Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
c008138e06
NetBSD/usr.sbin/npf/Makefile
rmind 2e6f2099c6 Import NPF - a packet filter. Some features: 
- Designed to be fully MP-safe and highly efficient.

- Tables/IP sets (hash or red-black tree) for high performance lookups.

- Stateful filtering and Network Address Port Translation (NAPT).
  Framework for application level gateways (ALGs).

- Packet inspection engine called n-code processor - inspired by BPF -
  supporting generic RISC-like and specific CISC-like instructions for
  common patterns (e.g. IPv4 address matching).  See npf_ncode(9) manual.

- Convenient userland utility npfctl(8) with npf.conf(8).

NOTE: This is not yet a fully capable alternative to PF or IPFilter.
Further work (support for binat/rdr, return-rst/return-icmp, common ALGs,
state saving/restoring, logging, etc) is in progress.

Thanks a lot to Matt Thomas for various useful comments and code review.
Aye by: board@
2010-08-22 18:56:18 +00:00

6 lines
101 B
Makefile
Raw Blame History

# $NetBSD: Makefile,v 1.1 2010/08/22 18:56:23 rmind Exp $
SUBDIR= npfctl
.include <bsd.subdir.mk>
Reference in New Issue View Git Blame Copy Permalink