freebsd-dev

Author	SHA1	Message	Date
ru	ebb3d17f41	Suggest looking at rc.conf(5) on how to start natd(8) during boot. Submitted by: dcs	2000-07-17 10:06:54 +00:00
kris	df586766ed	Don't call warn() with no format string.	2000-07-10 08:14:18 +00:00
ru	9a969be497	"Ease understanding" of how -punch_fw works. Reviewed by: sheldonh	2000-06-29 09:52:14 +00:00
ru	e64c6de102	Added new option (-punch_fw) which allows to `punch holes' in the ipfirewall(4) for incoming FTP/IRC DCC connections. Submitted by: Rene de Vries <rene@canyon.demon.nl> Rewritten by: ru	2000-06-27 15:26:24 +00:00
ru	4c99e0d01f	- mdoc(7) style cleanup - new version of security note from alex.	2000-06-27 11:39:36 +00:00
alex	0d49483c6e	Back out both previous commits. The first one got screwed up by me because of rev 1.33, which was incorrectly merged into my patches by myself, and so Ruslan (maintainer) asked me to back them out. Ruslan was ok with the second one, but since it needs rework, it'll be readded later, when it doesn't conflict with the backout of the first one. Pointy hat: alex Beer on next meeting: ru	2000-06-26 17:18:34 +00:00
alex	0a892f4a8a	Add note about security concerns w/o a firewall but other machines on your LAN to the "RUNNING NATD" introduction. In a different way requested by: PR: 18802 Submitted by: Zachary K Drew <drew0054@tc.umn.edu>	2000-06-26 14:52:39 +00:00
alex	c57ce365c0	mdoc style cleanup. Reviewed by: sheldonh	2000-06-26 14:44:31 +00:00
ru	88883ae776	Remove ``pptpalias'' since this is now done transparently by libalias(3).	2000-06-20 12:52:27 +00:00
ru	0abf72a516	Remove unused parameter.	2000-06-16 09:41:57 +00:00
sheldonh	81dd124aeb	Fix a small grammar nit, with the maintainer's implicit approval.	2000-05-22 08:41:57 +00:00
ru	e18cc21c76	Add new option (-target_addr) to control how to deal with incoming packets not associated with any pre-existing link. Submitted by: brian	2000-05-18 10:31:10 +00:00
ru	20c0349981	New option: -redirect_proto.	2000-05-03 15:06:45 +00:00
joe	bac5045cd6	Fixes a potential buffer overflow with the command line arguments. Submitted by: Mike Heffner <spock@techfour.net> Submitted on: audit@freebsd.org	2000-04-30 20:53:54 +00:00
ru	35ea13cc5f	Load Sharing using IP Network Address Translation (RFC 2391, LSNAT).	2000-04-27 17:55:17 +00:00
brian	2577c085b5	Correct Charles Mott's email address Requested by: cmott@scientech.com	2000-04-02 20:23:34 +00:00
sheldonh	ad4c77c29e	Remove single-space hard sentence breaks. These degrade the quality of the typeset output, tend to make diffs harder to read and provide bad examples for new-comers to mdoc.	2000-03-01 11:27:47 +00:00
brian	669d0cd733	Suggest ppp -nat, not ppp -alias	2000-02-26 13:13:16 +00:00
ru	b678ac021d	Remove the config file line length restriction. PR: 16900 Reviewed by: "Crist J. Clark" <cjclark@home.com>, jkh Approved by: jkh	2000-02-25 11:34:38 +00:00
ru	5f276b7f68	Now that kernel is capable of notifying user processes about the interface MTU change (src/sys/net/if_sl.c,v 1.83), track interface MTU with -dynamic option as well. PR: 15494	2000-01-25 12:24:06 +00:00
mpp	da4c7a74d4	Minor grammar fix.	1999-10-30 19:33:41 +00:00
ru	930183a04c	ioctl -> sysctl for interface address changes. PR: 14169 Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-10-13 09:00:16 +00:00
ru	47f5fade12	Fixed the description of how packets re-enter IP firewall filter. Suggested by: Ari Suutari <ari@suutari.iki.fi>	1999-10-06 09:26:39 +00:00
ru	276330363e	Do not defer setting of the aliasing address from interface name if not operating in dynamic mode. Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-09-28 08:01:46 +00:00
ru	f85cd584ed	`permanent_link' is obsolete; update examples.	1999-09-13 18:18:33 +00:00
ru	5a32c0e595	Add Ari Suutari as a maintainer. Approved by: Ari Suutari <ari@suutari.iki.fi>	1999-09-13 18:16:38 +00:00
ru	63c1c1de6f	Config file parser changes: - Trailing spaces and empty lines are ignored. - A `#' sign will mark the remaining of the line as a comment. Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-09-07 15:34:12 +00:00
ru	d5c1ddac6f	Allow signals to interrupt system calls. Remove redundant signal() call. PR: 6676 Submitted by: luoqi Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-09-02 15:17:25 +00:00
peter	e226894fa0	$Id$ -> $FreeBSD$	1999-08-28 00:22:10 +00:00
chris	9be2f2c0b2	Bad cross-reference of getservbyname(2) changed to getservbyname(3) Reviewed by: ru	1999-08-18 01:20:07 +00:00
ru	1f9d9df94a	Become a maintainer. Approved by: brian	1999-07-28 08:50:42 +00:00
ru	919b1dc10d	Back out previous commit.	1999-07-28 08:38:26 +00:00
brian	f31bc07f6a	Mention that data going from one internal address to another will not be processed by natd. Requested by: Ludwig Pummer <ludwigp@bigfoot.com>	1999-06-21 07:58:25 +00:00
archie	84960a50be	When incrementing through a SIOCGIFCONF list, enforce a lower limit of sizeof(ifr->ifr_addr) for the variable length field ifr->ifr_addr.sa_len. Otherwise the increment will be wrong in certain cases. Obtained from: Whistle source tree For the record: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> suggests SIOCGIFCONF should be dropped in favor of a sysctl mechanism.	1999-06-05 05:55:07 +00:00
brian	0bb7ade540	Oops - missing parenthesis	1999-05-13 17:09:44 +00:00
brian	169230a96c	/sbin/natd portrange documentation and bugfix Submitted by: Ruslan Ermilov <ru@ucb.crimea.ua> PR: 11690 3.2 candidate ?	1999-05-13 16:58:31 +00:00
imp	ffd449edec	More egcs warning fixes: o main returns int not void o use braces to avoid potentially ambiguous else Note: The fix to natd is potentially functional in nature since I used the indentation as the right thing rather than the struct semantics. Someone more familiar with the code should double check me on this one. Reviewed by: obrien and chuckr	1999-04-25 22:33:30 +00:00
sada	eb3c647602	Typo of `same_ports' directive. Submitted by: Masaki Nohtomi <noutomi@jbm-net.or.jp>	1999-04-24 01:42:44 +00:00
eivind	dac3095173	Add a comment that natd is made for use with NICs, not PPP links - I'm tired of the five people each day that ask me how to set up natd for use with PPP.	1999-04-08 23:15:31 +00:00
brian	611c76886a	Disable reads on our ICMP socket. We only use it for sending. PR: 9253	1999-03-30 10:11:21 +00:00
brian	daabef0a6d	Add `const's that I forgot to commit. Not bad - I broke the -stable and -current builds in the space of 1 day ! Pointed out by: jdp	1999-03-26 07:13:12 +00:00
brian	a245c4b93e	Add some const-cleanliness and avoid some warnings.	1999-03-24 20:30:48 +00:00
brian	8a8f6a5f33	Allow port ranges when specifying -redirect_port. Submitted by: Wes Santee <wes@bogon.net> PR: 9696	1999-03-24 20:30:20 +00:00
brian	779d83271e	Fix a diagnostic typo Submitted by: Martin Machacek <mm@i.cz>	1999-03-11 09:24:52 +00:00
brian	20499d0d9c	Upgrade (almost) to natd 2.0b1 - Transparent proxy support. - PERMANENT_LINK IS NOW OBSOLETE, use redirect_port instead. - Drop support for early FreeBSD 2.2 versions - If separate input & output sockets are being used use them to find out packet direction instead of normal mechanism. This can be handy in complex environments with multiple interfaces. - PPTP redirect support by Dru Nelson <dnelson@redwoodsoft.com> added. - Logging enhancements from Martin Machacek <mm@i.cz> added. Obtained from: Ari Suutari <ari@suutari.iki.fi>	1999-03-07 18:23:56 +00:00
jkh	07847c6846	Make this work with the new alias library since, evidently, we're not providing the backwards-compatability routines in libalias anymore (which I think may have been a mistake).	1999-02-27 22:37:38 +00:00
jkoshy	8b4cc24853	Fix inconsistent port numbering in man page. PR: 7250 Submitted-by: Norihiro Kumagai <kuma@jp.freebsd.org>	1998-07-15 03:32:45 +00:00
jkoshy	50ae10cdf2	Add $Id$. PR: 7249	1998-07-14 08:18:51 +00:00
brian	70e65d7691	Make things clearer. Submitted (some time ago) by: Ted Mittelstaedt <tedm@portsoft.com>	1998-07-04 12:07:03 +00:00
brian	fe5471bbb4	Suggest port 8668 rather than 6668 for natd. 6668 is IRC.	1998-07-04 01:53:54 +00:00

1 2

68 Commits