Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- [PATCH v4] doc: Complete documentation of statements, Shivani Bhardwaj
- [PATCH libnftnl v2] expr: nth: match every n packets, Laura Garcia Liebana
- [PATCH v2] netfilter: nft_nth: match every n packets,
Laura Garcia Liebana
- Re: PROBLEM: TPROXY and DNAT broken (bisected to 079096f103fa),
Eric Dumazet
- [PATCH nft] parser: compact list of rhs keyword expressions,
Florian Westphal
- [PATCH nft] parser_bison: keep map flag around when flags are specified, Pablo Neira Ayuso
- [RFC nft] meta: deprecate unqualified meta statements,
Florian Westphal
- [nft PATCH 0/7] add payload set support for sub-byte sizes,
Florian Westphal
- [PATCH iptables 1/2] include: xtables: fix struct definitions grepability,
Pablo M. Bermudo Garay
- [PATCH libnftnl] expr: nth: match every n packets, Laura Garcia Liebana
- [PATCH] netfilter: nft_nth: match every n packets,
Laura Garcia Liebana
- [PATCH] manpages: do not adjust reject-with type footnote indentation,
Sami Kerola
- nft_rbtree_lookup: BUG: unable to handle kernel NULL pointer dereference,
Anders K. Pedersen
- [NetDev] [ANNOUNCE] Netdev 1.2 updates (Tokyo, Japan, October 5-7), Hajime Tazaki
- [PATCH nf-next] netfilter: physdev: add missed blank,
Hangbin Liu
- [PATCH] netfilter: nf_tables: s/MFT_REG32_01/NFT_REG32_01, Pablo Neira Ayuso
- [RFC] l2tp for nftables,
Pablo Neira Ayuso
- [PATCH nft] xt: use struct xt_xlate_{mt,tg}_params, Pablo Neira Ayuso
- [PATCH iptables] src: introduce struct xt_xlate_{mt,tg}_params, Pablo Neira Ayuso
- [ISSUE] nftables: !=range doesn't really work,
Xin Long
- [PATCH nf-next] netfilter: nf_ct_h323: do not re-activate already expired timer,
Liping Zhang
- [PATCH 1/1] netfilter: Only need first 4 bytes to get l4proto ports,
fgao
- [PATCH 00/25] Netfilter/IPVS updates for net-next,
Pablo Neira Ayuso
- [PATCH 01/25] ipvs: count pre-established TCP states as active, Pablo Neira Ayuso
- [PATCH 02/25] netfilter: conntrack: fix race between nf_conntrack proc read and hash resize, Pablo Neira Ayuso
- [PATCH 03/25] netfilter: cttimeout: unlink timeout obj again when hash resize happen, Pablo Neira Ayuso
- [PATCH 04/25] netfilter: nf_ct_helper: unlink helper again when hash resize happen, Pablo Neira Ayuso
- [PATCH 05/25] netfilter: conntrack: simplify early_drop, Pablo Neira Ayuso
- [PATCH 06/25] netfilter: move nat hlist_head to nf_conn, Pablo Neira Ayuso
- [PATCH 07/25] netfilter: nat: convert nat bysrc hash to rhashtable, Pablo Neira Ayuso
- [PATCH 08/25] netfilter: physdev: physdev-is-out should not work with OUTPUT chain, Pablo Neira Ayuso
- [PATCH 09/25] netfilter: nft_ct: make byte/packet expr more friendly, Pablo Neira Ayuso
- [PATCH 10/25] netfilter: constify arg to is_dying/confirmed, Pablo Neira Ayuso
- [PATCH 11/25] netfilter: nf_tables: get rid of possible_net_t from set and basechain, Pablo Neira Ayuso
- [PATCH 13/25] netfilter: conntrack: protect early_drop by rcu read lock, Pablo Neira Ayuso
- [PATCH 12/25] netfilter: nf_conntrack_h323: fix off-by-one in DecodeQ931, Pablo Neira Ayuso
- [PATCH 14/25] netfilter: x_tables: speed up jump target validation, Pablo Neira Ayuso
- [PATCH 15/25] netfilter: nft_ct: fix unpaired nf_connlabels_get/put call, Pablo Neira Ayuso
- [PATCH 17/25] netfilter: nft_log: fix possible memory leak if log expr init fail, Pablo Neira Ayuso
- [PATCH 16/25] netfilter: Add helper array register/unregister functions, Pablo Neira Ayuso
- [PATCH 19/25] netfilter: nft_log: fix snaplen does not truncate packets, Pablo Neira Ayuso
- [PATCH 18/25] netfilter: nft_log: check the validity of log level, Pablo Neira Ayuso
- [PATCH 21/25] netfilter: conntrack: support a fixed size of 128 distinct labels, Pablo Neira Ayuso
- [PATCH 20/25] netfilter: nf_tables: allow to filter out rules by table and chain, Pablo Neira Ayuso
- [PATCH 23/25] netfilter: h323: Use mod_timer instead of set_expect_timeout, Pablo Neira Ayuso
- [PATCH 22/25] netfilter: connlabels: move set helper to xt_connlabel, Pablo Neira Ayuso
- [PATCH 24/25] netfilter: nft_compat: put back match/target module if init fail, Pablo Neira Ayuso
- [PATCH 25/25] netfilter: nft_compat: fix crash when related match/target module is removed, Pablo Neira Ayuso
- Re: [PATCH 00/25] Netfilter/IPVS updates for net-next, David Miller
- <Possible follow-ups>
- [PATCH 00/25] Netfilter/IPVS updates for net-next, Pablo Neira Ayuso
- [PATCH 02/25] netfilter: conntrack: fix race between nf_conntrack proc read and hash resize, Pablo Neira Ayuso
- [PATCH 01/25] ipvs: count pre-established TCP states as active, Pablo Neira Ayuso
- [PATCH 03/25] netfilter: cttimeout: unlink timeout obj again when hash resize happen, Pablo Neira Ayuso
- [PATCH 04/25] netfilter: nf_ct_helper: unlink helper again when hash resize happen, Pablo Neira Ayuso
- [PATCH 07/25] netfilter: nat: convert nat bysrc hash to rhashtable, Pablo Neira Ayuso
- [PATCH 08/25] netfilter: physdev: physdev-is-out should not work with OUTPUT chain, Pablo Neira Ayuso
- [PATCH 11/25] netfilter: nf_tables: get rid of possible_net_t from set and basechain, Pablo Neira Ayuso
- [PATCH 16/25] netfilter: Add helper array register/unregister functions, Pablo Neira Ayuso
- [PATCH 18/25] netfilter: nft_log: check the validity of log level, Pablo Neira Ayuso
- [PATCH 24/25] netfilter: nft_compat: put back match/target module if init fail, Pablo Neira Ayuso
- [PATCH 25/25] netfilter: nft_compat: fix crash when related match/target module is removed, Pablo Neira Ayuso
- [PATCH 17/25] netfilter: nft_log: fix possible memory leak if log expr init fail, Pablo Neira Ayuso
- [PATCH 23/25] netfilter: h323: Use mod_timer instead of set_expect_timeout, Pablo Neira Ayuso
- [PATCH 22/25] netfilter: connlabels: move set helper to xt_connlabel, Pablo Neira Ayuso
- [PATCH 10/25] netfilter: constify arg to is_dying/confirmed, Pablo Neira Ayuso
- [PATCH 21/25] netfilter: conntrack: support a fixed size of 128 distinct labels, Pablo Neira Ayuso
- [PATCH 09/25] netfilter: nft_ct: make byte/packet expr more friendly, Pablo Neira Ayuso
- [PATCH 20/25] netfilter: nf_tables: allow to filter out rules by table and chain, Pablo Neira Ayuso
- [PATCH 19/25] netfilter: nft_log: fix snaplen does not truncate packets, Pablo Neira Ayuso
- [PATCH 06/25] netfilter: move nat hlist_head to nf_conn, Pablo Neira Ayuso
- [PATCH 15/25] netfilter: nft_ct: fix unpaired nf_connlabels_get/put call, Pablo Neira Ayuso
- [PATCH 05/25] netfilter: conntrack: simplify early_drop, Pablo Neira Ayuso
- [PATCH 14/25] netfilter: x_tables: speed up jump target validation, Pablo Neira Ayuso
- [PATCH 12/25] netfilter: nf_conntrack_h323: fix off-by-one in DecodeQ931, Pablo Neira Ayuso
- [PATCH 13/25] netfilter: conntrack: protect early_drop by rcu read lock, Pablo Neira Ayuso
- [PATCH nf-next 1/2] netfilter: nft_compat: put back match/target module if init fail,
Liping Zhang
- [PATCH iptables] extensions: libxt_connlabel: add unit test,
Liping Zhang
- [PATCH 1/1] netfilter: tcp/udp: Only get 4 bytes to get tcp/udp ports,
fgao
- [PATCH iptables 1/2] xtables-translate: add new field to identify the caller,
Pablo M. Bermudo Garay
- [PATCH 1/1] netfilter: h323: Use mod_timer instead of set_expect_timeout,
fgao
- [PATCH libnftnl] expr: lookup: print flags only if they are available, Pablo Neira Ayuso
- [PATCH 1/1] netfilter: Use IS_ERR_OR_NULL instead of IS_ERR and NULl check to simplify the codes in ip_vs_genl_dump_dests and resolve_normal_ct,
fgao
- netfilter: connlabels: get rid of variable-size support,
Florian Westphal
- [PATCH 1/1] netfilter: udp: Remove a bit misleading comment in udp_pkt_to_tuple,
fgao
- [PATCH 1/1] netfilter: udp: Only get 8 bytes header in udp_pkt_to_tuple to keep consistent with tcp_pkt_to_tuple and comments,
fgao
- [PATCH limnl] Fix test building on musl libc, Kylie McClain
- [PATCH] Fix test building on musl libc,
Kylie McClain
- [PATCH v2 iptables] connlabel: clarify default config path,
Florian Westphal
- [PATCH lnf_conntrack] conntrack: labels: add function to fetch default config file location,
Florian Westphal
- [PATCH nf-next,v2] netfilter: nf_tables: allow to filter out rules by table and chain, Pablo Neira Ayuso
- [PATCH libnftnl] examples: selective rule dumping,
jalvarez
- [PATCH iptables] extensions: libxt_NFLOG: add unit test to cover nflog-size with zero,
Liping Zhang
- [PATCH nft] ct: use nftables sysconf location for connlabel configuration,
Florian Westphal
- [PATCH iptables] connlabel: clarify default config path,
Florian Westphal
- [PATCH nf-next] netfilter: nf_tables: allow to filter out rules by table and chain,
Pablo Neira Ayuso
- [PATCH stable-4.1] netfilter: x_tables: fix stable backport,
Michal Kubecek
- [ANNOUNCE] Suspending Patrick McHardy as coreteam member, Pablo Neira Ayuso
- [PATCH iptables 1/2] extensions: libxt_NFLOG: display nflog-size even if it is zero,
Liping Zhang
- [PATCH nf-next 0/3] netfilter: fix some small bugs related to nft_log,
Liping Zhang
- [PATCH 1/1] netfilter: Add helper array register/unregister functions,
fgao
- Re: [PATCH 1/1] netfilter: Add helper array register/unregister functions, Liping Zhang
[PATCH iptables] extensions: libxt_connlabel: fix crash when connlabel.conf is empty,
Liping Zhang
[PATCH V2 iptables] extensions: libxt_connlabel: Add translation to nft,
Liping Zhang
[PATCH nf] netfilter: nft_ct: fix unpaired nf_connlabels_get/put call,
Liping Zhang
[PATCH iptables] extensions: libxt_connlabel: Add translation to nft,
Liping Zhang
[PATCH v3 nf] netfilter: x_tables: speed up jump target validation,
Florian Westphal
[PATCH 1/2 nft] parser_bison: fix typo in symbol redefinition error reporting,
Pablo Neira Ayuso
[PATCH v2 nf] netfilter: x_tables: speed up jump target validation,
Florian Westphal
[PATCH nft v5 1/3] include: cache ip_tables.h, ip6_tables.h, arp_tables.h and ebtables.h,
Pablo M. Bermudo Garay
[PATCH nf] netfilter: x_tables: speed up jump target validation,
Florian Westphal
[PATCH nf-next v2 0/3] Compact netfilter hooks list,
Aaron Conole
[PATCH nft 1/2] parser_bison: restore parsing of dynamic set element updates,
Pablo Neira Ayuso
iptables bypass via raw ethernet frames and other networking protocols, ivan . vettese
[PATCH nf-next 1/2] netfilter: conntrack: protect early_drop by rcu read lock,
Liping Zhang
[PATCH iptables] xtables-translate: fix multiple spaces issue,
Pablo M. Bermudo Garay
[PATCH nft v4 1/3] include: cache ip_tables.h, ip6_tables.h, arp_tables.h and ebtables.h,
Pablo M. Bermudo Garay
[PATCH 2/2] netfilter: add missing macro,
Eric Engestrom
[PATCH nf-next] netfilter: nf_tables: get rid of possible_net_t from set and basechain,
Pablo Neira Ayuso
[PATCH nf-next] netfilter: constify arg to is_dying/confirmed, Florian Westphal
[PATCH v2 2/2] libxt_hashlimit: Create revision 2 of xt_hashlimit to support higher pps rates, Vishwanath Pai
[PATCH v2 1/2] libxt_hashlimit: Prepare libxt_hashlimit.c for revision 2,
Vishwanath Pai
[PATCH v2 2/2] netfilter: Create revision 2 of xt_hashlimit to support higher pps rates, Vishwanath Pai
[PATCH v2 1/2] netfilter: Prepare xt_hashlimit.c for revision 2, Vishwanath Pai
[GIT PULL nf-next] IPVS Updates for v4.8,
Simon Horman
[GIT PULL nf] Second Round of IPVS Fixes for v4.7,
Simon Horman
[PATCH 00/26] Netfilter updates for net-next,
Pablo Neira Ayuso
- [PATCH 01/26] bridge: netfilter: checkpatch data type fixes, Pablo Neira Ayuso
- [PATCH 02/26] netfilter: helper: avoid extra expectation iterations on unregister, Pablo Neira Ayuso
- [PATCH 03/26] netfilter: x_tables: fix possible ZERO_SIZE_PTR pointer dereferencing error., Pablo Neira Ayuso
- [PATCH 05/26] netfilter: xt_TRACE: add explicitly nf_logger_find_get call, Pablo Neira Ayuso
- [PATCH 12/26] netfilter: xt_NFLOG: nflog-range does not truncate packets, Pablo Neira Ayuso
- [PATCH 18/26] netfilter: nft_hash: support deletion of inactive elements, Pablo Neira Ayuso
- [PATCH 19/26] netfilter: conntrack: allow increasing bucket size via sysctl too, Pablo Neira Ayuso
- [PATCH 25/26] netfilter: Convert FWINV<[foo]> macros and uses to NF_INVF, Pablo Neira Ayuso
- [PATCH 26/26] netfilter: nf_log: fix error on write NONE to logger choice sysctl, Pablo Neira Ayuso
- [PATCH 20/26] netfilter: nf_tables: get rid of NFT_BASECHAIN_DISABLED, Pablo Neira Ayuso
- [PATCH 24/26] netfilter: Remove references to obsolete CONFIG_IP_ROUTE_FWMARK, Pablo Neira Ayuso
- [PATCH 23/26] etherdevice.h & bridge: netfilter: Add and use ether_addr_equal_masked, Pablo Neira Ayuso
- [PATCH 21/26] netfilter: nf_tables: add support for inverted logic in nft_lookup, Pablo Neira Ayuso
- [PATCH 22/26] netfilter: x_tables: simplify ip{6}table_mangle_hook(), Pablo Neira Ayuso
- [PATCH 17/26] netfilter: nft_rbtree: check for next generation when deactivating elements, Pablo Neira Ayuso
- [PATCH 15/26] netfilter: nf_tables: add generation mask to chains, Pablo Neira Ayuso
- [PATCH 16/26] netfilter: nf_tables: add generation mask to sets, Pablo Neira Ayuso
- [PATCH 13/26] netfilter: nf_tables: add generic macros to check for generation mask, Pablo Neira Ayuso
- [PATCH 11/26] netfilter: nf_reject_ipv4: don't send tcp RST if the packet is non-TCP, Pablo Neira Ayuso
- [PATCH 14/26] netfilter: nf_tables: add generation mask to tables, Pablo Neira Ayuso
- [PATCH 10/26] netfilter: Allow xt_owner in any user namespace, Pablo Neira Ayuso
- [PATCH 09/26] netfilter: move zone info into struct nf_conn, Pablo Neira Ayuso
- [PATCH 07/26] netfilter: make comparision helpers stub functions in ZONES=n case, Pablo Neira Ayuso
- [PATCH 08/26] netfilter: nf_log: Remove NULL check, Pablo Neira Ayuso
- [PATCH 04/26] netfilter: nf_log: handle NFPROTO_INET properly in nf_logger_[find_get|put], Pablo Neira Ayuso
- [PATCH 06/26] netfilter: conntrack: align nf_conn on cacheline boundary, Pablo Neira Ayuso
- Re: [PATCH 00/26] Netfilter updates for net-next, David Miller
- <Possible follow-ups>
- [PATCH 00/26] Netfilter updates for net-next, Pablo Neira Ayuso
- [PATCH 05/26] netfilter: ipset: Fix the last missing check of nla_parse_deprecated(), Pablo Neira Ayuso
- [PATCH 16/26] netfilter: synproxy: extract SYNPROXY infrastructure from {ipt, ip6t}_SYNPROXY, Pablo Neira Ayuso
- [PATCH 24/26] netfilter: bridge: Fix non-untagged fragment packet, Pablo Neira Ayuso
- [PATCH 26/26] netfilter: nf_tables: add support for matching IPv4 options, Pablo Neira Ayuso
- [PATCH 22/26] netfilter: bridge: prevent UAF in brnf_exit_net(), Pablo Neira Ayuso
- [PATCH 23/26] netfilter: fix nf_conntrack_bridge/ipv6 link error, Pablo Neira Ayuso
- [PATCH 25/26] netfilter: synproxy: fix manual bump of the reference counter, Pablo Neira Ayuso
- [PATCH 17/26] netfilter: synproxy: ensure zero is returned on non-error return path, Pablo Neira Ayuso
- [PATCH 21/26] netfilter: synproxy: use nf_cookie_v6_check() from core, Pablo Neira Ayuso
- [PATCH 19/26] netfilter: nf_tables: enable set expiration time for set elements, Pablo Neira Ayuso
- [PATCH 13/26] netfilter: bridge: namespace bridge netfilter sysctls, Pablo Neira Ayuso
- [PATCH 18/26] netfilter: nft_ct: fix null pointer in ct expectations support, Pablo Neira Ayuso
- [PATCH 20/26] netfilter: synproxy: fix building syncookie calls, Pablo Neira Ayuso
- [PATCH 08/26] Update my email address, Pablo Neira Ayuso
- [PATCH 09/26] netfilter: nft_ct: add ct expectations support, Pablo Neira Ayuso
- [PATCH 10/26] netfilter: conntrack: small conntrack lookup optimization, Pablo Neira Ayuso
- [PATCH 15/26] netfilter: synproxy: remove module dependency on IPv6 SYNPROXY, Pablo Neira Ayuso
- [PATCH 14/26] netfilter: synproxy: add common uapi for SYNPROXY infrastructure, Pablo Neira Ayuso
- [PATCH 12/26] netfilter: bridge: port sysctls to use brnf_net, Pablo Neira Ayuso
- [PATCH 11/26] netfilter: xt_owner: bail out with EINVAL in case of unsupported flags, Pablo Neira Ayuso
- [PATCH 07/26] ipset: Fix memory accounting for hash types on resize, Pablo Neira Ayuso
- [PATCH 04/26] netfilter: ipset: fix a missing check of nla_parse, Pablo Neira Ayuso
- [PATCH 02/26] netfilter: ipset: remove useless memset() calls, Pablo Neira Ayuso
- [PATCH 06/26] netfilter: ipset: Fix error path in set_target_v3_checkentry(), Pablo Neira Ayuso
- [PATCH 03/26] netfilter: ipset: merge uadd and udel functions, Pablo Neira Ayuso
- [PATCH 01/26] netfilter: ipv6: Fix undefined symbol nf_ct_frag6_gather, Pablo Neira Ayuso
- Re: [PATCH 00/26] Netfilter updates for net-next, David Miller
[PATCH nf] netfilter: nft_ct: fix expiration getter,
Florian Westphal
[ANNOUNCE] Netdev 1.2 Registration open, Hajime Tazaki
DoS attack mitigation in netfilter,
Vikas
[RFC 0/7] netlink: Add allocation flag to netlink_unicast(),
Masashi Honma
Re: [RFC 0/7] netlink: Add allocation flag to netlink_unicast(), Masashi Honma
[PATCH nf-next] netfilter: nft_ct: make byte/packet expr more friendly,
Liping Zhang
[PATCH] netfilter: physdev: physdev-is-out should not work with OUTPUT chain,
Hangbin Liu
Re: Multi-thread udp 4.7 regression, bisected to 71d8c47fc653,
Pablo Neira Ayuso
[PATCH nf-next 0/2] netfilter: nat: simplify & convert bysrc hash to rhashtable,
Florian Westphal
[PATCH nft 1/3] meta: add random and probability match,
Florian Westphal
libxtables backward compatibility,
Neal P. Murphy
[PATCH] fix off-by-one in DecodeQ931,
Toby DiPasquale
[PATCH -next] netfilter: conntrack: simplify early_drop,
Florian Westphal
[PATCH libnetfilter_queue] src: check result of malloc when creating queue,
lists
[PATCH V2,nf 0/3] netfilter: conntrack: fix race condition associated with hash resize,
Liping Zhang
[PATCH 1/1 rev. 1] nft: configure.ac: Replace magic dblatex dep.,
Nicholas Vinson
Re: nftables: Dynamically updating sets gives syntax error,
Anders K. Pedersen
[PATCH nf 0/3] netfilter: conntrack: fix race condition associated with hash resize,
Liping Zhang
[ANNOUNCE] libmnl 1.0.4 release, Pablo Neira Ayuso
[PATCH libmnl] src: cleanup function definitions, Pablo Neira Ayuso
[PATCH] netfilter: nf_log: fix error on write NONE to logger choice sysctl,
Pavel Tikhomirov
[PATCH] netfilter: nf_conntrack_sip: CSeq 0 is a valid CSeq,
chleroy
[PATCH nf-next 0/3] Compact netfilter hooks list,
Aaron Conole
[PATCH] netfilter: Remove references to obsolete CONFIG_IP_ROUTE_FWMARK,
Moritz Sichert
[ANNOUNCE] Statement of netfilter project on GPL enforcement, Pablo Neira Ayuso
[nft PATCH 1/3 v3] include: cache ip_tables.h, ip6_tables.h, arp_tables.h and ebtables.h,
Pablo M. Bermudo Garay
Advice requested: de-masquerading from a qdisc?, Kevin Darbyshire-Bryant
[PATCH] iptables: extensions: libxt_ecn: Add translation to nft,
rodanber
[PATCH net] openvswitch: fix conntrack netlink event delivery,
Samuel Gauthier
[PATCH 1/2 libnftnl] set: Add new attribute into 'set' to store user data,
Carlos Falgueras García
[PATCH libnftnl] set: Fix nftnl_set_set_str,
Carlos Falgueras García
[PATCH iptables] extensions: libipt_realm: fix order of mask and id when do nft translation,
Liping Zhang
[PATCH 1/1] nft: configure.ac: Replace magic dblatex dep.,
Nicholas Vinson
[PATCH v3] netfilter/nflog: nflog-range does not truncate packets (userspace),
Vishwanath Pai
[PATCH] netfilter: Convert FWINV<[foo]> macros and uses to NF_INVF, Joe Perches
[PATCH 1/1] extensions: added AR substitution,
Jordan Yelloz
[PATCH nf-next] netfilter: x_tables: simplify ip{6}table_mangle_hook(), Pablo Neira Ayuso
[PATCH v5] xtables: Add an interval option for xtables lock wait,
Subash Abhinov Kasiviswanathan
[nft PATCH] tests: shell: run-tests.sh: use src/nft binary by default,
Arturo Borrero Gonzalez
[PATCH nf-next] netfilter: nf_tables: get rid of NFT_BASECHAIN_DISABLED, Pablo Neira Ayuso
nft shell tests,
Pablo Neira Ayuso
[nf-next PATCH v5] netfilter: nf_tables: add support for inverted logic in nft_lookup,
Arturo Borrero Gonzalez
[PATCH] ipset: Backports for the nla_put_net64() API changes,
Neutron Soutmun
[RFC nf-next 0/3] Compact netfilter hooks list,
Aaron Conole
[PATCH iptables] configure: Fix assignment statement,
Shivani Bhardwaj
[PATCH iptables] iptables-compat: use nft built-in comments support,
Pablo M. Bermudo Garay
[PATCH] nft: Add support for inverted bitwise value list,
Laura Garcia Liebana
[PATCH iptables] configure: Fix logic to show connlabel support,
Shivani Bhardwaj
[PATCH nft] tests: shell: cover transactions via nft -f using flat syntax,
Pablo Neira Ayuso
[PATCH -next v3] netfilter: conntrack: allow increasing bucket size via sysctl too,
Florian Westphal
[PATCH nf-next 1/6] netfilter: nf_tables: add generic macros to check for generation mask,
Pablo Neira Ayuso
[PATCH nft] segtree: don't check for overlaps if set definition is empty, Pablo Neira Ayuso
[ANNOUNCE] Suricata meets Netfilter Conference on 27th June in Amsterdam, Netherlands, Pablo Neira Ayuso
[stable] netfilter fixes for CVE-2016-3134,
Ben Hutchings
[PATCH] iptables: extensions: libxt_MARK: Fix translation of --set-xmark option,
rodanber
[PATCH] iptables: extensions: libxt_MARK: Add translation for revision 1 to nft,
rodanber
[PATCH v2 2/2] netfilter/nflog: nflog-range does not truncate packets (userspace),
Vishwanath Pai
[PATCH v2 1/2] netfilter/nflog: nflog-range does not truncate packets,
Vishwanath Pai
[PATCH -next v2] netfilter: conntrack: allow increasing bucket size via sysctl too,
Florian Westphal
Linux Module based on netfilter hooks, Salis Joshi
[PATCH iptables] configure: Remove flex check warning,
Shivani Bhardwaj
[PATCH conntrack-tools] configure: Remove flex check warning,
Shivani Bhardwaj
[PATCHv2] extensions: libxt_conntrack: Add translation to nft,
Laura Garcia Liebana
[PACTH nf-next] netfilter: nf_reject_ipv4: don't send tcp RST if the packet is non-TCP,
Liping Zhang
[PATCH nf] netfilter: nf_tables: fix memory leak if expr init fails,
Liping Zhang
[PATCH libnetfilter_queue] src: make nfq_open_nfnl thread-safe,
Florian Westphal
[PATCH libnftnl, v2] fix some error checking in parser functions,
Carlos Falgueras García
[PATCH iptables] libxt_iprange: remove extra space in translation,
Pablo M. Bermudo Garay
[PATCH conntrack-tools] configure: Fix flex version check,
Shivani Bhardwaj
[PATCH nft] configure: Show flex version check, Shivani Bhardwaj
[PATCH iptables] configure: Fix logic for flex version check, Shivani Bhardwaj
[PATCH] iptables: extensions: libxt_CONNMARK: Add translation to nft,
rodanber
[PATCH 1/1] extensions: NETMAP: fix iptables-save output, Florian Westphal
[PATCH] netfilter: xt_SYNPROXY: include missing <linux/types.h>, Pablo Neira Ayuso
[PATCH nf] netfilter: add missing xt_SYNPROXY.h header to Kbuild,
Pablo Neira Ayuso
[PATCH] configure: Fix logic for flex version check,
Shivani Bhardwaj
rfc: netfilter: Unhide FWINV macro arguments ?,
Joe Perches
Implicit flow tables can't be listed,
Florian Westphal
[PATCH 1/3 libnftnl] chain: Fix bug. Check correct attribute,
Carlos Falgueras García
"header-y += xt_SYNPROXY.h" is missing in include/uapi/linux/netfilter/Kbuild, Matt Whitlock
[PATCH] bridge: netfilter: spanning tree: Add masked_ether_addr_equal and neatening,
Joe Perches
[PATCH nft] src: use new definitions from libnftnl, Pablo Neira Ayuso
[PATCH v4] xtables: Add an interval option for xtables lock wait,
Subash Abhinov Kasiviswanathan
[PATCH V3] net: Allow xt_owner in any user namespace,
Kevin Cernekee
[PATCH] libipt_NETMAP: Avoid listing 32 bit mask and fix tests,
Shivani Bhardwaj
[PATCH] extensions: libxt_conntrack: Add translation to nft,
Laura Garcia Liebana
Re: [PATCH] netfilter: fix buffer null termination,
Pablo Neira Ayuso
[PATCH v2 0/5] ipvs: fix backup sync daemon with IPv6, and minor updates,
Quentin Armitage
[PATCH v3 0/4] ipvs: fix backup sync daemon with IPv6, and minor updates, Quentin Armitage
[PATCH libnftnl 1/9] src: get rid of aliases,
Pablo Neira Ayuso
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
