, David Miller
[PATCH nf-next] ipvs: fix uninitialized variable warning,
Haishuang Yan
[PATCH 00/26] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 05/26] netfilter: nf_tables: add nft_set_elem_expr_destroy() and use it, Pablo Neira Ayuso
- [PATCH 14/26] netfilter: nf_tables: silence a RCU-list warning in nft_table_lookup(), Pablo Neira Ayuso
- [PATCH 22/26] netfilter: nft_set_bitmap: initialize set element extension in lookups, Pablo Neira Ayuso
- [PATCH 25/26] netfilter: conntrack: add nf_ct_acct_add(), Pablo Neira Ayuso
- [PATCH 24/26] netfilter: nf_tables: skip set types that do not support for expressions, Pablo Neira Ayuso
- [PATCH 26/26] netfilter: flowtable: add counter support in HW offload, Pablo Neira Ayuso
- [PATCH 23/26] netfilter: nft_dynset: validate set expression definition, Pablo Neira Ayuso
- [PATCH 21/26] netfilter: ctnetlink: be more strict when NF_CONNTRACK_MARK is not set, Pablo Neira Ayuso
- [PATCH 19/26] netfilter: nf_queue: do not release refcouts until nf_reinject is done, Pablo Neira Ayuso
- [PATCH 18/26] netfilter: nf_queue: place bridge physports into queue_entry struct, Pablo Neira Ayuso
- [PATCH 16/26] netfilter: flowtable: Use work entry per offload command, Pablo Neira Ayuso
- [PATCH 20/26] netfilter: nf_queue: prefer nf_queue_entry_free, Pablo Neira Ayuso
- [PATCH 15/26] netfilter: flowtable: Use rw sem as flow block lock, Pablo Neira Ayuso
- [PATCH 17/26] netfilter: nf_queue: make nf_queue_entry_release_refs static, Pablo Neira Ayuso
- [PATCH 09/26] ipvs: optimize tunnel dumps for icmp errors, Pablo Neira Ayuso
- [PATCH 13/26] netfilter: flowtable: Fix incorrect tc_setup_type type, Pablo Neira Ayuso
- [PATCH 12/26] netfilter: flowtable: add counter support, Pablo Neira Ayuso
- [PATCH 11/26] netfilter: nf_tables: add enum nft_flowtable_flags to uapi, Pablo Neira Ayuso
- [PATCH 10/26] netfilter: conntrack: export nf_ct_acct_update(), Pablo Neira Ayuso
- [PATCH 04/26] netfilter: nf_tables: fix double-free on set expression from the error path, Pablo Neira Ayuso
- [PATCH 07/26] netfilter: ctnetlink: Add missing annotation for ctnetlink_parse_nat_setup(), Pablo Neira Ayuso
- [PATCH 08/26] netfilter: conntrack: Add missing annotations for nf_conntrack_all_lock() and nf_conntrack_all_unlock(), Pablo Neira Ayuso
- [PATCH 02/26] netfilter: nf_tables: pass context to nft_set_destroy(), Pablo Neira Ayuso
- [PATCH 03/26] netfilter: nf_tables: allow to specify stateful expression in set definition, Pablo Neira Ayuso
- [PATCH 06/26] netfilter: flowtable: fix NULL pointer dereference in tunnel offload support, Pablo Neira Ayuso
- [PATCH 01/26] netfilter: nf_tables: move nft_expr_clone() to nf_tables_api.c, Pablo Neira Ayuso
- Re: [PATCH 00/26] Netfilter/IPVS updates for net-next, David Miller
Suggestion: replacement for physdev-is-bridged in nft,
jaroslav
[PATCH nf] netfilter: nft_exthdr: fix endianness of tcp option cast,
Sergey Marinkevich
[iptables] avoid raw sockets which requires CAP_NET_RAW, Youfu Zhang
[PATCH 1/2] netfilter: conntrack: add nf_ct_acct_add(),
wenxu
[PATCH nft] evaluate: display error if statement is missing, Pablo Neira Ayuso
[PATCH nf-next 1/3] netfilter: nft_set_bitmap: initialize set element extension in lookups,
Pablo Neira Ayuso
[PATCH net-next v2 0/3] netfilter: flowtable: Support offload of tuples in parallel,
Paul Blakey
[PATCH nf-next v4 1/2] netfilter: ctnetlink: add kernel side filtering for dump,
Romain Bellan
[PATCH nf-next 0/4] netfilter: nf_queue: rework refcount handling,
Florian Westphal
[PATCH nf-next v3 1/2] netfilter: ctnetlink: add kernel side filtering for dump,
Romain Bellan
[PATCH nft] netlink: Show the handles of unknown rules in "nft monitor trace",
Luis Ressel
[PATCH nft] src: add support for flowtable counter, Pablo Neira Ayuso
[PATCH] netfilter/nf_tables: silence a RCU-list warning,
Qian Cai
[PATCH net] net: Fix CONFIG_NET_CLS_ACT=n and CONFIG_NFT_FWD_NETDEV={y,m} build,
Pablo Neira Ayuso
[PATCH net-next] netfilter: flowtable: Fix accessing null dst entry,
Paul Blakey
[PATCH] netfilter: nft_fwd_netdev: Fix CONFIG_NET_CLS_ACT=n build,
Geert Uytterhoeven
[PATCH nf-next 1/3] netfilter: conntrack: export nf_ct_acct_update(),
Pablo Neira Ayuso
[PATCH net-next 0/3] netfilter: flowtable: Support offload of tuples in parallel,
Paul Blakey
[PATCH nf 1/2] netfilter: nft_fwd_netdev: validate family and chain type,
Pablo Neira Ayuso
[PATCH net-next v2] netfilter: Fix incorrect tc_setup_type type for flowtable offload,
wenxu
[PATCH v3 nf] selftests: netfilter: add nfqueue test case,
Florian Westphal
[PATCH nf v2 0/4] nftables: Consistently report partial and entire set overlaps,
Stefano Brivio
[PATCH NOMERGE iptables 0/2] man: xt_set: Describe existing behaviour and new counters update flag,
Stefano Brivio
[PATCH nf-next 0/3] netfilter: nf_flow_table_offload: add nf_conn_acct for flowtable offload,
wenxu
[PATCH nf-next v2] netfilter: nf_flow_table_offload: set hw_stats_type of flow_action_entry to FLOW_ACTION_HW_STATS_ANY,
wenxu
[PATCH nft] tests: py: update nat expressions payload to include proto flags, Pablo Neira Ayuso
[PATCH libnftnl 1/2] expr: masq: revisit _snprintf(),
Pablo Neira Ayuso
[PATCH nf-next] netfilter:nf_flow_table: add HW stats type support in flowtable,
wenxu
[PATCH] iptables: open eBPF programs in read only mode,
Maciej Żenczykowski
[PATCH net] netfilter: nf_flow_table: populate addr_type mask,
Edward Cree
[PATCH net] netfilter: flowtable: Fix flushing of offloaded flows on free,
Paul Blakey
[PATCH nf-next] netfilter: nf_flow_table_offload: fix potential NULL pointer dereference for dst_cache in handling lwtstate,
wenxu
Re: Bug URGENT Report with new kernel 5.5.10-5.6-rc6,
Stefano Brivio
[PATCH AUTOSEL 5.4 20/73] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 5.4 21/73] netfilter: nft_payload: add missing attribute validation for payload csum flags, Sasha Levin
[PATCH AUTOSEL 5.4 26/73] netfilter: nf_tables: dump NFTA_CHAIN_FLAGS attribute, Sasha Levin
[PATCH AUTOSEL 5.4 27/73] netfilter: nf_tables: fix infinite loop when expr is not available, Sasha Levin
[PATCH AUTOSEL 5.4 31/73] netfilter: nft_chain_nat: inet family is missing module ownership, Sasha Levin
[PATCH AUTOSEL 4.19 16/37] netfilter: nft_payload: add missing attribute validation for payload csum flags, Sasha Levin
[PATCH AUTOSEL 4.19 15/37] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 4.19 17/37] netfilter: nft_tunnel: add missing attribute validation for tunnels, Sasha Levin
[PATCH AUTOSEL 4.14 13/28] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 4.14 14/28] netfilter: nft_payload: add missing attribute validation for payload csum flags, Sasha Levin
[PATCH AUTOSEL 4.9 08/15] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 4.4 06/12] netfilter: cthelper: add missing attribute validation for cthelper, Sasha Levin
[PATCH AUTOSEL 5.4 22/73] netfilter: nft_tunnel: add missing attribute validation for tunnels, Sasha Levin
[PATCH nft] evaluate: add range specified flag setting (missing NF_NAT_RANGE_PROTO_SPECIFIED),
Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_tables: add nft_set_elem_expr_destroy() and use it, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_flow_table_offload: fix kernel NULL pointer dereference in nf_flow_table_indr_block_cb,
wenxu
[bug report] netfilter: nf_tables: add elements with stateful expressions,
Dan Carpenter
[PATCH net-next] flow_offload: add TC_SETP_FT type in flow_indr_block_call,
wenxu
[PATCH nf-next] netfilter: nf_tables: fix double-free on set expression from the error path, Pablo Neira Ayuso
[PATCH ghak25 v3 0/3] Address NETFILTER_CFG issues,
Richard Guy Briggs
[PATCH nft] src: support for counter in set definition, Pablo Neira Ayuso
[PATCH libnftnl] set: support for NFTNL_SET_EXPR, Pablo Neira Ayuso
[PATCH nf-next 0/3] support for stateful expressions in set definition,
Pablo Neira Ayuso
[PATCH v2 1/2] netfilter: nf_flow_table: reload ip{v6}h in nf_flow_nat_ip{v6},
Haishuang Yan
compilation of netfilter missing libnftnl functions - undefined reference - (RASPBERRY pi 3B),
MELCHOR PENA, Bernardo Santiago
[PATCH] netfilter: nft_masq: add range specified flag setting, Sergey Marinkevich
[PATCH 1/4] netfilter: nf_flow_table: reload ipv6h in nf_flow_nat_ipv6,
Haishuang Yan
[PATCH v2] ipvs: optimize tunnel dumps for icmp errors,
Haishuang Yan
[PATCH] ipvs: optimize tunnel dumps for icmp errors,
Haishuang Yan
[iptables PATCH] nft: cache: Fix iptables-save segfault under stress,
Phil Sutter
[iptables PATCH] nft: cache: Fix for unused variable warnings, Phil Sutter
linux-next: manual merge of the netfilter-next tree with the net-next tree, Stephen Rothwell
[PATCH 0/3] treewide: Convert unscriptable /* fallthrough */ comments to fallthrough;,
Joe Perches
Re: WARNING in geneve_exit_batch_net (2),
syzbot
[PATCH nf-next 1/1] netfilter: conntrack: re-visit sysctls in unprivileged namespaces,
Florian Westphal
[PATCH nft 1/2] netlink: remove unused parameter from netlink_gen_stmt_stateful(),
Pablo Neira Ayuso
[PATCH 0/5 nf-next,v2] enhance stateful expression support,
Pablo Neira Ayuso
[PATCH libnftnl] set_elem: missing set and build for NFTNL_SET_ELEM_EXPR, Pablo Neira Ayuso
[PATCH nf-next 0/4] enhance stateful expression support,
Pablo Neira Ayuso
[PATCH nft] src: Support netdev egress hook,
Lukas Wunner
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
