Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- [PATCH 02/39] proc: introduce proc_create_seq{,_data}, (continued)
- [PATCH iptables] ebtables-compat: add 'ip6' match extension, Florian Westphal
- [GIT PULL 0/5] IPVS Updates for v4.18,
Simon Horman
- [PATCH nft] expression: fix constant expression allocation on big endian with partial bytes,
Sabrina Dubroca
- [PATCH nf] netfilter: nf_tables: fix out-of-bounds in nft_chain_commit_update,
Taehee Yoo
- [PATCH nft 1/1] evaluate: reset eval context when evaluating set definitions,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: NAT chain and extensions require NF_TABLES, Pablo Neira Ayuso
- nftables: strange behavior of named sets with concatenations,
David Fabian
- [PATCH iptables 0/3] libebt_ip: add icmp support,
Florian Westphal
- [conntrack-tools PATCH v2] systemd: default to use libsystemd if build with support for it,
Arturo Borrero Gonzalez
- [PATCH nf-next 0/6] netfilter: remove kconfig options,
Florian Westphal
- [conntrack-tools PATCH] tests: reallocate cli testing script,
Arturo Borrero Gonzalez
- [conntrack-tools PATCH] conntrackd: add missing fall-through annotation in switch statements, Arturo Borrero Gonzalez
- [conntrack-tools PATCH] systemd: default to use libsystemd if build with support for it, Arturo Borrero Gonzalez
- [PATCH nf-next] netfilter: nf_tables: always use an upper set size for dynsets,
Florian Westphal
- [PATCH nf-next] netfilter: nf_tables: support timeouts larger than 23 days,
Florian Westphal
- [PATCH iptables 0/8] xt-compat: add ebtables-translate,
Florian Westphal
- [nft PATCH 00/12] Fallout from upcoming JSON support,
Phil Sutter
- [nft PATCH 03/12] rule: Free table->objs in table_free(), Phil Sutter
- [nft PATCH 09/12] Review .gitignore files contents, Phil Sutter
- [nft PATCH 10/12] ct: Remove duplicate include of gmputil.h, Phil Sutter
- [nft PATCH 02/12] libnftables: Fix forgotten bit after introducing error_fp, Phil Sutter
- [nft PATCH 05/12] Review raw payload allocation points, Phil Sutter
- [nft PATCH 07/12] tests/py: rt.t: Drop needless rule output, Phil Sutter
- [nft PATCH 04/12] segtree: Fix memory leaks, Phil Sutter
- [nft PATCH 01/12] erec: Review erec_print(), Phil Sutter
- [nft PATCH 11/12] libnftables: Keep cmds list outside of parser_state, Phil Sutter
- [nft PATCH 12/12] parser_bison: Pass struct nft_ctx to parser_init(), Phil Sutter
- [nft PATCH 08/12] tests/py: Fix differences printing for rules with sets, Phil Sutter
- [nft PATCH 06/12] segtree: Fix for last elem at interval end, Phil Sutter
- Re: [nft PATCH 00/12] Fallout from upcoming JSON support, Pablo Neira Ayuso
- [PATCH nf-next] netfilter: xtables: use ipt_get_target_c instead of ipt_get_target,
Taehee Yoo
- [PATCH nf-next] netfilter: ebtables: add ebt_get_target and ebt_get_target_c,
Taehee Yoo
- [PATCH nft] src: rename ibrportname, obrportname, Florian Westphal
- [PATCH nft] scanner: add helpers token, Florian Westphal
- [PATCH iptables] ebtables-compat: add initial translations,
Florian Westphal
- [nft PATCH] cli: Drop String termination workaround,
Phil Sutter
- [PATCH] netfilter: ftp helper: Support \n and \r terminators for PORT, Scott Parlane
- Re: ipset 6.37,
Jan Engelhardt
- [ANNOUNCE] ipset 6.37 released,
Jozsef Kadlecsik
- [nft PATCH 0/8] Convert tests/py to use libnftables directly,
Phil Sutter
- [PATCH iptables] ebtables-compat: don't make failing extension load fatal,
Florian Westphal
- [PATCH iptables] ebtables-compat: load mark target,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: can't fail after linking rule into active rule list,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: free set name in error path,
Florian Westphal
- [PATCH] netfilter: fix CONFIG_NF_REJECT_IPV6=m link error,
Arnd Bergmann
- [PATCH nf-next v4] netfilter: nf_osf: nf_osf_ttl() and nf_osf_match(), Fernando Fernandez Mancera
- [PATCH v2] libxt_CONNMARK: Support bit-shifting for --restore,set and save-mark,
Jack Ma
- [PATCH iptables 1/4] xtables-compat: fix snprintf truncation warnings,
Florian Westphal
- [PATCH nf-next] netfilter: x_tables: remove duplicate ip6t_get_target function call,
Taehee Yoo
- [PATCH nf-next] netfilter: ebtables: remove EBT_MATCH and EBT_NOMATCH,
Taehee Yoo
- [PATCH nf-next] netfilter: ebtables: add ebt_free_table_info function,
Taehee Yoo
- [PATCH nf-next] netfilter: add __exit mark to helper modules, Taehee Yoo
- [PATCH net] ipvs: fix rtnl_lock lockups caused by start_sync_thread,
Julian Anastasov
- INFO: task hung in do_ip_vs_set_ctl (2),
syzbot
- [PATCH] xt_connmark: Add bit mapping for bit-shift operation.,
Jack Ma
- [ANNOUNCE] 14th Netfilter Workshop in Berlin, Germany, Florian Westphal
- Proposal: Add config option to set xtable_lock wait = true., Jack Ma
- [PATCH nf] netfilter: ebtables: don't attempt to allocate 0-sized compat array,
Florian Westphal
- compat ebtables broke in syzkaller,
Dmitry Vyukov
- [PATCH v6] netfilter : add NAT support for shifted portmap ranges,
Thierry Du Tre
- [PATCH nft] configure: don't enable xtables when --without-xtables is passed,
Florian Westphal
- [PATCH] netfilter: nf_socket: Fix out of bounds access in nf_sk_lookup_slow_v{4,6}, Subash Abhinov Kasiviswanathan
- [PATCH v2 0/2] net: nftables: Simplify set backend selection,
Phil Sutter
- [PATCH v3] extensions: libipt_DNAT: support shifted portmap ranges, Thierry Du Tre
- [PATCH v5] netfilter : add NAT support for shifted portmap ranges,
Thierry Du Tre
- [PATCH nf-next v3] netfilter: nf_osf: nf_osf_ttl() and nf_osf_match(),
Fernando Fernandez Mancera
- [PATCH nft 0/4] evaluate: clean up binop transfer,
Florian Westphal
- [PATCH nft 1/2] evaluate: propagate binop_transfer() adjustment to set key size,
Pablo Neira Ayuso
- [PATCH nf] netfilter: nf_conntrack_sip: allow duplicate SDP expectations,
Florian Westphal
- [ulogd PATCH] ulogd2: cleanup downstream files,
Arturo Borrero Gonzalez
- [PATCH nft] evaluate: do not inconditionally update cache from flush command, Pablo Neira Ayuso
- [PATCH v2] net: netfilter: nf_tables_api: Use id allocation., Varsha Rao
- Problems on redirecting traffic transparently, Haohao Lee
- [PATCH nft] evaluate: increase set key size if needed,
Florian Westphal
- [RFC xt-compat] ebtables: full nft translations,
Florian Westphal
- [PATCH nft 0/6] fix dependency eval and nft-test.py,
Florian Westphal
- [PATCH nft] src: Updates for mini-gmp.{c,h},
Harsha Sharma
- [PATCH WIP nf-next] netfilter: nft_ct: add ct timeout support,
Harsha Sharma
- [PATCH WIP libnftnl 2/2] examples: add nft-ct-timeout-{add,del,get},
Harsha Sharma
- [PATCH WIP libnftnl 1/2] src: add ct timeout support, Harsha Sharma
- [PATCH WIP libnftnl 0/2] Add ct timeout support, Harsha Sharma
- [PATCH 00/12] Ethernet: Add and use ether_<type>_addr globals,
Joe Perches
- [Patches] iptables and ip6tables: Warning on use of -L, Noel Kuntze
- [Patch nf] nf_conntrack_extend: silent a memory leak warning,
Cong Wang
- [PATCH nf-next v2] netfilter: nf_osf implementation: nf_osf_ttl() and nf_osf_match(),
Fernando Fernandez Mancera
- [PATCH 40/47] netfilter: nf_tables: build-in filter chain type,
Pablo Neira Ayuso
- [PATCH 30/47] netfilter: Replace printk() with pr_*() and define pr_fmt(),
Pablo Neira Ayuso
- [PATCH 20/47] netfilter: x_tables: fix build with CONFIG_COMPAT=n,
Pablo Neira Ayuso
- [PATCH 27/47] netfilter: nf_tables: remove VLA usage, Pablo Neira Ayuso
- [PATCH 29/47] netfilter: xt_conntrack: Support bit-shifting for CONNMARK & MARK targets., Pablo Neira Ayuso
- [PATCH 24/47] netfilter: nft_ct: add NFT_CT_{SRC,DST}_{IP,IP6}, Pablo Neira Ayuso
- [PATCH 26/47] netfilter: nfnetlink_cthelper: Remove VLA usage, Pablo Neira Ayuso
- [PATCH 28/47] netfilter: ebtables: use ADD_COUNTER macro, Pablo Neira Ayuso
- [PATCH 25/47] netfilter: cttimeout: remove VLA usage, Pablo Neira Ayuso
- [PATCH 21/47] ipvs: use true and false for boolean values, Pablo Neira Ayuso
- [PATCH 23/47] netfilter: conncount: Support count only use case, Pablo Neira Ayuso
- [PATCH 22/47] netfilter: Refactor nf_conncount, Pablo Neira Ayuso
- [PATCH 10/47] netfilter: x_tables: enforce unique and ascending entry points,
Pablo Neira Ayuso
- [PATCH 00/47] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 07/47] netfilter: x_tables: check standard verdicts in core, Pablo Neira Ayuso
- [PATCH 08/47] netfilter: x_tables: check error target size too, Pablo Neira Ayuso
- [PATCH 06/47] netfilter: unlock xt_table earlier in __do_replace, Pablo Neira Ayuso
- [PATCH 05/47] netfilter: ipt_ah: return boolean instead of integer, Pablo Neira Ayuso
- [PATCH 09/47] netfilter: x_tables: move hook entry checks into core, Pablo Neira Ayuso
- [PATCH 03/47] netfilter: xt_cluster: get rid of xt_cluster_ipv6_is_multicast, Pablo Neira Ayuso
- [PATCH 04/47] netfilter: nf_conntrack_broadcast: remove useless parameter, Pablo Neira Ayuso
- [PATCH 01/47] netfilter: nf_tables: nf_tables_obj_lookup_byhandle() can be static, Pablo Neira Ayuso
- [PATCH 02/47] netfilter: nfnetlink_acct: remove useless parameter, Pablo Neira Ayuso
- Re: [PATCH 00/47] Netfilter/IPVS updates for net-next, David Miller
- Re: [PATCH 00/47] Netfilter/IPVS updates for net-next, Rafał Miłecki
- [PATCH net-next 0/5] Introduce net_rwsem to protect net_namespace_list,
Kirill Tkhai
- [PATCH] netfilter: x_tables: Add note about how to free percpu counters,
Ben Hutchings
- [PATCH net-next 0/3] Close race between {un, }register_netdevice_notifier and pernet_operations,
Kirill Tkhai
- INFO: task hung in stop_sync_thread (2),
syzbot
- [PATCH] net: netfilter: Merge assignment with return,
Arushi Singhal
- [PATCH nf-next] netfilter: add flowtable documentation, Pablo Neira Ayuso
- [PATCH nf-next 1/4] netfilter: nf_tables: rename to nft_set_lookup_global(),
Pablo Neira Ayuso
- [PATCH nft] proto: permit icmp-in-ipv6 and icmpv6-in-ipv4,
Florian Westphal
- [PATCH nft] payload: don't remove icmp family dependency in special cases,
Florian Westphal
- [PATCH nf] netfilter: ipt_CLUSTERIP: Allow configuring --local-node 0 again,
Pablo Neira Ayuso
- [PATCH nf-next] nf_osf implementation: nf_osf_ttl() and nf_osf_match(),
Fernando Fernandez Mancera
- [PATCH nf-next 1/4] netfilter: nf_tables: rename struct nf_chain_type,
Pablo Neira Ayuso
- [PATCH nft] src: avoid errouneous assert with map+concat, Florian Westphal
- [PATCH] doc: nft.8 more spelling fixes,
Duncan Roe
- [PATCH 0/4] net: drivers/net: Use octal permissions,
Joe Perches
- [nf-next PATCH 0/2] net: nftables: Simplify set backend selection,
Phil Sutter
- [PATCH 1/2] netfilter: nf_flow_table: add missing condition for TCP state check,
Felix Fietkau
- [PATCH nf] netfilter: nf_socket: Fix out of bounds access in nf_sk_lookup_slow_v{4,6},
Subash Abhinov Kasiviswanathan
- [PATCH 1/2 nf] netfilter: nf_tables: cache device name in flowtable object,
Pablo Neira Ayuso
- [PATCH nf] netfilter: drop template ct when conntrack is skipped.,
Paolo Abeni
- [nft PATCH] Export libnftables (again),
Phil Sutter
- [nft PATCH] tests/shell: Test flush and nat chain recreate in one go,
Phil Sutter
- [nf-next PATCH] net: nftables: Respect hash set backend features,
Phil Sutter
- [PATCH] bridge: netfilter: ebt_stp: Use generic functions for comparisons,
Joe Perches
- [PATCH v2] iptables: constify option struct,
Arushi Singhal
- [PATCH] iptables: extension: Constify option struct, Arushi Singhal
- [ebtables PATCH v2] Add string filter to ebtables,
Bernie Harris
- [PATCH v2 1/3] net: Allow to and from offsets to be equal in skb_find_text,
Bernie Harris
- [PATCH] netfilter: ipset: Use is_zero_ether_addr instead of static and memcmp,
Joe Perches
- [PATCH libnftnl v2] examples: add nft-ct-helper-{add,get,del},
Yang Zheng
- [PATCH nf] netfilter: nf_tables: add missing netlink attrs to policies,
Florian Westphal
- [PATCH 1/2 conntrackd] src: add ARRAY_SIZE definition,
Pablo Neira Ayuso
- [PATCH nf-next,RFC] netfilter: nf_conntrack_tcp: reset entry only from CLOSE and TIME_WAIT states,
Pablo Neira Ayuso
- [PATCH 1/2 nf-next,v2] netfilter: ctnetlink: synproxy support,
Pablo Neira Ayuso
- [PATCH libnftnl] examples: add nft-ct-helper-{add,get,del},
Yang Zheng
- [nft PATCH 0/6] A set of patches resulting from running tests/shell,
Phil Sutter
- [PATCH net-next 0/2] Converting pernet_operations (part #10),
Kirill Tkhai
- [PATCH] doc: nft.8 aim for consistent synopses throughout (again),
Duncan Roe
- [WIKI] Certificate has expired, Duncan Roe
- [PATCH nft] rule: reset cache iff there is an existing cache, Pablo Neira Ayuso
- [PATCH] libxt_CONNMARK: Support bit-shifting for --restore,set and save-mark,
Jack Ma
- [PATCH] xt_conntrack: Support bit-shifting for CONNMARK & MARK targets.,
Jack Ma
- [PATCH libmnl] attr: zero attribute padding,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: permit second nat hook if colliding hook is going away,
Florian Westphal
- [PATCH nft] doc: describe table dormant flag,
Florian Westphal
- [nft PATCH] Combine redir and masq statements into nat,
Phil Sutter
- [PATCH nft 1/2] src: fix routing header support,
Florian Westphal
- [iptables PATCH] iptables: add xtables-translate.8 manpage, Arturo Borrero Gonzalez
- [PATCH nft] tests: update to new syntax to add/update set from packet path, Pablo Neira Ayuso
- [PATCH nft,v2] src: revisit syntax to update sets and maps from packet path, Pablo Neira Ayuso
- [PATCH nft] src: revisit syntax to update sets and maps from packet path, Pablo Neira Ayuso
- [PATCH nft] src: update dynamic set updates from packet path syntax, Pablo Neira Ayuso
- [nft PATCH 0/2] relational: Eliminate meta OPs,
Phil Sutter
- [nft PATCH] tests/shell: Use custom nft binary for ruleset listing,
Phil Sutter
- [PATCH v2 nft] support of dynamic map addition and update of elements,
Laura Garcia Liebana
- [PATCH net-next 0/6] Converting pernet_operations (part #8),
Kirill Tkhai
- [PATCH nft] support of dynamic map addition and update of elements,
Laura Garcia Liebana
- [PATCH nft] create u32_integer type to be used as a key for sets and maps,
Laura Garcia Liebana
- [PATCH] netfilter: ebtables: use ADD_COUNTER macro,
Taehee Yoo
- [PATCH conntrack-tools] src: synproxy support, Pablo Neira Ayuso
- [PATCH libnetfilter_conntrack] conntrack: add synproxy support, Pablo Neira Ayuso
- [PATCH nf-next] netfilter: ctnetlink: synproxy support, Pablo Neira Ayuso
- [PATCH nf] netfilter: nf_tables: meter: pick a set backend that supports updates,
Florian Westphal
- explicit OP_EQ with non-singleton RHS,
Phil Sutter
- nftables patch proposal: debug_mask propagate through cache_update() just as it is., nozzy123nozzy
- [PATCH v2] netfilter: nf_tables: remove VLA usage,
Gustavo A. R. Silva
- [PATCH] netfilter: nf_tables: remove VLA usage, Gustavo A. R. Silva
- [PATCH] netfilter: nfnetlink_cthelper: Remove VLA usage,
Gustavo A. R. Silva
- [PATCH] netfilter: cttimeout: remove VLA usage,
Gustavo A. R. Silva
- [PATCH] net: drivers/net: Remove unnecessary skb_copy_expand OOM messages,
Joe Perches
- [PATCH] Net: netfilter: Replace printk() with pr_*() and define pr_fmt(),
Arushi Singhal
- [PATCH nft] netlink: use nftnl_flowtable_get/set,
Florian Westphal
- [PATCH nft] src: install table skeleton files to sysconfdir/nftables,
Florian Westphal
- [PATCH nf] netfilter: nf_tables: release flowtable hooks, Pablo Neira Ayuso
- [PATCH v2] net: netfilter: Replace printk() with appropriate pr_*() macro,
Arushi Singhal
[PATCH 1/1] doc: add set information and example for run-time blackhole, Florian Westphal
[PATCH] src: fix parsing for set handle attributes,
Harsha Sharma
Re: [PATCH Netfilter] net: netfilter: Replace printk() with more standardize output format.,
Pablo Neira Ayuso
Problem in setting up netfilter repository,
SIMRAN SINGHAL
connlimit modul doesn't works as expected,
Toralf Förster
[PATCH nf] netfilter: x_tables: add and use xt_check_proc_name,
Florian Westphal
WARNING in __proc_create,
syzbot
[PATCH] tests: shell: fix tests for deletion via handle attribute,
Harsha Sharma
[PATCH nf v5] netfilter: bridge: ebt_among: add more missing match size checks,
Florian Westphal
[PATCH nft] ct: support for NFT_CT_{SRC,DST}_{IP,IP6},
Pablo Neira Ayuso
[PATCH libnftnl] src: support for NFT_CT_{SRC,DST}_{IP,IP6}, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nft_ct: add NFT_CT_{SRC,DST}_{IP,IP6},
Pablo Neira Ayuso
[PATCH nf v4] netfilter: bridge: ebt_among: add more missing match size checks,
Florian Westphal
[PATCH nf v3] netfilter: bridge: ebt_among: add more missing match size checks,
Florian Westphal
[PATCH nf v2] netfilter: bridge: ebt_among: add more missing match size checks, Florian Westphal
[PATCH] rule: print handle attribute in more clearer manner,
Harsha Sharma
[PATCH nf] netfilter: ebtables: fix erroneous reject of last rule,
Florian Westphal
[PATCH nf-next 0/2] netfilter: set transport header properly,
Serhey Popovych
[PATCH nf] netfilter: bridge: ebt_among: add more missing match size checks,
Florian Westphal
[PATCH nft] tests: shell: autogenerate dump verification,
Laura Garcia Liebana
BUG: unable to handle kernel paging request in ebt_among_mt_check (2), syzbot
[PATCH] src: don't not dump set content from netlink_get_setelems(), Pablo Neira Ayuso
[PATCH nft] src: remove unused batch support checks, Pablo Neira Ayuso
[PATCH nft] src: move monitor code to src/monitor.c,
Pablo Neira Ayuso
[PATCH nft] src: support for get element command, Pablo Neira Ayuso
[PATCH iptables 0/4] iptables: Fix [unsupported revision] for matches/targets after update,
Serhey Popovych
[RFC] netfilter: cttimeout: remove VLA in ctnl_timeout_parse_policy,
Gustavo A. R. Silva
WARNING in compat_copy_entries (2),
syzbot
Port triggering,
Stéphane Veyret
[PATCH nf-next] netfilter: x_tables: fix build with CONFIG_COMPAT=n,
Florian Westphal
[nf-next:master 7/24] net/netfilter/x_tables.c:797:3: error: implicit declaration of function 'verdict_ok', kbuild test robot
[PATCH] configure: Verify libnftnl install is recent enough,
Duncan Roe
[nf-next:master 8/24] net/netfilter/x_tables.c:819:8: error: implicit declaration of function 'error_tg_ok', kbuild test robot
[nf-next:master 7/24] net/netfilter/x_tables.c:797:8: error: implicit declaration of function 'verdict_ok'; did you mean 'vprintk'?, kbuild test robot
[RFC nft] tests: shell: autogenerate dump verification,
Laura Garcia Liebana
[PATCH] ipvs: use true and false for boolean values,
Gustavo A. R. Silva
[PATCH nft] rule: broken handle listing of table and named objects, Pablo Neira Ayuso
[PATCH nft] rule: print object handle with --echo --handle, Pablo Neira Ayuso
[PATCH nft 1/2] netlink: print chain handle with --echo --handle,
Pablo Neira Ayuso
[PATCH nft] tests: shell: set timeout and size combination coverage,
Pablo Neira Ayuso
[PATCH nf] netfilter: nft_set_hash: skip fixed hash if timeout is specified, Pablo Neira Ayuso
[PATCH net] netfilter: check for out-of-bounds while copying compat entries,
Paolo Abeni
BUG: unable to handle kernel paging request in compat_copy_entries,
syzbot
[PATCH nf-next v2 1/2] netfilter: Refactor nf_conncount,
Yi-Hung Wei
[PATCH nf-next 0/2] ebtables: add support for ICMP and IGMP type/code matching,
Matthias Schiffer
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
