Martin Willi
|
4a6b84a934
|
reintegrated eap-radius branch into trunk
|
2009-03-24 10:24:58 +00:00 |
Tobias Brunner
|
f98cdf7a47
|
adding plugin for EAP-MS-CHAPv2
|
2009-02-18 19:57:15 +00:00 |
Andreas Steffen
|
d487b4b727
|
preliminary support of Mobile IPv6
|
2008-11-11 06:37:37 +00:00 |
Martin Willi
|
1caa265c61
|
a (incomplete) implementation of draft-sheffer-ikev2-gtc-00.txt using PAM
|
2008-08-21 12:10:07 +00:00 |
Andreas Steffen
|
1dec30625e
|
check if parsing of ipsec update was successful
|
2008-07-02 05:51:49 +00:00 |
Tobias Brunner
|
ea0823dffd
|
ECDSA with OpenSSL
|
2008-06-10 09:08:27 +00:00 |
Andreas Steffen
|
77b9c3a214
|
end->srcip string must be removed if it contains %config
|
2008-04-27 11:28:58 +00:00 |
Andreas Steffen
|
937eb2db00
|
fixed memory corruption problem in starter
|
2008-04-27 10:49:31 +00:00 |
Martin Willi
|
3444390241
|
supporting multiple comma seperated subnets in left/rightsubnet definition
e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
|
2008-04-25 12:41:37 +00:00 |
Andreas Steffen
|
f45411c045
|
set long-forgotten DPD defaults
|
2008-04-15 11:27:45 +00:00 |
Martin Willi
|
cdcfe777f4
|
implementation of an CFG attribute framework, currently supporting virtual IPs
updated ipsec.conf sourceip parameter to support
CIDR notatation to serve from a pool
%poolname to query a separate (database?) pool
|
2008-04-09 12:54:47 +00:00 |
Andreas Steffen
|
aa1a730bfb
|
set nexthop default value to 0::0 in IPv6 connections
|
2007-12-19 00:49:32 +00:00 |
Martin Willi
|
0f806802ae
|
implemented Expanded EAP types to support vendor specific methods
|
2007-12-13 17:31:21 +00:00 |
Martin Willi
|
4b403e7672
|
merged EAP-MD5 into trunk
|
2007-12-12 14:29:10 +00:00 |
Andreas Steffen
|
496e76cbdf
|
added RCSID
|
2007-10-08 19:57:54 +00:00 |
Martin Willi
|
f9b8417a7c
|
renamed force_encap to forceencaps (as it is named in openswan)
|
2007-10-02 06:57:58 +00:00 |
Martin Willi
|
9dae1bed00
|
implemented IKEv2 force_encap connection parameter
enforces UDP encapsulation by faking NAT detection payloads
to hurdle restrictive firewalls
|
2007-10-01 12:19:39 +00:00 |
Martin Willi
|
9164e49ac0
|
added mobike=yes|no connection option
yes: include mobike support notifies as initiator
no: only enable mobike as responder when initiator supports it
default: yes
|
2007-08-29 12:11:25 +00:00 |
Andreas Steffen
|
ec11518d1b
|
handle dns lookup failures
|
2007-08-02 18:38:28 +00:00 |
Andreas Steffen
|
ae4388dca0
|
cosmetics
|
2007-07-04 05:42:09 +00:00 |
Andreas Steffen
|
a80521d13e
|
recognize wildcards right=%group and keyingtries=%forever
|
2007-06-27 08:11:08 +00:00 |
Andreas Steffen
|
3f946e1c90
|
support of right=%<FQDN> wildcard
|
2007-06-25 11:28:39 +00:00 |
Andreas Steffen
|
3345c0a1ed
|
make starter behave more gracefully in the presence of non-fatal errors
|
2007-06-25 07:10:23 +00:00 |
Martin Willi
|
b0f24449dd
|
added EAP-SIM authentication
client side only
uses an external SIM reader library specified with SIM_READER_LIB
untested
|
2007-03-13 15:01:02 +00:00 |
Martin Willi
|
c60c7694d2
|
merged tasking branch into trunk
|
2007-02-28 14:04:36 +00:00 |
Andreas Steffen
|
3a5f6dff7a
|
fixed starter crash due to freeing default IPSEC_EAPDIR string
|
2007-02-14 00:56:58 +00:00 |
Martin Willi
|
f27f6296e6
|
merged EAP framework from branch into trunk
includes a lot of other modifications
|
2007-02-12 15:56:47 +00:00 |
Martin Willi
|
af87afed47
|
added config option for BEET mode
|
2007-01-03 13:16:21 +00:00 |
Andreas Steffen
|
fb34660632
|
negated POLICY_REAUTH to POLICY_DONT_REAUTH
|
2006-12-21 20:05:08 +00:00 |
Martin Willi
|
6fe03b0af0
|
implemented reauthentication using the new reauth=yes|no parameter
|
2006-12-19 07:30:07 +00:00 |
Andreas Steffen
|
15b050c945
|
added XAUTH support
|
2006-12-05 23:13:02 +00:00 |
Andreas Steffen
|
0e4d1d05ad
|
added 'modeconfig=pull|push' and 'left|rightnatip' keywords
|
2006-10-25 08:40:34 +00:00 |
Martin Willi
|
ad038f770d
|
changed default algorithms to:
ike: aes128-sha-modp2048
esp: aes128-sha1, 3des-md5
|
2006-06-15 11:01:17 +00:00 |
Andreas Steffen
|
b7f9ca5837
|
added support for leftsendcert= and left|rightca= parameters
|
2006-06-09 05:50:41 +00:00 |
Andreas Steffen
|
fc0afb6810
|
created IPv6 environment
|
2006-06-06 05:41:21 +00:00 |
Martin Willi
|
65cf07ac1d
|
- applied patch from andreas
- added charonstart option to config
- new ikev2 tests for UML
|
2006-05-06 07:09:45 +00:00 |
Martin Willi
|
1029d84d23
|
|
2006-04-28 10:51:19 +00:00 |