From owner-freebsd-net@FreeBSD.ORG  Sat Jan 24 22:47:24 2015
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 0B0BF97C
 for <freebsd-net@freebsd.org>; Sat, 24 Jan 2015 22:47:24 +0000 (UTC)
Received: from phabric-backend.isc.freebsd.org
 (phabric-backend.isc.freebsd.org [IPv6:2001:4f8:3:ffe0:406a:0:50:2])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id E2E63BFB
 for <freebsd-net@freebsd.org>; Sat, 24 Jan 2015 22:47:23 +0000 (UTC)
Received: from phabric-backend.isc.freebsd.org
 (phabric-backend.isc.freebsd.org [127.0.1.5])
 by phabric-backend.isc.freebsd.org (8.14.9/8.14.9) with ESMTP id
 t0OMlNgJ037136
 for <freebsd-net@freebsd.org>; Sat, 24 Jan 2015 22:47:23 GMT
 (envelope-from mat@phabric-backend.isc.freebsd.org)
Received: (from root@localhost)
 by phabric-backend.isc.freebsd.org (8.14.9/8.14.9/Submit) id t0OMlNYE037133;
 Sat, 24 Jan 2015 22:47:23 GMT (envelope-from mat)
Date: Sat, 24 Jan 2015 22:47:23 +0000
To: freebsd-net@freebsd.org
From: "rstone (Ryan Stone)" <phabric-noreply@FreeBSD.org>
Subject: [Differential] [Request,
 23 lines] D1661: Add some security-related config parameters
Message-ID: <differential-rev-PHID-DREV-uordujtwahxd5zz6i3to-req@FreeBSD.org>
X-Priority: 3
Thread-Topic: D1661: Add some security-related config parameters
X-Herald-Rules: none
X-Phabricator-To: <PHID-USER-vtlauz4uwe46gac4fu2j>
X-Phabricator-To: <PHID-USER-gsanmilqmw65clu6stb2>
X-Phabricator-Cc: <PHID-MLST-c3bj6mfydtlqmuethodc>
Thread-Index: MjUxNWUxN2JmMmRmYzQ5MzQyZmZlNzZlOTY2
X-Phabricator-Sent-This-Message: Yes
X-Mail-Transport-Agent: MetaMTA
X-Auto-Response-Suppress: All
X-Phabricator-Mail-Tags: <differential-review-request>, <differential-other>,
 <differential-reviewers>, <differential-cc>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="utf-8"
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Jan 2015 22:47:24 -0000

rstone created this revision.
rstone added a reviewer: jfvogel.
rstone added a subscriber: freebsd-net.

REVISION SUMMARY
  Allow the administrator to prevent VFs from sending packets with
  a source MAC that is not the VF's MAC (anti-spoof).  Default this
  to on.
  
  Allow the administrator to give VFs the ability to override the
  MAC address that was specified at creation time.  By default VFs
  will not be permitted to do this.
  
  Allow the administrator to give the VFs the ability to enter
  promiscuous mode.

REVISION DETAIL
  https://reviews.freebsd.org/D1661

AFFECTED FILES
  sys/dev/ixl/if_ixl.c
  sys/dev/ixl/ixl_pf.h

To: rstone, jfvogel
Cc: freebsd-net