Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- [PATCH net-next,RFC 01/13] net: Add a helper to get the packet offload callbacks by priority., (continued)
- [PATCH net-next,RFC 01/13] net: Add a helper to get the packet offload callbacks by priority., Pablo Neira Ayuso
- [PATCH net-next,RFC 04/13] net: Use one bit of NAPI_GRO_CB for the netfilter fastpath., Pablo Neira Ayuso
- [PATCH net-next,RFC 02/13] net: Change priority of ipv4 and ipv6 packet offloads., Pablo Neira Ayuso
- [PATCH net-next,RFC 13/13] netfilter: nft_flow_offload: make sure route is not stale, Pablo Neira Ayuso
- [PATCH net-next,RFC 03/13] net: Add a GSO feature bit for the netfilter forward fastpath., Pablo Neira Ayuso
- [PATCH net-next,RFC 09/13] netfilter: nf_flow_table: add hooknum to flowtable type, Pablo Neira Ayuso
- [PATCH net-next,RFC 12/13] netfilter: nft_flow_offload: remove secpath check, Pablo Neira Ayuso
- [PATCH net-next,RFC 08/13] netfilter: nft_chain_filter: add support for early ingress, Pablo Neira Ayuso
- [PATCH net-next,RFC 11/13] netfilter: nft_flow_offload: enable offload after second packet is seen, Pablo Neira Ayuso
- [PATCH net-next,RFC 06/13] netfilter: add early ingress support for IPv6, Pablo Neira Ayuso
- [PATCH net-next,RFC 05/13] netfilter: add early ingress hook for IPv4, Pablo Neira Ayuso
- [PATCH net-next,RFC 10/13] netfilter: nf_flow_table: add flowtable for early ingress hook, Pablo Neira Ayuso
- [PATCH net-next,RFC 07/13] netfilter: add ESP support for early ingress, Pablo Neira Ayuso
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, Willem de Bruijn
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, Eric Dumazet
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, David Miller
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, Tom Herbert
- [nft PATCH] doc: Add libnftables man page,
Phil Sutter
- [PATCH WIP nftables] src: add ct timeout support,
Harsha Sharma
- [PATCH nf-next 0/7] netfilter: preparation work to remove l3 trackers,
Florian Westphal
- [nft PATCH] libnftables: Fix exit_cookie(),
Phil Sutter
- [PATCH net] netfilter: ipv6: nf_defrag: reduce struct net memory waste,
Eric Dumazet
- [PATCH nf-next v4] net: netfilter: nf_tables_api: Use id allocation.,
Varsha Rao
- [PATCH net] netfilter: nf_queue: augment nfqa_cfg_policy,
Eric Dumazet
- [PATCH nf] netfilter: helper: Fix possible panic after nf_conntrack_helper_unregister,
gfree . wind
- [PATCH nf] netfilter: Fix nf_conncount garbage collection,
Yi-Hung Wei
- [PATCH nf] netfilter: xt_connmark: fix list corruption on rmmod,
Florian Westphal
- [PATCH] src: Fix another build warning / error,
Duncan Roe
- [PATCH libnftnl v2 3/3] examples: Add test for assigning timeout objects via rule, Harsha Sharma
- [PATCH libnftnl v2 2/3] examples: add nft-ct-timeout-{add,del,get}, Harsha Sharma
- [PATCH libnftnl v2 1/3] src: add ct timeout support, Harsha Sharma
- [PATCH libnftnl v2 0/3] Add ct timeout support, Harsha Sharma
- [PATCH nf-next v4] netfilter: nft_ct: add ct timeout support,
Harsha Sharma
- [PATCH nf] netfilter: ctnetlink: avoid null pointer dereference,
Florian Westphal
- [PATCH nf-next] netfilter: nft_reject_bridge: remove unnecessary ttl set,
Taehee Yoo
- [PATCH nft] rule: do not print default burst for objects,
Pablo Neira Ayuso
- [PATCH nf] netfilter: nft_dynset: do not reject set updates with NFT_SET_EVAL, Pablo Neira Ayuso
- [PATCH nft] src: add dynamic flag and use it, Pablo Neira Ayuso
- [PATCH nf-next] netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain(),
Taehee Yoo
- [PATCH nf-next] netfilter: nf_tables: fix jumpstack depth validation,
Taehee Yoo
- [PATCH nf 1/2] netfilter: nf_tables: fix module unload race,
Florian Westphal
- BUG: unable to handle kernel paging request in ebt_do_table,
syzbot
- [PATCH v2] iptables: tests: shell: add shell test-suite,
Arushi Singhal
- [ANNOUNCE] nftables 0.9.0 release, Florian Westphal
- [ANNOUNCE] libnftnl 1.1.1 release, Florian Westphal
- [nft PATCH 0/7] JSON: Some fixes and documentation,
Phil Sutter
- Tproxy matching syntax,
Máté Eckl
- [PATCH] iptables: tests: shell: add shell test-suite,
Arushi Singhal
- [PATCH] netfilter: remove include/net/netfilter/nft_dup.h,
Corentin Labbe
- KMSAN: uninit-value in ebt_stp_mt_check (2),
syzbot
- [PATCH nf] netfilter: nft_socket: fix module autoload,
Pablo Neira Ayuso
- [PATCH nft] src: do not reset generation ID on ruleset flush, Pablo Neira Ayuso
- [PATCH nf-next] netfilter: nf_conntrack: Increase __IPS_MAX_BIT with new bit IPS_OFFLOAD_BIT,
gfree . wind
- [PATCH nft] expr: extend fwd statement to support address and family, Pablo Neira Ayuso
- [PATCH nf] netfilter: nft_set_rbtree: fix parameter of __nft_rbtree_lookup(),
Taehee Yoo
- [PATCH libnftnl] expr: extend fwd to support address and protocol, Pablo Neira Ayuso
- [PATCH nft] src: connlimit support, Pablo Neira Ayuso
- [PATCH libnfnl] expr: add connlimit support, Pablo Neira Ayuso
- [PATCH] build: update ebtables.h from kernel and drop local unused copy,
Jan Engelhardt
- [nft PATCH] Explicitly deny concatenated types in interval sets,
Phil Sutter
- [PATCH nft] nat: Eliminate misuse of AF_*,
Máté Eckl
- [nft PATCH] nft.8: Fix reject statement documentation,
Phil Sutter
- WARNING in ebt_do_table,
syzbot
- [RFC PATCH ghak86 V1] audit: eliminate audit_enabled magic number comparison,
Richard Guy Briggs
- [PATCH] iptables src: Use double quotes in #includes for local headers,
Duncan Roe
- [PATCH] libnftnl src: Use double quotes in #includes for non-system headers, Duncan Roe
- [PATCH v2 0/4] Added support for per-file variable scopes and global variables,
David Fabian
- [PATCH nftables] configure.ac: fix a typo in docbook2x error message.,
Fernando Fernandez Mancera
- [PATCH] nftables src: Use double quotes in #includes for non-system headers, Duncan Roe
- [PATCH v2] libmnl src: Use double quotes in #includes for non-system headers,
Duncan Roe
- [PATCH v1] libmnl src: Use double quotes in #includes for non-system headers, Duncan Roe
- issues with shaping cake to 60 gbits or in unlimited mode at 100gbps, Dave Taht
- [PATCH] netfilter: ipset: forbid family for hash:mac sets,
Florent Fourcot
- [RFC PATCH nft] parser: Set base chain prios with textual names,
Máté Eckl
- [PATCH nft] include: update linux/netfilter_ipv4.h,
Máté Eckl
- Re: [PATCH net-next] netfilter: fix null-ptr-deref in nf_nat_decode_session,
Prashant Bhole
- [PATCH nf-next] netfilter: nf_tables: add NFT_LOGLEVEL_* enumeration and use it,
Pablo Neira Ayuso
- [PATCH 0/9,v2] Netfilter updates for net-next,
Pablo Neira Ayuso
- [PATCH nf-next] netfilter: nf_tables: handle chain name lookups via rhltable,
Florian Westphal
- [PATCH nf-next,v4 1/6] netfilter: nf_tables: pass context to object destroy indirection,
Pablo Neira Ayuso
- [PATCH nf-next,v4 2/6] netfilter: nf_conncount: expose connection list interface, Pablo Neira Ayuso
- [PATCH nf-next,v4 5/6] netfilter: nf_tables: add destroy_clone expression, Pablo Neira Ayuso
- [PATCH nf-next,v4 4/6] netfilter: nf_tables: garbage collection for stateful expressions, Pablo Neira Ayuso
- [PATCH nf-next,v4 3/6] netfilter: nf_tables: pass ctx to nf_tables_expr_destroy(), Pablo Neira Ayuso
- [PATCH nf-next,v4 6/6] netfilter: nf_tables: add connlimit support, Pablo Neira Ayuso
- [PATCH nf-next,v3 0/6] connlimit support for nf_tables,
Pablo Neira Ayuso
- [PATCH nf-next,v3 6/6] netfilter: nf_tables: add connlimit support, Pablo Neira Ayuso
- [PATCH nf-next,v3 3/6] netfilter: nf_tables: pass ctx to nf_tables_expr_destroy(), Pablo Neira Ayuso
- [PATCH nf-next,v3 1/6] netfilter: nf_tables: pass context to object destroy indirection, Pablo Neira Ayuso
- [PATCH nf-next,v3 2/6] netfilter: nf_conncount: expose connection list interface, Pablo Neira Ayuso
- [PATCH nf-next,v3 4/6] netfilter: nf_tables: garbage collection of stale expressions, Pablo Neira Ayuso
- [PATCH nf-next,v3 5/6] netfilter: nf_tables: add destroy_clone expression, Pablo Neira Ayuso
- [PATCH net] ipvs: fix check on xmit to non-local addresses,
Julian Anastasov
- [PATCH nf-next] netfilter: Libify xt_TPROXY,
Máté Eckl
- [nft PATCH 0/7] Review wildcard expression parsing and some more,
Phil Sutter
- [RFC nf-next 0/5] netfilter: add ebpf translation infrastructure,
Florian Westphal
- [nft PATCH] log: Add support for audit logging,
Phil Sutter
- [PATCH nf] netfilter: nft_reject_bridge: fix skb allocation size in nft_reject_br_send_v6_unreach,
Taehee Yoo
- [PATCH nf-next,v3] netfilter: nft_fwd_netdev: allow to forward packets via neighbour layer, Pablo Neira Ayuso
- Handling of EPROTONOSUPPORT in ebtables breaking Ubuntu 18.04 apt-get upgrade, Hayden Barnes
- [PATCH net-next] netfilter: nf_tables: check msg_type before nft_trans_set(trans),
Alexey Kodanev
- [PATCH nf-next 1/3] netfilter: nf_tables: pass context to object destroy indirection,
Pablo Neira Ayuso
- [PATCH net-next v18 0/8] sched: Add Common Applications Kept Enhanced (cake) qdisc,
Toke Høiland-Jørgensen
- [PATCH nf-next] netfilter: x_tables: Decrease code duplication in tproxy target,
Máté Eckl
- [PATCH nf-next,v2] netfilter: nft_fwd_netdev: allow to forward packets via neighbour layer,
Pablo Neira Ayuso
- [PATCH v2] netfilter: nfnetlink: Remove VLA usage,
Kees Cook
- [PATCH nf-next,v5] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
- [PATCH nft] netlink: Print value sizes on Relational expression size mismatch,
Máté Eckl
- [bug report] netfilter: add struct nf_nat_hook and use it, Dan Carpenter
- [PATCH] ebtables: fix compat entry padding,
Alin Nastac
- [PATCH nf-next,v4] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
- [PATCH nf-next,v3] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
- [PATCH v2] net: nftables: Add audit support to log statement,
Phil Sutter
- [PATCH nf v2] netfilter: xt_CT: Reject the non-null terminated string from user space,
gfree . wind
- [PATCH] netfilter: nfnetlink: Remove VLA usage,
Kees Cook
- Missing skb->dst with flow offloading,
Jason A. Donenfeld
[nf-next PATCH] net: nftables: Add audit support to log statement, Phil Sutter
[PATCH nft] tests: shell: add crash reproducer, Florian Westphal
[PATCH nf-next] netfilter: nf_tables: fix jump evaluation,
Florian Westphal
using specific ip address to restrict traffic flow on mips linux target is not permited ?,
Rosysong
[PATCH nf] netfilter: xt_CT: Force user-space strings as null terminated,
gfree . wind
BUG: unable to handle kernel (3),
syzbot
[PATCH net-next v17 0/8] sched: Add Common Applications Kept Enhanced (cake) qdisc,
Toke Høiland-Jørgensen
[PATCH nf-next v3] netfilter: nft_ct: add ct timeout support,
Harsha Sharma
[PATCH xtables] xtables-compat: ignore '+' interface name, Florian Westphal
[PATCH xtables] xtables-compat: append all errors into single line, Florian Westphal
[PATCH xtables 1/4] xtables: always initialize basechains on ruleset restore,
Pablo Neira Ayuso
[PATCH libnftnl] rule: add nftnl_rule_list_insert_at(), Pablo Neira Ayuso
[nft PATCH v2 00/14] JSON: Some minor schema changes,
Phil Sutter
- [nft PATCH v2 12/14] tests/py: Adjust JSON for changes in any/ct.t, Phil Sutter
- [nft PATCH v2 11/14] JSON: Simplify immediate value parsing, Phil Sutter
- [nft PATCH v2 06/14] JSON: Review set elem expressions, Phil Sutter
- [nft PATCH v2 10/14] JSON: Fix parsing of meter statement key, Phil Sutter
- [nft PATCH v2 04/14] JSON: Sort out rule position and handles in general, Phil Sutter
- [nft PATCH v2 09/14] JSON: Improve prefix expression parsing error message a bit, Phil Sutter
- [nft PATCH v2 05/14] JSON: Review meter statement support, Phil Sutter
- [nft PATCH v2 08/14] JSON: Simplify tcp option expression parsing a bit, Phil Sutter
- [nft PATCH v2 03/14] JSON: Disallow non-array concat expression values, Phil Sutter
- [nft PATCH v2 07/14] JSON: Fix parsing and printing of limit objects, Phil Sutter
- [nft PATCH v2 13/14] tests/py: Add missing JSON equivalent for inet/sets.t, Phil Sutter
- [nft PATCH v2 02/14] JSON: Use "type" for CT helper object, Phil Sutter
- [nft PATCH v2 01/14] objref: Use "ct helper" for NFT_OBJECT_CT_HELPER, Phil Sutter
- [nft PATCH v2 14/14] tests/py: Add missing JSON equivalent for rule in inet/tcp.t, Phil Sutter
- Re: [nft PATCH v2 00/14] JSON: Some minor schema changes, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_tables: remove unused variables,
Taehee Yoo
[PATCH nf] netfilter: nf_tables: increse nft_counters_enabled in nft_chain_stats_replace(),
Taehee Yoo
[PATCH nf] netfilter: nf_tables: fix NULL-ptr in nf_tables_dump_obj(),
Taehee Yoo
[PATCH] ebtables: fix limit and mark modules incompatibilities between 32-bit user space and 64-bit kernel space,
Alin Nastac
[PATCH net-next v16 0/8] sched: Add Common Applications Kept Enhanced (cake) qdisc,
Toke Høiland-Jørgensen
[nft PATCH 00/14] JSON: Some minor schema changes,
Phil Sutter
- [nft PATCH 14/14] meter: Don't print default size value, Phil Sutter
- [nft PATCH 04/14] JSON: Sort out rule position and handles in general, Phil Sutter
- [nft PATCH 11/14] JSON: Simplify immediate value parsing, Phil Sutter
- [nft PATCH 07/14] JSON: Fix parsing and printing of limit objects, Phil Sutter
- [nft PATCH 03/14] JSON: Disallow non-array concat expression values, Phil Sutter
- [nft PATCH 08/14] JSON: Simplify tcp option expression parsing a bit, Phil Sutter
- [nft PATCH 02/14] JSON: Use "type" for CT helper object, Phil Sutter
- [nft PATCH 01/14] objref: Use "ct helper" for NFT_OBJECT_CT_HELPER, Phil Sutter
- [nft PATCH 13/14] tests/py: Add missing JSON equivalent for inet/sets.t, Phil Sutter
- [nft PATCH 05/14] JSON: Review meter statement support, Phil Sutter
- [nft PATCH 10/14] JSON: Fix parsing of meter statement key, Phil Sutter
- [nft PATCH 06/14] JSON: Review set elem expressions, Phil Sutter
- [nft PATCH 09/14] JSON: Improve prefix expression parsing error message a bit, Phil Sutter
- [nft PATCH 12/14] tests/py: Adjust JSON for changes in any/ct.t, Phil Sutter
[PATCH nf-next|libnftnl|nft] Add native socket matching to nftables,
Máté Eckl
[PATCH nft] Updated nf_tables.h,
Máté Eckl
[PATCH libnftnl] Updated nf_tables.h,
Máté Eckl
[PATCH nf] netfilter: nf_tables: disable preemption in nft_update_chain_stats(), Pablo Neira Ayuso
[PATCH] iptables-compat: homogenize error message,
Arushi Singhal
[PATCH nf-next 0/8] netfilter: nf_tables: make get and dump operations lockless,
Florian Westphal
[PATCH nf-next] netfilter: nf_tables: fail batch if fatal signal is pending,
Florian Westphal
[PATCH nf-next] netfilter: nf_tables: fix endian mismatch in return type,
Florian Westphal
[PATCH nf-next] netfilter: nft_compat: use call_rcu for nfnl_compat_get,
Florian Westphal
[PATCH] src: Use double quotes in include statements for non-system headers,
Duncan Roe
Re: ebtables commit, Duncan Roe
[PATCH 1/2 iptables] xtables: use libnftnl batch API,
Pablo Neira Ayuso
[PATCH net-next] netfilter: nat: make symbol nat_hook static,
Wei Yongjun
[PATCH xtables 1/3] xtables: allow dumping of chains in specific table,
Florian Westphal
[PATCHv2 net-next 0/2] Add IPv6 support to IPVS FTP-NAT,
Julian Anastasov
[PATCH nft] tests: shell: Add test case for multiple sets, Varsha Rao
[PATCH nf-next v3] net: netfilter: nf_tables_api: Use id allocation., Varsha Rao
[PATCH nft] fix printing of "tcp flags syn" and "tcp flags == syn" expressions,
Sabrina Dubroca
[PATCH nft,v2] segtree: incorrect handling of comments and timeouts with mapping, Pablo Neira Ayuso
[PATCH nft] segtree: incorrect handling of comments and timeouts with mapping, Pablo Neira Ayuso
[PATCH nf-next 0/2] netfilter: nf_tables: speed up commit phase,
Florian Westphal
[PATCH net-next 0/2] Add IPv6 support to IPVS FTP-NAT,
Julian Anastasov
[PATCH net] ipvs: register conntrack hooks for ftp,
Julian Anastasov
[PATCH v2 nf-next 0/2] netfilter: nat: remove masq/redirect modules,
Florian Westphal
[PATCH nft] src: netlink_delinarize: don't stop when encountering unsupported expression, Florian Westphal
[PATCH nf,v2] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
[PATCH] netfilter: nft_numgen: fix ptr_ret.cocci warnings,
kbuild test robot
[nf-next:master 4/18] net/netfilter/nft_hash.c:180:1-3: WARNING: PTR_ERR_OR_ZERO can be used,
kbuild test robot
[PATCH nf-next] netfilter: added includes to nf_socket.h,
Máté Eckl
[PATCH nf] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
[PATCH net-next v15 0/7] sched: Add Common Applications Kept Enhanced (cake) qdisc,
Toke Høiland-Jørgensen
netdev 0x12 conference update,
Jamal Hadi Salim
Re: [Cake] [PATCH net-next v14 4/7] sch_cake: Add NAT awareness to packet classifier,
Marcelo Ricardo Leitner
[PATCH libmnl 3/3] examples: reduce LOCs during neigh attributes validation, Laura Garcia Liebana
[PATCH libmnl 2/3] examples: fix print line format, Laura Garcia Liebana
[PATCH libmnl 1/3] examples: fix neigh max attributes, Laura Garcia Liebana
[PATCH libmnl 0/3] examples: rtnl neigh dump cleanups,
Laura Garcia Liebana
[PATCH nf-next,v4 1/3] netfilter: add struct nf_ct_hook and use it,
Pablo Neira Ayuso
[PATCH xtables] ebtables-compat: add arp extension, Florian Westphal
[PATCH xtables] ebtables-compat: add redirect match extension, Florian Westphal
[PATCH xtables] ebtables-compat: add nat match extensions, Florian Westphal
[PATCH net-next v1] netfilter: provide input interface for route lookup for rpfilter,
Vincent Bernat
[PATCH net] ipvs: fix buffer overflow with sync daemon and service,
Julian Anastasov
CT: why no "none" as parameter for --ctevents?,
Rolf Fokkens
libmnl/example/rtnl-route-dump - only dumping up to table #255?, hvjunk
[PATCH nf-next] netfilter: nft_meta: fix wrong value dereference in nft_meta_set_eval,
Taehee Yoo
[PATCH libmnl] examples: add arp cache dump example,
Laura Garcia Liebana
[PATCH nf-next,v3 1/3] netfilter: add struct nf_ct_hook and use it,
Pablo Neira Ayuso
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
