system/freebsd-src
system/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src synced 2024-09-23 02:04:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
freebsd-src/etc
History
Paolo Pisati ff2f6fe80f Summer of Code 2005: improve libalias - part 2 of 2 
With the second (and last) part of my previous Summer of Code work, we get:

-ipfw's in kernel nat

-redirect_* and LSNAT support

General information about nat syntax and some examples are available
in the ipfw (8) man page. The redirect and LSNAT syntax are identical
to natd, so please refer to natd (8) man page.

To enable in kernel nat in rc.conf, two options were added:

o firewall_nat_enable: equivalent to natd_enable

o firewall_nat_interface: equivalent to natd_interface

Remember to set net.inet.ip.fw.one_pass to 0, if you want the packet
to continue being checked by the firewall ruleset after being
(de)aliased.

NOTA BENE: due to some problems with libalias architecture, in kernel
nat won't work with TSO enabled nic, thus you have to disable TSO via
ifconfig (ifconfig foo0 -tso).

Approved by: glebius (mentor)
2006-12-29 21:59:17 +00:00
..
bluetooth Correct BD_ADDR entry for "Dummy" device in the default hcsecd.conf. 2006-05-18 17:53:49 +00:00
defaults Add auditd_program variable to defaults, in order to make it more clear 2006-11-06 15:11:24 +00:00
etc.amd64 Add dumb console driver and related bits. 2003-10-24 15:44:10 +00:00
etc.arm Add ttyu0 as a serial console, as we're using the uart(4) driver on arm. 2004-09-24 12:51:15 +00:00
etc.i386 Add dumb console driver and related bits. 2003-10-24 15:44:10 +00:00
etc.ia64 turn off getty(8) on ttyv[0-7]. We don't support syscons on ia64 and 2004-10-17 22:20:39 +00:00
etc.powerpc Comment out ofw_console 'screen' entry and zs tty entries. 2005-09-10 22:46:03 +00:00
etc.sparc64 Remove last vestiges of sab(4). 2006-04-25 19:43:53 +00:00
gss Add a new extensible GSS-API layer which can support GSS-API plugins, 2005-12-29 14:40:22 +00:00
isdn Two years ago, in rev. 1.12, a typo slipped in etc/isdn/Makefile: 2006-03-07 09:53:11 +00:00
mail Finish adding _dhcp user. 2005-06-07 03:41:20 +00:00
mtree Move npe.4 to a machine specific manpage subdirectory. 2006-12-05 16:57:10 +00:00
namedb In accordance with my intentions announced (and not objected to) 2005-09-05 13:42:22 +00:00
pam.d Remove rexecd(8), a server that implements a particularly insecure 2005-06-10 20:52:36 +00:00
periodic The kvm_mkdb(8) is long dead. 2006-08-29 08:49:58 +00:00
ppp Catch up with PHK's sio(4) cuaa->cuad rework [sys/dev/sio/sio.c rev. 1.456]. 2004-11-19 17:12:56 +00:00
rc.d Add "nojail" keyword to prevent spurious error messages. 2006-12-29 15:56:21 +00:00
root - Use absolute path for hostname(1) 2004-04-01 19:28:00 +00:00
sendmail Use new OSTYPE(freebsd6). 2005-06-14 02:25:17 +00:00
amd.map Switch default proto to TCP. 2006-11-06 01:42:11 +00:00
apmd.conf Use separate events for resume from standby and suspend in the apm(4) 2003-12-30 17:40:28 +00:00
auth.conf auth.conf seems to be being gradually subsumed by user classes 2003-07-28 02:28:51 +00:00
cached.conf - Extend the nsswitch to support Services, Protocols and Rpc 2006-04-28 12:03:38 +00:00
crontab Clarify adjkerntz(8) note and use complete sentences in comments. 2002-11-22 16:13:39 +00:00
csh.cshrc
csh.login Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00
csh.logout
devd.conf Announce all interfaces to devd on attach/detach. This adds a new devctl 2006-06-01 00:41:07 +00:00
devfs.conf Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00
dhclient.conf
disktab Replace duplicate and not quite accurate capabilities 2006-10-14 16:39:03 +00:00
fbtab
freebsd-update.conf Add FreeBSD Update 2.0 client code. The build code is in the projects 2006-08-31 09:51:34 +00:00
ftpusers Finish adding _dhcp user. 2005-06-07 03:41:20 +00:00
gettytab Add autologin entries (al.NNN) for higher console speeds. 2006-04-11 09:54:23 +00:00
group Assign gid 77 to audit instead of gid 73. The ports group list did not 2006-02-05 19:34:09 +00:00
hosts Re-add information for applying for IP space from a registry since that 2003-01-28 21:29:23 +00:00
hosts.allow Comment out lines that use example addresses and example.com names so 2006-08-29 09:20:48 +00:00
hosts.equiv
hosts.lpd
inetd.conf Re-add lukemftpd. It has: PAM, MAC, per-class nologin files, 2006-08-31 17:15:10 +00:00
libalias.conf Fix a regression: let natd load libalias modules before /usr is mounted 2006-10-08 14:02:00 +00:00
login.access Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00
login.conf Add a short description of how a literal colon ':' can be inlined in the 2005-08-31 15:02:11 +00:00
mac.conf Add "socket" type to the list of default object types, and by 2003-11-15 02:08:01 +00:00
Makefile Summer of Code 2005: improve libalias - part 1 of 2 2006-09-26 23:26:53 +00:00
man.alias
master.passwd Add _dhcp user/group as required by the OpenBSD dhclient. 2005-06-06 20:19:56 +00:00
minfree
motd s/man page/manual page/, to make the default announcement 2003-07-03 06:06:09 +00:00
netconfig Change the name for the local unix-socket based protocol 2002-12-16 22:24:26 +00:00
netstart Remove reference to no longer existant /etc/rc.d/pccard. 2006-05-30 02:10:01 +00:00
network.subr Do not try to rtsol on pflog or pfsync devices. 2006-10-29 13:29:49 +00:00
networks
newsyslog.conf - Update etc/rc.d/newsyslog to FreeBSD standards and install it. 2005-03-02 00:40:55 +00:00
nls.alias Old-promised removing of deprecated locale names 2003-06-10 01:22:30 +00:00
nscd.conf - Extend the nsswitch to support Services, Protocols and Rpc 2006-04-28 12:03:38 +00:00
nsmb.conf
nsswitch.conf Install /etc/nsswitch.conf statically rather than generating it at 2006-05-03 15:14:47 +00:00
opieaccess Back out previous commit now that pam_opieaccess(8) has an allow_local 2003-02-16 13:04:27 +00:00
pccard_ether Disable IPv6 configuration for interfaces in pccard_ether_start(). 2006-12-08 15:48:42 +00:00
pf.conf Document the user/group LOR in our sample pf.conf 2006-01-27 17:16:20 +00:00
pf.os Synchronize pf.os with OpenBSD. 2006-10-23 05:09:44 +00:00
phones Kill the default phone numbers. 2006-08-31 21:13:12 +00:00
portsnap.conf Add a warning pointing out that incomplete ports trees are not 2006-01-18 03:40:57 +00:00
printcap Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00
profile Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00
protocols Add CARP (Common Address Redundancy Protocol), which allows multiple 2005-02-22 13:04:05 +00:00
rc Attempt to make running the new rc in a jail more automatic by 2006-02-20 21:54:30 +00:00
rc.bsdextended Clean up, comment out non-base utilities, fix up comments. 2006-04-22 11:02:44 +00:00
rc.firewall Summer of Code 2005: improve libalias - part 2 of 2 2006-12-29 21:59:17 +00:00
rc.firewall6 Move etc/rc.firewall6 to ipfw2+v6, update related rc.d and periodic scripts. 2006-05-12 19:17:34 +00:00
rc.initdiskless - put some common code in a function handle_remount(); 2006-12-03 23:50:29 +00:00
rc.resume Fix a usage message. 2003-12-30 17:30:39 +00:00
rc.sendmail Before trying to restart/stop the MTA or MSP queue runner, make sure 2003-10-19 00:31:50 +00:00
rc.shutdown Introduce startup scripts from the local_startup directories to 2005-12-02 20:06:07 +00:00
rc.subr MFp4: 2006-12-27 13:15:33 +00:00
rc.suspend Make sure pid file creation doesn't complain if it can't create the file. 2004-01-21 03:03:40 +00:00
remote Reflect sio driver device name change cuaa -> cuad 2004-10-13 08:32:34 +00:00
rpc Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00
services o Add IANA assigned InterBase Database Remote Protocol 3050/tcp/udp. 2006-01-25 17:37:15 +00:00
shells
snmpd.config Add a (disabled) configuration line to enable snmp_bridge(3) module. 2006-12-20 22:10:34 +00:00
sysctl.conf Rework the wording of the comment for the security.bsd.see_other_uids 2003-03-13 18:43:50 +00:00
syslog.conf Fix a terrible braino in last commit. Put kern.debug back to /var/log/messages 2005-03-12 12:31:16 +00:00
termcap.small Removed whitespace at BOF, EOL & EOF. 2004-06-06 11:46:29 +00:00