| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | wake up the daemon iff there are real events to handle instead of polling ↵ | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-09 | 1 | -0/+1 |
| | | | | | (Based on comments from Max Kellerman) | ||||
| * | fix logfiles permissions, do not default to umask | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-05 | 1 | -0/+1 |
| | | |||||
| * | implement buffered connection logging to improve performance | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-05 | 1 | -0/+1 |
| | | |||||
| * | rename class `buffer' to `queue' which is what it really implements | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-05 | 1 | -0/+1 |
| | | |||||
| * | daemonize conntrackd after initialization | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-05 | 1 | -0/+1 |
| | | |||||
| * | obsolete `-S' option: Use information provided by the config file | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-05 | 1 | -0/+1 |
| | | |||||
| * | Ben Lentz <BLentz@channing-bete.com>: | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-05 | 1 | -0/+1 |
| | | | | | Detach daemon from its terminal | ||||
| * | o add support for connection logging to the statistics mode via Logfile | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2008-01-03 | 1 | -0/+2 |
| | | | | | | | o minor irrelevant fixes for uncommon error paths and fix several typos o use LOG_INFO for connection logging, use LOG_NOTICE for other information o minor error handling updates | ||||
| * | - hash lookup speedups based on comments from netdev's discussions | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-12-31 | 1 | -0/+1 |
| | | | | | | - minor fix for hash6 in cache.c (however, ipv6 support is still broken - several updates in the TODO file | ||||
| * | show error and warning messages to stderr | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-12-24 | 1 | -0/+1 |
| | | |||||
| * | o add support for related conntracks (requires Linux kernel >= 2.6.22) | Ayuso/emailAddress=pablo@netfilter.org | 2007-12-23 | 1 | -0/+1 |
| | | | | | o update leftover references to `persistent' and `nack' modes | ||||
| * | rename `examples' directory to `doc' | Ayuso/emailAddress=pablo@netfilter.org | 2007-12-23 | 1 | -0/+1 |
| | | |||||
| * | o Use more appropriate names for the existing synchronization modes: | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-12-21 | 1 | -0/+4 |
| | | | | | | | o rename `persistent' mode to `alarm' o rename `nack' mode to `ftfw' o Now default synchronization mode is ftfw instead of alarm | ||||
| * | raise ignorepoll limit from 1024 to INT_MAX | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-12-21 | 1 | -0/+1 |
| | | |||||
| * | = conntrack = | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-12-21 | 1 | -0/+8 |
| | | | | | | | | | | | | o fix missing `-g' and `-n' options in getopt_long control string o add support for secmark (requires Linux kernel >= 2.6.25) o add mark and secmark information to the manpage o cleanup error message = conntrackd = o add support for secmark (requires Linux kernel >= 2.6.25) o add conntrackd (8) manpage | ||||
| * | Add CacheWriteThrough clause: external cache write through policy. This ↵ | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-11-25 | 1 | -0/+1 |
| | | | | | feature is particularly useful for active-active setup without connection persistency, ie. you cannot know which firewall would filter a packet that belongs to a connection. | ||||
| * | add syslog support and bump version | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-09-12 | 1 | -0/+1 |
| | | |||||
| * | Remove window tracking disabling limitation (requires Linux kernel >= 2.6.22) | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-09-12 | 1 | -0/+3 |
| | | |||||
| * | improve INSTALL file | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-08-08 | 1 | -0/+1 |
| | | |||||
| * | conntrack-tools compilation problem (K.Kovacs) | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-08-06 | 1 | -0/+5 |
| | | |||||
| * | conntrackd requires the connection tracking event API: insist more in INSTALL | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-29 | 1 | -0/+1 |
| | | |||||
| * | remove script_fault.sh script | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-28 | 1 | -0/+1 |
| | | |||||
| * | prepare 0.9.5 release | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-28 | 1 | -1/+1 |
| | | |||||
| * | - simplify cache_flush function: use cache_del() | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-19 | 1 | -0/+1 |
| | | |||||
| * | include protocol filter parameters in the manpage | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-18 | 1 | -0/+1 |
| | | |||||
| * | conntrackd: | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-18 | 1 | -0/+7 |
| | | | | | | | | | | - use buffer of MTU size conntrack: - better protocol argument checkings - fix per-protocol filtering, eg. conntrack -[L|E] -p tcp now works - show per-protocol help, ie. conntrack -h -p tcp - add alias --src for --orig-src and alias --dst for --orig-dst | ||||
| * | - conntrack-tools requires libnetfilter_conntrack >= 0.0.81 | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-09 | 1 | -0/+16 |
| | | | | | | | | | | | | | | - add len field to nethdr - implement buffered send/recv to batch messages - stop using netlink format for network messages: use similar TLV-based format - reduce synchronization messages size up to 60% - introduce periodic alive messages for sync-nack protocol - timeslice alarm implementation: remove alarm pthread, remove locking - simplify debugging functions: use nfct_snprintf instead - remove major use of libnfnetlink functions: use libnetfilter_conntrack API - deprecate conntrackd -F, use conntrack -F instead - major rework of the network infrastructure: much simple, less messy | ||||
| * | fix dyslexia bug in Changelog (Pablo... we live in 2007, not in 2006) andsvn_t_conntrack-tools-0.9.4 | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-07-02 | 1 | -3/+3 |
| | | | | | update release date of conntrack-tools 0.9.4 | ||||
| * | fork when internal/external dump and commit requests are received | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-25 | 1 | -1/+1 |
| | | |||||
| * | - more cleanups and code refactorization | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-19 | 1 | -0/+2 |
| | | | | | | | - remove several debug calls - create a child to dispatch dump requests: this will help to simplify the current locking schema. Later. | ||||
| * | - local requests return EXIT_FAILURE if it can't connect to the daemon | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-13 | 1 | -0/+1 |
| | | | | | - several cleanups | ||||
| * | remove dlopen infrastructure: simplification, it was too much for it | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-09 | 1 | -0/+1 |
| | | |||||
| * | add library dependency checking | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-09 | 1 | -1/+3 |
| | | |||||
| * | - add support for `-L --src-nat' and `-L --dst-nat' to show natted connections | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-09 | 1 | -0/+2 |
| | | | | | - update conntrack(8) manpage | ||||
| * | commit phase: if conntrack exists, update it | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-07 | 1 | -0/+1 |
| | | |||||
| * | add aliases --sport and --dport to make it more iptables-like | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-04 | 1 | -0/+1 |
| | | |||||
| * | o use NFCT_SOPT_SETUP_* facilities: nfct_setobjopt | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-04 | 1 | -0/+2 |
| | | | | | o remove bogus option to get a conntrack in test.sh example file | ||||
| * | o remove useless backlog parameter in multicast sockets | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-06-04 | 1 | -0/+6 |
| | | | | | | | | | o remove reminiscents of delay destroy message and relax transitions o remove confusing StripNAT parameter: NAT support enabled by default o relax event tracking: *_update callbacks use cache_update_force o use wraparound-aware functions after/before/between o lots of cleanups | ||||
| * | fix error message in configure.in (Eric Leblond) | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-05-31 | 1 | -0/+1 |
| | | |||||
| * | fix silly bug in build_network_message: out of bound memset | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-05-30 | 1 | -0/+4 |
| | | |||||
| * | simplify checksum code: use UDP/multicast checksum facilities | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-05-24 | 1 | -1/+7 |
| | | |||||
| * | add script for keepalived fault state (eg. unplugged cable/link down) | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-05-15 | 1 | -0/+1 |
| | | |||||
| * | o introduce '--output xml,extended,timestamp' option for '-L', '-G' and '-E' | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-05-07 | 1 | -1/+2 |
| | | | | | o several fixes for the output of usage messages | ||||
| * | - update changelog | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-05-06 | 1 | -0/+12 |
| | | | | | - use positive logic in error handling | ||||
| * | - Merge conntrack and conntrackd changelogs, even if it will be dropped from ↵ | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-04-16 | 1 | -0/+188 |
| | | | | | | | SVN soon. - Update INSTALL documentation | ||||
| * | first step forward to merge conntrackd and conntrack into the same building ↵ | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-04-16 | 1 | -0/+243 |
| | | | | | chain | ||||
| * | initial import of the conntrack daemon to Netfilter SVN | /C=EU/ST=EU/CN=Pablo Neira Ayuso/emailAddress=pablo@netfilter.org | 2007-04-16 | 1 | -243/+0 |
| | | |||||
| * | fix ICMP protocol extension parse callback | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=pablo/emailAddress=pablo@netfilter.org | 2006-03-19 | 1 | -0/+4 |
| | | |||||
| * | o Add support to filter dumped entries. ie: | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=pablo/emailAddress=pablo@netfilter.org | 2006-01-15 | 1 | -0/+5 |
| | | | | | | | | - display all the connections to IMAPS servers conntrack -L -p tcp --orig-port-dst 993 - display all the connection marked with 2 conntrack -L -m 2 | ||||
| * | o Added missing parameters to set the ports of an expectation tuple | /C=DE/ST=Berlin/L=Berlin/O=Netfilter Project/OU=Development/CN=pablo/emailAddress=pablo@netfilter.org | 2006-01-15 | 1 | -0/+5 |
| | | | | | o Bumped version to 1.00beta2 | ||||
 |
index : conntrack-tools | |
| conntrack-tools tree | pablo@netfilter.org |
| summaryrefslogtreecommitdiffstats |