17 Commits

Author	SHA1	Message	Date
Martin Willi	80b56fb468	vici: Support the close_action keyword, as we have it documented	2014-05-14 16:26:53 +02:00
Martin Willi	afb7ef4908	vici: Properly filter by CHILD_SA name while undoing start actions	2014-05-07 14:13:39 +02:00
Martin Willi	682c9966fa	vici: Fallback to socket listening port if no explicit local port specified	2014-05-07 14:13:39 +02:00
Martin Willi	dffd60083d	vici: Support a "mtu" value for the tfc_padding option	2014-05-07 14:13:39 +02:00
Martin Willi	5619d40613	vici: Handle the "trap" action as an alias for "route"	2014-05-07 14:13:39 +02:00
Martin Willi	f3e1ec4a85	vici: Have an explicit "relaxed" keyword for the default revocation policy	2014-05-07 14:13:38 +02:00
Martin Willi	585814470d	vici: Use a default child rekey time of 1 hour	2014-05-07 14:13:38 +02:00
Martin Willi	046befeca5	vici: Use a default IKE rekey time of 4 hours	2014-05-07 14:13:38 +02:00
Martin Willi	afb8f492ef	vici: Support referencing external named pools for peer configs	2014-05-07 14:13:37 +02:00
Martin Willi	3ad9c34c92	vici: Actually add configured virtual IPs to peer config	2014-05-07 14:13:37 +02:00
Martin Willi	e651afe67b	vici: Use a default rand_time of the difference between hard and soft lifetimes	2014-05-07 14:13:37 +02:00
Martin Willi	c520510508	vici: Use a default hard lifetime of 110% of the soft lifetime	2014-05-07 14:13:37 +02:00
Martin Willi	7de35b7ff6	vici: Perform specified start_action on connection load, undo it on unload	2014-05-07 14:13:37 +02:00
Martin Willi	b57739f721	vici: Support pinning end entity and CA certificates to connections	2014-05-07 14:13:37 +02:00
Martin Willi	e6e975ff9d	vici: Support missing groups option in auth config	2014-05-07 14:13:37 +02:00
Martin Willi	501ddf127b	vici: Add unload-conn and get-conns commands to manage loaded connections	2014-05-07 14:13:36 +02:00
Martin Willi	b3d8bd8d26	vici: Add backend providing in-memory connections	2014-05-07 14:13:36 +02:00