Linux Netfilter / IP Tables Devel

Date Index

[Prev Page][Next Page]

Re: nftables documentation, (continued)
- Re: nftables documentation, Andreas Herz
  - Re: nftables documentation, Patrick McHardy
[PATCH libnetfilter_conntrack] conntrack: fix parsing payload len, Ken-ichirou MATSUZAWA
- Re: [PATCH libnetfilter_conntrack] conntrack: fix parsing payload len, Pablo Neira Ayuso
[nft PATCH v3] This patch adds the following operation:, Arturo Borrero Gonzalez
- Re: [nft PATCH v3] This patch adds the following operation:, Arturo Borrero Gonzalez
- Re: [nft PATCH v3] This patch adds the following operation:, Patrick McHardy
nftables and sets, Bjørnar Ness
- Re: nftables and sets, Patrick McHardy
  - Message not available
    - Re: nftables and sets, Patrick McHardy
[PATCH libnftnl] include: add cached copy of linux/kernel.h, Pablo Neira Ayuso
Re: [PATCH] uapi: netfilter_arp: use __u8 instead of u_int8_t, David Miller
- <Possible follow-ups>
- [PATCH] uapi: netfilter_arp: use __u8 instead of u_int8_t, Mike Frysinger
  - Re: [PATCH] uapi: netfilter_arp: use __u8 instead of u_int8_t, Pablo Neira Ayuso
[PATCH 04/73] netfilter: don't use module_init/exit in core IPV4 code, Paul Gortmaker
RFC: nftables set selection, Patrick McHardy
- Re: RFC: nftables set selection, Pablo Neira Ayuso
  - Re: RFC: nftables set selection, Patrick McHardy
    - Re: RFC: nftables set selection, Pablo Neira Ayuso
      - Re: RFC: nftables set selection, Patrick McHardy
[nft RFC PATCH] src: add import operation, Arturo Borrero Gonzalez
- Re: [nft RFC PATCH] src: add import operation, Patrick McHardy
  - Re: [nft RFC PATCH] src: add import operation, Patrick McHardy
[nft RFC PATCH v2] src: add export operation, Arturo Borrero Gonzalez
- Re: [nft RFC PATCH v2] src: add export operation, Patrick McHardy
  - Re: [nft RFC PATCH v2] src: add export operation, Arturo Borrero Gonzalez
    - Re: [nft RFC PATCH v2] src: add export operation, Patrick McHardy
[nft RFC PATCH] src: add export operation, Arturo Borrero Gonzalez
- Re: [nft RFC PATCH] src: add export operation, Patrick McHardy
  - Re: [nft RFC PATCH] src: add export operation, Arturo Borrero Gonzalez
    - Re: [nft RFC PATCH] src: add export operation, Patrick McHardy
[PATCH] cmd: add create command for tables and chains, Patrick McHardy
Can't compile nftables, Arturo Borrero Gonzalez
- Re: Can't compile nftables, Patrick McHardy
  - Re: Can't compile nftables, Arturo Borrero Gonzalez
- Re: Can't compile nftables, Pablo Neira Ayuso
[libnftables PATCH] include: add stdint.h to common.h, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] include: add stdint.h to common.h, Pablo Neira Ayuso
nftables add vs replace, Patrick McHardy
- Re: nftables add vs replace, Pablo Neira Ayuso
  - Re: nftables add vs replace, Patrick McHardy
  - Re: nftables add vs replace, Arturo Borrero Gonzalez
    - Re: nftables add vs replace, Patrick McHardy
      - Re: nftables add vs replace, Phil Oester
        
        Re: nftables add vs replace, Patrick McHardy
      - Re: nftables add vs replace, Pablo Neira Ayuso
        
        Re: nftables add vs replace, Patrick McHardy
        
        Re: nftables add vs replace, Pablo Neira Ayuso
        
        Re: nftables add vs replace, Patrick McHardy
    - Re: nftables add vs replace, Tomasz Bursztyka
      - Re: nftables add vs replace, Patrick McHardy
        
        Re: nftables add vs replace, Tomasz Bursztyka
        
        Re: nftables add vs replace, Patrick McHardy
        
        Re: nftables add vs replace, Tomasz Bursztyka
        
        Re: nftables add vs replace, Patrick McHardy
        
        Re: nftables add vs replace, Tomasz Bursztyka
        
        Re: nftables add vs replace, Arturo Borrero Gonzalez
        
        Re: nftables add vs replace, Patrick McHardy
[PATCH libnftnl] build: fix final report after configuration, Pablo Neira Ayuso
[BUG PATCH RFC] Memory on tcp_prot with TPROXY and TCP early demux, Holger Eitzenberger
libnftnl: two trivial build fixes, Jan Engelhardt
- [PATCH 1/2] build: resolve build failure involving linux/netlink.h, Jan Engelhardt
  - Re: [PATCH 1/2] build: resolve build failure involving linux/netlink.h, Pablo Neira Ayuso
- [PATCH 2/2] build: resolve compile error involving XT_EXTENSION_MAXNAMELEN, Jan Engelhardt
nftable atomic rule replacement/update/restore?, Anders Berggren
- Re: nftable atomic rule replacement/update/restore?, Patrick McHardy
[iptables (nft branch) PATCH] nft: Use new libnftnl library name against former libnftables, Tomasz Bursztyka
- Re: [iptables (nft branch) PATCH] nft: Use new libnftnl library name against former libnftables, Pablo Neira Ayuso
[libnftnl PATCH] build: Ensure pkg-config file provides the right informations, Tomasz Bursztyka
- Re: [libnftnl PATCH] build: Ensure pkg-config file provides the right informations, Pablo Neira Ayuso
  - Re: [libnftnl PATCH] build: Ensure pkg-config file provides the right informations, Arturo Borrero Gonzalez
[PATCH v2 0/1] Add quota capabilities to nfacct, mathieu . poirier
- [PATCH v2 1/1] netfilter: xtables: add quota support to nfacct, mathieu . poirier
[ANNOUNCE]: Release of nftables 0.099, Patrick McHardy
- Release of nftables-plus 0.099, Jan Engelhardt
  - Re: [netfilter-core] Release of nftables-plus 0.099, Patrick McHardy
    - Re: [netfilter-core] Release of nftables-plus 0.099, Jan Engelhardt
      - Re: [netfilter-core] Release of nftables-plus 0.099, Patrick McHardy
[HEADS UP] libnftables renamed to libnftnl, Pablo Neira Ayuso
- Re: [HEADS UP] libnftables renamed to libnftnl, Tomasz Bursztyka
  - Re: [HEADS UP] libnftables renamed to libnftnl, Patrick McHardy
    - Re: [HEADS UP] libnftables renamed to libnftnl, Pablo Neira Ayuso
    - Re: [HEADS UP] libnftables renamed to libnftnl, Tomasz Bursztyka
- Re: [HEADS UP] libnftables renamed to libnftnl, Tomasz Bursztyka
[libnftables PATCH] tests: use the error reporting infraestructure, Arturo Borrero Gonzalez
[libnftables PATCH] ct: use a string with 'dir' attribute, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] ct: use a string with 'dir' attribute, Pablo Neira Ayuso
[libnftables PATCH v2] data_reg: fix verdict format approach, Arturo Borrero Gonzalez
- Re: [libnftables PATCH v2] data_reg: fix verdict format approach, Pablo Neira Ayuso
[libnftables PATCH] data_reg: fix verdict format approach, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] data_reg: fix verdict format approach, Pablo Neira Ayuso
  - Re: [libnftables PATCH] data_reg: fix verdict format approach, Arturo Borrero Gonzalez
[libnftables PATCH] utils: fix nft_str2verdict return value, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] utils: fix nft_str2verdict return value, Pablo Neira Ayuso
new xtables-addons implementation of XOR target, Andrew Smith
- Re: new xtables-addons implementation of XOR target, Jan Engelhardt
[PATCH net-next] ipcomp: Convert struct xt_ipcomp spis into 16bits, Fan Du
- Re: [PATCH net-next] ipcomp: Convert struct xt_ipcomp spis into 16bits, Pablo Neira Ayuso
  - Re: [PATCH net-next] ipcomp: Convert struct xt_ipcomp spis into 16bits, Fan Du
    - Re: [PATCH net-next] ipcomp: Convert struct xt_ipcomp spis into 16bits, Pablo Neira Ayuso
[PATCH nft] mnl: fix chain type autoloading, Pablo Neira Ayuso
xtables-addons implementation of XOR target, Andrew Smith
Fwd: Linux bridge for route, tingwei liu
- Re: Fwd: Linux bridge for route, Bart De Schuymer
  - Re: Fwd: Linux bridge for route, tingwei liu
[nftables PATCH] netfilter: nft_ct: fix unconditional dump of 'dir' attr, Arturo Borrero Gonzalez
- Re: [nftables PATCH] netfilter: nft_ct: fix unconditional dump of 'dir' attr, Pablo Neira Ayuso
[libnftables PATCH] ct: fix dir, is optional, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] ct: fix dir, is optional, Pablo Neira Ayuso
[PATCH nft] datatype: fix output of time type, Pablo Neira Ayuso
[PATCH nft RFC] datatype: add time type parser and adapt output, Pablo Neira Ayuso
- Re: [PATCH nft RFC] datatype: add time type parser and adapt output, Patrick McHardy
  - Re: [PATCH nft RFC] datatype: add time type parser and adapt output, Patrick McHardy
[PATCH 0/2] set: set parsing fixes, Patrick McHardy
- [PATCH 1/2] set: make set flags output parsable, Patrick McHardy
- [PATCH 2/2] set: make set initializer parsable, Patrick McHardy
[PATCH nftables] make set flags output parsable, Patrick McHardy
- [PATCH nftables] make set initializer parsable, Patrick McHardy
[PATCH nftables] fix parser.h recursive inclusion, Patrick McHardy
- Re: [PATCH nftables] fix parser.h recursive inclusion, Pablo Neira Ayuso
  - Re: [PATCH nftables] fix parser.h recursive inclusion, Patrick McHardy
[PATCH nft] src: use ':' instead of '=>' in dictionaries, Pablo Neira Ayuso
- Re: [PATCH nft] src: use ':' instead of '=>' in dictionaries, Patrick McHardy
  - Re: [PATCH nft] src: use ':' instead of '=>' in dictionaries, Pablo Neira Ayuso
[PATCH nft] src: add new --debug=mnl option to enable libmnl debugging, Pablo Neira Ayuso
[PATCH 0/2]: nftables: segtree fixes, Patrick McHardy
- [PATCH 1/2] segtree: only use prefix expressions for ranges for selected datatypes, Patrick McHardy
- [PATCH 2/2] segtree: fix decomposition of unclosed intervals, Patrick McHardy
Re: linux-next: Tree for Jan 15 (netfilter: nft_reject), Randy Dunlap
libnftables set element printing, DATA_CHAIN, Patrick McHardy
- Re: libnftables set element printing, DATA_CHAIN, Arturo Borrero Gonzalez
  - Re: libnftables set element printing, DATA_CHAIN, Patrick McHardy
[PATCH-next v2] netfilter: don't use module_init/exit in core IPV4 code, Paul Gortmaker
- Re: [PATCH-next v2] netfilter: don't use module_init/exit in core IPV4 code, Benjamin Poirier
  - Re: [PATCH-next v2] netfilter: don't use module_init/exit in core IPV4 code, Paul Gortmaker
  - [PATCH-next v3] netfilter: don't use module_init/exit in core IPV4 code, Paul Gortmaker
    - Re: [PATCH-next v3] netfilter: don't use module_init/exit in core IPV4 code, Patrick McHardy
[PATCH nft 1/3] parser: fix parsing of ethernet protocol types, Pablo Neira Ayuso
- [PATCH nft 2/3] payload: fix crash when wrong ethernet protocol type is used, Pablo Neira Ayuso
  - Re: [PATCH nft 2/3] payload: fix crash when wrong ethernet protocol type is used, Patrick McHardy
- [PATCH nft 3/3] payload: fix inconsistency in ethertype output, Pablo Neira Ayuso
  - Re: [PATCH nft 3/3] payload: fix inconsistency in ethertype output, Patrick McHardy
- Re: [PATCH nft 1/3] parser: fix parsing of ethernet protocol types, Patrick McHardy
  - Re: [PATCH nft 1/3] parser: fix parsing of ethernet protocol types, Pablo Neira Ayuso
    - Re: [PATCH nft 1/3] parser: fix parsing of ethernet protocol types, Patrick McHardy
[libnftables PATCH v2] ct: fix key and dir requirements, Arturo Borrero Gonzalez
- Re: [libnftables PATCH v2] ct: fix key and dir requirements, Pablo Neira Ayuso
  - Re: [libnftables PATCH v2] ct: fix key and dir requirements, Arturo Borrero Gonzalez
    - Re: [libnftables PATCH v2] ct: fix key and dir requirements, Pablo Neira Ayuso
      - Re: [libnftables PATCH v2] ct: fix key and dir requirements, Arturo Borrero Gonzalez
[libnftables PATCH] ct: fix missing NFT_CT_L3PROTOCOL in ctkey2str_array, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] ct: fix missing NFT_CT_L3PROTOCOL in ctkey2str_array, Pablo Neira Ayuso
[libnftables PATCH] ct: fix key and dir requirements, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] ct: fix key and dir requirements, Arturo Borrero Gonzalez
[PATCH nft RFC] payload: use ethertype in hexadecimal for meta protocol, Pablo Neira Ayuso
- Re: [PATCH nft RFC] payload: use ethertype in hexadecimal for meta protocol, Patrick McHardy
[PATCH net-next] netfilter: remove double colon, Stephen Hemminger
- Re: [PATCH net-next] netfilter: remove double colon, Denis Kirjanov
- Re: [PATCH net-next] netfilter: remove double colon, Pablo Neira Ayuso
[PATCH nft] segtree: add new segtree debugging option, Pablo Neira Ayuso
- Re: [PATCH nft] segtree: add new segtree debugging option, Patrick McHardy
  - Re: [PATCH nft] segtree: add new segtree debugging option, Pablo Neira Ayuso
    - Re: [PATCH nft] segtree: add new segtree debugging option, Patrick McHardy
      - Re: [PATCH nft] segtree: add new segtree debugging option, Pablo Neira Ayuso
[PATCH 0/2] nftables: removal of secmark and shortened meta expressions, Patrick McHardy
- [PATCH 2/2] meta: don't require "meta" keyword for a subset of meta expressions, Patrick McHardy
- [PATCH 1/2] expr: remove secmark from ct and meta expression, Patrick McHardy
[libnftables PATCH] tests: xml: delete comments, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] tests: xml: delete comments, Pablo Neira Ayuso
  - Re: [libnftables PATCH] tests: xml: delete comments, Arturo Borrero Gonzalez
    - Re: [libnftables PATCH] tests: xml: delete comments, Pablo Neira Ayuso
[PATCH 1/2 nft RFC] expression: default to print binary operations using nominal representation, Pablo Neira Ayuso
- [PATCH 2/2] expression: fix printing of binary operation, Pablo Neira Ayuso
  - Re: [PATCH 2/2] expression: fix printing of binary operation, Patrick McHardy
    - Re: [PATCH 2/2] expression: fix printing of binary operation, Pablo Neira Ayuso
      - Re: [PATCH 2/2] expression: fix printing of binary operation, Patrick McHardy
    - Re: [PATCH 2/2] expression: fix printing of binary operation, Patrick McHardy
      - Re: [PATCH 2/2] expression: fix printing of binary operation, Pablo Neira Ayuso
        
        Re: [PATCH 2/2] expression: fix printing of binary operation, Patrick McHardy
        
        Re: [PATCH 2/2] expression: fix printing of binary operation, Pablo Neira Ayuso
- Re: [PATCH 1/2 nft RFC] expression: default to print binary operations using nominal representation, Patrick McHardy
  - Re: [PATCH 1/2 nft RFC] expression: default to print binary operations using nominal representation, Arturo Borrero Gonzalez
    - Re: [PATCH 1/2 nft RFC] expression: default to print binary operations using nominal representation, Patrick McHardy
[libnftables PATCH 1/2] mxml: add optional/mandatory flag to nft_mxml_reg_parse, Arturo Borrero Gonzalez
- [libnftables PATCH 2/2] lookup: xml: conditional output of dreg, Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 2/2] lookup: xml: conditional output of dreg, Pablo Neira Ayuso
- Re: [libnftables PATCH 1/2] mxml: add optional/mandatory flag to nft_mxml_reg_parse, Pablo Neira Ayuso
[PATCH libnftables]: expr/cmp: fix type size, Patrick McHardy
RFC: removing meta keyword, Patrick McHardy
[PATCH] nft: scanner: fixed problem with ipv6 address, Ana Rey
- Re: [PATCH] nft: scanner: fixed problem with ipv6 address, Patrick McHardy
Re: [PATCH] netfilter: Add dependency on IPV6 for NF_TABLES_INET, Pablo Neira Ayuso
- Re: [PATCH] netfilter: Add dependency on IPV6 for NF_TABLES_INET, Paul Gortmaker
[PATCH nft] scanner: add aliases to symbols for easier interaction with most shells, Pablo Neira Ayuso
- Re: [PATCH nft] scanner: add aliases to symbols for easier interaction with most shells, Pablo Neira Ayuso
[PATCH 0/3 nft] [RFC] more syntax changes, Pablo Neira Ayuso
- [PATCH 1/3] scanner: replace binary characters '&' '|' and '!' by their names, Pablo Neira Ayuso
  - Re: [PATCH 1/3] scanner: replace binary characters '&' '|' and '!' by their names, Pablo Neira Ayuso
    - Re: [PATCH 1/3] scanner: replace binary characters '&' '|' and '!' by their names, Patrick McHardy
  - Re: [PATCH 1/3] scanner: replace binary characters '&' '|' and '!' by their names, Patrick McHardy
- [PATCH 3/3] scanner: rename address selector from 'eth' to 'ether', Pablo Neira Ayuso
  - Re: [PATCH 3/3] scanner: rename address selector from 'eth' to 'ether', Patrick McHardy
- [PATCH 2/3] evaluate: allow to use string with binary operations, Pablo Neira Ayuso
  - Re: [PATCH 2/3] evaluate: allow to use string with binary operations, Patrick McHardy
    - Re: [PATCH 2/3] evaluate: allow to use string with binary operations, Pablo Neira Ayuso
      - Re: [PATCH 2/3] evaluate: allow to use string with binary operations, Patrick McHardy
        
        Re: [PATCH 2/3] evaluate: allow to use string with binary operations, Pablo Neira Ayuso
        
        Re: [PATCH 2/3] evaluate: allow to use string with binary operations, Pablo Neira Ayuso
        
        Re: [PATCH 2/3] evaluate: allow to use string with binary operations, Patrick McHardy
- Re: [PATCH 0/3 nft] [RFC] more syntax changes, Arturo Borrero Gonzalez
randconfig build error with next-20140113, in net/netfilter/nft_reject.c, Jim Davis
- Re: randconfig build error with next-20140113, in net/netfilter/nft_reject.c, Paul Gortmaker
[PATCH nft] expression: fix output of verdict maps, Pablo Neira Ayuso
- Re: [PATCH nft] expression: fix output of verdict maps, Patrick McHardy
  - Re: [PATCH nft] expression: fix output of verdict maps, Patrick McHardy
    - Re: [PATCH nft] expression: fix output of verdict maps, Pablo Neira Ayuso
      - Re: [PATCH nft] expression: fix output of verdict maps, Patrick McHardy
- Re: [PATCH nft] expression: fix output of verdict maps, Pablo Neira Ayuso
  - Re: [PATCH nft] expression: fix output of verdict maps, Patrick McHardy
    - Re: [PATCH nft] expression: fix output of verdict maps, Pablo Neira Ayuso
[libnftables PATCH] set: xml: data_type/data_len are optional, Arturo Borrero Gonzalez
[PATCH nftables] netfilter: nf_tables: fix unmet dependencies in nf_tables_inet, Pablo Neira Ayuso
nftables: improve build system, Jan Engelhardt
- [PATCH 1/3] build: remove unused checks, Jan Engelhardt
- [PATCH 3/3] build: use automake and pkgconfig, Jan Engelhardt
- [PATCH 2/3] build: rename conflicting parser.h instances, Jan Engelhardt
- Re: nftables: improve build system, Patrick McHardy
  - Re: nftables: improve build system, Jan Engelhardt
    - Re: nftables: improve build system, Patrick McHardy
      - Re: nftables: improve build system, Jan Engelhardt
[PATCH] nftables: Drop hard coded install using root user owner and group., Kevin Fenzi
- Re: [PATCH] nftables: Drop hard coded install using root user owner and group., Patrick McHardy
nftables/libnftables packages for Fedora, Kevin Fenzi
- Re: nftables/libnftables packages for Fedora, Arturo Borrero Gonzalez
  - Re: nftables/libnftables packages for Fedora, Kevin Fenzi
    - Re: nftables/libnftables packages for Fedora, Pablo Neira Ayuso
      - Re: nftables/libnftables packages for Fedora, Arturo Borrero Gonzalez
  - Re: nftables/libnftables packages for Fedora, Kevin Fenzi
    - Re: nftables/libnftables packages for Fedora, Patrick McHardy
  - Re: nftables/libnftables packages for Fedora, Patrick McHardy
- Re: nftables/libnftables packages for Fedora, Patrick McHardy
- Re: nftables/libnftables packages for Fedora, Patrick McHardy
- Re: nftables/libnftables packages for Fedora, Jan Engelhardt
  - Re: nftables/libnftables packages for Fedora, Patrick McHardy
    - Re: nftables/libnftables packages for Fedora, Kevin Fenzi
      - Re: nftables/libnftables packages for Fedora, Patrick McHardy
        
        Re: nftables/libnftables packages for Fedora, Kevin Fenzi
        
        Re: nftables/libnftables packages for Fedora, Pablo Neira Ayuso
[RFC nft PATCH] syntax: replace '=>' with '=:', Arturo Borrero Gonzalez
- Re: [RFC nft PATCH] syntax: replace '=>' with '=:', Patrick McHardy
  - Re: [RFC nft PATCH] syntax: replace '=>' with '=:', Arturo Borrero Gonzalez
    - Re: [RFC nft PATCH] syntax: replace '=>' with '=:', Patrick McHardy
      - Re: [RFC nft PATCH] syntax: replace '=>' with '=:', Arturo Borrero Gonzalez
        
        Re: [RFC nft PATCH] syntax: replace '=>' with '=:', Patrick McHardy
        
        Re: [RFC nft PATCH] syntax: replace '=>' with '=:', Pablo Neira Ayuso
Fwd: Bug 883 - Uninitialized values in libnetfilter_log.c, Ivan Homoliak
- Re: Fwd: Bug 883 - Uninitialized values in libnetfilter_log.c, Phil Oester
[PATCH libnftables v4] Add support for ct set, Kristian Evensen
- Re: [PATCH libnftables v4] Add support for ct set, Pablo Neira Ayuso
[PATCH libnftables] meta: Let user specify any combination of sreg/dreg, Kristian Evensen
- Re: [PATCH libnftables] meta: Let user specify any combination of sreg/dreg, Pablo Neira Ayuso
[PATCH netfilter: nf_ct] Fix compilation warning if NF_CONNTRACK_MARK is not set, Kristian Evensen
- Re: [PATCH netfilter: nf_ct] Fix compilation warning if NF_CONNTRACK_MARK is not set, Pablo Neira Ayuso
[PATCH] netfilter updates for net-next, Pablo Neira Ayuso
- [PATCH] netfilter: introduce l2tp match extension, Pablo Neira Ayuso
- Re: [PATCH] netfilter updates for net-next, David Miller
[PATCH] netfilter: nf_tables: fix missing byteorder conversion in policy, Pablo Neira Ayuso
[PATCH iptables-nftables] nft: fix inconsistent data type in NFT_EXPR_CMP_OP and NFT_EXPR_META_KEY, Pablo Neira Ayuso
[PATCH nft] netlink: fix wrong type in attributes, Pablo Neira Ayuso
[PATCH libnftables] expr: fix incorrect data type for several expression object fields, Pablo Neira Ayuso
[libnftables PATCH next-3.14] expr: fix registers datatypes, Arturo Borrero Gonzalez
- Re: [libnftables PATCH next-3.14] expr: fix registers datatypes, Pablo Neira Ayuso
[PATCH 0/4] nftables: bug fixes and minor cleanups, Patrick McHardy
- [PATCH 1/4] nftables: shorten "could not process rule in batch" message, Patrick McHardy
- [PATCH 2/4] erec: fix error markup for errors starting at column 0, Patrick McHardy
- [PATCH 4/4] meta: fix crash when parsing unresolvable mark values, Patrick McHardy
- [PATCH 3/4] datatype: revert "fix crash if wrong integer type is passed", Patrick McHardy
datatype: fix crash if wrong integer type is passed, Patrick McHardy
- Re: datatype: fix crash if wrong integer type is passed, Pablo Neira Ayuso
  - Re: datatype: fix crash if wrong integer type is passed, Patrick McHardy
    - Re: datatype: fix crash if wrong integer type is passed, Pablo Neira Ayuso
      - Re: datatype: fix crash if wrong integer type is passed, Patrick McHardy
[PATCH 00/23] nf_tables updates for net-next, Pablo Neira Ayuso
- [PATCH 05/23] netfilter: nf_tables: add "inet" table for IPv4/IPv6, Pablo Neira Ayuso
- [PATCH 18/23] netfilter: nf_tables: minor nf_chain_type cleanups, Pablo Neira Ayuso
- [PATCH 22/23] netfilter: nf_tables: rename nft_do_chain_pktinfo() to nft_do_chain(), Pablo Neira Ayuso
- [PATCH 23/23] netfilter: nf_tables: fix error path in the init functions, Pablo Neira Ayuso
- [PATCH 19/23] netfilter: nf_tables: perform flags validation before table allocation, Pablo Neira Ayuso
- [PATCH 14/23] netfilter: nf_tables: fix chain type module reference handling, Pablo Neira Ayuso
- [PATCH 16/23] netfilter: nf_tables: replay request after dropping locks to load chain type, Pablo Neira Ayuso
- [PATCH 15/23] netfilter: nf_tables: add missing module references to chain types, Pablo Neira Ayuso
- [PATCH 20/23] netfilter: nf_tables: take AF module reference when creating a table, Pablo Neira Ayuso
- [PATCH 21/23] netfilter: nf_tables: prohibit deletion of a table with existing sets, Pablo Neira Ayuso
- [PATCH 17/23] netfilter: nf_tables: constify chain type definitions and pointers, Pablo Neira Ayuso
- [PATCH 04/23] netfilter: nf_tables: add support for multi family tables, Pablo Neira Ayuso
- [PATCH 06/23] netfilter: nf_tables: add nfproto support to meta expression, Pablo Neira Ayuso
- [PATCH 12/23] netfilter: nf_tables: restore chain change atomicity, Pablo Neira Ayuso
- [PATCH 13/23] netfilter: nf_tables: fix check for table overflow, Pablo Neira Ayuso
- [PATCH 10/23] netfilter: nft_meta: fix lack of validation of the input register, Pablo Neira Ayuso
- [PATCH 09/23] netfilter: nft_ct: Add support to set the connmark, Pablo Neira Ayuso
- [PATCH 11/23] netfilter: nf_tables: split chain policy validation from actually setting it, Pablo Neira Ayuso
- [PATCH 07/23] netfilter: nft_meta: add l4proto support, Pablo Neira Ayuso
- [PATCH 08/23] netfilter: nft_ct: load both IPv4 and IPv6 conntrack modules for NFPROTO_INET, Pablo Neira Ayuso
  - Re: [PATCH 08/23] netfilter: nft_ct: load both IPv4 and IPv6 conntrack modules for NFPROTO_INET, Sergei Shtylyov
    - Re: [PATCH 08/23] netfilter: nft_ct: load both IPv4 and IPv6 conntrack modules for NFPROTO_INET, Patrick McHardy
      - Re: [PATCH 08/23] netfilter: nft_ct: load both IPv4 and IPv6 conntrack modules for NFPROTO_INET, David Miller
        
        Re: [PATCH 08/23] netfilter: nft_ct: load both IPv4 and IPv6 conntrack modules for NFPROTO_INET, Patrick McHardy
- [PATCH 01/23] netfilter: nft_reject: fix compilation warning if NF_TABLES_IPV6 is disabled, Pablo Neira Ayuso
  - Re: [PATCH 01/23] netfilter: nft_reject: fix compilation warning if NF_TABLES_IPV6 is disabled, Sergei Shtylyov
    - Re: [PATCH 01/23] netfilter: nft_reject: fix compilation warning if NF_TABLES_IPV6 is disabled, David Miller
- [PATCH 03/23] netfilter: nf_tables: add hook ops to struct nft_pktinfo, Pablo Neira Ayuso
- [PATCH 02/23] netfilter: nf_tables: make chain types override the default AF functions, Pablo Neira Ayuso
- Re: [PATCH 00/23] nf_tables updates for net-next, David Miller
[PATCH libnftables next-3.14 v2] src: fix compilation due to missing NFPROTO_INET definition, Pablo Neira Ayuso
[PATCH libnftables next-3.14] src: fix compilation due to missing NFPROTO_INET definition, Pablo Neira Ayuso
[PATCH nf_tables v2] netfilter: nf_tables: fix error path in the init functions, Pablo Neira Ayuso
[PATCH nf_tables] netfilter: nf_tables: fix error path in the init functions, Pablo Neira Ayuso
[PATCH nf_tables] netfilter: nft_meta: fix lack of validation of the input register, Pablo Neira Ayuso
[PATCH 00/13] netfilter: nf_tables: bug fixes and minor cleanups, Patrick McHardy
- [PATCH 01/13] netfilter: nf_tables: split chain policy validation from actually setting it, Patrick McHardy
- [PATCH 02/13] netfilter: nf_tables: restore chain change atomicity, Patrick McHardy
- [PATCH 03/13] netfilter: nf_tables: fix check for table overflow, Patrick McHardy
- [PATCH 04/13] netfilter: nf_tables: fix chain type module reference handling, Patrick McHardy
- [PATCH 05/13] netfilter: nf_tables: add missing module references to chain types, Patrick McHardy
- [PATCH 06/13] netfilter: nf_tables: replay request after dropping locks to load chain type, Patrick McHardy
- [PATCH 07/13] netfilter: nf_tables: constify chain type definitions and pointers, Patrick McHardy
- [PATCH 08/13] netfilter: nf_tables: minor nf_chain_type cleanups, Patrick McHardy
- [PATCH 09/13] netfilter: nf_tables: perform flags validation before table allocation, Patrick McHardy
- [PATCH 10/13] netfilter: nf_tables: take AF module reference when creating a table, Patrick McHardy
- [PATCH 11/13] netfilter: nf_tables: prohibit deletion of a table with existing sets, Patrick McHardy
- [PATCH 12/13] netfilter: nf_tables: unininline nft_trace_packet(), Patrick McHardy
- [PATCH 13/13] netfilter: nf_tables: rename nft_do_chain_pktinfo() to nft_do_chain(), Patrick McHardy
- Re: [PATCH 00/13] netfilter: nf_tables: bug fixes and minor cleanups, Pablo Neira Ayuso
[libnftables PATCH 1/3] parsing: rework and generalize the build/parse system, Arturo Borrero Gonzalez
- [libnftables PATCH 2/3] parsing: add interface to parse from file, Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 2/3] parsing: add interface to parse from file, Pablo Neira Ayuso
- [libnftables PATCH 3/3] tests: update tests with nft_*_parse_file(), Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 3/3] tests: update tests with nft_*_parse_file(), Pablo Neira Ayuso
- Re: [libnftables PATCH 1/3] parsing: rework and generalize the build/parse system, Pablo Neira Ayuso
[PATCH RFC] nftables: fix surpression of "permission denied" errors, Patrick McHardy
- Re: [PATCH RFC] nftables: fix surpression of "permission denied" errors, Pablo Neira Ayuso
  - Re: [PATCH RFC] nftables: fix surpression of "permission denied" errors, Patrick McHardy
    - Re: [PATCH RFC] nftables: fix surpression of "permission denied" errors, Pablo Neira Ayuso
      - Re: [PATCH RFC] nftables: fix surpression of "permission denied" errors, Patrick McHardy
[PATCH 00/12] nftables: generic protocol contexts, "inet" family, Patrick McHardy
- [PATCH 01/12] expr: replace PAYLOAD_PROTOCOL_EXPR by generic flag, Patrick McHardy
- [PATCH 02/12] nftables: generic procotol contexts, Patrick McHardy
- [PATCH 03/12] expr: add protocol context update callback, Patrick McHardy
- [PATCH 05/12] proto: add debugging for protocol context updates, Patrick McHardy
- [PATCH 04/12] proto: add helper function to update protocol context, Patrick McHardy
- [PATCH 06/12] ct expr: protocol context updates and dynamic typing, Patrick McHardy
- [PATCH 08/12] nftables: add support for the "inet" family, Patrick McHardy
- [PATCH 07/12] include: resync nftables.h with kernel, Patrick McHardy
- [PATCH 11/12] meta: add nfproto support, Patrick McHardy
- [PATCH 12/12] meta: add l4proto support, Patrick McHardy
- [PATCH 10/12] proto: add support for meta templates, Patrick McHardy
- [PATCH 09/12] netlink_delinearize: remove implied meta expressions, Patrick McHardy
  - Re: [PATCH 09/12] netlink_delinearize: remove implied meta expressions, Arturo Borrero Gonzalez
    - Re: [PATCH 09/12] netlink_delinearize: remove implied meta expressions, Patrick McHardy
[PATCH libnftables v2] Add support for ct set, Kristian Evensen
- Re: [PATCH libnftables v2] Add support for ct set, Pablo Neira Ayuso
  - Re: [PATCH libnftables v2] Add support for ct set, Kristian Evensen
    - Re: [PATCH libnftables v2] Add support for ct set, Pablo Neira Ayuso
      - Re: [PATCH libnftables v2] Add support for ct set, Arturo Borrero Gonzalez
        
        Re: [PATCH libnftables v2] Add support for ct set, Pablo Neira Ayuso
        
        Re: [PATCH libnftables v2] Add support for ct set, Kristian Evensen
        
        Re: [PATCH libnftables v2] Add support for ct set, Arturo Borrero Gonzalez
[PATCH libnftables] Improved error handling and minor clean-up, Kristian Evensen
- Re: [PATCH libnftables] Improved error handling and minor clean-up, Kristian Evensen
Patches to xtables-addons xt_quota2, Sam Liddicott
- Re: Patches to xtables-addons xt_quota2, Sam Liddicott
- Re: Patches to xtables-addons xt_quota2, Jan Engelhardt
  - Re: Patches to xtables-addons xt_quota2, Sam Liddicott
    - Re: Patches to xtables-addons xt_quota2, Jan Engelhardt
      - Re: Patches to xtables-addons xt_quota2, Sam Liddicott
[PATCH netfilter: nft v2] netfilter: nf_tables Add set op to nft_ct module, Kristian Evensen
- Re: [PATCH netfilter: nft v2] netfilter: nf_tables Add set op to nft_ct module, Pablo Neira Ayuso
  - Re: [PATCH netfilter: nft v2] netfilter: nf_tables Add set op to nft_ct module, Kristian Evensen
[PATCH nftables] Add support for setting ct keys, Kristian Evensen
- Re: [PATCH nftables] Add support for setting ct keys, Kristian Evensen
  - Re: [PATCH nftables] Add support for setting ct keys, Pablo Neira Ayuso
[PATCH libnftables] Add support for ct set, Kristian Evensen
- Re: [PATCH libnftables] Add support for ct set, Arturo Borrero Gonzalez
  - Re: [PATCH libnftables] Add support for ct set, Kristian Evensen
- <Possible follow-ups>
- [PATCH libnftables] Add support for ct set, Kristian Evensen
  - Re: [PATCH libnftables] Add support for ct set, Patrick McHardy
    - Re: [PATCH libnftables] Add support for ct set, Kristian Evensen
      - Re: [PATCH libnftables] Add support for ct set, Patrick McHardy
        
        Re: [PATCH libnftables] Add support for ct set, Kristian Evensen
        
        Re: [PATCH libnftables] Add support for ct set, Patrick McHardy
        
        Re: [PATCH libnftables] Add support for ct set, Patrick McHardy
        
        Re: [PATCH libnftables] Add support for ct set, Kristian Evensen
        
        Re: [PATCH libnftables] Add support for ct set, Pablo Neira Ayuso
        
        Re: [PATCH libnftables] Add support for ct set, Patrick McHardy
        
        Re: [PATCH libnftables] Add support for ct set, Pablo Neira Ayuso
        
        Re: [PATCH libnftables] Add support for ct set, Patrick McHardy
        
        Re: [PATCH libnftables] Add support for ct set, Pablo Neira Ayuso
        
        Re: [PATCH libnftables] Add support for ct set, Patrick McHardy
[PATCH netfilter: nft] netfilter: nf_tables Add set op to nft_ct module, Kristian Evensen
- Re: [PATCH netfilter: nft] netfilter: nf_tables Add set op to nft_ct module, Florian Westphal
  - Re: [PATCH netfilter: nft] netfilter: nf_tables Add set op to nft_ct module, Kristian Evensen
[libnftables PATCH 0/6] parsing update, Arturo Borrero Gonzalez
- [libnftables PATCH 2/6] set_elem: add json parsing to API, Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 2/6] set_elem: add json parsing to API, Pablo Neira Ayuso
- [libnftables PATCH 3/6] internal: rework parsing symbol logic, Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 3/6] internal: rework parsing symbol logic, Pablo Neira Ayuso
    - Re: [libnftables PATCH 3/6] internal: rework parsing symbol logic, Arturo Borrero Gonzalez
      - Re: [libnftables PATCH 3/6] internal: rework parsing symbol logic, Pablo Neira Ayuso
- [libnftables PATCH 4/6] internal: add a selector for parsing ops, Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 4/6] internal: add a selector for parsing ops, Pablo Neira Ayuso
    - Re: [libnftables PATCH 4/6] internal: add a selector for parsing ops, Arturo Borrero Gonzalez
      - Re: [libnftables PATCH 4/6] internal: add a selector for parsing ops, Pablo Neira Ayuso
- [libnftables PATCH 5/6] parsing: add interface to parse from file, Arturo Borrero Gonzalez
- [libnftables PATCH 6/6] tests: update tests with nft_*_parse_file(), Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 6/6] tests: update tests with nft_*_parse_file(), Pablo Neira Ayuso
    - Re: [libnftables PATCH 6/6] tests: update tests with nft_*_parse_file(), Arturo Borrero Gonzalez
- [libnftables PATCH 1/6] mxml: add error reference of the top node, Arturo Borrero Gonzalez
  - Re: [libnftables PATCH 1/6] mxml: add error reference of the top node, Pablo Neira Ayuso
[PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Andrey Vagin
- Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Vasily Averin
- Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Eric Dumazet
  - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Florian Westphal
    - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Eric Dumazet
      - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Florian Westphal
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Eric Dumazet
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Florian Westphal
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Florian Westphal
    - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Andrew Vagin
      - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Florian Westphal
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Andrew Vagin
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Florian Westphal
  - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Andrew Vagin
    - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Eric Dumazet
      - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get, Andrey Wagin
- [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v2), Andrey Vagin
  - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v2), Eric Dumazet
    - [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v3), Andrey Vagin
      - Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v3), Eric Dumazet
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v3), Andrew Vagin
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v3), Andrey Wagin
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v3), Eric Dumazet
        
        [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Andrey Vagin
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Cyrill Gorcunov
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Florian Westphal
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Andrew Vagin
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Florian Westphal
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Pablo Neira Ayuso
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Andrew Vagin
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Eric Dumazet
        
        Re: [PATCH] [RFC] netfilter: nf_conntrack: don't relase a conntrack with non-zero refcnt, Andrew Vagin
        
        Re: [PATCH] netfilter: nf_conntrack: fix RCU race in nf_conntrack_find_get (v3), Pablo Neira Ayuso
A conntrack, which is added via ctnetlink, can provoke a race condition, Andrey Wagin
- Re: A conntrack, which is added via ctnetlink, can provoke a race condition, Florian Westphal
  - Re: A conntrack, which is added via ctnetlink, can provoke a race condition, Pablo Neira Ayuso
[PATCH] netfilter: nftables: fix warning in nft_reject, Eric Leblond
- Re: [PATCH] netfilter: nftables: fix warning in nft_reject, Pablo Neira Ayuso
[PATCH nftables] netfilter: nft_reject: fix compilation warning if NF_TABLES_IPV6 is disabled, Pablo Neira Ayuso
ipset: hash_netnet4_data_equal typo commit status follow-up, David Gervais
- Re: ipset: hash_netnet4_data_equal typo commit status follow-up, Jozsef Kadlecsik
[RFC PATCH 00/12] nftables: generic protocol contexts, "inet" family support, Patrick McHardy
- [PATCH 01/12] expr: replace PAYLOAD_PROTOCOL_EXPR by generic flag, Patrick McHardy
- [PATCH 06/12] ct expr: protocol context updates and dynamic typing, Patrick McHardy
- [PATCH 02/12] nftables: generic procotol contexts, Patrick McHardy
- [PATCH 12/12] meta: add l4proto support, Patrick McHardy
- [PATCH 11/12] meta: add nfproto support, Patrick McHardy
- [PATCH 03/12] expr: add protocol context update callback, Patrick McHardy
- [PATCH 04/12] proto: add helper function to update protocol context, Patrick McHardy
- [PATCH 05/12] proto: add debugging for protocol context updates, Patrick McHardy
- [PATCH 10/12] proto: add support for meta templates, Patrick McHardy
- [PATCH 08/12] nftables: add support for the "inet" family, Patrick McHardy
- [PATCH 07/12] include: resync nftables.h with kernel, Patrick McHardy
- [PATCH 09/12] netlink_delinearize: remove implied meta expressions, Patrick McHardy
[PATCH nftables] Add support for the meta connmark key, Kristian Evensen
[PATCH libnftables] Add support for the connmark meta key, Kristian Evensen
[PATCH netfilter: nft] Add the connmark meta_key, Kristian Evensen
- Re: [PATCH netfilter: nft] Add the connmark meta_key, Patrick McHardy
- Re: [PATCH netfilter: nft] Add the connmark meta_key, Florian Westphal
  - Re: [PATCH netfilter: nft] Add the connmark meta_key, Patrick McHardy
    - Re: [PATCH netfilter: nft] Add the connmark meta_key, Kristian Evensen
      - Re: [PATCH netfilter: nft] Add the connmark meta_key, Patrick McHardy
        
        Re: [PATCH netfilter: nft] Add the connmark meta_key, Kristian Evensen
        
        Re: [PATCH netfilter: nft] Add the connmark meta_key, Patrick McHardy
        
        Re: [PATCH netfilter: nft] Add the connmark meta_key, Kristian Evensen
[PATCH net-next] netfilter: nfnetlink_queue: fix compilation problem due missing header, Pablo Neira Ayuso
- Re: [PATCH net-next] netfilter: nfnetlink_queue: fix compilation problem due missing header, Eric Dumazet
[PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Andrey Vagin
- Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Florian Westphal
  - Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Cyrill Gorcunov
    - Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Cyrill Gorcunov
    - Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Florian Westphal
      - Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Cyrill Gorcunov
  - Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Andrew Vagin
    - Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Florian Westphal
      - Re: [PATCH] netfilter: nf_conntrack: release conntrack from rcu callback, Andrey Wagin
[PATCH 00/13] nftables updates for net-next, Pablo Neira Ayuso
- [PATCH 05/13] netfilter: nf_tables: nft_meta module get/set ops, Pablo Neira Ayuso
- [PATCH 07/13] netfilter: select NFNETLINK when enabling NF_TABLES, Pablo Neira Ayuso
- [PATCH 13/13] netfilter: nf_tables: dump sets in all existing families, Pablo Neira Ayuso
- [PATCH 12/13] netfilter: nf_tables: remove unused variable in nf_tables_dump_set(), Pablo Neira Ayuso
- [PATCH 04/13] netfilter: nf_tables: Expose the table usage counter via netlink, Pablo Neira Ayuso
- [PATCH 01/13] netfilter: nf_tables: fix issue with verdict support, Pablo Neira Ayuso
- [PATCH 11/13] netfilter: nf_tables: fix type in parsing in nf_tables_set_alloc_name(), Pablo Neira Ayuso
- [PATCH 08/13] netfilter: REJECT: separate reusable code, Pablo Neira Ayuso
- [PATCH 10/13] netfilter: add help information to new nf_tables Kconfig options, Pablo Neira Ayuso
- [PATCH 09/13] netfilter: nft_reject: support for IPv6 and TCP reset, Pablo Neira Ayuso
- [PATCH 03/13] netfilter: nft: add queue module, Pablo Neira Ayuso
- [PATCH 06/13] netfilter: nf_tables: remove nft_meta_target, Pablo Neira Ayuso
- [PATCH 02/13] netfilter: xt_NFQUEUE: separate reusable code, Pablo Neira Ayuso
  - Re: [PATCH 02/13] netfilter: xt_NFQUEUE: separate reusable code, Florian Westphal
- Re: [PATCH 00/13] nftables updates for net-next, David Miller
[PATCH nftables] Add support for connmark target, Kristian Evensen
[PATCH libnftables] Add support for nft_connmark, Kristian Evensen
- Re: [PATCH libnftables] Add support for nft_connmark, Arturo Borrero Gonzalez
  - Re: [PATCH libnftables] Add support for nft_connmark, Kristian Evensen
[PATCH netfilter: nft] add connmark module, Kristian Evensen
- Re: [PATCH netfilter: nft] add connmark module, Pablo Neira Ayuso
  - Re: [PATCH netfilter: nft] add connmark module, Kristian Evensen
    - Re: [PATCH netfilter: nft] add connmark module, Pablo Neira Ayuso
      - Re: [PATCH netfilter: nft] add connmark module, Kristian Evensen
        
        Re: [PATCH netfilter: nft] add connmark module, Pablo Neira Ayuso
        
        Re: [PATCH netfilter: nft] add connmark module, Kristian Evensen
      - Re: [PATCH netfilter: nft] add connmark module, Kristian Evensen
        
        Re: [PATCH netfilter: nft] add connmark module, Kristian Evensen
[PATCH v6] iptables: add support for l2tp match, James Chapman
[PATCH v6] netfilter: introduce l2tp match extension, James Chapman
- Re: [PATCH v6] netfilter: introduce l2tp match extension, Pablo Neira Ayuso
  - Re: [PATCH v6] netfilter: introduce l2tp match extension, Pablo Neira Ayuso
[PATCH nf-next] netfilter: nf_log: use %s format string for buffer, Daniel Borkmann
- Re: [PATCH nf-next] netfilter: nf_log: use %s format string for buffer, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_conntrack: fix skb_header_pointer API usages in DCCP, Daniel Borkmann
- Re: [PATCH nf] netfilter: nf_conntrack: fix skb_header_pointer API usages in DCCP, Pablo Neira Ayuso
[libnftables PATCH v2] src: new error reporting approach for XML/JSON parsers, Alvaro Neira
- Re: [libnftables PATCH v2] src: new error reporting approach for XML/JSON parsers, Pablo Neira Ayuso
  - Re: [libnftables PATCH v2] src: new error reporting approach for XML/JSON parsers, Arturo Borrero Gonzalez
    - Re: [libnftables PATCH v2] src: new error reporting approach for XML/JSON parsers, Pablo Neira Ayuso
[PATCH nft] src: set maximum length in constant sets, Pablo Neira Ayuso
[PATCH libnftables] set: support new maximum and number of elements attributes, Pablo Neira Ayuso
[PATCH 0/3 nftables RFC] set infrastructure updates, Pablo Neira Ayuso
- [PATCH 2/3] netfilter: nf_tables: limit maximum number of elements, Pablo Neira Ayuso
  - Re: [PATCH 2/3] netfilter: nf_tables: limit maximum number of elements, Patrick McHardy
    - Re: [PATCH 2/3] netfilter: nf_tables: limit maximum number of elements, Pablo Neira Ayuso
      - Re: [PATCH 2/3] netfilter: nf_tables: limit maximum number of elements, Pablo Neira Ayuso
      - Re: [PATCH 2/3] netfilter: nf_tables: limit maximum number of elements, Patrick McHardy
- [PATCH 3/3] netfilter: nft_hash: use set->maxelems to calculate number of buckets, Pablo Neira Ayuso
  - Re: [PATCH 3/3] netfilter: nft_hash: use set->maxelems to calculate number of buckets, Patrick McHardy
    - Re: [PATCH 3/3] netfilter: nft_hash: use set->maxelems to calculate number of buckets, Pablo Neira Ayuso
- [PATCH 1/3] netfilter: nf_tables: fix suboptimal set selection, Pablo Neira Ayuso
  - Re: [PATCH 1/3] netfilter: nf_tables: fix suboptimal set selection, Patrick McHardy
    - Re: [PATCH 1/3] netfilter: nf_tables: fix suboptimal set selection, Pablo Neira Ayuso
      - Re: [PATCH 1/3] netfilter: nf_tables: fix suboptimal set selection, Patrick McHardy
        
        Re: [PATCH 1/3] netfilter: nf_tables: fix suboptimal set selection, Pablo Neira Ayuso
        
        Re: [PATCH 1/3] netfilter: nf_tables: fix suboptimal set selection, Patrick McHardy
[PATCH] extensions: libxt_set: Add missing hyphen to --bytes-eq synopsis in manpage, Mart Frauenlob
- Re: [PATCH] extensions: libxt_set: Add missing hyphen to --bytes-eq synopsis in manpage, Florian Westphal
[net PATCH] netfilter: only warn once on wrong seqadj usage, Jesper Dangaard Brouer
- Re: [net PATCH] netfilter: only warn once on wrong seqadj usage, Patrick McHardy
  - Re: [net PATCH] netfilter: only warn once on wrong seqadj usage, Jesper Dangaard Brouer
- Re: [net PATCH] netfilter: only warn once on wrong seqadj usage, Pablo Neira Ayuso
[PATCH v5] iptables: add support for l2tp match, James Chapman
[PATCH v5] netfilter: introduce l2tp match extension, James Chapman
- Re: [PATCH v5] netfilter: introduce l2tp match extension, Florian Westphal
  - Re: [PATCH v5] netfilter: introduce l2tp match extension, James Chapman
- Re: [PATCH v5] netfilter: introduce l2tp match extension, Pablo Neira Ayuso
[libnftables PATCH v2] parsing: add interface to parse from file, Arturo Borrero Gonzalez
- Re: [libnftables PATCH v2] parsing: add interface to parse from file, Pablo Neira Ayuso
  - Re: [libnftables PATCH v2] parsing: add interface to parse from file, Arturo Borrero Gonzalez
    - Re: [libnftables PATCH v2] parsing: add interface to parse from file, Pablo Neira Ayuso
[RFC PATCH 0/6] netfilter: nf_tables: add mixed IPv4/IPv6 table support, Patrick McHardy
- [PATCH 1/6] netfilter: nf_tables: make chain types override the default AF functions, Patrick McHardy
- [PATCH 2/6] netfilter: nf_tables: add hook ops to struct nft_pktinfo, Patrick McHardy
- [PATCH 3/6] netfilter: nf_tables: add support for multi family tables, Patrick McHardy
- [PATCH 6/6] netfilter: nft_meta: add l4proto support, Patrick McHardy
- [PATCH 4/6] netfilter: nf_tables: add "inet" table for IPv4/IPv6, Patrick McHardy
- [PATCH 5/6] netfilter: nf_tables: add nfproto support to meta expression, Patrick McHardy
- Re: [RFC PATCH 0/6] netfilter: nf_tables: add mixed IPv4/IPv6 table support, Pablo Neira Ayuso
  - Re: [RFC PATCH 0/6] netfilter: nf_tables: add mixed IPv4/IPv6 table support, Patrick McHardy
- [PATCH 7/6] netfilter: nft_ct: load both IPv4 and IPv6 conntrack modules for NFPROTO_INET, Patrick McHardy
  - Re: [PATCH 7/6] netfilter: nft_ct: load both IPv4 and IPv6 conntrack modules for NFPROTO_INET, Pablo Neira Ayuso
- Re: [RFC PATCH 0/6] netfilter: nf_tables: add mixed IPv4/IPv6 table support, Pablo Neira Ayuso
How to get pid of packet sender from NFQUEUE?, Mehran Kholdi
- Re: How to get pid of packet sender from NFQUEUE?, Eric Leblond
- Re: How to get pid of packet sender from NFQUEUE?, Mehran Kholdi
How to test netfilter SYNPROXY target properly?, Vincent Li
- Re: How to test netfilter SYNPROXY target properly?, Patrick McHardy
  - Re: How to test netfilter SYNPROXY target properly?, Vincent Li
  - Re: How to test netfilter SYNPROXY target properly?, Phil Oester
[libnftables PATCH] parsing: add interface to parse from file, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] parsing: add interface to parse from file, Pablo Neira Ayuso
  - Re: [libnftables PATCH] parsing: add interface to parse from file, Arturo Borrero Gonzalez
    - Re: [libnftables PATCH] parsing: add interface to parse from file, Pablo Neira Ayuso
[libnftables PATCH] tests: add table 'use' attr to testfiles, Arturo Borrero Gonzalez
- Re: [libnftables PATCH] tests: add table 'use' attr to testfiles, Pablo Neira Ayuso
[PATCH 0/2] ct_set: port CT target to nftables, Eric Leblond
- [PATCH 1/2] netfilter: CT: factorize reusable code, Eric Leblond
- [PATCH 2/2] netfilter: nftables: introduce ct_set module, Eric Leblond
  - Re: [PATCH 2/2] netfilter: nftables: introduce ct_set module, Pablo Neira Ayuso
- [libnftables PATCH] expr: add ct_set expression, Eric Leblond
  - Re: [libnftables PATCH] expr: add ct_set expression, Arturo Borrero Gonzalez
    - Re: [libnftables PATCH] expr: add ct_set expression, Eric Leblond
      - Re: [libnftables PATCH] expr: add ct_set expression, Arturo Borrero Gonzalez
[PATCH] netfilter: CT: improve error treatment, Eric Leblond
- Re: [PATCH] netfilter: CT: improve error treatment, Pablo Neira Ayuso
[PATCH RESEND] netfilter: remove unused variable, Michal Nazarewicz
- Re: [PATCH RESEND] netfilter: remove unused variable, Pablo Neira Ayuso
  - Re: [PATCH RESEND] netfilter: remove unused variable, Michal Nazarewicz
[nft PATCH] src: add support for listing the entire ruleset, Arturo Borrero Gonzalez
- Re: [nft PATCH] src: add support for listing the entire ruleset, Pablo Neira Ayuso
[PATCH nf] netfilter: nf_nat: fix buffer overflow in IRC NAT helper, Daniel Borkmann
- Re: [PATCH nf] netfilter: nf_nat: fix buffer overflow in IRC NAT helper, Pablo Neira Ayuso
  - Re: [PATCH nf] netfilter: nf_nat: fix buffer overflow in IRC NAT helper, Pablo Neira Ayuso
    - Re: [PATCH nf] netfilter: nf_nat: fix buffer overflow in IRC NAT helper, Daniel Borkmann
  - Re: [PATCH nf] netfilter: nf_nat: fix buffer overflow in IRC NAT helper, Hannes Frederic Sowa
- Re: [PATCH nf] netfilter: nf_nat: fix buffer overflow in IRC NAT helper, Pablo Neira Ayuso
  - Re: [PATCH nf] netfilter: nf_nat: fix buffer overflow in IRC NAT helper, Daniel Borkmann
[PATCH nf-next] netfilter: fix type in parsing in nf_tables_set_alloc_name, Daniel Borkmann
- Re: [PATCH nf-next] netfilter: fix type in parsing in nf_tables_set_alloc_name, Pablo Neira Ayuso
[libnftables PATCH 1/2] src: rename the parameter tag to node_name in jansson function, Alvaro Neira
- [libnftables PATCH 2/2] src: new error reporting approach for XML/JSON parsers, Alvaro Neira
  - Re: [libnftables PATCH 2/2] src: new error reporting approach for XML/JSON parsers, Pablo Neira Ayuso
- Re: [libnftables PATCH 1/2] src: rename the parameter tag to node_name in jansson function, Arturo Borrero Gonzalez
- Re: [libnftables PATCH 1/2] src: rename the parameter tag to node_name in jansson function, Pablo Neira Ayuso
[PATCH net-next] netfilter: remove dead code, Stephen Hemminger
- Re: [PATCH net-next] netfilter: remove dead code, Pablo Neira Ayuso
[PATCH net-next] ipset: remove unused code, Stephen Hemminger
- Re: [PATCH net-next] ipset: remove unused code, Pablo Neira Ayuso
[PATCH nf-next] netfilter: add help information to new nf_tables Kconfig options, Pablo Neira Ayuso
- Re: [PATCH nf-next] netfilter: add help information to new nf_tables Kconfig options, Eric Leblond
[PATCH] netfilter: Remove some backward-compat Kconfig symbols, Ben Hutchings
- Re: [PATCH] netfilter: Remove some backward-compat Kconfig symbols, Pablo Neira Ayuso
Re: ULOGD2 with MYSQL, Sassy Natan
- Re: ULOGD2 with MYSQL, Eric Leblond
  - Message not available
    - Message not available
      - Message not available
        
        Fwd: ULOGD2 with MYSQL, Sassy Natan
        
        Re: Fwd: ULOGD2 with MYSQL, Eric Leblond
[PATCH nf-next v5 0/3] xtables socket classid matching, Daniel Borkmann
- [PATCH nf-next v5 2/3] net: netprio: rename config to be more consistent with cgroup configs, Daniel Borkmann
- [PATCH nf-next v5 3/3] netfilter: xtables: lightweight process control group matching, Daniel Borkmann
- [PATCH nf-next v5 1/3] net: net_cls: move cgroupfs classid handling into core, Daniel Borkmann
- Re: [PATCH nf-next v5 0/3] xtables socket classid matching, Li Zefan
  - Re: [PATCH nf-next v5 0/3] xtables socket classid matching, Pablo Neira Ayuso
    - Re: [PATCH nf-next v5 0/3] xtables socket classid matching, Daniel Borkmann
      - Re: [PATCH nf-next v5 0/3] xtables socket classid matching, Pablo Neira Ayuso
        
        Re: [PATCH nf-next v5 0/3] xtables socket classid matching, Daniel Borkmann
- Re: [PATCH nf-next v5 0/3] xtables socket classid matching, Pablo Neira Ayuso
  - Re: [PATCH nf-next v5 0/3] xtables socket classid matching, Daniel Borkmann
  - Re: [PATCH nf-next v5 0/3] xtables socket classid matching, David Miller
[PATCH nf-next v4 0/3] xtables socket classid matching, Daniel Borkmann
- [PATCH nf-next v4 2/3] net: netprio: rename config to be more consistent with cgroup configs, Daniel Borkmann
- [PATCH nf-next v4 3/3] netfilter: xtables: lightweight process control group matching, Daniel Borkmann
- [PATCH nf-next v4 1/3] net: net_cls: move cgroupfs classid handling into core, Daniel Borkmann
[PATCH 0/2] nftables: minor Kconfig fixes, Eric Leblond
- [PATCH 1/2] netfilter: nft: select NFNETLINK, Eric Leblond
  - Re: [PATCH 1/2] netfilter: nft: select NFNETLINK, Pablo Neira Ayuso
- [PATCH 2/2] netfilter: nft: explicit dependency to IPv6, Eric Leblond
  - Re: [PATCH 2/2] netfilter: nft: explicit dependency to IPv6, Pablo Neira Ayuso
[PATCH 0/8] Netfilter/IPVS fixes for net, Pablo Neira Ayuso
- [PATCH 5/8] ipvs: correct usage/allocation of seqadj ext in ipvs, Pablo Neira Ayuso
- [PATCH 8/8] netfilter: nf_tables: fix wrong datatype in nft_validate_data_load(), Pablo Neira Ayuso
- [PATCH 6/8] netfilter: nf_tables: fix dumping with large number of sets, Pablo Neira Ayuso
- [PATCH 7/8] netfilter: nf_tables: fix oops when updating table with user chains, Pablo Neira Ayuso
- [PATCH 2/8] netfilter: nft_exthdr: call ipv6_find_hdr() with explicitly initialized offset, Pablo Neira Ayuso
- [PATCH 4/8] netfilter: WARN about wrong usage of sequence number adjustments, Pablo Neira Ayuso
- [PATCH 1/8] netfilter: nfnetlink_log: unset nf_loggers for netns when unloading module, Pablo Neira Ayuso
- [PATCH 3/8] netfilter: nf_ct_timestamp: Fix BUG_ON after netns deletion, Pablo Neira Ayuso
- Re: [PATCH 0/8] Netfilter/IPVS fixes for net, David Miller
- <Possible follow-ups>
- [PATCH 0/8] Netfilter/IPVS fixes for net, Pablo Neira Ayuso
  - [PATCH 0/8] Netfilter/IPVS fixes for net, Pablo Neira Ayuso

[Index of Archives] [LARTC] [Berkeley Packet Filter] [Bugtraq] [Yosemite Discussion]