diff options
-rw-r--r-- | Makefile | 10 | ||||
-rw-r--r-- | TODO | 6 |
2 files changed, 4 insertions, 12 deletions
@@ -16,16 +16,6 @@ endif NETFILTER_VERSION:=1.2.4 OLD_NETFILTER_VERSION:=1.2.3 -# NOT NEEDED WITH NEW POM2 -## Waiting for inclusions in the kernel tree. -#PENDING_PATCHES:=ipt_MIRROR-ttl.patch ipt_REJECT-checkentry.patch ipt_LOG.patch -## These went in previous kernels. -#PENDING_PATCHES+=2.4.1.patch tos-fix.patch tcp-MSS.patch 2.4.4.patch ip6tables-export-symbols.patch sackperm.patch -# -## these are working fine together and don't break themselves -#MOSTOFPOM_PATCHES=NETLINK.patch NETMAP.patch SAME.patch TTL.patch ah-esp.patch ftos.patch iplimit.patch ipv4options.patch irc-conntrack-nat.patch length.patch mport.patch nth.patch random.patch pkttype.patch pool.patch psd.patch realm.patch snmp-nat.patch time.patch ttl.patch ulog.patch # string.patch (2.4.9) -#MOSTOFPOM_PATCHES+=REJECT.patch.ipv6 LOG.patch.ipv6 ipv6-agr.patch.ipv6 ipv6-fixes.patch.ipv6 ipv6-ports.patch.ipv6 length.patch.ipv6 - LIBDIR:=/usr/local/lib BINDIR:=/usr/local/sbin MANDIR:=/usr/local/man @@ -4,13 +4,13 @@ Currently maintained by Harald Welte <laforge@gnumonks.org> Please inform me, if you want to work on any of the TODO items, so I can update this list and thus prevent two people doing the same work. -CVS ID: $Id: TODO,v 1.51 2001/11/24 22:59:16 jamesm Exp $ +CVS ID: $Id: TODO,v 1.52 2001/11/30 10:55:10 jamesm Exp $ IMPORTANT issues: - token ring crashes ?? - solution for nostate / notrack (we don't want to track specific conn's) - iptables-save/restore problems with log-level -- multiple related connections [HW] +- multiple related connections (solved: newnat)[HW] - ip_conntrack rmmod loop (sometimes, Yan's patch?) - conntrack helper not called for first packet (udp!) - add support for correct SACK handling [HW] @@ -20,6 +20,7 @@ IMPORTANT issues: - --mac-source not working in FORWARD (manpage bug?) - netfilter hooks should give error if same function registers twice [HW] - speed issues (mark_source_chains, Robert Olsson) +- different behaviour for first packet towards an l2-unresolved ip? NICE to have: - make RPC conntrack work again @@ -41,6 +42,7 @@ NICE to have: - REJECT optionally generates port unreachable with faked SOURCE - libipq reentrancy [JM] - compiling without O2 issue +- add more information like original addresses to the state match - libipq runtime version, do before 1.2.5 [JM] FUTURE extensions: |