freebsd-skq

Author	SHA1	Message	Date
ru	8a6f8b5fe4	mdoc(7) police: split punctuation characters + misc fixes.	2001-02-01 16:38:02 +00:00
ru	ea31070695	mdoc(7) police: use the new features of the Nm macro.	2000-11-20 16:52:27 +00:00
ru	9c5e4a8b3f	Describe -deny_incoming better, highlight some keywords, add myself to the AUTHORS section.	2000-11-16 12:20:54 +00:00
ben	bd94b89a9a	more removal of trailing periods from SEE ALSO.	2000-11-15 16:44:24 +00:00
ru	edc0cc6c36	Suggest looking at rc.conf(5) on how to start natd(8) during boot. Submitted by: dcs	2000-07-17 10:06:54 +00:00
kris	007293175c	Don't call warn() with no format string.	2000-07-10 08:14:18 +00:00
ru	38b5153ff9	"Ease understanding" of how -punch_fw works. Reviewed by: sheldonh	2000-06-29 09:52:14 +00:00
ru	15462ff9cb	Added new option (-punch_fw) which allows to `punch holes' in the ipfirewall(4) for incoming FTP/IRC DCC connections. Submitted by: Rene de Vries <rene@canyon.demon.nl> Rewritten by: ru	2000-06-27 15:26:24 +00:00
ru	2bcb688f1c	- mdoc(7) style cleanup - new version of security note from alex.	2000-06-27 11:39:36 +00:00
alex	779ca545b4	Back out both previous commits. The first one got screwed up by me because of rev 1.33, which was incorrectly merged into my patches by myself, and so Ruslan (maintainer) asked me to back them out. Ruslan was ok with the second one, but since it needs rework, it'll be readded later, when it doesn't conflict with the backout of the first one. Pointy hat: alex Beer on next meeting: ru	2000-06-26 17:18:34 +00:00
alex	3ff7ddfcc8	Add note about security concerns w/o a firewall but other machines on your LAN to the "RUNNING NATD" introduction. In a different way requested by: PR: 18802 Submitted by: Zachary K Drew <drew0054@tc.umn.edu>	2000-06-26 14:52:39 +00:00
alex	9c7df143c8	mdoc style cleanup. Reviewed by: sheldonh	2000-06-26 14:44:31 +00:00
ru	8f3a6df6e3	Remove ``pptpalias'' since this is now done transparently by libalias(3).	2000-06-20 12:52:27 +00:00
ru	646e21aa2b	Remove unused parameter.	2000-06-16 09:41:57 +00:00
sheldonh	6d881bfeba	Fix a small grammar nit, with the maintainer's implicit approval.	2000-05-22 08:41:57 +00:00
ru	9033edf3a8	Add new option (-target_addr) to control how to deal with incoming packets not associated with any pre-existing link. Submitted by: brian	2000-05-18 10:31:10 +00:00
ru	1e594f519a	New option: -redirect_proto.	2000-05-03 15:06:45 +00:00
joe	98328065bf	Fixes a potential buffer overflow with the command line arguments. Submitted by: Mike Heffner <spock@techfour.net> Submitted on: audit@freebsd.org	2000-04-30 20:53:54 +00:00
ru	b3e08f68b8	Load Sharing using IP Network Address Translation (RFC 2391, LSNAT).	2000-04-27 17:55:17 +00:00
brian	b4b080a3ff	Correct Charles Mott's email address Requested by: cmott@scientech.com	2000-04-02 20:23:34 +00:00
sheldonh	ff1f324516	Remove single-space hard sentence breaks. These degrade the quality of the typeset output, tend to make diffs harder to read and provide bad examples for new-comers to mdoc.	2000-03-01 11:27:47 +00:00
brian	be10bd6804	Suggest ppp -nat, not ppp -alias	2000-02-26 13:13:16 +00:00
ru	45c27cda58	Remove the config file line length restriction. PR: 16900 Reviewed by: "Crist J. Clark" <cjclark@home.com>, jkh Approved by: jkh	2000-02-25 11:34:38 +00:00
ru	b1253d64a8	Now that kernel is capable of notifying user processes about the interface MTU change (src/sys/net/if_sl.c,v 1.83), track interface MTU with -dynamic option as well. PR: 15494	2000-01-25 12:24:06 +00:00
mpp	741c8d6784	Minor grammar fix.	1999-10-30 19:33:41 +00:00
ru	173a5920a1	ioctl -> sysctl for interface address changes. PR: 14169 Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-10-13 09:00:16 +00:00
ru	3fe86c67fe	Fixed the description of how packets re-enter IP firewall filter. Suggested by: Ari Suutari <ari@suutari.iki.fi>	1999-10-06 09:26:39 +00:00
ru	b4f3a6f51b	Do not defer setting of the aliasing address from interface name if not operating in dynamic mode. Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-09-28 08:01:46 +00:00
ru	7b87c1c49f	`permanent_link' is obsolete; update examples.	1999-09-13 18:18:33 +00:00
ru	c7cbaf245c	Add Ari Suutari as a maintainer. Approved by: Ari Suutari <ari@suutari.iki.fi>	1999-09-13 18:16:38 +00:00
ru	7357a87ddf	Config file parser changes: - Trailing spaces and empty lines are ignored. - A `#' sign will mark the remaining of the line as a comment. Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-09-07 15:34:12 +00:00
ru	5acd2873b4	Allow signals to interrupt system calls. Remove redundant signal() call. PR: 6676 Submitted by: luoqi Reviewed by: Ari Suutari <ari@suutari.iki.fi>	1999-09-02 15:17:25 +00:00
peter	76f0c923fe	$Id$ -> $FreeBSD$	1999-08-28 00:22:10 +00:00
chris	ab6c4be83c	Bad cross-reference of getservbyname(2) changed to getservbyname(3) Reviewed by: ru	1999-08-18 01:20:07 +00:00
ru	d9756ac21a	Become a maintainer. Approved by: brian	1999-07-28 08:50:42 +00:00
ru	d4af6c2191	Back out previous commit.	1999-07-28 08:38:26 +00:00
brian	2cacc38393	Mention that data going from one internal address to another will not be processed by natd. Requested by: Ludwig Pummer <ludwigp@bigfoot.com>	1999-06-21 07:58:25 +00:00
archie	9cf3e81787	When incrementing through a SIOCGIFCONF list, enforce a lower limit of sizeof(ifr->ifr_addr) for the variable length field ifr->ifr_addr.sa_len. Otherwise the increment will be wrong in certain cases. Obtained from: Whistle source tree For the record: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> suggests SIOCGIFCONF should be dropped in favor of a sysctl mechanism.	1999-06-05 05:55:07 +00:00
brian	2ff48aab7d	Oops - missing parenthesis	1999-05-13 17:09:44 +00:00
brian	ff0afb282f	/sbin/natd portrange documentation and bugfix Submitted by: Ruslan Ermilov <ru@ucb.crimea.ua> PR: 11690 3.2 candidate ?	1999-05-13 16:58:31 +00:00
imp	d12a7ef464	More egcs warning fixes: o main returns int not void o use braces to avoid potentially ambiguous else Note: The fix to natd is potentially functional in nature since I used the indentation as the right thing rather than the struct semantics. Someone more familiar with the code should double check me on this one. Reviewed by: obrien and chuckr	1999-04-25 22:33:30 +00:00
sada	ea6910c469	Typo of `same_ports' directive. Submitted by: Masaki Nohtomi <noutomi@jbm-net.or.jp>	1999-04-24 01:42:44 +00:00
eivind	51b9d2ad97	Add a comment that natd is made for use with NICs, not PPP links - I'm tired of the five people each day that ask me how to set up natd for use with PPP.	1999-04-08 23:15:31 +00:00
brian	9895dfa31e	Disable reads on our ICMP socket. We only use it for sending. PR: 9253	1999-03-30 10:11:21 +00:00
brian	edc6ba8438	Add `const's that I forgot to commit. Not bad - I broke the -stable and -current builds in the space of 1 day ! Pointed out by: jdp	1999-03-26 07:13:12 +00:00
brian	16fa182f0f	Add some const-cleanliness and avoid some warnings.	1999-03-24 20:30:48 +00:00
brian	43e9a1b892	Allow port ranges when specifying -redirect_port. Submitted by: Wes Santee <wes@bogon.net> PR: 9696	1999-03-24 20:30:20 +00:00
brian	ffb312a7f1	Fix a diagnostic typo Submitted by: Martin Machacek <mm@i.cz>	1999-03-11 09:24:52 +00:00
brian	cd09c9b12d	Upgrade (almost) to natd 2.0b1 - Transparent proxy support. - PERMANENT_LINK IS NOW OBSOLETE, use redirect_port instead. - Drop support for early FreeBSD 2.2 versions - If separate input & output sockets are being used use them to find out packet direction instead of normal mechanism. This can be handy in complex environments with multiple interfaces. - PPTP redirect support by Dru Nelson <dnelson@redwoodsoft.com> added. - Logging enhancements from Martin Machacek <mm@i.cz> added. Obtained from: Ari Suutari <ari@suutari.iki.fi>	1999-03-07 18:23:56 +00:00
jkh	1c94975d98	Make this work with the new alias library since, evidently, we're not providing the backwards-compatability routines in libalias anymore (which I think may have been a mistake).	1999-02-27 22:37:38 +00:00

1 2

72 Commits