Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- Re: [PATCH nf-next] netfilter: Configuration fixes for ip/nftables socket matching, (continued)
- [PATCH nft 0/8] python install and build fixes,
Eric Leblond
- [PATCH xtables] xtables: add nf_tables vs. legacy postfix to version strings,
Florian Westphal
- [PATCH nft] configure.ac: docbook2man invalid syntax error,
Eric Leblond
- [PATCH xtables v2] xtables: add xtables-monitor, Florian Westphal
- [PATCH nft] evaluate: Detect address family in inet context,
Máté Eckl
- [RFC nf-next 0/7] netfilter: nf_conncount: optimize nf_conncount performance,
Yi-Hung Wei
- [nft PATCH 0/3] libnftables: A few fixes and cleanups,
Phil Sutter
- [PATCH nf] netfilter: nf_conncount: fix garbage collection confirm race,
Florian Westphal
- [nft PATCH] Makefile: Introduce Make_global.am,
Phil Sutter
- [nft PATCH v2] libnftables: Simplify nft_run_cmd_from_buffer footprint,
Phil Sutter
- [PATCH xtables 1/3] include: update kernel netfilter header files,
Florian Westphal
- [nft PATCH] libnftables: Simplify nft_run_cmd_from_buffer footprint,
Phil Sutter
- [nft PATCH] doc: Fix typo in Makefile.am,
Phil Sutter
- [PATCH nf-next] netfilter: flowtables: use fixed renew timeout on teardown,
Florian Westphal
- [PATCH] nftables: Fix typos/Grammatical Errors,
Arushi Singhal
- [PATCH] extensions: ebt_string: take action if snprintf discards data,
Duncan Roe
- [PATCH net-next,RFC 00/13] New fast forwarding path,
Pablo Neira Ayuso
- [PATCH net-next,RFC 01/13] net: Add a helper to get the packet offload callbacks by priority., Pablo Neira Ayuso
- [PATCH net-next,RFC 04/13] net: Use one bit of NAPI_GRO_CB for the netfilter fastpath., Pablo Neira Ayuso
- [PATCH net-next,RFC 02/13] net: Change priority of ipv4 and ipv6 packet offloads., Pablo Neira Ayuso
- [PATCH net-next,RFC 13/13] netfilter: nft_flow_offload: make sure route is not stale, Pablo Neira Ayuso
- [PATCH net-next,RFC 03/13] net: Add a GSO feature bit for the netfilter forward fastpath., Pablo Neira Ayuso
- [PATCH net-next,RFC 09/13] netfilter: nf_flow_table: add hooknum to flowtable type, Pablo Neira Ayuso
- [PATCH net-next,RFC 12/13] netfilter: nft_flow_offload: remove secpath check, Pablo Neira Ayuso
- [PATCH net-next,RFC 08/13] netfilter: nft_chain_filter: add support for early ingress, Pablo Neira Ayuso
- [PATCH net-next,RFC 11/13] netfilter: nft_flow_offload: enable offload after second packet is seen, Pablo Neira Ayuso
- [PATCH net-next,RFC 06/13] netfilter: add early ingress support for IPv6, Pablo Neira Ayuso
- [PATCH net-next,RFC 05/13] netfilter: add early ingress hook for IPv4, Pablo Neira Ayuso
- [PATCH net-next,RFC 10/13] netfilter: nf_flow_table: add flowtable for early ingress hook, Pablo Neira Ayuso
- [PATCH net-next,RFC 07/13] netfilter: add ESP support for early ingress, Pablo Neira Ayuso
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, Willem de Bruijn
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, Eric Dumazet
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, David Miller
- Re: [PATCH net-next,RFC 00/13] New fast forwarding path, Tom Herbert
- [nft PATCH] doc: Add libnftables man page,
Phil Sutter
- [PATCH WIP nftables] src: add ct timeout support,
Harsha Sharma
- [PATCH nf-next 0/7] netfilter: preparation work to remove l3 trackers,
Florian Westphal
- [nft PATCH] libnftables: Fix exit_cookie(),
Phil Sutter
- [PATCH net] netfilter: ipv6: nf_defrag: reduce struct net memory waste,
Eric Dumazet
- [PATCH nf-next v4] net: netfilter: nf_tables_api: Use id allocation.,
Varsha Rao
- [PATCH net] netfilter: nf_queue: augment nfqa_cfg_policy,
Eric Dumazet
- [PATCH nf] netfilter: helper: Fix possible panic after nf_conntrack_helper_unregister,
gfree . wind
- [PATCH nf] netfilter: Fix nf_conncount garbage collection,
Yi-Hung Wei
- [PATCH nf] netfilter: xt_connmark: fix list corruption on rmmod,
Florian Westphal
- [PATCH] src: Fix another build warning / error,
Duncan Roe
- [PATCH libnftnl v2 3/3] examples: Add test for assigning timeout objects via rule, Harsha Sharma
- [PATCH libnftnl v2 2/3] examples: add nft-ct-timeout-{add,del,get}, Harsha Sharma
- [PATCH libnftnl v2 1/3] src: add ct timeout support, Harsha Sharma
- [PATCH libnftnl v2 0/3] Add ct timeout support, Harsha Sharma
- [PATCH nf-next v4] netfilter: nft_ct: add ct timeout support,
Harsha Sharma
- [PATCH nf] netfilter: ctnetlink: avoid null pointer dereference,
Florian Westphal
- [PATCH nf-next] netfilter: nft_reject_bridge: remove unnecessary ttl set,
Taehee Yoo
- [PATCH nft] rule: do not print default burst for objects,
Pablo Neira Ayuso
- [PATCH nf] netfilter: nft_dynset: do not reject set updates with NFT_SET_EVAL, Pablo Neira Ayuso
- [PATCH nft] src: add dynamic flag and use it, Pablo Neira Ayuso
- [PATCH nf-next] netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain(),
Taehee Yoo
- [PATCH nf-next] netfilter: nf_tables: fix jumpstack depth validation,
Taehee Yoo
- [PATCH nf 1/2] netfilter: nf_tables: fix module unload race,
Florian Westphal
- BUG: unable to handle kernel paging request in ebt_do_table,
syzbot
- [PATCH v2] iptables: tests: shell: add shell test-suite,
Arushi Singhal
- [ANNOUNCE] nftables 0.9.0 release, Florian Westphal
- [ANNOUNCE] libnftnl 1.1.1 release, Florian Westphal
- [nft PATCH 0/7] JSON: Some fixes and documentation,
Phil Sutter
- Tproxy matching syntax,
Máté Eckl
- [PATCH] iptables: tests: shell: add shell test-suite,
Arushi Singhal
- [PATCH] netfilter: remove include/net/netfilter/nft_dup.h,
Corentin Labbe
- KMSAN: uninit-value in ebt_stp_mt_check (2),
syzbot
- [PATCH nf] netfilter: nft_socket: fix module autoload,
Pablo Neira Ayuso
- [PATCH nft] src: do not reset generation ID on ruleset flush, Pablo Neira Ayuso
- [PATCH nf-next] netfilter: nf_conntrack: Increase __IPS_MAX_BIT with new bit IPS_OFFLOAD_BIT,
gfree . wind
- [PATCH nft] expr: extend fwd statement to support address and family, Pablo Neira Ayuso
- [PATCH nf] netfilter: nft_set_rbtree: fix parameter of __nft_rbtree_lookup(),
Taehee Yoo
- [PATCH libnftnl] expr: extend fwd to support address and protocol, Pablo Neira Ayuso
- [PATCH nft] src: connlimit support, Pablo Neira Ayuso
- [PATCH libnfnl] expr: add connlimit support, Pablo Neira Ayuso
- [PATCH] build: update ebtables.h from kernel and drop local unused copy,
Jan Engelhardt
- [nft PATCH] Explicitly deny concatenated types in interval sets,
Phil Sutter
- [PATCH nft] nat: Eliminate misuse of AF_*,
Máté Eckl
- [nft PATCH] nft.8: Fix reject statement documentation,
Phil Sutter
- WARNING in ebt_do_table,
syzbot
- [RFC PATCH ghak86 V1] audit: eliminate audit_enabled magic number comparison,
Richard Guy Briggs
- [PATCH] iptables src: Use double quotes in #includes for local headers,
Duncan Roe
- [PATCH] libnftnl src: Use double quotes in #includes for non-system headers, Duncan Roe
- [PATCH v2 0/4] Added support for per-file variable scopes and global variables,
David Fabian
- [PATCH nftables] configure.ac: fix a typo in docbook2x error message.,
Fernando Fernandez Mancera
- [PATCH] nftables src: Use double quotes in #includes for non-system headers, Duncan Roe
- [PATCH v2] libmnl src: Use double quotes in #includes for non-system headers,
Duncan Roe
- [PATCH v1] libmnl src: Use double quotes in #includes for non-system headers, Duncan Roe
- issues with shaping cake to 60 gbits or in unlimited mode at 100gbps, Dave Taht
- [PATCH] netfilter: ipset: forbid family for hash:mac sets,
Florent Fourcot
- [RFC PATCH nft] parser: Set base chain prios with textual names,
Máté Eckl
- [PATCH nft] include: update linux/netfilter_ipv4.h,
Máté Eckl
- Re: [PATCH net-next] netfilter: fix null-ptr-deref in nf_nat_decode_session,
Prashant Bhole
- [PATCH nf-next] netfilter: nf_tables: add NFT_LOGLEVEL_* enumeration and use it,
Pablo Neira Ayuso
- [PATCH 0/9,v2] Netfilter updates for net-next,
Pablo Neira Ayuso
- [PATCH nf-next] netfilter: nf_tables: handle chain name lookups via rhltable,
Florian Westphal
- [PATCH nf-next,v4 1/6] netfilter: nf_tables: pass context to object destroy indirection,
Pablo Neira Ayuso
- [PATCH nf-next,v4 2/6] netfilter: nf_conncount: expose connection list interface, Pablo Neira Ayuso
- [PATCH nf-next,v4 5/6] netfilter: nf_tables: add destroy_clone expression, Pablo Neira Ayuso
- [PATCH nf-next,v4 4/6] netfilter: nf_tables: garbage collection for stateful expressions, Pablo Neira Ayuso
- [PATCH nf-next,v4 3/6] netfilter: nf_tables: pass ctx to nf_tables_expr_destroy(), Pablo Neira Ayuso
- [PATCH nf-next,v4 6/6] netfilter: nf_tables: add connlimit support, Pablo Neira Ayuso
- [PATCH nf-next,v3 0/6] connlimit support for nf_tables,
Pablo Neira Ayuso
- [PATCH nf-next,v3 6/6] netfilter: nf_tables: add connlimit support, Pablo Neira Ayuso
- [PATCH nf-next,v3 3/6] netfilter: nf_tables: pass ctx to nf_tables_expr_destroy(), Pablo Neira Ayuso
- [PATCH nf-next,v3 1/6] netfilter: nf_tables: pass context to object destroy indirection, Pablo Neira Ayuso
- [PATCH nf-next,v3 2/6] netfilter: nf_conncount: expose connection list interface, Pablo Neira Ayuso
- [PATCH nf-next,v3 4/6] netfilter: nf_tables: garbage collection of stale expressions, Pablo Neira Ayuso
- [PATCH nf-next,v3 5/6] netfilter: nf_tables: add destroy_clone expression, Pablo Neira Ayuso
- [PATCH net] ipvs: fix check on xmit to non-local addresses,
Julian Anastasov
- [PATCH nf-next] netfilter: Libify xt_TPROXY,
Máté Eckl
- [nft PATCH 0/7] Review wildcard expression parsing and some more,
Phil Sutter
- [RFC nf-next 0/5] netfilter: add ebpf translation infrastructure,
Florian Westphal
- [nft PATCH] log: Add support for audit logging,
Phil Sutter
- [PATCH nf] netfilter: nft_reject_bridge: fix skb allocation size in nft_reject_br_send_v6_unreach,
Taehee Yoo
- [PATCH nf-next,v3] netfilter: nft_fwd_netdev: allow to forward packets via neighbour layer, Pablo Neira Ayuso
- Handling of EPROTONOSUPPORT in ebtables breaking Ubuntu 18.04 apt-get upgrade, Hayden Barnes
- [PATCH net-next] netfilter: nf_tables: check msg_type before nft_trans_set(trans),
Alexey Kodanev
- [PATCH nf-next 1/3] netfilter: nf_tables: pass context to object destroy indirection,
Pablo Neira Ayuso
- [PATCH net-next v18 0/8] sched: Add Common Applications Kept Enhanced (cake) qdisc,
Toke Høiland-Jørgensen
- [PATCH nf-next] netfilter: x_tables: Decrease code duplication in tproxy target,
Máté Eckl
- [PATCH nf-next,v2] netfilter: nft_fwd_netdev: allow to forward packets via neighbour layer,
Pablo Neira Ayuso
- [PATCH v2] netfilter: nfnetlink: Remove VLA usage,
Kees Cook
- [PATCH nf-next,v5] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
- [PATCH nft] netlink: Print value sizes on Relational expression size mismatch,
Máté Eckl
- [bug report] netfilter: add struct nf_nat_hook and use it, Dan Carpenter
- [PATCH] ebtables: fix compat entry padding,
Alin Nastac
- [PATCH nf-next,v4] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
- [PATCH nf-next,v3] netfilter: nf_tables: fix chain dependency validation, Pablo Neira Ayuso
- [PATCH v2] net: nftables: Add audit support to log statement,
Phil Sutter
- [PATCH nf v2] netfilter: xt_CT: Reject the non-null terminated string from user space,
gfree . wind
- [PATCH] netfilter: nfnetlink: Remove VLA usage,
Kees Cook
- Missing skb->dst with flow offloading,
Jason A. Donenfeld
[nf-next PATCH] net: nftables: Add audit support to log statement, Phil Sutter
[PATCH nft] tests: shell: add crash reproducer, Florian Westphal
[PATCH nf-next] netfilter: nf_tables: fix jump evaluation,
Florian Westphal
using specific ip address to restrict traffic flow on mips linux target is not permited ?,
Rosysong
[PATCH nf] netfilter: xt_CT: Force user-space strings as null terminated,
gfree . wind
BUG: unable to handle kernel (3),
syzbot
[PATCH net-next v17 0/8] sched: Add Common Applications Kept Enhanced (cake) qdisc,
Toke Høiland-Jørgensen
[PATCH nf-next v3] netfilter: nft_ct: add ct timeout support,
Harsha Sharma
[PATCH xtables] xtables-compat: ignore '+' interface name, Florian Westphal
[PATCH xtables] xtables-compat: append all errors into single line, Florian Westphal
[PATCH xtables 1/4] xtables: always initialize basechains on ruleset restore,
Pablo Neira Ayuso
[PATCH libnftnl] rule: add nftnl_rule_list_insert_at(), Pablo Neira Ayuso
[nft PATCH v2 00/14] JSON: Some minor schema changes,
Phil Sutter
- [nft PATCH v2 12/14] tests/py: Adjust JSON for changes in any/ct.t, Phil Sutter
- [nft PATCH v2 11/14] JSON: Simplify immediate value parsing, Phil Sutter
- [nft PATCH v2 06/14] JSON: Review set elem expressions, Phil Sutter
- [nft PATCH v2 10/14] JSON: Fix parsing of meter statement key, Phil Sutter
- [nft PATCH v2 04/14] JSON: Sort out rule position and handles in general, Phil Sutter
- [nft PATCH v2 09/14] JSON: Improve prefix expression parsing error message a bit, Phil Sutter
- [nft PATCH v2 05/14] JSON: Review meter statement support, Phil Sutter
- [nft PATCH v2 08/14] JSON: Simplify tcp option expression parsing a bit, Phil Sutter
- [nft PATCH v2 03/14] JSON: Disallow non-array concat expression values, Phil Sutter
- [nft PATCH v2 07/14] JSON: Fix parsing and printing of limit objects, Phil Sutter
- [nft PATCH v2 13/14] tests/py: Add missing JSON equivalent for inet/sets.t, Phil Sutter
- [nft PATCH v2 02/14] JSON: Use "type" for CT helper object, Phil Sutter
- [nft PATCH v2 01/14] objref: Use "ct helper" for NFT_OBJECT_CT_HELPER, Phil Sutter
- [nft PATCH v2 14/14] tests/py: Add missing JSON equivalent for rule in inet/tcp.t, Phil Sutter
- Re: [nft PATCH v2 00/14] JSON: Some minor schema changes, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_tables: remove unused variables,
Taehee Yoo
[PATCH nf] netfilter: nf_tables: increse nft_counters_enabled in nft_chain_stats_replace(),
Taehee Yoo
[PATCH nf] netfilter: nf_tables: fix NULL-ptr in nf_tables_dump_obj(),
Taehee Yoo
[PATCH] ebtables: fix limit and mark modules incompatibilities between 32-bit user space and 64-bit kernel space,
Alin Nastac
[PATCH net-next v16 0/8] sched: Add Common Applications Kept Enhanced (cake) qdisc,
Toke Høiland-Jørgensen
[nft PATCH 00/14] JSON: Some minor schema changes,
Phil Sutter
- [nft PATCH 14/14] meter: Don't print default size value, Phil Sutter
- [nft PATCH 04/14] JSON: Sort out rule position and handles in general, Phil Sutter
- [nft PATCH 11/14] JSON: Simplify immediate value parsing, Phil Sutter
- [nft PATCH 07/14] JSON: Fix parsing and printing of limit objects, Phil Sutter
- [nft PATCH 03/14] JSON: Disallow non-array concat expression values, Phil Sutter
- [nft PATCH 08/14] JSON: Simplify tcp option expression parsing a bit, Phil Sutter
- [nft PATCH 02/14] JSON: Use "type" for CT helper object, Phil Sutter
- [nft PATCH 01/14] objref: Use "ct helper" for NFT_OBJECT_CT_HELPER, Phil Sutter
- [nft PATCH 13/14] tests/py: Add missing JSON equivalent for inet/sets.t, Phil Sutter
- [nft PATCH 05/14] JSON: Review meter statement support, Phil Sutter
- [nft PATCH 10/14] JSON: Fix parsing of meter statement key, Phil Sutter
- [nft PATCH 06/14] JSON: Review set elem expressions, Phil Sutter
- [nft PATCH 09/14] JSON: Improve prefix expression parsing error message a bit, Phil Sutter
- [nft PATCH 12/14] tests/py: Adjust JSON for changes in any/ct.t, Phil Sutter
[PATCH nf-next|libnftnl|nft] Add native socket matching to nftables,
Máté Eckl
[PATCH nft] Updated nf_tables.h,
Máté Eckl
[PATCH libnftnl] Updated nf_tables.h,
Máté Eckl
[PATCH nf] netfilter: nf_tables: disable preemption in nft_update_chain_stats(), Pablo Neira Ayuso
[PATCH] iptables-compat: homogenize error message,
Arushi Singhal
[PATCH nf-next 0/8] netfilter: nf_tables: make get and dump operations lockless,
Florian Westphal
[PATCH nf-next] netfilter: nf_tables: fail batch if fatal signal is pending,
Florian Westphal
[PATCH nf-next] netfilter: nf_tables: fix endian mismatch in return type,
Florian Westphal
[PATCH nf-next] netfilter: nft_compat: use call_rcu for nfnl_compat_get,
Florian Westphal
[PATCH] src: Use double quotes in include statements for non-system headers,
Duncan Roe
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
