Martin Willi
2796cf59bc
charon-cmd: Add an --ike-proposal option to specify non-default IKE proposals
2014-02-06 15:57:36 +01:00
Martin Willi
3070697f9f
ike: support multiple addresses, ranges and subnets in IKE address config
...
Replace the allowany semantic by a more powerful subnet and IP range matching.
Multiple addresses, DNS names, subnets and ranges can be specified in a comma
separated list. Initiators ignore the ranges/subnets, responders match
configurations against all addresses, ranges and subnets.
2013-09-04 10:38:37 +02:00
Martin Willi
9aeaa7396e
peer-cfg: add a pull/push mode option to use with mode config
2013-09-04 10:33:37 +02:00
Martin Willi
44bb1dc3da
charon-cmd: add --eap-identity and --xauth-username options
2013-07-29 09:00:49 +02:00
Martin Willi
47ec2e407b
charon-cmd: use a copy of pid in initiate callback
...
When cancelling a connection that gets established, cmd_connection_t gets
freed before terminate() is called. This results in kill()ing invalid PID.
2013-06-20 11:02:28 +02:00
Martin Willi
e044a1a9e5
charon-cmd: add IKEv1 aggressive mode profiles
2013-06-20 11:01:37 +02:00
Tobias Brunner
02116fdc2d
charon-cmd: Add support for PKCS#12 files
2013-05-08 15:02:40 +02:00
Tobias Brunner
6a6d0ea7cd
charon-cmd: --agent optionally takes the path to an ssh-agent socket
...
If not given it is read from the SSH_AUTH_SOCK environment variable.
2013-05-08 12:30:36 +02:00
Tobias Brunner
ee7b73832c
charon-cmd: Add --agent option to authenticate using ssh-agent(1)
...
The socket path is read from the SSH_AUTH_SOCK environment variable.
So using this with sudo might require the -E command line (or an appropriate
sudoers config) to preserve the environment.
2013-05-07 14:08:51 +02:00
Tobias Brunner
4dc50bf9de
charon-cmd: Use loose matching of gateway identity
2013-05-07 13:53:48 +02:00
Martin Willi
68fc0fe32e
charon-cmd: add an option to set a different server identity
2013-05-06 15:54:35 +02:00
Martin Willi
d2e2b9a2da
charon-cmd: add support for different IKEv1/IKEv2 authentication profiles
2013-05-06 15:54:31 +02:00
Martin Willi
8e53682cd9
charon-cmd: add --local/remote-ts options to set traffic selectors
2013-05-06 15:54:27 +02:00
Martin Willi
b48941ae16
charon-cmd: authenticate with EAP if no private key is given
2013-05-06 15:28:27 +02:00
Martin Willi
f0749552a6
charon-cmd: add support for using dynamic ports in charon-cmd
2013-05-06 15:28:26 +02:00
Martin Willi
78d7a0f7e2
charon-cmd: add a connection object and its initiation to charon-cmd
2013-05-06 15:28:26 +02:00