freebsd-dev

History

Kristof Provost 150182e309 pf: Support "return" statements in passing rules when they fail. Normally pf rules are expected to do one of two things: pass the traffic or block it. Blocking can be silent - "drop", or loud - "return", "return-rst", "return-icmp". Yet there is a 3rd category of traffic passing through pf: Packets matching a "pass" rule but when applying the rule fails. This happens when redirection table is empty or when src node or state creation fails. Such rules always fail silently without notifying the sender. Allow users to configure this behaviour too, so that pf returns an error packet in these cases. PR: 226850 Submitted by: Kajetan Staszkiewicz <vegeta tuxpowered.net> MFC after: 1 week Sponsored by: InnoGames GmbH		2018-06-22 21:59:30 +00:00
..
man1	share: normalize paths using SRCTOP-relative paths or :H when possible	2017-03-04 11:26:40 +00:00
man3	Depart from normal man page proactice a little and provide guidance on	2018-05-31 14:23:33 +00:00
man4	Sometimes it is helpful to get the path for a vnode.	2018-06-20 08:34:29 +00:00
man5	pf: Support "return" statements in passing rules when they fail.	2018-06-22 21:59:30 +00:00
man6	Update intro(6) - remove hint that doesn't work, add explicit list	2017-11-27 12:39:35 +00:00
man7	"Kernel APIs" is a misnomer; use the proper name instead.	2018-06-21 08:19:11 +00:00
man8	Document the new ${name}_env_file feature	2018-06-19 19:27:37 +00:00
man9	epoch.9: bump Dd	2018-06-22 06:05:19 +00:00
Makefile	Add more SUBDIR_PARALLEL.	2015-10-15 22:55:08 +00:00