The NetBSD Project

CVS log for src/share/examples/npf/soho_gw-npf.conf

[BACK] Up to [cvs.NetBSD.org] / src / share / examples / npf

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.12.2.2 / (download) - annotate - [select for diffs], Sun Nov 5 17:39:38 2023 UTC (5 months, 1 week ago) by martin
Branch: netbsd-9
Changes since 1.12.2.1: +3 -3 lines
Diff to previous 1.12.2.1 (colored) to branchpoint 1.12 (colored) next main 1.13 (colored)

Pull up following revision(s) (requested by tsutsui in ticket #1762):

	share/examples/npf/host-npf.conf: revision 1.12
	share/examples/npf/soho_gw-npf.conf: revision 1.21

Use proper variables for interface names in examples.

Revision 1.20.8.1 / (download) - annotate - [select for diffs], Sun Nov 5 17:38:24 2023 UTC (5 months, 1 week ago) by martin
Branch: netbsd-10
CVS Tags: netbsd-10-0-RELEASE, netbsd-10-0-RC6, netbsd-10-0-RC5, netbsd-10-0-RC4, netbsd-10-0-RC3, netbsd-10-0-RC2, netbsd-10-0-RC1
Changes since 1.20: +3 -3 lines
Diff to previous 1.20 (colored) next main 1.21 (colored)

Pull up following revision(s) (requested by tsutsui in ticket #458):

	share/examples/npf/host-npf.conf: revision 1.12
	share/examples/npf/soho_gw-npf.conf: revision 1.21

Use proper variables for interface names in examples.

Revision 1.21 / (download) - annotate - [select for diffs], Mon Jul 31 16:09:01 2023 UTC (8 months, 2 weeks ago) by tsutsui
Branch: MAIN
CVS Tags: HEAD
Changes since 1.20: +3 -3 lines
Diff to previous 1.20 (colored)

Use proper variables for interface names in examples.

Revision 1.6.26.2 / (download) - annotate - [select for diffs], Mon Apr 13 08:03:24 2020 UTC (4 years ago) by martin
Branch: phil-wifi
Changes since 1.6.26.1: +37 -20 lines
Diff to previous 1.6.26.1 (colored) to branchpoint 1.6 (colored) next main 1.7 (colored)

Mostly merge changes from HEAD upto 20200411

Revision 1.12.2.1 / (download) - annotate - [select for diffs], Tue Nov 19 10:56:35 2019 UTC (4 years, 4 months ago) by martin
Branch: netbsd-9
CVS Tags: netbsd-9-3-RELEASE, netbsd-9-2-RELEASE, netbsd-9-1-RELEASE, netbsd-9-0-RELEASE, netbsd-9-0-RC2, netbsd-9-0-RC1
Changes since 1.12: +37 -20 lines
Diff to previous 1.12 (colored)

Pull up following revision(s) (requested by sevan in ticket #444):

	share/examples/npf/soho_gw-npf.conf: revision 1.13
	share/examples/npf/soho_gw-npf.conf: revision 1.14
	share/examples/npf/soho_gw-npf.conf: revision 1.15
	share/examples/npf/soho_gw-npf.conf: revision 1.16
	share/examples/npf/soho_gw-npf.conf: revision 1.17
	share/examples/npf/soho_gw-npf.conf: revision 1.18
	share/examples/npf/soho_gw-npf.conf: revision 1.19
	share/examples/npf/soho_gw-npf.conf: revision 1.20

Drop the final keyword to use the default policy of last matching rule wins
default policy is to blockall

Add descriptions for all rules and make use of localnet variable in
place of direct IP address
improve description

pastos

Passive FTP works as a client without this and we're not hosting an FTP
server (port are not listed in services_tcp)

Add support for blacklistd

Rename the block table to something else to make it easier to differentiate
between action and name. Use this table as the example for populating by
npfctl.

Drop the int-block table, it's quite cumbersome to have a firewall which
needs the internal network lists added if reboot. Use the localnet
variable to indicated which network we should pass in traffic from instead.

Revision 1.20 / (download) - annotate - [select for diffs], Mon Nov 18 22:27:27 2019 UTC (4 years, 4 months ago) by sevan
Branch: MAIN
CVS Tags: phil-wifi-20200421, phil-wifi-20200411, phil-wifi-20200406, phil-wifi-20191119, netbsd-10-base, is-mlppp-base, is-mlppp, cjep_sun2x-base1, cjep_sun2x-base, cjep_sun2x, cjep_staticlib_x-base1, cjep_staticlib_x-base, cjep_staticlib_x
Branch point for: netbsd-10
Changes since 1.19: +7 -8 lines
Diff to previous 1.19 (colored)

Rename the block table to something else to make it easier to differentiate
between action and name. Use this table as the example for populating by npfctl.

Drop the int-block table, it's quite cumbersome to have a firewall which
needs the internal network lists added if reboot. Use the localnet variable to
indicated which network we should pass in traffic from instead.

Revision 1.19 / (download) - annotate - [select for diffs], Sun Sep 22 19:51:18 2019 UTC (4 years, 6 months ago) by sevan
Branch: MAIN
Changes since 1.18: +4 -1 lines
Diff to previous 1.18 (colored)

Add support for blacklistd

Revision 1.18 / (download) - annotate - [select for diffs], Sun Sep 22 19:30:15 2019 UTC (4 years, 6 months ago) by sevan
Branch: MAIN
Changes since 1.17: +1 -4 lines
Diff to previous 1.17 (colored)

Passive FTP works as a client without this and we're not hosting an FTP server (port are not listed in services_tcp)

Revision 1.17 / (download) - annotate - [select for diffs], Sat Sep 21 23:55:01 2019 UTC (4 years, 6 months ago) by sevan
Branch: MAIN
Changes since 1.16: +3 -3 lines
Diff to previous 1.16 (colored)

pastos

Revision 1.16 / (download) - annotate - [select for diffs], Sat Sep 21 21:10:56 2019 UTC (4 years, 6 months ago) by sevan
Branch: MAIN
Changes since 1.15: +3 -2 lines
Diff to previous 1.15 (colored)

improve description

Revision 1.15 / (download) - annotate - [select for diffs], Sat Sep 21 20:41:52 2019 UTC (4 years, 6 months ago) by sevan
Branch: MAIN
Changes since 1.14: +21 -3 lines
Diff to previous 1.14 (colored)

Add descriptions for all rules and make use of localnet variable in place of direct IP address

Revision 1.14 / (download) - annotate - [select for diffs], Sat Sep 21 20:35:52 2019 UTC (4 years, 6 months ago) by sevan
Branch: MAIN
Changes since 1.13: +1 -2 lines
Diff to previous 1.13 (colored)

default policy is to blockall

Revision 1.13 / (download) - annotate - [select for diffs], Sat Sep 21 20:31:31 2019 UTC (4 years, 6 months ago) by sevan
Branch: MAIN
Changes since 1.12: +11 -11 lines
Diff to previous 1.12 (colored)

Drop the final keyword to use the default policy of last matching rule wins

Revision 1.6.26.1 / (download) - annotate - [select for diffs], Mon Jun 10 22:05:38 2019 UTC (4 years, 10 months ago) by christos
Branch: phil-wifi
Changes since 1.6: +4 -4 lines
Diff to previous 1.6 (colored)

Sync with HEAD

Revision 1.12 / (download) - annotate - [select for diffs], Thu Apr 11 10:17:21 2019 UTC (5 years ago) by sevan
Branch: MAIN
CVS Tags: phil-wifi-20190609, netbsd-9-base
Branch point for: netbsd-9
Changes since 1.11: +2 -2 lines
Diff to previous 1.11 (colored)

s/ifnets/ifaddrs

Revision 1.11 / (download) - annotate - [select for diffs], Thu Apr 11 09:59:24 2019 UTC (5 years ago) by sevan
Branch: MAIN
Changes since 1.10: +2 -7 lines
Diff to previous 1.10 (colored)

Revert previous & just use the inets function to handle both address families.
Heads up by <leot>

Revision 1.10 / (download) - annotate - [select for diffs], Wed Apr 10 23:14:46 2019 UTC (5 years ago) by sevan
Branch: MAIN
Changes since 1.9: +3 -3 lines
Diff to previous 1.9 (colored)

typo

Revision 1.9 / (download) - annotate - [select for diffs], Wed Apr 10 23:13:02 2019 UTC (5 years ago) by sevan
Branch: MAIN
Changes since 1.8: +7 -2 lines
Diff to previous 1.8 (colored)

Use a separate variable for IPv6.
Found with npfctl validate.

Revision 1.8 / (download) - annotate - [select for diffs], Wed Apr 10 23:00:43 2019 UTC (5 years ago) by sevan
Branch: MAIN
Changes since 1.7: +3 -3 lines
Diff to previous 1.7 (colored)

Switch out deprecated keywords.
Found with npfctl validate.

Revision 1.6.24.1 / (download) - annotate - [select for diffs], Thu Sep 6 06:55:21 2018 UTC (5 years, 7 months ago) by pgoyette
Branch: pgoyette-compat
CVS Tags: pgoyette-compat-merge-20190127
Changes since 1.6: +1 -1 lines
Diff to previous 1.6 (colored) next main 1.7 (colored)

Sync with HEAD

Resolve a couple of conflicts (result of the uimin/uimax changes)

Revision 1.7 / (download) - annotate - [select for diffs], Mon Aug 20 20:45:52 2018 UTC (5 years, 7 months ago) by rjs
Branch: MAIN
CVS Tags: pgoyette-compat-20190127, pgoyette-compat-20190118, pgoyette-compat-1226, pgoyette-compat-1126, pgoyette-compat-1020, pgoyette-compat-0930, pgoyette-compat-0906
Changes since 1.6: +1 -1 lines
Diff to previous 1.6 (colored)

Fix cvs id.

Revision 1.2.2.2 / (download) - annotate - [select for diffs], Wed Aug 20 00:02:30 2014 UTC (9 years, 7 months ago) by tls
Branch: tls-maxphys
Changes since 1.2.2.1: +11 -11 lines
Diff to previous 1.2.2.1 (colored) to branchpoint 1.2 (colored) next main 1.3 (colored)

Rebase to HEAD as of a few days ago.

Revision 1.2.6.4 / (download) - annotate - [select for diffs], Thu May 22 11:37:45 2014 UTC (9 years, 10 months ago) by yamt
Branch: yamt-pagecache
Changes since 1.2.6.3: +11 -11 lines
Diff to previous 1.2.6.3 (colored) to branchpoint 1.2 (colored) next main 1.3 (colored)

sync with head.

for a reference, the tree before this commit was tagged
as yamt-pagecache-tag8.

this commit was splitted into small chunks to avoid
a limitation of cvs.  ("Protocol error: too many arguments")

Revision 1.6 / (download) - annotate - [select for diffs], Sat Feb 8 01:32:19 2014 UTC (10 years, 2 months ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base9, tls-maxphys-base, tls-earlyentropy-base, tls-earlyentropy, riastradh-xf86-video-intel-2-7-1-pre-2-21-15, riastradh-drm2-base3, prg-localcount2-base3, prg-localcount2-base2, prg-localcount2-base1, prg-localcount2-base, prg-localcount2, phil-wifi-base, pgoyette-localcount-base, pgoyette-localcount-20170426, pgoyette-localcount-20170320, pgoyette-localcount-20170107, pgoyette-localcount-20161104, pgoyette-localcount-20160806, pgoyette-localcount-20160726, pgoyette-localcount, pgoyette-compat-base, pgoyette-compat-0728, pgoyette-compat-0625, pgoyette-compat-0521, pgoyette-compat-0502, pgoyette-compat-0422, pgoyette-compat-0415, pgoyette-compat-0407, pgoyette-compat-0330, pgoyette-compat-0322, pgoyette-compat-0315, perseant-stdc-iso10646-base, perseant-stdc-iso10646, netbsd-8-base, netbsd-8-2-RELEASE, netbsd-8-1-RELEASE, netbsd-8-1-RC1, netbsd-8-0-RELEASE, netbsd-8-0-RC2, netbsd-8-0-RC1, netbsd-8, netbsd-7-nhusb-base-20170116, netbsd-7-nhusb-base, netbsd-7-nhusb, netbsd-7-base, netbsd-7-2-RELEASE, netbsd-7-1-RELEASE, netbsd-7-1-RC2, netbsd-7-1-RC1, netbsd-7-1-2-RELEASE, netbsd-7-1-1-RELEASE, netbsd-7-1, netbsd-7-0-RELEASE, netbsd-7-0-RC3, netbsd-7-0-RC2, netbsd-7-0-RC1, netbsd-7-0-2-RELEASE, netbsd-7-0-1-RELEASE, netbsd-7-0, netbsd-7, matt-nb8-mediatek-base, matt-nb8-mediatek, localcount-20160914, bouyer-socketcan-base1, bouyer-socketcan-base, bouyer-socketcan
Branch point for: phil-wifi, pgoyette-compat
Changes since 1.5: +8 -8 lines
Diff to previous 1.5 (colored)

Sync some NPF config examples with the reality.

Revision 1.5 / (download) - annotate - [select for diffs], Fri Sep 20 17:51:04 2013 UTC (10 years, 6 months ago) by spz
Branch: MAIN
Changes since 1.4: +4 -4 lines
Diff to previous 1.4 (colored)

track syntax change in npf.conf regarding group

Revision 1.2.2.1 / (download) - annotate - [select for diffs], Mon Feb 25 00:28:12 2013 UTC (11 years, 1 month ago) by tls
Branch: tls-maxphys
Changes since 1.2: +13 -14 lines
Diff to previous 1.2 (colored)

resync with head

Revision 1.2.6.3 / (download) - annotate - [select for diffs], Wed Jan 16 05:32:35 2013 UTC (11 years, 2 months ago) by yamt
Branch: yamt-pagecache
CVS Tags: yamt-pagecache-tag8
Changes since 1.2.6.2: +13 -14 lines
Diff to previous 1.2.6.2 (colored) to branchpoint 1.2 (colored)

sync with (a bit old) head

Revision 1.2.4.4 / (download) - annotate - [select for diffs], Sat Dec 15 23:31:07 2012 UTC (11 years, 4 months ago) by riz
Branch: netbsd-6
CVS Tags: netbsd-6-1-RELEASE, netbsd-6-1-RC4, netbsd-6-1-RC3, netbsd-6-1-RC2, netbsd-6-1-RC1, netbsd-6-1-5-RELEASE, netbsd-6-1-4-RELEASE, netbsd-6-1-3-RELEASE, netbsd-6-1-2-RELEASE, netbsd-6-1-1-RELEASE, netbsd-6-1
Changes since 1.2.4.3: +4 -8 lines
Diff to previous 1.2.4.3 (colored) to branchpoint 1.2 (colored) next main 1.3 (colored)

Pull up following revision(s) (requested by rmind in ticket #744):
	usr.sbin/npf/npfctl/npf.conf.5: revision 1.25
	share/examples/npf/host-npf.conf: revision 1.4
	share/examples/npf/soho_gw-npf.conf: revision 1.4
Fix syntax error in the example, fix one rule and G/C &quot;rid&quot; procedure.
- npf.conf(5): fix of the example config.
- Mention npf_ext_log in a comment.

Revision 1.2.4.3 / (download) - annotate - [select for diffs], Tue Dec 11 04:31:53 2012 UTC (11 years, 4 months ago) by riz
Branch: netbsd-6
Changes since 1.2.4.2: +12 -9 lines
Diff to previous 1.2.4.2 (colored) to branchpoint 1.2 (colored)

Pull up following revision(s) (requested by rmind in ticket #736):
	usr.sbin/npf/npfctl/npf_parse.y: revision 1.17
	sys/net/npf/npf_tableset.c: revision 1.16
	usr.sbin/npf/npfctl/npfctl.h: revision 1.23
	usr.sbin/npf/npfctl/npf_data.c: revision 1.19
	usr.sbin/npf/npfctl/npf_build.c: revision 1.15
	share/examples/npf/host-npf.conf: revision 1.3
	usr.sbin/npf/npfctl/npf_scan.l: revision 1.9
	share/examples/npf/soho_gw-npf.conf: revision 1.3
	usr.sbin/npf/npfctl/npf_var.h: revision 1.6
	usr.sbin/npf/npfctl/npf.conf.5: revision 1.24
npfctl: extend syntax for extracting interface IP address(es) by the family.
adjust to current npf.conf syntax
npf_table_list: avoid triggering assert on diagnostic.

Revision 1.4 / (download) - annotate - [select for diffs], Sun Dec 9 22:12:26 2012 UTC (11 years, 4 months ago) by rmind
Branch: MAIN
CVS Tags: yamt-pagecache-base8, yamt-pagecache-base7, riastradh-drm2-base2, riastradh-drm2-base1, riastradh-drm2-base, riastradh-drm2, agc-symver-base, agc-symver
Changes since 1.3: +4 -8 lines
Diff to previous 1.3 (colored)

Fix syntax error in the example, fix one rule and G/C "rid" procedure.

Revision 1.3 / (download) - annotate - [select for diffs], Tue Dec 4 18:48:32 2012 UTC (11 years, 4 months ago) by spz
Branch: MAIN
Changes since 1.2: +12 -9 lines
Diff to previous 1.2 (colored)

adjust to current npf.conf syntax

Revision 1.2.8.2 / (download) - annotate - [select for diffs], Tue Nov 20 23:13:36 2012 UTC (11 years, 4 months ago) by matt
Branch: matt-nb6-plus
Changes since 1.2.8.1: +62 -0 lines
Diff to previous 1.2.8.1 (colored) to branchpoint 1.2 (colored) next main 1.3 (colored)

Add missing files.

Revision 1.2.6.2 / (download) - annotate - [select for diffs], Tue Oct 30 18:59:35 2012 UTC (11 years, 5 months ago) by yamt
Branch: yamt-pagecache
Changes since 1.2.6.1: +62 -0 lines
Diff to previous 1.2.6.1 (colored) to branchpoint 1.2 (colored)

sync with head

Revision 1.2.4.2 / (download) - annotate - [select for diffs], Mon Oct 1 20:15:34 2012 UTC (11 years, 6 months ago) by riz
Branch: netbsd-6
CVS Tags: netbsd-6-0-RELEASE, netbsd-6-0-6-RELEASE, netbsd-6-0-5-RELEASE, netbsd-6-0-4-RELEASE, netbsd-6-0-3-RELEASE, netbsd-6-0-2-RELEASE, netbsd-6-0-1-RELEASE, netbsd-6-0, matt-nb6-plus-nbase
Changes since 1.2.4.1: +62 -0 lines
Diff to previous 1.2.4.1 (colored) to branchpoint 1.2 (colored)

Pull up following revision(s) (requested by rmind in ticket #584):
	share/examples/npf/treetablefile: revision 1.1
	share/examples/npf/Makefile: revision 1.1
	distrib/sets/lists/base/mi: revision 1.1003
	share/examples/npf/host-npf.conf: revision 1.2
	share/examples/Makefile: revision 1.21
	share/examples/npf/soho_gw-npf.conf: revision 1.1
	etc/mtree/NetBSD.dist.base: revision 1.104
	share/examples/npf/soho_gw-npf.conf: revision 1.2
	share/examples/npf/hashtablefile: revision 1.1
the example from the man page, with a few extra comments
add id string, fix comments
actually install the new npf examples
add examples for a hash table file and a tree table file
add an ID string to host-npf.conf

Revision 1.2.8.1, Tue Aug 21 08:25:21 2012 UTC (11 years, 7 months ago) by matt
Branch: matt-nb6-plus
Changes since 1.2: +0 -62 lines
FILE REMOVED

file soho_gw-npf.conf was added on branch matt-nb6-plus on 2012-11-20 23:13:36 +0000

Revision 1.2.6.1, Tue Aug 21 08:25:21 2012 UTC (11 years, 7 months ago) by yamt
Branch: yamt-pagecache
Changes since 1.2: +0 -62 lines
FILE REMOVED

file soho_gw-npf.conf was added on branch yamt-pagecache on 2012-10-30 18:59:35 +0000

Revision 1.2.4.1, Tue Aug 21 08:25:21 2012 UTC (11 years, 7 months ago) by riz
Branch: netbsd-6
Changes since 1.2: +0 -62 lines
FILE REMOVED

file soho_gw-npf.conf was added on branch netbsd-6 on 2012-10-01 20:15:34 +0000

Revision 1.2 / (download) - annotate - [select for diffs], Tue Aug 21 08:25:21 2012 UTC (11 years, 7 months ago) by spz
Branch: MAIN
CVS Tags: yamt-pagecache-base6
Branch point for: yamt-pagecache, tls-maxphys, netbsd-6, matt-nb6-plus
Changes since 1.1: +5 -3 lines
Diff to previous 1.1 (colored)

add id string, fix comments

Revision 1.1 / (download) - annotate - [select for diffs], Tue Aug 21 06:54:39 2012 UTC (11 years, 7 months ago) by spz
Branch: MAIN

the example from the man page, with a few extra comments

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>