Martin Willi
|
f34ebc845b
|
Add a closeaction ipsec.conf keyword to configure close action
|
2011-06-07 12:07:21 +02:00 |
Martin Willi
|
6367de28ad
|
Added a left/rightcertpolicy keyword to specify certificatePolicy requirements
|
2011-01-07 15:51:35 +01:00 |
Martin Willi
|
6c302616f1
|
Added a tfc ipsec.conf keyword to control Traffic Flow Confidentiality
|
2010-12-20 09:45:39 +01:00 |
Tobias Brunner
|
a0d13f42e6
|
starter: Some whitespace cleanup.
|
2010-09-02 19:04:25 +02:00 |
Tobias Brunner
|
08c0d340b8
|
Moved ipsec_transform_t to kernel_ipsec.h in libhydra.
Because of this libfreeswan, pluto, starter etc. now depend on that
file (and libhydra). This resolved some duplicate declarations.
|
2010-09-02 19:01:25 +02:00 |
Martin Willi
|
64d7b0733f
|
Added support for the ipsec.conf aaa_identity keyword
|
2010-08-31 17:52:52 +02:00 |
Andreas Steffen
|
26c4d0102a
|
configuration of different marks for inbound and outbound direction
|
2010-07-09 09:06:07 +02:00 |
Andreas Steffen
|
ee26c537d7
|
support of xfrm marks for IKEv2
|
2010-07-02 23:46:09 +02:00 |
Andreas Steffen
|
8143f10914
|
introduced xauth_identity keyword
|
2010-05-15 10:18:29 +02:00 |
Reto Buerki
|
2b26a9c30d
|
Add reqid keyword to config connection section.
|
2010-05-04 14:38:34 +02:00 |
Martin Willi
|
da2303ca69
|
Fixed starter left-/rightikeport keyword
|
2010-02-26 11:44:34 +01:00 |
Martin Willi
|
667b73721a
|
Added left-/rightikeport ipsec.conf options to use custom IKE ports
|
2010-02-26 11:44:33 +01:00 |
Martin Willi
|
8015c91cb9
|
Added a ipsec.conf "inactivity" option to configure inactivity timeout for CHILD_SAs
|
2010-01-27 16:05:11 +01:00 |
Andreas Steffen
|
270bb348e3
|
pluto now supports SQL-based virtual IP pools
|
2009-10-14 14:30:14 +02:00 |
Martin Willi
|
7daf5226b7
|
removed trailing spaces ([[:space:]]+$)
|
2009-09-04 13:46:09 +02:00 |
Tobias Brunner
|
ca41aa0602
|
Added keywords for the new lifetime limits to starter.
|
2009-09-01 12:53:44 +02:00 |
Tobias Brunner
|
8c5d72cd0b
|
removing svn keyword $Id$ from all files
|
2009-04-30 13:19:35 +00:00 |
Andreas Steffen
|
3d7a244b54
|
conversion from 8 spaces to 4 spaces per tab
|
2009-04-19 19:16:09 +00:00 |
Martin Willi
|
a44bb9345f
|
merged multi-auth branch back into trunk
|
2009-04-14 10:34:24 +00:00 |
Andreas Steffen
|
d487b4b727
|
preliminary support of Mobile IPv6
|
2008-11-11 06:37:37 +00:00 |
Martin Willi
|
822901061b
|
ported parts of two-sim branch
eap_identity parameter to exchange in eap_identity
some auth_info/peer_cfg refactorings
fixed some bugs, introduced new ones
|
2008-08-22 10:44:51 +00:00 |
Andreas Steffen
|
a50818ed46
|
plutostderrlog parameter now declares a stderr redirection file
|
2008-05-12 10:05:49 +00:00 |
Andreas Steffen
|
9a6d9f10e2
|
support of plutostderrlog keyword
|
2008-05-11 07:59:00 +00:00 |
Andreas Steffen
|
937eb2db00
|
fixed memory corruption problem in starter
|
2008-04-27 10:49:31 +00:00 |
Martin Willi
|
3444390241
|
supporting multiple comma seperated subnets in left/rightsubnet definition
e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
|
2008-04-25 12:41:37 +00:00 |
Tobias Brunner
|
6439267a8c
|
support for hash and URL encoded certificate payloads in charon
|
2008-04-18 11:24:45 +00:00 |
Martin Willi
|
cdcfe777f4
|
implementation of an CFG attribute framework, currently supporting virtual IPs
updated ipsec.conf sourceip parameter to support
CIDR notatation to serve from a pool
%poolname to query a separate (database?) pool
|
2008-04-09 12:54:47 +00:00 |
Andreas Steffen
|
7a9d3ae471
|
support of force_keepalive parameter
|
2008-04-02 18:35:23 +00:00 |
Tobias Brunner
|
dc04b7c743
|
mediation extension adapted to the naming convention of the current version of the draft. note: the external interface (config, autotools) has not yet been changed
|
2008-03-26 18:40:19 +00:00 |
Martin Willi
|
552cc11b1f
|
merged the modularization branch (credentials) back to trunk
|
2008-03-13 14:14:44 +00:00 |
Martin Willi
|
0f806802ae
|
implemented Expanded EAP types to support vendor specific methods
|
2007-12-13 17:31:21 +00:00 |
Andreas Steffen
|
496e76cbdf
|
added RCSID
|
2007-10-08 19:57:54 +00:00 |
Tobias Brunner
|
d5cc175833
|
experimental P2P-NAT-T for IKEv2 merged back from branch
|
2007-10-03 15:10:41 +00:00 |
Andreas Steffen
|
ec11518d1b
|
handle dns lookup failures
|
2007-08-02 18:38:28 +00:00 |
Andreas Steffen
|
e0e6137dd3
|
support of PKCS#11 init arguments required by NSS softoken, patch contributed by Robert Varga
|
2007-07-03 09:26:44 +00:00 |
Andreas Steffen
|
3345c0a1ed
|
make starter behave more gracefully in the presence of non-fatal errors
|
2007-06-25 07:10:23 +00:00 |
Andreas Steffen
|
d0f55e236d
|
support of right|leftallowany flag
|
2007-06-18 17:51:45 +00:00 |
Andreas Steffen
|
4841189b72
|
implementation of strictcrlpolicy=ifuri
|
2007-04-20 11:12:08 +00:00 |
Andreas Steffen
|
113be7f186
|
support of ca info records
|
2007-02-23 15:13:21 +00:00 |
Martin Willi
|
f27f6296e6
|
merged EAP framework from branch into trunk
includes a lot of other modifications
|
2007-02-12 15:56:47 +00:00 |
Andreas Steffen
|
b701b7895b
|
added has_natip flag
|
2006-10-25 08:39:39 +00:00 |
Martin Willi
|
107936f55a
|
added charondebug config parameter to set debug level at startup
|
2006-10-18 11:46:57 +00:00 |
Martin Willi
|
f2c2d395ff
|
- introduced autotools
- first working version
- make dist should work
- things to do:
- UML testing!
- more cleanups
|
2006-05-16 14:24:03 +00:00 |
Martin Willi
|
65cf07ac1d
|
- applied patch from andreas
- added charonstart option to config
- new ikev2 tests for UML
|
2006-05-06 07:09:45 +00:00 |
Martin Willi
|
9820c0e208
|
- applied patch from andreas
- pem loading
- secrets file parsing
- ikev2 testcase
- some other additions here and there
|
2006-05-04 07:55:42 +00:00 |
Martin Willi
|
1029d84d23
|
|
2006-04-28 10:51:19 +00:00 |