Linux Netfilter / IP Tables Devel
[Prev Page][Next Page]
- Re: [PATCH 0/5 net-next] Netfilter ingress support (v4), (continued)
- [PATCH net-next] netfilter: Use correct return for seq_show functions,
Joe Perches
- Kernel panic with skb_alloc during post_routing, Praveen Kumar
- [PATCH] net: deinline netif_tx_stop_all_queues(), remove WARN_ON in netif_tx_stop_queue(),
Denys Vlasenko
- Probably bug in netfilter hashlimit extension,
Klaus Ethgen
- [ANNOUNCE] ulogd 2.0.5 release, Eric Leblond
- ulogd 2.0.5,
Chris Boot
- [GIT PULL nf] IPVS Fixes for v4.1,
Simon Horman
- cthelper's and default QueueLen -- bug?,
Chas Williams III
- [PATCH nf] conntrack: RFC5961 challenge ACK confuse conntrack LAST-ACK transition,
Jesper Dangaard Brouer
- [PATCH] netfilter: avoid build error if TPROXY/SOCKET=y && NF_DEFRAG_IPV6=m,
Florian Westphal
- [PATCH] ipvs: fix memory leak in ip_vs_ctl.c,
Tommi Rantala
- [PATCH] net: deinline netif_tx_stop_queue() and netif_tx_stop_all_queues(),
Denys Vlasenko
- [PATCH] netfilter: ipset: deinline ip_set_put_extensions(),
Denys Vlasenko
- [PATCH 0/4] Netfilter ingress support (v3),
Pablo Neira Ayuso
- [PATCH iptables] libxt_CT: add support for flextuples,
Daniel Borkmann
- [PATCH nf-next] netfilter: conntrack: add support for flextuples,
Daniel Borkmann
- Re: [PATCH 3.19 176/177] netfilter: x_tables: fix cgroup matching on non-full sks, Pablo Neira Ayuso
- [PATCH -next] netfilter: bridge: free nf_bridge info on xmit,
Florian Westphal
- [PATCH -next] netfilter: bridge: neigh_head and physoutdev can't be used at same time,
Florian Westphal
- [PATCH] configure.ac: Add --without-{mysql,pgsql},
Harald Welte
- [PATCH] netfilter: fix dependency issues between IPv6 defragmentation and ip6tables,
Liu Hua
- [iptables PATCH 2/2 RFC] Remove Libc5 support code,
Felix Janda
- [iptables PATCH 1/2] Consistently use <errno.h>,
Felix Janda
- [PATCH 00/34] ipset patches for nf-next,
Jozsef Kadlecsik
- [PATCH 10/34] netfilter: ipset: Missing rcu protection in mtype_list() fixed, Jozsef Kadlecsik
- [PATCH 02/34] netfilter: ipset: Prepare the ipset core to use RCU at set level, Jozsef Kadlecsik
- [PATCH 06/34] netfilter: ipset: Fix parallel resizing and listing of the same set, Jozsef Kadlecsik
- [PATCH 05/34] netfilter: ipset: Introduce RCU locking in list type, Jozsef Kadlecsik
- [PATCH 08/34] netfilter: ipset: Use MSEC_PER_SEC consistently, Jozsef Kadlecsik
- [PATCH 07/34] netfilter: ipset: Fix sparse warning, Jozsef Kadlecsik
- [PATCH 09/34] netfilter: ipset: Give a better name to a macro in ip_set_core.c, Jozsef Kadlecsik
- [PATCH 01/34] netfilter: ipset: Remove rbtree from hash:net,iface, Jozsef Kadlecsik
- [PATCH 03/34] netfilter: ipset: Introduce RCU locking in bitmap:* types, Jozsef Kadlecsik
- [PATCH 14/34] netfilter: ipset: Properly calculate extensions offsets and total length, Jozsef Kadlecsik
- [PATCH 11/34] netfilter: ipset: Make sure listing doesn't grab a set which is just being destroyed., Jozsef Kadlecsik
- [PATCH 16/34] netfilter: ipset: No need to make nomatch bitfield, Jozsef Kadlecsik
- [PATCH 15/34] netfilter: ipset: Make sure bit operations are not reordered, Jozsef Kadlecsik
- [PATCH 23/34] netfilter: ipset: Permit CIDR equal to the host address CIDR in IPv6, Jozsef Kadlecsik
- [PATCH 27/34] netfilter: ipset: Check for comment netlink attribute length, Jozsef Kadlecsik
- [PATCH 18/34] netfilter: ipset: Return ipset error instead of bool, Jozsef Kadlecsik
- [PATCH 21/34] netfilter: ipset: Check IPSET_ATTR_PORT only once, Jozsef Kadlecsik
- [PATCH 26/34] netfilter: ipset: Return bool values instead of int, Jozsef Kadlecsik
- [PATCH 29/34] netfilter: ipset: Fix hashing for ipv6 sets, Jozsef Kadlecsik
- [PATCH 30/34] netfilter: ipset: Improve preprocessor macros checks, Jozsef Kadlecsik
- [PATCH 32/34] netfilter: ipset: RCU safe comment extension handling, Jozsef Kadlecsik
- [PATCH 31/34] netfilter: ipset: Make sure dumping can't grab set being just destroyed, Jozsef Kadlecsik
- [PATCH 22/34] netfilter: ipset: Use HOST_MASK literal to represent host address CIDR len, Jozsef Kadlecsik
- [PATCH 28/34] netfilter: ipset: Fix ext_*() macros, Jozsef Kadlecsik
- [PATCH 20/34] netfilter: ipset: Check extensions attributes before getting extensions., Jozsef Kadlecsik
- [PATCH 17/34] netfilter: ipset: Preprocessor directices cleanup, Jozsef Kadlecsik
- [PATCH 19/34] netfilter: ipset: Use SET_WITH_*() helpers to test set extensions, Jozsef Kadlecsik
- [PATCH 13/34] netfilter: ipset: Fix cidr handling for hash:*net* types, Jozsef Kadlecsik
- [PATCH 12/34] netfilter: ipset: make ip_set_get_ip*_port to use skb_network_offset, Jozsef Kadlecsik
- [PATCH 04/34] netfilter: ipset: Introduce RCU locking in hash:* types, Jozsef Kadlecsik
- [PATCH 33/34] netfilter: ipset: Fix coding styles reported by checkpatch.pl, Jozsef Kadlecsik
- [PATCH 34/34] netfilter: ipset: Use better include files in xt_set.c, Jozsef Kadlecsik
- [PATCH 25/34] netfilter: ipset: Check CIDR value only when attribute is given, Jozsef Kadlecsik
- [PATCH 24/34] netfilter: ipset: Make sure we always return line number on batch, Jozsef Kadlecsik
- Matching MLD with ip6tables,
Linus Lüssing
- [PATCH 0/6 RFC] Netfilter ingress support (v2),
Pablo Neira Ayuso
- Q on contribution to Netfilter,
Ravi Kerur
- [PATCH] nf_tables: silence needless warning on element delete, Miroslav Kratochvil
- [PATCH nft] datatype: fix packet mark type name,
Miroslav Kratochvil
- [PATCH libnetfilter_log] Add include needed for integer type definition.,
Natanael Copa
- [PATCH] netfilter; Add some missing default cases to switch statements in nft_reject., David Miller
- Re: [PATCH net-next 0/6] ipv6: netfilter - coding style improvements, Pablo Neira Ayuso
- roadmap of the nftables development,
Nikita Klimov
- [PATCH nf] netfilter: bridge: fix NULL deref in physin/out ifindex helpers,
Florian Westphal
- [PATCH] Allow use of 'socket' match in OUTPUT,
Daniel Collins
- [PATCH] Add arpt_MARK to xt_mark,
Zhang Chunyu
- [PATCH libnftnl 1/2] src: add batch abstraction,
Pablo Neira Ayuso
- [PATCH -next] netfilter: nf_tables: fix wrong length for jump/goto verdicts,
Florian Westphal
- nftables: oob crash w. verdict maps & jumps,
Florian Westphal
- [PATCH libnftnl 0/5] concatenation and dynamic expression instantiation,
Patrick McHardy
- [libnftnl PATCH v2] expr: dynset: fix json/xml parsing,
Arturo Borrero Gonzalez
- [libnftnl PATCH] expr: dynset: fix json/xml parsing, Arturo Borrero Gonzalez
- [PATCH nf-next] netfilter: nf_tables: get rid of the expression example code,
Pablo Neira Ayuso
- [PATCH 1/5 v4] netlink: Fix portid type in netlink_notify,
Richard Weinberger
- [PATCH 0/3] libnftnl: dynset dynamic expression instantiation,
Patrick McHardy
- [PATCH 0/3] libnfnl: support for new set features,
Patrick McHardy
- [PATCH 00/10] nftables: set timeouts and dynamic updates,
Patrick McHardy
- [PATCH 01/10] datatype: fix parsing of time type, Patrick McHardy
- [PATCH 02/10] datatype: less strict time parsing, Patrick McHardy
- [PATCH 03/10] datatype: seperate time parsing/printing from time_type, Patrick McHardy
- [PATCH 05/10] parser: fix inconsistencies in set expression rules, Patrick McHardy
- [PATCH 04/10] parser: add a time_spec rule, Patrick McHardy
- [PATCH 06/10] expr: add set_elem_expr as container for set element attributes, Patrick McHardy
- [PATCH 07/10] set: add timeout support for sets, Patrick McHardy
- [PATCH 08/10] setelem: add timeout support for set elements, Patrick McHardy
- [PATCH 09/10] setelem: add support for attaching comments to set elements, Patrick McHardy
- [PATCH 10/10] nftables: add set statement, Patrick McHardy
- [PATCH] netlink: kill non-batch compat code, Patrick McHardy
- [PATCH] src: restore interface to index cache,
Pablo Neira Ayuso
- [PATCH nft v4] src: restore interface to index cache,
Pablo Neira Ayuso
- [PATCH RFC 0/2] nftables: fix time parsing,
Patrick McHardy
- [PATCH nft v3] src: restore interface to index cache,
Pablo Neira Ayuso
- [PATCH 0/5] netfilter: nf_tables: dynamic stateful expression instantiation,
Patrick McHardy
- [PATCH 00/14] netfilter: nf_tables: concatenation support,
Patrick McHardy
- [PATCH 01/14] netfilter: nf_tables: validate len in nft_validate_data_load(), Patrick McHardy
- [PATCH 02/14] netfilter: nf_tables: rename nft_validate_data_load(), Patrick McHardy
- [PATCH 03/14] netfilter: nft_lookup: use nft_validate_register_store() to validate types, Patrick McHardy
- [PATCH 04/14] netfilter: nf_tables: kill nft_validate_output_register(), Patrick McHardy
- [PATCH 05/14] netfilter: nf_tables: introduce nft_validate_register_load(), Patrick McHardy
- [PATCH 06/14] netfilter: nf_tables: get rid of NFT_REG_VERDICT usage, Patrick McHardy
- [PATCH 07/14] netfilter: nf_tables: use struct nft_verdict within struct nft_data, Patrick McHardy
- [PATCH 08/14] netfilter: nf_tables: convert expressions to u32 register pointers, Patrick McHardy
- [PATCH 09/14] netfilter: nf_tables: kill nft_data_cmp(), Patrick McHardy
- [PATCH 10/14] netfilter: nf_tables: convert sets to u32 data pointers, Patrick McHardy
- [PATCH 11/14] netfilter: nf_tables: add register parsing/dumping helpers, Patrick McHardy
- [PATCH 12/14] netfilter: nf_tables: switch registers to 32 bit addressing, Patrick McHardy
- [PATCH 13/14] netfilter: nf_tables: support variable sized data in nft_data_init(), Patrick McHardy
- [PATCH 14/14] netfilter: nf_tables: variable sized set element keys / data, Patrick McHardy
- Re: [PATCH 00/14] netfilter: nf_tables: concatenation support, Pablo Neira Ayuso
- Re: [PATCH 00/14] netfilter: nf_tables: concatenation support, Pablo Neira Ayuso
- [PATCH 0/7 RFC] Netfilter/nf_tables ingress support,
Pablo Neira Ayuso
- Namespaces and NFLOG, nfnty
- [PATCH v3] netfilter: Fix format string of nfnetlink_log proc file, Richard Weinberger
- Looking for extensible kernel database format,
Luis R. Rodriguez
- [PATCH 1/5 v2] netlink: Fix portid type in netlink_notify,
Richard Weinberger
- [PATCH nft v2 1/3] include: cache ip_tables.h, ip6_tables.h, arp_tables.h and ebtables.h,
Pablo Neira Ayuso
- [PATCH nft v2] src: restore interface to index cache, Pablo Neira Ayuso
- [PATCH 00/20] Netfilter updates for net-next,
Pablo Neira Ayuso
- [PATCH 01/20] netfilter: nf_tables: add set timeout API support, Pablo Neira Ayuso
- [PATCH 14/20] netfilter: bridge: start splitting mask into public/private chunks, Pablo Neira Ayuso
- [PATCH 20/20] netfilter: nf_tables: support optional userdata for set elements, Pablo Neira Ayuso
- [PATCH 11/20] netfilter: bridge: add helpers for fetching physin/outdev, Pablo Neira Ayuso
- [PATCH 16/20] netfilter: nf_tables: fix set selection when timeouts are requested, Pablo Neira Ayuso
- [PATCH 19/20] netfilter: nf_tables: add support for dynamic set updates, Pablo Neira Ayuso
- [PATCH 12/20] netfilter: physdev: use helpers, Pablo Neira Ayuso
- [PATCH 13/20] netfilter: bridge: add and use nf_bridge_info_get helper, Pablo Neira Ayuso
- [PATCH 18/20] netfilter: nf_tables: support different set binding types, Pablo Neira Ayuso
- [PATCH 17/20] netfilter: nf_tables: prepare set element accounting for async updates, Pablo Neira Ayuso
- [PATCH 15/20] netfilter: bridge: make BRNF_PKT_TYPE flag a bool, Pablo Neira Ayuso
- [PATCH 06/20] netfilter: x_tables: fix cgroup matching on non-full sks, Pablo Neira Ayuso
- [PATCH 10/20] netfilter: bridge: don't use nf_bridge_info data to store mac header, Pablo Neira Ayuso
- [PATCH 02/20] netfilter: nf_tables: add set element timeout support, Pablo Neira Ayuso
- [PATCH 07/20] netfilter: nft_meta: fix cgroup matching, Pablo Neira Ayuso
- [PATCH 04/20] netfilter: nf_tables: add GC synchronization helpers, Pablo Neira Ayuso
- [PATCH 03/20] netfilter: nf_tables: add set garbage collection helpers, Pablo Neira Ayuso
- [PATCH 05/20] netfilter: nft_hash: add support for timeouts, Pablo Neira Ayuso
- [PATCH 08/20] netfilter: bridge: really save frag_max_size between PRE and POST_ROUTING, Pablo Neira Ayuso
- [PATCH 09/20] netfilter: x_tables: don't extract flow keys on early demuxed sks in socket match, Pablo Neira Ayuso
- Re: [PATCH 00/20] Netfilter updates for net-next, David Miller
- [nft PATCH 1/4] include: cache a copy of kernel ebtables.h,
Arturo Borrero Gonzalez
- [iptables PATCH] libxtables: extensions find based also on family,
Arturo Borrero Gonzalez
- [kernel PATCH] uapi: ebtables: don't include linux/if.h,
Arturo Borrero Gonzalez
- [PATCH] netfilter: Fix switch statement warnings with recent gcc.,
David Miller
- [nft PATCH] monitor: fix missing space after chain name,
Arturo Borrero Gonzalez
- [PATCH] Add NFPROTO_ARP for mark target,
Zhang Chunyu
- [iptables PATCH] list: fix prefetch dummy,
Arturo Borrero Gonzalez
- [iptables PATCH] ebtables-compat: fix misplaced function attribute on ebt_print_error(),
Arturo Borrero Gonzalez
- [PATCH nft 1/2] src: introduce netlink_init_error(),
Pablo Neira Ayuso
- [PATCH 4/4] udp_tunnel: Pass UDP socket down through udp_tunnel{,6}_xmit_skb().,
David Miller
- [PATCH 3/4] netfilter: Pass socket pointer down through okfn().,
David Miller
- [PATCH 2/4] netfilter: Add socket pointer to nf_hook_state., David Miller
- [PATCH 1/4] netfilter: Add nf_hook_state initializer function.,
David Miller
- [PATCH 0/4] Prevent UDP tunnels from operating on garbage socket,
David Miller
Re: SYNPROXY module with bridge, Patrick McHardy
[PATCH] netfilter: nf_tables: support per element userdata,
Patrick McHardy
[PATCH 0/4] netfilter: nf_tables: dynamic set updates,
Patrick McHardy
[PATCH 9/9] netfilter: Pass nf_hook_state through arpt_do_table()., David Miller
[PATCH 8/9] netfilter: Pass nf_hook_state through nft_set_pktinfo*()., David Miller
[PATCH 7/9] netfilter: Pass nf_hook_state through ip6t_do_table()., David Miller
[PATCH 5/9] netfilter: Pass nf_hook_state through ipt_do_table()., David Miller
[PATCH 6/9] netfilter: Pass nf_hook_state through nf_nat_ipv6_{in,out,fn,local_fn}()., David Miller
[PATCH 4/9] netfilter: Pass nf_hook_state through nf_nat_ipv4_{in,out,fn,local_fn}()., David Miller
[PATCH 3/9] netfilter: Make nf_hookfn use nf_hook_state., David Miller
[PATCH 2/9] netfilter: Use nf_hook_state in nf_queue_entry., David Miller
[PATCH 1/9] netfilter: Create and use nf_hook_state.,
David Miller
[PATCH 0/9] netfilter: Compress hook function signatures.,
David Miller
[PATCH nf-next] netfilter: x_tables: don't bail out on mismatching revision, Pablo Neira Ayuso
ulogd2 memory bug?, Peter Sagerson
[PATCH v2 nf-next 0/6] netfilter: prepare for skb->nf_bridge removal,
Florian Westphal
[PATCH nf-next] netfilter: x_tables: don't extract flow keys on early demuxed sks in socket match,
Daniel Borkmann
[PATCH arptables 1/2] src: cache in tree and use x_tables.h,
Pablo Neira Ayuso
[PATCH nf-next 00/14] get rid of skb->nf_bridge pointer,
Florian Westphal
- [PATCH nf-next 01/14] netfilter: bridge: really save frag_max_size between PRE and POST_ROUTING, Florian Westphal
- [PATCH nf-next 13/14] netfilter: bridge: neigh_head and physoutdev can't be used at same time, Florian Westphal
- [PATCH nf-next 14/14] netfilter: bridge: hold physinport ref during neigh resolution, Florian Westphal
- [PATCH nf-next 11/14] netfilter: bridge: remove skb->nf_bridge, Florian Westphal
- [PATCH nf-next 12/14] netfilter: bridge: discard nf_bridge info on xmit, Florian Westphal
- [PATCH nf-next 08/14] netfilter: physdev: use helpers, Florian Westphal
- [PATCH nf-next 07/14] netfilter: bridge: add helpers for fetching physin/outdev, Florian Westphal
- [PATCH nf-next 10/14] netfilter: bridge: move bridge netfilter state into sk_buff, Florian Westphal
- [PATCH nf-next 09/14] netfilter: bridge: add and use nf_bridge_info_get helper, Florian Westphal
- [PATCH nf-next 05/14] netfilter: bridge: make BRNF_PKT_TYPE flag a bool, Florian Westphal
- [PATCH nf-next 06/14] netfilter: bridge: rename and resize 'data' field, Florian Westphal
- [PATCH nf-next 04/14] netfilter: bridge: start splitting mask into public/private chunks, Florian Westphal
- [PATCH nf-next 02/14] net: untangle ip_fragment and bridge netfilter, Florian Westphal
- [PATCH nf-next 03/14] netfilter: bridge: don't use nf_bridge_info data to store mac header, Florian Westphal
nft parser and problems with icmp type names (redirect and param-problem),
Alexander Holler
[PATCH 00/25] treewide: Use bool function return values of true/false not 1/0,
Joe Perches
[PATCH 4/9 net-next] ipv6: replace if/BUG by BUG_ON,
Fabian Frederick
[PATCH 9/9 net-next] netfilter: replace if/BUG by BUG_ON, Fabian Frederick
[PATCH V4 0/3] Add mark target,
Zhang Chunyu
[PATCH -iptables] cgroup, man: improve man-page bits,
Daniel Borkmann
[PATCH -nf] netfilter: x_tables: fix cgroup matching on non-full sks,
Daniel Borkmann
How to do a NAT lookup from the kernel?, Justin Michael Schwartzbeck
ANNOUNCEMENT: Netdev 01 materials posted, Jamal Hadi Salim
[PATCH nf-next v2 0/2] xt_cgroups fix,
Daniel Borkmann
[PATCH libnftnl 0/2] set timeout support,
Patrick McHardy
[PATCH libnftnl] list: fix prefetch dummy, Patrick McHardy
[PATCH 0/5] netfilter: nf_tables: set timeout support,
Patrick McHardy
[PATCH 00/15] Netfilter updates for net-next,
Pablo Neira Ayuso
- [PATCH 01/15] netfilter: nf_tables: move struct net pointer to base chain, Pablo Neira Ayuso
- [PATCH 04/15] netfilter: nf_tables: nft_queue does not depend on x_tables, Pablo Neira Ayuso
- [PATCH 06/15] rhashtable: provide len to obj_hashfn, Pablo Neira Ayuso
- [PATCH 10/15] netfilter: nf_tables: add set extensions, Pablo Neira Ayuso
- [PATCH 09/15] netfilter: nft_hash: convert to use rhashtable callbacks, Pablo Neira Ayuso
- [PATCH 13/15] netfilter: nf_tables: return set extensions from ->lookup(), Pablo Neira Ayuso
- [PATCH 12/15] netfilter: nf_tables: consolide set element destruction, Pablo Neira Ayuso
- [PATCH 11/15] netfilter: nf_tables: convert hash and rbtree to set extensions, Pablo Neira Ayuso
- [PATCH 07/15] netfilter: nft_hash: restore struct nft_hash, Pablo Neira Ayuso
- [PATCH 15/15] netfilter: nf_tables: implement set transaction support, Pablo Neira Ayuso
- [PATCH 14/15] netfilter: nf_tables: add transaction helper functions, Pablo Neira Ayuso
- [PATCH 08/15] netfilter: nft_hash: indent rhashtable parameters, Pablo Neira Ayuso
- [PATCH 02/15] netfilter: Use LOGLEVEL_<FOO> defines, Pablo Neira Ayuso
- [PATCH 05/15] netfilter: nft_meta: use raw_smp_processor_id(), Pablo Neira Ayuso
- [PATCH 03/15] netfilter: nf_tables: restore nf_log_trace() in nf_tables_core.c, Pablo Neira Ayuso
- Re: [PATCH 00/15] Netfilter updates for net-next, David Miller
- <Possible follow-ups>
- [PATCH 00/15] Netfilter updates for net-next, Pablo Neira Ayuso
- [PATCH 06/15] netfilter: nft_limit: convert to token-based limiting at nanosecond granularity, Pablo Neira Ayuso
- [PATCH 07/15] netfilter: nft_limit: factor out shared code with per-byte limiting, Pablo Neira Ayuso
- [PATCH 09/15] netfilter: nft_limit: constant token cost per packet, Pablo Neira Ayuso
- [PATCH 11/15] netfilter: nfacct: per network namespace support, Pablo Neira Ayuso
- [PATCH 15/15] netfilter: nft_payload: work around vlan header stripping, Pablo Neira Ayuso
- [PATCH 14/15] netfilter: nf_conntrack: add efficient mark to zone mapping, Pablo Neira Ayuso
- [PATCH 12/15] netfilter: nf_conntrack: push zone object into functions, Pablo Neira Ayuso
- [PATCH 13/15] netfilter: nf_conntrack: add direction support for zones, Pablo Neira Ayuso
- [PATCH 10/15] netfilter: nft_limit: add per-byte limiting, Pablo Neira Ayuso
- [PATCH 05/15] netfilter: nft_limit: rename to nft_limit_pkts, Pablo Neira Ayuso
- [PATCH 08/15] netfilter: nft_limit: add burst parameter, Pablo Neira Ayuso
- =?y?q?=5BPATCH=2003/15=5D=20netfilter=3A=20factor=20out=20packet=20duplication=20for=20IPv4/IPv6?=, Pablo Neira Ayuso
- [PATCH 04/15] netfilter: nf_tables: add nft_dup expression, Pablo Neira Ayuso
- [PATCH 02/15] netfilter: xt_TEE: get rid of WITH_CONNTRACK definition, Pablo Neira Ayuso
- [PATCH 01/15] netfilter: nft_counter: convert it to use per-cpu counters, Pablo Neira Ayuso
- Re: [PATCH 00/15] Netfilter updates for net-next, David Miller
- [PATCH 00/15] Netfilter updates for net-next, Pablo Neira Ayuso
- [PATCH 01/15] netfilter: nft_counter: convert it to use per-cpu counters, Pablo Neira Ayuso
- [PATCH 15/15] netfilter: nft_payload: work around vlan header stripping, Pablo Neira Ayuso
- [PATCH 13/15] netfilter: nf_conntrack: add direction support for zones, Pablo Neira Ayuso
- [PATCH 14/15] netfilter: nf_conntrack: add efficient mark to zone mapping, Pablo Neira Ayuso
- [PATCH 12/15] netfilter: nf_conntrack: push zone object into functions, Pablo Neira Ayuso
- [PATCH 11/15] netfilter: nfacct: per network namespace support, Pablo Neira Ayuso
- [PATCH 10/15] netfilter: nft_limit: add per-byte limiting, Pablo Neira Ayuso
- [PATCH 09/15] netfilter: nft_limit: constant token cost per packet, Pablo Neira Ayuso
- [PATCH 08/15] netfilter: nft_limit: add burst parameter, Pablo Neira Ayuso
- =?y?q?=5BPATCH=2003/15=5D=20netfilter=3A=20factor=20out=20packet=20duplication=20for=20IPv4/IPv6?=, Pablo Neira Ayuso
- [PATCH 07/15] netfilter: nft_limit: factor out shared code with per-byte limiting, Pablo Neira Ayuso
- [PATCH 05/15] netfilter: nft_limit: rename to nft_limit_pkts, Pablo Neira Ayuso
- [PATCH 06/15] netfilter: nft_limit: convert to token-based limiting at nanosecond granularity, Pablo Neira Ayuso
- [PATCH 04/15] netfilter: nf_tables: add nft_dup expression, Pablo Neira Ayuso
- [PATCH 02/15] netfilter: xt_TEE: get rid of WITH_CONNTRACK definition, Pablo Neira Ayuso
- Re: [PATCH 00/15] Netfilter updates for net-next, David Miller
[PATCH V3 0/2] add mark target,
Zhang Chunyu
[PATCH 1/3] netlink: fix use after free in netlink_get_table(),
Patrick McHardy
[Index of Archives]
[LARTC]
[Berkeley Packet Filter]
[Bugtraq]
[Yosemite Discussion]
