diff options
| author | Kristof Provost <kp@FreeBSD.org> | 2021-05-03 13:35:50 +0000 |
|---|---|---|
| committer | Kristof Provost <kp@FreeBSD.org> | 2021-05-07 20:13:31 +0000 |
| commit | 93abcf17e6cf3c1cd8511c8ff7a8bf20b2d76367 (patch) | |
| tree | 07c38234b97ecdc47886c6aa33a8655be9d8fec5 /sys/net/pfvar.h | |
| parent | c2e11d81d295f7d55ac8b6858b09d8fa123cbfe8 (diff) | |
| download | src-93abcf17e6cf3c1cd8511c8ff7a8bf20b2d76367.tar.gz src-93abcf17e6cf3c1cd8511c8ff7a8bf20b2d76367.zip | |
pf: Support killing 'matching' states
Optionally also kill states that match (i.e. are the NATed state or
opposite direction state entry for) the state we're killing.
See also https://redmine.pfsense.org/issues/8555
Submitted by: Steven Brown
Reviewed by: bcr (man page)
Obtained from: https://github.com/pfsense/FreeBSD-src/pull/11/
MFC after: 1 week
Sponsored by: Rubicon Communications, LLC ("Netgate")
Differential Revision: https://reviews.freebsd.org/D30092
Diffstat (limited to 'sys/net/pfvar.h')
| -rw-r--r-- | sys/net/pfvar.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/sys/net/pfvar.h b/sys/net/pfvar.h index b010f0fb3d80..51c51a82b36d 100644 --- a/sys/net/pfvar.h +++ b/sys/net/pfvar.h @@ -1085,6 +1085,7 @@ struct pf_kstate_kill { char psk_ifname[IFNAMSIZ]; char psk_label[PF_RULE_LABEL_SIZE]; u_int psk_killed; + bool psk_kill_match; }; #endif |