Brendan O'Dea [Tue, 25 Jan 2005 04:38:49 +0000 (04:38 +0000)]
don't send 4 byte header when snooping v6 packets
Brendan O'Dea [Tue, 25 Jan 2005 04:19:04 +0000 (04:19 +0000)]
finish incorporating ipv6 patches
Brendan O'Dea [Thu, 13 Jan 2005 08:42:52 +0000 (08:42 +0000)]
doh
Brendan O'Dea [Thu, 13 Jan 2005 08:26:25 +0000 (08:26 +0000)]
use ctime rather than duration
Brendan O'Dea [Thu, 13 Jan 2005 08:03:04 +0000 (08:03 +0000)]
move duration to before cmd_show_counters
Brendan O'Dea [Thu, 13 Jan 2005 07:57:35 +0000 (07:57 +0000)]
rename sess_count to sess_local, fiddle with packet_limit log output
Brendan O'Dea [Thu, 13 Jan 2005 07:05:56 +0000 (07:05 +0000)]
log CLI connections at 4 from localhost; show last counter reset
Brendan O'Dea [Wed, 12 Jan 2005 05:21:26 +0000 (05:21 +0000)]
fix show counters alignment
Brendan O'Dea [Mon, 10 Jan 2005 08:00:43 +0000 (08:00 +0000)]
fix "clear counters"
Brendan O'Dea [Mon, 10 Jan 2005 07:45:03 +0000 (07:45 +0000)]
missing newline
Brendan O'Dea [Mon, 10 Jan 2005 07:17:37 +0000 (07:17 +0000)]
more DoS prevention: add packet_limit option to apply a hard limit to downstream packets per session
Brendan O'Dea [Fri, 7 Jan 2005 07:19:19 +0000 (07:19 +0000)]
CHAP support from Jordan Hrycaj (work in progress)
Brendan O'Dea [Fri, 7 Jan 2005 07:18:33 +0000 (07:18 +0000)]
CHAP support
Brendan O'Dea [Fri, 7 Jan 2005 07:17:13 +0000 (07:17 +0000)]
CSTAT() adds "call_"; CHAP support
Brendan O'Dea [Fri, 7 Jan 2005 07:15:10 +0000 (07:15 +0000)]
fix format strings; add call_random_data to counters
Brendan O'Dea [Fri, 7 Jan 2005 07:14:14 +0000 (07:14 +0000)]
CSTAT() adds "call_"
Brendan O'Dea [Thu, 6 Jan 2005 02:35:03 +0000 (02:35 +0000)]
add -Wformat-security -Wno-format-zero-length
Brendan O'Dea [Wed, 5 Jan 2005 14:35:01 +0000 (14:35 +0000)]
comment
Brendan O'Dea [Wed, 5 Jan 2005 13:51:26 +0000 (13:51 +0000)]
Add Jordan (chap patches)
Brendan O'Dea [Wed, 5 Jan 2005 13:50:30 +0000 (13:50 +0000)]
use bounds-checking lookup functions for string constants
use random_data() to set radius[].auth
Brendan O'Dea [Wed, 5 Jan 2005 13:45:49 +0000 (13:45 +0000)]
use bounds-checking lookup functions for string constants
replace some magic numbers with enum
Brendan O'Dea [Wed, 5 Jan 2005 13:37:56 +0000 (13:37 +0000)]
use bounds-checking lookup functions for string constants
Brendan O'Dea [Wed, 22 Dec 2004 05:30:58 +0000 (05:30 +0000)]
typo
Brendan O'Dea [Mon, 20 Dec 2004 07:23:41 +0000 (07:23 +0000)]
sanity check that cluster_send_session is not called from a child process
throttle outgoing LASTSEEN packets to at most one per second for a given seq#
Brendan O'Dea [Sat, 18 Dec 2004 01:20:05 +0000 (01:20 +0000)]
start merging Jonathan's IPv6 patches (01-defines, 02-ipv6-cli)
Brendan O'Dea [Fri, 17 Dec 2004 00:28:00 +0000 (00:28 +0000)]
count select_called, multi_read_used and multi_read_exceeded
Brendan O'Dea [Thu, 16 Dec 2004 23:40:30 +0000 (23:40 +0000)]
add counters for select_called, select_ready and select_processed
fix cli_print format strings
Brendan O'Dea [Thu, 16 Dec 2004 08:54:16 +0000 (08:54 +0000)]
missed arg
Brendan O'Dea [Thu, 16 Dec 2004 08:49:52 +0000 (08:49 +0000)]
use standard uintN_t types for portability
Brendan O'Dea [Thu, 16 Dec 2004 03:03:41 +0000 (03:03 +0000)]
cosmetic logging change
Brendan O'Dea [Wed, 15 Dec 2004 03:09:56 +0000 (03:09 +0000)]
allow compilation with BGP unset
Brendan O'Dea [Wed, 15 Dec 2004 03:02:16 +0000 (03:02 +0000)]
remove old cruft
Brendan O'Dea [Wed, 15 Dec 2004 02:56:38 +0000 (02:56 +0000)]
typo
Brendan O'Dea [Wed, 15 Dec 2004 01:04:34 +0000 (01:04 +0000)]
skip where our table version is greater (rather than falling through)
Brendan O'Dea [Mon, 13 Dec 2004 05:27:19 +0000 (05:27 +0000)]
defer shutdown counters for a minute after normal acct dump
Brendan O'Dea [Mon, 13 Dec 2004 05:20:39 +0000 (05:20 +0000)]
typo
Brendan O'Dea [Mon, 13 Dec 2004 05:09:55 +0000 (05:09 +0000)]
make cluster_sockfd non-blocking
Brendan O'Dea [Mon, 13 Dec 2004 05:09:35 +0000 (05:09 +0000)]
don't trample n
Brendan O'Dea [Mon, 13 Dec 2004 02:27:30 +0000 (02:27 +0000)]
retain counters of shutdown sessions to dump once per minute
Brendan O'Dea [Thu, 9 Dec 2004 13:05:00 +0000 (13:05 +0000)]
typo
Brendan O'Dea [Thu, 9 Dec 2004 12:54:03 +0000 (12:54 +0000)]
compress logs
Brendan O'Dea [Thu, 9 Dec 2004 00:53:45 +0000 (00:53 +0000)]
- Use gzip --best for man pages, include pid_file in sample
startup-config (from Jonathan's Debian package patches).
- Read multiple packets off cluster_sockfd as well as udpfd, tunfd in an
attempt to avoid losing the cluster in high load (DoS) conditions.
Brendan O'Dea [Thu, 9 Dec 2004 00:53:14 +0000 (00:53 +0000)]
add pid_file as in Debian package
Brendan O'Dea [Thu, 9 Dec 2004 00:52:35 +0000 (00:52 +0000)]
use gzip --best for man pages
re-order DEFINES to better allow for optional features which add to $(OBJS)
Brendan O'Dea [Thu, 9 Dec 2004 00:50:45 +0000 (00:50 +0000)]
read multiple packets off cluster_sockfd as well as udpfd, tunfd
Brendan O'Dea [Thu, 9 Dec 2004 00:38:44 +0000 (00:38 +0000)]
typo in log message
Brendan O'Dea [Sun, 5 Dec 2004 23:45:04 +0000 (23:45 +0000)]
drop "Session N is closing" message level to 4; don't process PPPIP packets in this state
Brendan O'Dea [Fri, 3 Dec 2004 06:41:11 +0000 (06:41 +0000)]
skip newlines in ringbuffer messages
Brendan O'Dea [Fri, 3 Dec 2004 06:40:02 +0000 (06:40 +0000)]
better cluster master collision resolution
Brendan O'Dea [Wed, 1 Dec 2004 04:44:29 +0000 (04:44 +0000)]
*really* fix
Brendan O'Dea [Wed, 1 Dec 2004 04:36:59 +0000 (04:36 +0000)]
2.0.12 redux
Brendan O'Dea [Wed, 1 Dec 2004 04:35:09 +0000 (04:35 +0000)]
allow in N, out N
Brendan O'Dea [Wed, 1 Dec 2004 04:14:55 +0000 (04:14 +0000)]
release 2.0.12
Brendan O'Dea [Wed, 1 Dec 2004 03:37:20 +0000 (03:37 +0000)]
fix cut-n-paste error
Brendan O'Dea [Wed, 1 Dec 2004 02:52:46 +0000 (02:52 +0000)]
don't send a RADIUS start record when ungardening on shutdown
Brendan O'Dea [Wed, 1 Dec 2004 02:51:06 +0000 (02:51 +0000)]
cosmetic
Brendan O'Dea [Tue, 30 Nov 2004 22:11:29 +0000 (22:11 +0000)]
dropping packets; increase ip_conntrack_max
Brendan O'Dea [Tue, 30 Nov 2004 21:54:23 +0000 (21:54 +0000)]
dropping packets; increase ip_conntrack_max
Brendan O'Dea [Tue, 30 Nov 2004 19:37:46 +0000 (19:37 +0000)]
version bump
Brendan O'Dea [Tue, 30 Nov 2004 19:34:57 +0000 (19:34 +0000)]
*cough*
Brendan O'Dea [Tue, 30 Nov 2004 07:24:38 +0000 (07:24 +0000)]
*** empty log message ***
Brendan O'Dea [Tue, 30 Nov 2004 07:14:45 +0000 (07:14 +0000)]
fix logging of invalid type
Brendan O'Dea [Tue, 30 Nov 2004 06:50:26 +0000 (06:50 +0000)]
more paranoid length checking for RADIUS replies
Brendan O'Dea [Tue, 30 Nov 2004 05:49:57 +0000 (05:49 +0000)]
add THANKS
Brendan O'Dea [Tue, 30 Nov 2004 05:49:47 +0000 (05:49 +0000)]
revise parsing
Brendan O'Dea [Tue, 30 Nov 2004 01:55:28 +0000 (01:55 +0000)]
remove old snoop_{host,port} options
Brendan O'Dea [Tue, 30 Nov 2004 01:35:19 +0000 (01:35 +0000)]
fix byte ordering in log
Brendan O'Dea [Tue, 30 Nov 2004 01:10:44 +0000 (01:10 +0000)]
*** empty log message ***
Brendan O'Dea [Tue, 30 Nov 2004 01:08:21 +0000 (01:08 +0000)]
*** empty log message ***
Brendan O'Dea [Tue, 30 Nov 2004 00:53:08 +0000 (00:53 +0000)]
2.0.9 (again)
Brendan O'Dea [Tue, 30 Nov 2004 00:50:03 +0000 (00:50 +0000)]
copy identifier from request for ConfigNak, ConfigRej; update LCP
header length
Brendan O'Dea [Tue, 30 Nov 2004 00:46:36 +0000 (00:46 +0000)]
ignore lcp:interface-config avpairs when != serv (yuri)
Brendan O'Dea [Mon, 29 Nov 2004 12:36:54 +0000 (12:36 +0000)]
typo
Brendan O'Dea [Mon, 29 Nov 2004 07:56:12 +0000 (07:56 +0000)]
update extended acl syntax
Brendan O'Dea [Mon, 29 Nov 2004 06:30:05 +0000 (06:30 +0000)]
disallow "fragments" on rules with layer 4 matches
Brendan O'Dea [Mon, 29 Nov 2004 06:29:28 +0000 (06:29 +0000)]
update "established", add "fragments"
Brendan O'Dea [Mon, 29 Nov 2004 03:55:19 +0000 (03:55 +0000)]
oops
Brendan O'Dea [Mon, 29 Nov 2004 02:17:17 +0000 (02:17 +0000)]
make "established" a different tcp flag match
add fragment handling
drop IP address from LOG macro (function)
Brendan O'Dea [Sun, 28 Nov 2004 20:09:52 +0000 (20:09 +0000)]
add filtering
Brendan O'Dea [Sun, 28 Nov 2004 02:53:11 +0000 (02:53 +0000)]
update filter refcounts
add cli commands for filtering/unfiltering
Brendan O'Dea [Sat, 27 Nov 2004 21:10:50 +0000 (21:10 +0000)]
filters
Brendan O'Dea [Sat, 27 Nov 2004 20:42:02 +0000 (20:42 +0000)]
parse Filter-Id attributes
Brendan O'Dea [Sat, 27 Nov 2004 20:41:41 +0000 (20:41 +0000)]
allow - in filter names; include in "show session" output
Brendan O'Dea [Sat, 27 Nov 2004 05:19:53 +0000 (05:19 +0000)]
- Revise CCP, send ConfigReq once only.
- Check control serial before clearing window, prevents looping tunnel
setup in some instances.
- Add configuration syntax for adding named access lists (work in progress).
Brendan O'Dea [Thu, 25 Nov 2004 12:46:48 +0000 (12:46 +0000)]
oop
Brendan O'Dea [Thu, 25 Nov 2004 12:41:35 +0000 (12:41 +0000)]
reinstate sendccp as initccp; send only once
Brendan O'Dea [Thu, 25 Nov 2004 02:49:18 +0000 (02:49 +0000)]
continue, not return
Brendan O'Dea [Thu, 25 Nov 2004 02:45:27 +0000 (02:45 +0000)]
- Drop sendccp. If client sends a CCP request for compression just NAK it.
- Don't copy the old buffer into Config{Nak,Rej} LCP responses (oops);
add length checks when appending.
- Have makeppp print a backtrace on overflow.
Brendan O'Dea [Fri, 19 Nov 2004 21:12:03 +0000 (21:12 +0000)]
install nsctl
Brendan O'Dea [Fri, 19 Nov 2004 20:47:31 +0000 (20:47 +0000)]
prepare 2.0.8
Brendan O'Dea [Fri, 19 Nov 2004 07:46:52 +0000 (07:46 +0000)]
*** empty log message ***
Brendan O'Dea [Thu, 18 Nov 2004 16:07:46 +0000 (16:07 +0000)]
doc update
Brendan O'Dea [Thu, 18 Nov 2004 15:55:58 +0000 (15:55 +0000)]
doc update
Brendan O'Dea [Thu, 18 Nov 2004 13:15:28 +0000 (13:15 +0000)]
Allow LCP re-negotiation after connection completes
Brendan O'Dea [Thu, 18 Nov 2004 13:09:47 +0000 (13:09 +0000)]
fix clean target
Brendan O'Dea [Thu, 18 Nov 2004 09:02:29 +0000 (09:02 +0000)]
don't route Framed-IP-Address if contained in a Framed-Route
Brendan O'Dea [Thu, 18 Nov 2004 08:13:49 +0000 (08:13 +0000)]
Fix deletion from linked list.
Brendan O'Dea [Thu, 18 Nov 2004 08:12:55 +0000 (08:12 +0000)]
- fix case where ll_delete removes the last entry
- ll_iterate should pass item->data, not item
Brendan O'Dea [Thu, 18 Nov 2004 06:41:03 +0000 (06:41 +0000)]
pass cluster master state to plugin_control functions
Brendan O'Dea [Thu, 18 Nov 2004 05:45:14 +0000 (05:45 +0000)]
*** empty log message ***