Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- [PATCH v4 2/2] net: br_netfiler_hooks: Drops IPv6 packets if IPv6 module is not loaded, (continued)
- [PATCH nf-next v7 0/8] netfilter: Support the bridge family in flow table,
wenxu
- [PATCH nft v6] meta: add ibrpvid and ibrvproto support,
wenxu
- [PATCH 0/4 net-next] flow_offload: update mangle action representation,
Pablo Neira Ayuso
- [PATCH AUTOSEL 5.2 04/76] netfilter: nf_flow_table: fix offload for flows that are subject to xfrm, Sasha Levin
- [PATCH AUTOSEL 5.2 11/76] netfilter: nf_flow_table: conntrack picks up expired flows, Sasha Levin
- [PATCH AUTOSEL 5.2 12/76] netfilter: nf_flow_table: teardown flow timeout race, Sasha Levin
- [PATCH AUTOSEL 5.2 10/76] netfilter: nf_tables: use-after-free in failing rule with bound set, Sasha Levin
- [PATCH AUTOSEL 5.2 24/76] netfilter: nft_flow_offload: skip tcp rst and fin packets, Sasha Levin
- [PATCH AUTOSEL 4.19 02/45] netfilter: nf_tables: use-after-free in failing rule with bound set, Sasha Levin
- [PATCH AUTOSEL 4.19 11/45] netfilter: nft_flow_offload: skip tcp rst and fin packets, Sasha Levin
- [PATCH] netfilter: reject: fix ICMP csum verification,
Alin Nastac
- [PATCH nft 0/4] meta: introduce time/day/hour matching,
Florian Westphal
- [PATCH AUTOSEL 4.19 15/29] netfilter: nf_tables: use-after-free in failing rule with bound set, Sasha Levin
- [PATCH AUTOSEL 4.19 22/29] netfilter: ipset: Copy the right MAC address in bitmap:ip,mac and hash:ip,mac sets, Sasha Levin
- [PATCH AUTOSEL 4.19 21/29] netfilter: ipset: Actually allow destination MAC address for hash:ip,mac sets too, Sasha Levin
- [PATCH nft] src: json: add support for element deletion,
Florian Westphal
- [PATCH nf] netfilter: nft_meta_bridge: Fix get NFT_META_BRI_IIFVPROTO in network byteorder,
wenxu
- [PATCH nf] netfilter: nf_flow_table: clear skb tstamp before xmit,
Florian Westphal
- [PATCH v3 1/1] netfilter: nf_tables: fib: Drop IPV6 packets if IPv6 is disabled on boot, Leonardo Bras
- [PATCH nf] netfilter: conntrack: make sysctls per-namespace again,
Florian Westphal
- [PATCH 1/2 nf-next v3] netfilter: nf_tables: Introduce stateful object update operation,
Fernando Fernandez Mancera
- Feature request: Add support for linenoise as alternative to readline,
Priebe, Sebastian
- [PATCH nft v9 1/2] evaluate: New internal helper __expr_evaluate_range,
Ander Juaristi
- [PATCH nft v5] meta: add ibrpvid and ibrvproto support,
wenxu
- [PATCH] netfilter: not mark a spinlock as __read_mostly,
Li RongQing
- [PATCH 1/2 nf-next v2] netfilter: nf_tables: Introduce stateful object update operation,
Fernando Fernandez Mancera
- nft equivalent of iptables command,
Serguei Bezverkhi (sbezverk)
- [PATCH 0/3] rework netlink skb allocation,
Jan Dakinevich
- [PATCH nft v1]files: add script to generate geoip.nft file,
Shekhar Sharma
- nftables matching gratuitous arp,
michael-dev
- [PATCH] netfilter: xt_physdev: Fix spurious error message in physdev_mt_check,
Todd Seidelmann
- [PATCH nft v8 1/2] evaluate: New internal helper __expr_evaluate_range,
Ander Juaristi
- [PATCH] netfilter: nf_conntrack_ftp: Fix debug output,
Thomas Jarosch
- [PATCH v2 1/1] netfilter: nf_tables: fib: Drop IPV6 packages if IPv6 is disabled on boot,
Leonardo Bras
- [PATCH nft v4] meta: add ibrpvid and ibrvproto support,
wenxu
- [PATCH 1/2 nf-next] netfilter: nf_tables: Introduce stateful object update operation,
Fernando Fernandez Mancera
- [iptables PATCH 00/14] Implement among match support,
Phil Sutter
- [iptables PATCH 04/14] nft: Eliminate pointless calls to nft_family_ops_lookup(), Phil Sutter
- [iptables PATCH 07/14] nft: family_ops: Pass nft_handle to 'add' callback, Phil Sutter
- [iptables PATCH 10/14] nft: family_ops: Pass nft_handle to 'rule_to_cs' callback, Phil Sutter
- [iptables PATCH 01/14] nft: Fix typo in nft_parse_limit() error message, Phil Sutter
- [iptables PATCH 08/14] nft: family_ops: Pass nft_handle to 'rule_find' callback, Phil Sutter
- [iptables PATCH 05/14] nft: Fetch sets when updating rule cache, Phil Sutter
- [iptables PATCH 11/14] nft: Bore up nft_parse_payload(), Phil Sutter
- [iptables PATCH 02/14] nft: Get rid of NFT_COMPAT_EXPR_MAX define, Phil Sutter
- [iptables PATCH 03/14] nft: Keep nft_handle pointer in nft_xt_ctx, Phil Sutter
- [iptables PATCH 14/14] nft: bridge: Rudimental among extension support, Phil Sutter
- [iptables PATCH 09/14] nft: family_ops: Pass nft_handle to 'print_rule' callback, Phil Sutter
- [iptables PATCH 06/14] nft: Support NFT_COMPAT_SET_ADD, Phil Sutter
- [iptables PATCH 13/14] nft: Support parsing lookup expression, Phil Sutter
- [iptables PATCH 12/14] nft: Embed rule's table name in nft_xt_ctx, Phil Sutter
- [RFC 0/1] avoid busy loop in __nft_build_cache,
Christian Ehrhardt
- [PATCH] netfilter: ipset: Fix an error code in ip_set_sockfn_get(),
Dan Carpenter
- [PATCH nf-next v5 0/8] netfilter: nf_tables_offload: support tunnel offload,
wenxu
- [PATCH nf-next v5 0/2] netfilter: nf_tables_offload: support fwd_netdev offload,
wenxu
- [PATCH iptables] doc: Note REDIRECT case of no IP address,
Joseph C. Sible
- [PATCH] src: add vlan_id type,
Michael Braun
- [PATCH nft 2/2] src: secmark: fix missing quotes in selctx strings output,
Eric Jallot
- [PATCH nft 1/2] src: secmark: fix brace indentation in object output, Eric Jallot
- [PATCHv3] netfilter: nfnetlink_log:add support for VLAN information,
Michael Braun
- [PATCH iptables] extensions: nfacct: Fix alignment mismatch in xt_nfacct_match_info,
Juliana Rodrigueiro
- [PATCHv2] netfilter: nfnetlink_log:add support for VLAN information,
Michael Braun
- [PATCH net-next 1/2] net: flow_offload: mangle 128-bit packet field with one action,
Pablo Neira Ayuso
- [PATCH net-next 0/2] netfilter: payload mangling offload support,
Pablo Neira Ayuso
- [PATCH 1/1] netfilter: nf_tables: fib: Drop IPV6 packages if IPv6 is disabled on boot,
Leonardo Bras
- [PATCH nf-next v2] netfilter: nf_table_offload: Fix the incorrect rcu usage in nft_indr_block_get_and_ing_cmd,
wenxu
- [ANNOUNCE] nftables 0.9.2 release, Pablo Neira Ayuso
- [PATCH WIP nf-next] netfilter: nf_tables: Introduce stateful object update operation,
Fernando Fernandez Mancera
- [ANNOUNCE] libnftnl 1.1.4 release,
Pablo Neira Ayuso
- [PATCH nf-next] netfilter: nf_table_offload: Fix the incorrect rcu usage in nft_indr_block_get_and_ing_cmd,
wenxu
- [PATCH nf-next 1/3] netfilter: nf_offload: Make nft_flow_offload_chain public,
wenxu
- [PATCH] netfilter: add include guard to nf_conntrack_h323_types.h,
Masahiro Yamada
- Re: meter in 0.9.1 (nft noob question),
Duncan Roe
- [PATCH nft v7 1/2] evaluate: New internal helper __expr_evaluate_range,
Ander Juaristi
- git pull has stopped working, Duncan Roe
- [PATCH libnftnl v2 1/2] expr: meta: Make NFT_META_TIME_{NS,DAY,HOUR} known,
Ander Juaristi
- [PATCH v4] netfilter: nft_dynset: support for element deletion,
Ander Juaristi
- [PATCH v5 1/2] netfilter: Introduce new 64-bit helper functions,
Ander Juaristi
- [PATCH v2] netfilter: nfacct: Fix alignment mismatch in xt_nfacct_match_info,
Juliana Rodrigueiro
- [PATCH nftables 0/8] add typeof keyword,
Florian Westphal
- [PATCH nftables 1/8] src: libnftnl: run single-initcalls only once, Florian Westphal
- [PATCH nftables 2/8] src: libnftnl: split nft_ctx_new/free, Florian Westphal
- [PATCH nftables 3/8] src: store expr, not dtype to track data in sets, Florian Westphal
- [PATCH nftables 4/8] src: parser: add syntax to provide bitsize for non-spcific types, Florian Westphal
- [PATCH nftables 5/8] src: add "typeof" keyword, Florian Westphal
- [PATCH nftables 6/8] src: add "typeof" print support, Florian Westphal
- [PATCH nftables 7/8] src: netlink: remove assertion, Florian Westphal
- [PATCH nftables 8/8] tests: add typeof test cases, Florian Westphal
- Re: [PATCH nftables 0/8] add typeof keyword, Pablo Neira Ayuso
- [PATCH nft v3] meta: add ibrpvid and ibrvproto support,
wenxu
- Unable to create htb tc classes more than 64K,
Akshat Kakkar
- [PATCH conntrack-tools] src: fix strncpy -Wstringop-truncation warnings,
Jose M. Guisado Gomez
- [PATCH nf] netfilter: nft_flow_offload: missing netlink attribute policy, Pablo Neira Ayuso
- [PATCH net,v5 0/2] flow_offload hardware priority fixes,
Pablo Neira Ayuso
- [nft PATCH] doc: don't check asciidoc output with xmllint,
Arturo Borrero Gonzalez
- [PATCH nft v2] meta: add ibrpvid and ibrvproto support,
wenxu
- [PATCH] netfilter: nft_bitwise: Adjust parentheses to fix memcmp size argument,
Nathan Chancellor
- fallout from net-next netfilter changes,
David Miller
- [PATCH nftables] src: json: fix constant parsing on bigendian,
Florian Westphal
- [PATCH nftables] src: json: support json restore for "th" pseudoheader,
Florian Westphal
- [PATCH nf-next v4 00/12] netfilter: nf_tables_offload: support more expr and obj offload,
wenxu
- [PATCH nf-next v4 03/12] netfilter: nft_fwd_netdev: add fw_netdev action support, wenxu
- [PATCH nf-next v4 01/12] netfilter: nf_flow_offload: add net in offload_ctx, wenxu
- [PATCH nf-next v4 04/12] netfilter: nft_payload: add nft_set_payload offload support, wenxu
- [PATCH nf-next v4 02/12] netfilter: nf_tables_offload: add offload_actions callback, wenxu
- [PATCH nf-next v4 05/12] netfilter: nft_tunnel: add nft_tunnel_mode_validate function, wenxu
- [PATCH nf-next v4 06/12] netfilter: nft_tunnel: support NFT_TUNNEL_IP_SRC/DST match, wenxu
- [PATCH nf-next v4 07/12] netfilter: nft_tunnel: add ipv6 check in nft_tunnel_mode_validate, wenxu
- [PATCH nf-next v4 08/12] netfilter: nft_tunnel: support NFT_TUNNEL_IP6_SRC/DST match, wenxu
- [PATCH nf-next v4 10/12] netfilter: nft_tunnel: add NFTA_TUNNEL_KEY_RELEASE action, wenxu
- [PATCH nf-next v4 12/12] netfilter: nft_tunnel: support nft_tunnel_obj offload, wenxu
- [PATCH nf-next v4 09/12] netfilter: nft_tunnel: support tunnel meta match offload, wenxu
- [PATCH nf-next v4 11/12] netfilter: nft_objref: add nft_objref_type offload, wenxu
- Re: [PATCH nf-next v4 00/12] netfilter: nf_tables_offload: support more expr and obj offload, wenxu
- [PATCH nft,v3] gmputil: assert length is non-zero, Pablo Neira Ayuso
- [PATCH nft,v2] gmputil: assert length is non-zero, Pablo Neira Ayuso
- [PATCH nft] gmputil: assert length is non-zero, Pablo Neira Ayuso
- [PATCH libnftnl] expr: meta: Make NFT_META_BRI_IIF{VPROTO,PVID} known,
wenxu
- [PATCH nft] meta: add ibrpvid and ibrvproto support,
wenxu
- [PATCH AUTOSEL 5.2 021/123] netfilter: ebtables: fix a memory leak bug in compat, Sasha Levin
- [PATCH AUTOSEL 5.2 055/123] netfilter: ipset: Actually allow destination MAC address for hash:ip,mac sets too, Sasha Levin
- [PATCH AUTOSEL 5.2 056/123] netfilter: ipset: Copy the right MAC address in bitmap:ip,mac and hash:ip,mac sets, Sasha Levin
- [PATCH AUTOSEL 5.2 057/123] netfilter: ipset: Fix rename concurrency with listing, Sasha Levin
- [PATCH AUTOSEL 5.2 058/123] netfilter: ebtables: also count base chain policies, Sasha Levin
- [PATCH AUTOSEL 4.19 06/68] netfilter: ebtables: fix a memory leak bug in compat, Sasha Levin
- [PATCH AUTOSEL 4.19 25/68] netfilter: ipset: Actually allow destination MAC address for hash:ip,mac sets too, Sasha Levin
- [PATCH AUTOSEL 4.19 26/68] netfilter: ipset: Copy the right MAC address in bitmap:ip,mac and hash:ip,mac sets, Sasha Levin
- [PATCH AUTOSEL 4.19 27/68] netfilter: ipset: Fix rename concurrency with listing, Sasha Levin
- [PATCH AUTOSEL 4.19 28/68] netfilter: ebtables: also count base chain policies, Sasha Levin
- [PATCH AUTOSEL 4.9 03/33] netfilter: ebtables: fix a memory leak bug in compat, Sasha Levin
- [PATCH AUTOSEL 4.4 03/28] netfilter: ebtables: fix a memory leak bug in compat, Sasha Levin
- [PATCH AUTOSEL 4.14 05/44] netfilter: ebtables: fix a memory leak bug in compat, Sasha Levin
- [PATCH AUTOSEL 4.14 16/44] netfilter: ipset: Fix rename concurrency with listing, Sasha Levin
- [PATCH AUTOSEL 4.14 17/44] netfilter: ebtables: also count base chain policies, Sasha Levin
- [nf-next:master 14/17] include/uapi/linux/netfilter_ipv6/ip6t_LOG.h:5:2: warning: #warning "Please update iptables, this file will be removed soon!",
kbuild test robot
- [PATCH v2 nftables 0/3] un-break nftables on big-endian arches,
Florian Westphal
- Re: [nf-next:master 5/17] net/netfilter/nft_bitwise.c:138:50: warning: size argument in 'memcmp' call is a comparison, Nick Desaulniers
- [PATCH libnftnl 1/2] Introduce new conditions 'time', 'day' and 'hour',
Ander Juaristi
- [PATCH nftables 0/4] un-break nftables on big-endian arches,
Florian Westphal
- [PATCH v4 1/2] netfilter: Introduce new 64-bit helper functions,
Ander Juaristi
- [PATCH 10/17] netfilter: add missing IS_ENABLED(CONFIG_NF_TABLES) check to header-file.,
Pablo Neira Ayuso
- [PATCH nf,v2] netfilter: nft_flow_offload: skip tcp rst and fin packets, Pablo Neira Ayuso
- [PATCH nf] netfilter: ebtables: Fix argument order to ADD_COUNTER,
Todd Seidelmann
- [PATCH nf] netfilter: nft_flow_offload: skip tcp rst and fin packets,
Pablo Neira Ayuso
- [PATCH v3] netfilter: nft_dynset: support for element deletion,
Ander Juaristi
- [PATCH] MAINTAINERS: ip masquerading: Update path to the driver,
Denis Efremov
- Taking a day off..., David Miller
- Re: [PATCH net] netfilter: ebtables: Fix argument order to ADD_COUNTER, Florian Westphal
- Missing SetID, Serguei Bezverkhi (sbezverk)
- [PATCH nf-next] netfilter: connlabels: prefer static lock initialiser,
Florian Westphal
- geoip doesn't work with ipv6,
Thomas B. Clark
- [PATCH] tests: add json test for vlan rule fix,
michael-dev
- xtables addons build on 5.2.6 ends with error: 'struct shash_desc' has no member named 'flags',
Franta Hanzlík
- [PATCH nft,v2] tests: shell: use-after-free from abort path, Pablo Neira Ayuso
- [PATCH nft] include: refresh nf_tables.h cached copy, Pablo Neira Ayuso
- [PATCH nft 1/2] tests: shell: move chain priority and policy to chain folder,
Pablo Neira Ayuso
- [PATCH libnetfilter_conntrack] libnetfilter_conntrack: support for IPS_OFFLOAD, Pablo Neira Ayuso
- [PATCH conntrack-tools] conntrack: support for IPS_OFFLOAD, Pablo Neira Ayuso
- [PATCH nf 1/2] netfilter: nf_flow_table: conntrack picks up expired flows,
Pablo Neira Ayuso
- [PATCH nf] netfilter: nf_tables: user-after-free in failing rule with bound set, Pablo Neira Ayuso
- kernel BUG at lib/list_debug.c:47! invalid opcode: 0000 [#1] SMP NOPTI, Reindl Harald
- [PATCH net v3] Use consistent ct id hash calculation,
Dirk Morris
- [PATCH net v2] netfilter: Use consistent ct id hash calculation,
Dirk Morris
- nftables and set with interval,
Serguei Bezverkhi (sbezverk)
- [PATCH] net/netfilter/nf_nat_proto.c - make tables static,
Valdis Klētnieks
- [PATCH] net/netfilter - add missing prototypes.,
Valdis Klētnieks
- [PATCH nft 1/2] src: add parse_ctx object,
Pablo Neira Ayuso
- [PATCH net-next v1 0/8] netfilter: header compilation fixes,
Jeremy Sowden
- [bug report] netfilter: nf_tables: add hardware offload support, Dan Carpenter
- [PATCH net-next v7 0/6] flow_offload: add indr-block in nf_table_offload,
wenxu
- [PATCH net] netfilter: Use consistent ct id hash calculation,
Dirk Morris
- [PATCH 0/2 net,v4] flow_offload hardware priority fixes,
Pablo Neira Ayuso
- [PATCH RFC nf-next] Introducing stateful object update operation,
Fernando Fernandez Mancera
- [PATCH RFC nft] src: avoid re-initing core library when a second context struct is allocated,
Florian Westphal
- [PATCH net-next] net: use "nb" for notifier blocks,
Alexey Dobriyan
- [PATCH] netfilter: nfnetlink_log:add support for VLAN information,
Michael Braun
- [PATCH net-next v6 0/6] flow_offload: add indr-block in nf_table_offload,
wenxu
- [PATCH AUTOSEL 5.2 02/76] netfilter: nfnetlink: avoid deadlock due to synchronous request_module, Sasha Levin
- [PATCH AUTOSEL 5.2 07/76] netfilter: conntrack: always store window size un-scaled, Sasha Levin
- [PATCH AUTOSEL 5.2 08/76] netfilter: nft_hash: fix symhash with modulus one, Sasha Levin
- [PATCH AUTOSEL 5.2 15/76] netfilter: nf_tables: Support auto-loading for inet nat, Sasha Levin
- [PATCH AUTOSEL 4.19 01/42] netfilter: nfnetlink: avoid deadlock due to synchronous request_module,
Sasha Levin
- [PATCH AUTOSEL 4.14 01/30] netfilter: nfnetlink: avoid deadlock due to synchronous request_module,
Sasha Levin
- [PATCH net-next 0/3,v2] flow_offload hardware priority fixes,
Pablo Neira Ayuso
- [PATCH AUTOSEL 4.4 01/17] netfilter: nfnetlink: avoid deadlock due to synchronous request_module, Sasha Levin
- [PATCH AUTOSEL 4.9 01/22] netfilter: nfnetlink: avoid deadlock due to synchronous request_module, Sasha Levin
- [PATCH AUTOSEL 5.2 06/76] netfilter: nf_tables: fix module autoload for redir, Sasha Levin
- [PATCH AUTOSEL 5.2 05/76] netfilter: Fix rpfilter dropping vrf packets by mistake, Sasha Levin
- [PATCH 0/2 nft v4] Introduce variables in chain priority and policy,
Fernando Fernandez Mancera
- [PATCH 0/2 nft v3] Introduce variables in chain priority and policy,
Fernando Fernandez Mancera
- [PATCH] meta: Introduce new conditions 'time', 'day' and 'hour',
Ander Juaristi
- [PATCH v3] netfilter: nft_meta: support for time matching,
Ander Juaristi
- [PATCH v6] meta: Introduce new conditions 'time', 'day' and 'hour',
Ander Juaristi
- [PATCH] expr: allow export of notrack expr,
Ivan Babrou
- [PATCH nf-next v3 0/9] netfilter: nf_tables_offload: support more expr and obj offload,
wenxu
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
