Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- Re: [PATCH nft v2 1/6] osf: add version fingerprint support, (continued)
- [PATCH nf] netfilter: nf_tables: use-after-free in dynamic operations, Pablo Neira Ayuso
- [PATCH nf,v4] netfilter: nf_tables: bogus EBUSY when deleting set after flush, Pablo Neira Ayuso
- [PATCH 4.19 1/2] netfilter: xt_TEE: fix wrong interface selection,
Subash Abhinov Kasiviswanathan
- [PATCH nftables] meta: Add support for `time`,
Karuna Grewal
- [PATCHv3] netfilter: nft_meta: Extend support for NFT_META_TSTAMP_NS, Karuna Grewal
- [PATCH] xtables-legacy: add missing config.h include,
Lucas Stach
- [PATCH nf,v3] netfilter: nf_tables: bogus EBUSY when deleting set after flush, Pablo Neira Ayuso
- [PATCH nf,v2] netfilter: nf_tables: bogus EBUSY when deleting set after flush, Pablo Neira Ayuso
- [PATCH nft] tests: shell: bogus EBUSY in set deletion after flush, Pablo Neira Ayuso
- [PATCH nf] netfilter: nf_tables: bogus EBUSY when deleting set after flush, Pablo Neira Ayuso
- [PATCH nf,v2] netfilter: nf_tables: fix set double-free in abort path,
Pablo Neira Ayuso
- NULL pointer dereference in nft_set_elem_destroy(),
Dmitrii Tcvetkov
- Backport of iptables TEE target fixes to 4.19,
Subash Abhinov Kasiviswanathan
- [PATCH nf] netfilter: nf_tables: return immediately on empty commit,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: fix set double-free in abort path,
Florian Westphal
- [PATCH libnftnl] src: libnftnl: export genid functions again,
Florian Westphal
- Re: [PATCH nf-next] netfilter: nft_osf: Add version option support,
Pablo Neira Ayuso
- [PATCH v2 nf] netfilter: nat: don't register device notifier twice,
Florian Westphal
- [PATCH nft] evaluate: misleading error reporting,
Pablo Neira Ayuso
- [PATCH nft 1/2,v2] segtree: remove dummy debug_octx, Pablo Neira Ayuso
- Netfilter, satya phanisree
- [PATCH nft 1/2] segtree: remove dummy debug_octx,
Pablo Neira Ayuso
- [bug report] netfilter: nft_compat: use .release_ops and remove list of extension, Dan Carpenter
- [PATCH] netfilter: nf_conntrack_sip: fix IPV6 dependency,
Arnd Bergmann
- xtables-addons build fail with linux 5.0: "error: implicit declaration of function 'do_gettimeofday'; did you mean 'do_settimeofday64'?",
PGNet Dev
- [PATCH v4 2/2] xtables-save: implement showing zeroed chain counters when saving rulesets, Alban Vidal
- [PATCH v4 1/2] iptables-save: add option to show zeroed counters when saving rulesets,
Alban Vidal
- [PATCH v4 0/2] iptables-save,xtables-save: add option to show zeroed counters when saving rulesets, Alban Vidal
- [PATCH nf-next] netfilter: nat: don't use same refcount for notifiers, Florian Westphal
- [PATCH net] netfilter: set skb transport_header before calling sctp_compute_cksum,
Xin Long
- [PATCH 20/29] netfilter: nft_tunnel: Add dst_cache support,
Pablo Neira Ayuso
- [PATCH 10/29] netfilter: nat: remove csum_recalc hook,
Pablo Neira Ayuso
- [PATCH 00/29] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 01/29] netfilter: nft_compat: use .release_ops and remove list of extension, Pablo Neira Ayuso
- [PATCH 02/29] netfilter: nf_conntrack_amanda: add support for STATE streams, Pablo Neira Ayuso
- [PATCH 04/29] netfilter: nat: merge ipv4 and ipv6 masquerade functionality, Pablo Neira Ayuso
- [PATCH 07/29] netfilter: nat: remove nf_nat_l4proto.h, Pablo Neira Ayuso
- [PATCH 08/29] netfilter: nat: remove l3 manip_pkt hook, Pablo Neira Ayuso
- [PATCH 06/29] netfilter: nat: merge nf_nat_ipv4,6 into nat core, Pablo Neira Ayuso
- [PATCH 03/29] netfilter: ebtables: remove BUGPRINT messages, Pablo Neira Ayuso
- [PATCH 05/29] netfilter: nat: move nlattr parse and xfrm session decode to core, Pablo Neira Ayuso
- [PATCH 09/29] netfilter: nat: remove csum_update hook, Pablo Neira Ayuso
- Re: [PATCH 00/29] Netfilter/IPVS updates for net-next, David Miller
- [PATCH] netfilter: nft_meta: Extend support for NFT_META_TSTAMP_NS,
Karuna Grewal
- [PATCH] netfilter: nf_ct_helper: Fix possible panic when nf_conntrack_helper_unregister is used in an unloadable module,
Su Yanjun
- [PATCH AUTOSEL 4.20 59/81] netfilter: nf_nat: skip nat clash resolution for same-origin entries, Sasha Levin
- [PATCH AUTOSEL 4.19 46/64] netfilter: nf_nat: skip nat clash resolution for same-origin entries, Sasha Levin
- [PATCH AUTOSEL 4.14 27/36] netfilter: nf_nat: skip nat clash resolution for same-origin entries, Sasha Levin
- [PATCH AUTOSEL 4.9 13/19] netfilter: nf_nat: skip nat clash resolution for same-origin entries, Sasha Levin
- [PATCH nf-next 0/3] netfilter: nf_tables: merge remaining nat related modules,
Florian Westphal
- [PATCH][v2] time: Introduce jiffies64_to_msecs(),
Li RongQing
- [PATCH] netfilter: xt_IDLETIMER: fix sysfs callback function type,
Sami Tolvanen
- [PATCH] time: Introduce jiffies64_to_msecs(),
Li RongQing
- [nft PATCH 0/5] Some fixes for JSON support,
Phil Sutter
- [PATCH] netfilter: conntrack: limit sysctl setting for boolean options,
xiangxia . m . yue
- [PATCH][v2] netfilter: ensure that CONNTRACK_LOCKS is power of 2,
Li RongQing
- [PATCH][v2] netfilter: check the result of dereferencing base_chain->stats,
Li RongQing
- [PATCH net] netfilter: bridge: Don't sabotage nf_hook calls for an l3mdev slave,
David Ahern
- [PATCH nf-next] netfilter: ctnetlink: do not bail out with EBUSY on unchangeable bits, Pablo Neira Ayuso
- [PATCH nf 1/3] netfilter: nft_set_hash: fix lookups with fixed size hash on big endian,
Pablo Neira Ayuso
- [PATCH net] ipvs: get sctphdr by sctphoff in sctp_csum_check,
Xin Long
- [PATCH][nf-next] netfilter: replace modulo operation with bitwise AND,
Li RongQing
- [PATCH][nf-next] netfilter: Use RCU primitives under RCU protected data,
Li RongQing
- [PATCH] netfilter: force access of RCU protected data in nft_update_chain_stats,
Li RongQing
- [PATCH AUTOSEL 4.20 05/72] netfilter: nft_compat: use refcnt_t type for nft_xt reference count, Sasha Levin
- [PATCH AUTOSEL 4.20 06/72] netfilter: nft_compat: make lists per netns, Sasha Levin
- [PATCH AUTOSEL 4.20 17/72] ipvs: Fix signed integer overflow when setsockopt timeout, Sasha Levin
- [PATCH AUTOSEL 4.20 38/72] netfilter: nfnetlink_osf: add missing fmatch check, Sasha Levin
- [PATCH AUTOSEL 4.20 37/72] netfilter: ebtables: compat: un-break 32bit setsockopt when no rules are present, Sasha Levin
- [PATCH AUTOSEL 4.19 04/65] netfilter: nft_compat: use refcnt_t type for nft_xt reference count, Sasha Levin
- [PATCH AUTOSEL 4.19 05/65] netfilter: nft_compat: make lists per netns, Sasha Levin
- [PATCH AUTOSEL 4.19 14/65] ipvs: Fix signed integer overflow when setsockopt timeout, Sasha Levin
- [PATCH AUTOSEL 4.19 34/65] netfilter: nfnetlink_osf: add missing fmatch check, Sasha Levin
- [PATCH AUTOSEL 4.14 08/45] ipvs: Fix signed integer overflow when setsockopt timeout, Sasha Levin
- [PATCH AUTOSEL 4.14 21/45] netfilter: ebtables: compat: un-break 32bit setsockopt when no rules are present, Sasha Levin
- [PATCH AUTOSEL 4.9 08/32] ipvs: Fix signed integer overflow when setsockopt timeout, Sasha Levin
- [PATCH AUTOSEL 4.4 05/26] ipvs: Fix signed integer overflow when setsockopt timeout, Sasha Levin
- [PATCH AUTOSEL 3.18 04/18] ipvs: Fix signed integer overflow when setsockopt timeout, Sasha Levin
- [PATCH AUTOSEL 4.19 33/65] netfilter: ebtables: compat: un-break 32bit setsockopt when no rules are present, Sasha Levin
- [PATCH AUTOSEL 4.20 07/72] netfilter: nft_compat: destroy function must not have side effects, Sasha Levin
- WARNING in xt_compat_add_offset,
syzbot
- [PATCH nft] doc: update goto/jump help text,
Florian Westphal
- [PATCH][nf-next][v2] netfilter: convert the proto argument from u8 to u16,
Li RongQing
- [PATCH iptables] arptables-nft: fix decoding of hlen on bigendian platforms,
Florian Westphal
- [PATCH net-next] netfilter: nft_tunnel: Add dst_cache support,
wenxu
- [PATCH][nf-next] netfilter: convert the proto argument from u8 to u16,
Li RongQing
- [PATCH][nf-next] netfilter: remove unneeded switch fall-through,
Li RongQing
- [iptables PATCH 1/3] extensions: Fix ipvs vproto parsing,
Phil Sutter
- [PATCH nf-next] netfilter: conntrack: tcp: only close if RST matches exact sequence,
Florian Westphal
- [PATCH nf-next] netfilter: conntrack: avoid same-timeout update,
Florian Westphal
- [iptables PATCH] extensions: AUDIT: Document ineffective --type option, Phil Sutter
- [PATCH conntrack-tools 1/3] conntrack: extend nfct_mnl_socket_open() to use it to handle events,
Pablo Neira Ayuso
- update on netdev 0x13 conference, Jamal Hadi Salim
- [iptables PATCH] doc: Install ip{6,}tables-translate.8 manpages, Phil Sutter
- [ANNOUNCE] 15th Netfilter Workshop in Malaga, Spain, Pablo Neira Ayuso
- [PATCH] ipset: fix spelling error in libipset.3 manpage, Neutron Soutmun
- [iptables PATCH 0/5] Make testsuites a bit more versatile,
Phil Sutter
- [PATCH v4 nf-next 0/9] netfilter: nat: merge ipv4 and ipv6 nat modules,
Florian Westphal
- [PATCH nf-next v4 1/9] netfilter: nat: merge ipv4 and ipv6 masquerade functionality, Florian Westphal
- [PATCH nf-next v4 2/9] netfilter: nat: move nlattr parse and xfrm session decode to core, Florian Westphal
- [PATCH nf-next v4 4/9] netfilter: nat: remove nf_nat_l4proto.h, Florian Westphal
- [PATCH nf-next v4 3/9] netfilter: nat: merge nf_nat_ipv4,6 into nat core, Florian Westphal
- [PATCH nf-next v4 5/9] netfilter: nat: remove l3 manip_pkt hook, Florian Westphal
- [PATCH nf-next v4 6/9] netfilter: nat: remove csum_update hook, Florian Westphal
- [PATCH nf-next v4 7/9] netfilter: nat: remove csum_recalc hook, Florian Westphal
- [PATCH nf-next v4 8/9] netfilter: nat: remove l3proto struct, Florian Westphal
- [PATCH nf-next v4 9/9] netfilter: nat: remove nf_nat_l3proto.h and nf_nat_core.h, Florian Westphal
- Re: [PATCH v4 nf-next 0/9] netfilter: nat: merge ipv4 and ipv6 nat modules, Pablo Neira Ayuso
- [PATCH nf] netfilter: ebtables: remove BUGPRINT messages,
Florian Westphal
- Network interface switch features, hh h
- [PATCH v2] netfilter: nf_conntrack_amanda: add support for STATE streams,
Florian Tham
- Re: INFO: rcu detected stall in netlink_sendmsg, syzbot
- [PATCH 00/11] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 06/11] ipvs: Use struct_size() helper, Pablo Neira Ayuso
- [PATCH 05/11] netfilter: conntrack: fix indentation issue, Pablo Neira Ayuso
- [PATCH 04/11] netfilter: ipv6: avoid indirect calls for IPV6=y case, Pablo Neira Ayuso
- [PATCH 11/11] netfilter: nf_conntrack_sip: add sip_external_media logic, Pablo Neira Ayuso
- [PATCH 09/11] netfilter: reject: skip csum verification for protocols that don't support it, Pablo Neira Ayuso
- [PATCH 08/11] netfilter: conntrack: fix cloned unconfirmed skb->_nfct race in __nf_conntrack_confirm, Pablo Neira Ayuso
- [PATCH 02/11] netfilter: nft_tunnel: Add NFTA_TUNNEL_MODE options, Pablo Neira Ayuso
- [PATCH 07/11] netfilter: xt_recent: Use struct_size() in kvzalloc(), Pablo Neira Ayuso
- [PATCH 10/11] netfilter: ipt_CLUSTERIP: make symbol 'cip_netdev_notifier' static, Pablo Neira Ayuso
- [PATCH 01/11] netfilter: nf_tables: add NFTA_RULE_POSITION_ID to nla_policy, Pablo Neira Ayuso
- [PATCH 03/11] netfilter: nat: remove module dependency on ipv6 core, Pablo Neira Ayuso
- Re: [PATCH 00/11] Netfilter/IPVS updates for net-next, David Miller
- [PATCH] netfilter/ipvs: Fix unused variable warning,
Borislav Petkov
- [PATCH nf-next] ipvs: change some data types from int to bool,
Andrea Claudi
- [PATCH net-next] netfilter: ipt_CLUSTERIP: make symbol 'cip_netdev_notifier' static,
Wei Yongjun
- [PATCH nf] ipvs: fix warning on unused variable,
Andrea Claudi
- [iptables PATCH] arptables: Print space before comma and counters,
Phil Sutter
- [PATCH nf] netfilter: nf_tables: fix flush after rule deletion in the same batch, Pablo Neira Ayuso
- [PATCH] tests: shell: flush after rule deletion, Pablo Neira Ayuso
- RFC: nftables does not allow to delete a rule twice,
Phil Sutter
- [PATCH] netfilter: nf_conntrack_amanda: add support for STATE streams,
Florian Tham
- Re: Englobe interfaces, Pablo Neira Ayuso
- [PATCH 1/2 nf] netfilter: nft_compat: use-after-free when deleting targets,
Pablo Neira Ayuso
- [iptables PATCH 0/5] Align iptables-nft error messages with legacy,
Phil Sutter
- [PATCH v3] netfilter: reject: skip csum verification for protocols that don't support it,
Alin Nastac
- [PATCH AUTOSEL 4.20 038/105] netfilter: nf_tables: fix leaking object reference count, Sasha Levin
- [PATCH AUTOSEL 4.20 043/105] netfilter: nft_flow_offload: Fix reverse route lookup, Sasha Levin
- [PATCH AUTOSEL 4.20 049/105] netfilter: nft_flow_offload: fix interaction with vrf slave device, Sasha Levin
- [PATCH AUTOSEL 4.20 065/105] netfilter: nft_flow_offload: fix checking method of conntrack helper, Sasha Levin
- [PATCH AUTOSEL 4.19 32/83] netfilter: nf_tables: fix leaking object reference count, Sasha Levin
- [PATCH AUTOSEL 4.19 37/83] netfilter: nft_flow_offload: Fix reverse route lookup, Sasha Levin
- [PATCH AUTOSEL 4.19 41/83] netfilter: nft_flow_offload: fix interaction with vrf slave device, Sasha Levin
- [nf-next:master 9/9] ipt_REJECT.c:(.text+0x120): multiple definition of `nf_reject_verify_csum'; net/ipv4/netfilter/nf_reject_ipv4.o:nf_reject_ipv4.c:(.text+0x470): first defined here, kbuild test robot
- [PATCH AUTOSEL 4.19 56/83] netfilter: nft_flow_offload: fix checking method of conntrack helper, Sasha Levin
- [PATCH AUTOSEL 4.14 17/34] netfilter: nf_tables: fix leaking object reference count, Sasha Levin
- [nf-next:master 9/9] include/net/netfilter/nf_reject.h:5: multiple definition of `nf_reject_verify_csum'; net/ipv4/netfilter/nf_reject_ipv4.o:include/net/netfilter/nf_reject.h:5: first defined here, kbuild test robot
- conntrack --ignore-error proposal to fix delete races, William Ahern
- [conntrack-tools PATCH v2] Support compiling against libtirpc,
Phil Sutter
- [conntrack-tools PATCH] Support compiling against libtirpc,
Phil Sutter
- [conntrack-tools PATCH] Fix for implicit-fallthrough warnings,
Phil Sutter
- [conntrack-tools PATCH] nfct: Drop dead code in nfct_timeout_parse_params(),
Phil Sutter
- [ebtables PATCH] Print IPv6 prefixes in CIDR notation,
Phil Sutter
- [PATCH nf-next,RFC,v2] netfilter: nft_compat: add release_ops to struct nft_expr_ops and use it,
Pablo Neira Ayuso
- [PATCH v2] netfilter: reject: skip csum verification for protocols that don't support it,
Alin Nastac
- [conntrack-tools PATCH] conntrackd: helpers: dhcpv6: Fix potential array overrun,
Phil Sutter
- [PATCH nf-next,RFC] netfilter: nft_compat: add release_ops to struct nft_expr_ops and use it,
Pablo Neira Ayuso
- [PATCH nf-next,v2] netfilter: conntrack: fix cloned unconfirmed skb->_nfct race in __nf_conntrack_confirm,
Pablo Neira Ayuso
- [PATCH nf] netfilter: nf_nat_snmp_basic: add missing length checks in ASN.1 cbs, Pablo Neira Ayuso
- Netfilter conntrack table query., satya phanisree
- [PATCH nf v2] ipvs: fix dependency on nf_defrag_ipv6,
Andrea Claudi
- [PATCH nf v2] netfilter: compat: initialize all fields in xt_init,
Francesco Ruggeri
- [PATCH nf] netfilter: compat: initialize all fields in xt_init,
Francesco Ruggeri
- [PATCH libnftnl,v3] udata: add NFTNL_UDATA_* definitions,
Pablo Neira Ayuso
- [PATCH] udata: add NFTNL_UDATA_* definitions, Pablo Neira Ayuso
- [PATCH libnftnl] udata: add NFTNL_UDATA_* definitions,
Pablo Neira Ayuso
- [PATCH nft 0/5] src: expr: reduce size of struct expr,
Florian Westphal
- [PATCH nf] netfilter: nat: fix spurious connection timeouts,
Florian Westphal
- Update pf.os with newer OS fingerprints,
Fernando Fernandez Mancera
- [PATCH] netfilter: reject: skip csum verification for protocols that don't support it,
Alin Nastac
- [PATCH net-next] netfilter: xt_recent: Use struct_size() in kvzalloc(),
Gustavo A. R. Silva
- [PATCH net-next] ipvs: Use struct_size() helper,
Gustavo A. R. Silva
- [iptables PATCH] xtables-save: Fix table not found error message, Phil Sutter
- [iptables PATCH v3 1/3] nft: Don't assume NFTNL_RULE_USERDATA holds a comment,
Phil Sutter
- [iptables PATCH v2] ebtables-nft: Support user-defined chain policies, Phil Sutter
- [PATCH nf] ipvs: fix dependency on nf_defrag_ipv6,
Andrea Claudi
- [PATCH] netfilter: conntrack: fix indentation issue,
Colin King
- [PATCH] ipv6: fix icmp6_send() route lookup,
Alin Nastac
- [iptables PATCH] nft: Eliminate dead code in __nft_rule_list, Phil Sutter
- [iptables PATCH v2] Revert "ebtables: use extrapositioned negation consistently",
Phil Sutter
- [iptables PATCH 0/2] ebtables-nft: Support user-defined chain policies,
Phil Sutter
- [PATCH nf v2] netfilter: nft_compat: don't use refcount_inc on newly allocated entry,
Florian Westphal
- [iptables PATCH v3] xtables: Fix for false-positive rule matching,
Phil Sutter
- [nf:master 4/4] net//netfilter/nft_compat.c:852:28: warning: assignment from incompatible pointer type, kbuild test robot
- [nf:master 4/4] net//netfilter/nft_compat.c:852:28: error: assignment from incompatible pointer type, kbuild test robot
- [PATCH nf 1/2] netfilter: nft_compat: fix build,
Florian Westphal
- ebtables RCU patch?,
Nikolay Nikolay
- [BUG] refcount_t: underflow; use-after-free in Linux 5.0rc5,
Jordan Glover
- [PATCH 00/12 net-next,v7] add flow_rule infrastructure,
Pablo Neira Ayuso
- [PATCH 02/12 net-next,v7] net/mlx5e: support for two independent packet edit actions, Pablo Neira Ayuso
- [PATCH 03/12 net-next,v7] flow_offload: add flow action infrastructure, Pablo Neira Ayuso
- [PATCH 04/12 net-next,v7] cls_api: add translator to flow_action representation, Pablo Neira Ayuso
- [PATCH 05/12 net-next,v7] flow_offload: add statistics retrieval infrastructure and use it, Pablo Neira Ayuso
- [PATCH 07/12 net-next,v7] cls_flower: don't expose TC actions to drivers anymore, Pablo Neira Ayuso
- [PATCH 08/12 net-next,v7] flow_offload: add wake-up-on-lan and queue to flow_action, Pablo Neira Ayuso
- [PATCH 10/12 net-next,v7] dsa: bcm_sf2: use flow_rule infrastructure, Pablo Neira Ayuso
- [PATCH 09/12 net-next,v7] ethtool: add ethtool_rx_flow_spec to flow_rule structure translator, Pablo Neira Ayuso
- [PATCH 06/12 net-next,v7] drivers: net: use flow action infrastructure, Pablo Neira Ayuso
- [PATCH 11/12 net-next,v7] qede: place ethtool_rx_flow_spec after code after TC flower codebase, Pablo Neira Ayuso
- [PATCH 01/12 net-next,v7] flow_offload: add flow_rule and flow_match structures and use them, Pablo Neira Ayuso
- [PATCH 12/12 net-next,v7] qede: use ethtool_rx_flow_rule() to remove duplicated parser code, Pablo Neira Ayuso
- Re: [PATCH 00/12 net-next,v7] add flow_rule infrastructure, David Miller
- [PATCH nf-next] netfilter: nf_tables: don't break when vmap lookup yields no result,
Florian Westphal
- [PATCH nf,v4] netfilter: nf_tables: unbind set in rule from commit path, Pablo Neira Ayuso
- [PATCH v4 nf-next 01/02] netfilter: nat: remove module dependency on ipv6 core,
Florian Westphal
- [PATCH nft] tests: shell: exercise abort path with anonymous set that is bound to rule, Pablo Neira Ayuso
- [PATCH nf,v3] netfilter: nf_tables: unbind set in rule from commit path, Pablo Neira Ayuso
- [iptables PATCH v2 0/2] xtables: Fix multiple issues in rule matching code,
Phil Sutter
- [PATCH nf,v2] netfilter: nf_tables: unbind set in rule from commit path,
Pablo Neira Ayuso
- netfilter: nat: merge ipv4 and ipv6 nat modules,
Florian Westphal
- [PATCH v3 nf-next 01/11] netfilter: nat: remove module dependency on ipv6 core, Florian Westphal
- [PATCH v3 nf-next 02/11] netfilter: ipv6: avoid indirect calls for IPV6=y case, Florian Westphal
- [PATCH v3 nf-next 03/11] netfilter: nat: merge ipv4 and ipv6 masquerade functionality, Florian Westphal
- [PATCH v3 nf-next 04/11] netfilter: nat: move nlattr parse and xfrm session decode to core, Florian Westphal
- [PATCH v3 nf-next 06/11] netfilter: nat: remove nf_nat_l4proto.h, Florian Westphal
- [PATCH v3 nf-next 05/11] netfilter: nat: merge nf_nat_ipv4,6 into nat core, Florian Westphal
- [PATCH v3 nf-next 07/11] netfilter: nat: remove manip_pkt hook, Florian Westphal
- [PATCH v3 nf-next 08/11] netfilter: nat: remove csum_update hook, Florian Westphal
- [PATCH v3 nf-next 09/11] netfilter: nat: remove csum_recalc hook, Florian Westphal
- [PATCH v3 nf-next 10/11] netfilter: nat: remove l3proto struct, Florian Westphal
- [PATCH v3 nf-next 11/11] netfilter: nat: remove nf_nat_l3proto.h and nf_nat_core.h, Florian Westphal
- [iptables PATCH 0/2] Follow-up on arptables output changes,
Phil Sutter
- [PATCH nf-next v2 00/11] netfilter: nat: remove module dependency on,
Florian Westphal
- [PATCH nf-next v2 01/11] netfilter: nat: remove module dependency on ipv6 core, Florian Westphal
- [PATCH nf-next v2 02/11] netfilter: ipv6: avoid indirect calls for IPV6=y case, Florian Westphal
- [PATCH nf-next v2 03/11] netfilter: nat: merge ipv4 and ipv6 masquerade functionality, Florian Westphal
- [PATCH nf-next v2 04/11] netfilter: nat: move nlattr parse and xfrm session decode to core, Florian Westphal
- [PATCH nf-next v2 05/11] netfilter: nat: merge nf_nat_ipv4,6 into nat core, Florian Westphal
- [PATCH nf-next v2 06/11] netfilter: nat: remove nf_nat_l4proto.h, Florian Westphal
- [PATCH nf-next v2 07/11] netfilter: nat: remove manip_pkt hook, Florian Westphal
- [PATCH nf-next v2 08/11] netfilter: nat: remove csum_update hook, Florian Westphal
- [PATCH nf-next v2 09/11] netfilter: nat: remove csum_recalc hook, Florian Westphal
- [PATCH nf-next v2 10/11] netfilter: nat: remove l3proto struct, Florian Westphal
- [PATCH nf-next v2 11/11] netfilter: nat: remove nf_nat_l3proto.h and nf_nat_core.h, Florian Westphal
- [PATCH nf] netfilter: nf_tables: unbind set in rule from commit path, Pablo Neira Ayuso
- [iptables PATCH 0/7] Align arptables-nft output with legacy,
Phil Sutter
- [PATCH nf-next 00/11] netfilter: nat: merge ipv4 and ipv6 nat modules,
Florian Westphal
- [PATCH nf-next 01/11] netfilter: nat: remove module dependency on ipv6 core, Florian Westphal
- [PATCH nf-next 02/11] netfilter: ipv6: avoid indirect calls for IPV6=y case, Florian Westphal
- [PATCH nf-next 03/11] netfilter: nat: merge ipv4 and ipv6 masquerade functionality, Florian Westphal
- [PATCH nf-next 04/11] netfilter: nat: move nlattr parse and xfrm session decode to core, Florian Westphal
- [PATCH nf-next 05/11] netfilter: nat: merge nf_nat_ipv4,6 into nat core, Florian Westphal
- [PATCH nf-next 06/11] netfilter: nat: remove nf_nat_l4proto.h, Florian Westphal
- [PATCH nf-next 07/11] netfilter: nat: remove manip_pkt hook, Florian Westphal
- [PATCH nf-next 08/11] netfilter: nat: remove csum_update hook, Florian Westphal
- [PATCH nf-next 09/11] netfilter: nat: remove csum_recalc hook, Florian Westphal
- [PATCH nf-next 10/11] netfilter: nat: remove l3proto struct, Florian Westphal
- [PATCH nf-next 11/11] netfilter: nat: remove nf_nat_l3proto.h and nf_nat_core.h, Florian Westphal
- [PATCH nf] netfilter: nf_nat: skip nat clash resolution for same-origin entries,
Florian Westphal
- [PATCH nf] selftests: netfilter: add simple masq/redirect test cases,
Florian Westphal
- Fwd: Re: How to port "-m multiport ! --sports 80,443" to nftables?,
Florian Westphal
- [PATCH nf-next] netfilter: nf_tables: add NFTA_RULE_POSITION_ID to nla_policy,
Florian Westphal
- [PATCH] netfilter: nft_tunnel: Add NFTA_TUNNEL_MODE options,
wenxu
- [PATCH] selftests/netfilter: fix config fragment CONFIG_NF_TABLES_INET,
Naresh Kamboju
- [PATCH 00/33] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 04/33] netfilter: conntrack: remove helper hook again, Pablo Neira Ayuso
- [PATCH 12/33] netfilter: conntrack: remove pkt_to_tuple callback, Pablo Neira Ayuso
- [PATCH 15/33] netfilter: conntrack: remove remaining l4proto indirect packet calls, Pablo Neira Ayuso
- [PATCH 19/33] netfilter: conntrack: remove sysctl registration helpers, Pablo Neira Ayuso
- [PATCH 25/33] netfilter: nat: un-export nf_nat_used_tuple, Pablo Neira Ayuso
- [PATCH 31/33] netfilter: nft_counter: remove wrong __percpu of nft_counter_resest()'s arg, Pablo Neira Ayuso
- [PATCH 27/33] netfilter: conntrack: fix IPV6=n builds, Pablo Neira Ayuso
- [PATCH 33/33] netfilter: ipv4: remove useless export_symbol, Pablo Neira Ayuso
- [PATCH 32/33] netfilter: conntrack: fix error path in nf_conntrack_pernet_init(), Pablo Neira Ayuso
- [PATCH 29/33] ipvs: avoid indirect calls when calculating checksums, Pablo Neira Ayuso
- [PATCH 30/33] ipvs: use indirect call wrappers, Pablo Neira Ayuso
- [PATCH 26/33] Revert "netfilter: nft_hash: add map lookups for hashing operations", Pablo Neira Ayuso
- [PATCH 20/33] netfilter: conntrack: remove l4proto init and get_net callbacks, Pablo Neira Ayuso
- [PATCH 22/33] netfilter: conntrack: remove nf_ct_l4proto_find_get, Pablo Neira Ayuso
- [PATCH 28/33] netfilter: conntrack: fix bogus port values for other l4 protocols, Pablo Neira Ayuso
- [PATCH 23/33] netfilter: nf_conntrack: provide modparam to always register conntrack hooks, Pablo Neira Ayuso
- [PATCH 18/33] netfilter: conntrack: unify sysctl handling, Pablo Neira Ayuso
- [PATCH 17/33] netfilter: conntrack: avoid unneeded nf_conntrack_l4proto lookups, Pablo Neira Ayuso
- [PATCH 24/33] netfilter: nft_meta: Add NFT_META_I/OIFKIND meta type, Pablo Neira Ayuso
- [PATCH 21/33] netfilter: conntrack: remove l4proto destroy hook, Pablo Neira Ayuso
- [PATCH 16/33] netfilter: conntrack: remove pernet l4 proto register interface, Pablo Neira Ayuso
- [PATCH 07/33] netfilter: conntrack: handle builtin l4proto packet functions via direct calls, Pablo Neira Ayuso
- [PATCH 14/33] netfilter: conntrack: remove module owner field, Pablo Neira Ayuso
- [PATCH 08/33] netfilter: conntrack: handle icmp pkt_to_tuple helper via direct calls, Pablo Neira Ayuso
- [PATCH 10/33] netfilter: conntrack: gre: switch module to be built-in, Pablo Neira Ayuso
- [PATCH 13/33] netfilter: conntrack: remove invert_tuple callback, Pablo Neira Ayuso
- [PATCH 01/33] netfilter: nf_tables: prepare nft_object for lookups via hashtable, Pablo Neira Ayuso
- [PATCH 11/33] netfilter: conntrack: remove net_id, Pablo Neira Ayuso
- [PATCH 09/33] netfilter: conntrack: gre: convert rwlock to rcu, Pablo Neira Ayuso
- [PATCH 06/33] netfilter: nf_tables: Support RULE_ID reference in new rule, Pablo Neira Ayuso
- [PATCH 05/33] netfilter: physdev: relax br_netfilter dependency, Pablo Neira Ayuso
- [PATCH 03/33] netfilter: nf_tables: add direct calls for all builtin expressions, Pablo Neira Ayuso
- [PATCH 02/33] netfilter: nf_tables: handle nft_object lookups via rhltable, Pablo Neira Ayuso
- Re: [PATCH 00/33] Netfilter/IPVS updates for net-next, David Miller
- [PATCH nft] include: add cplusplus guards for extern,
Pablo Neira Ayuso
- "Kernel bug detected [...] nf_ct_del_from_dying_or_unconfirmed_list",
Linus Lüssing
- [PATCH nf-next] netfilter: ipv4: remove useless export_symbol,
Florian Westphal
- [conntrack-tools PATCH] conntrackd.conf.8: fix state filter example,
Arturo Borrero Gonzalez
- Historical keynote by Rusty Russell at linux.conf.au 2019, Harald Welte
- [RFC nft] evaluate: kill anon sets with one element,
Florian Westphal
- Userspace Queue Payloads,
dave madden
- [PATCH nft] meta: add iifkind and oifkind support,
wenxu
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
