Module Name: src
Committed By: christos
Date: Mon Mar 11 00:04:46 UTC 2013
Added Files:
src/usr.sbin/npf/npfctl: todo
Log Message:
my laundry list
To generate a diff of this commit:
cvs rdiff -u -r0 -r1.1 src/usr.sbin/npf/npfctl/todo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Added files:
Index: src/usr.sbin/npf/npfctl/todo
diff -u /dev/null src/usr.sbin/npf/npfctl/todo:1.1
--- /dev/null Sun Mar 10 20:04:46 2013
+++ src/usr.sbin/npf/npfctl/todo Sun Mar 10 20:04:46 2013
@@ -0,0 +1,22 @@
+-- parse "port ftp-data" properly
+-- how to convert other packet filters to npf
+-- have a way to use npflog to log packets to syslog
+-- have a way to match dropped packets to rules
+-- have a way to list the active nat sessions
+-- npfctl start does not load if not loaded. It is not clear you need to
+ reload first. Or if it loads it should print the error messages.
+-- able to specify interfaces before they are created
+-- npfctl validate is not listed in the usage, what else is wrong in doc
+-- docs/examples out of date
+-- npf starts up too late (after traffic can go through)
+-- need libpcap in /
+
+ok npf and dependent modules should autoload automagically as they are used
+ok have a way to register cloners? through a mapping file? consistently naming
+ the cloner modules? if_cloner? Split if_npflog from the ext_log module and
+ added autoloading for cloners.
+ok normalise -> normalize (the official project language is US/English)
+ok modules should move from /usr/lib to /lib
+ok parse dynamic map rule properly inet4($ext_if) does not work
+ok create npflog interface automatically
+ok need to bring interface npflog up
