diff options
| author | Martin Willi <martin@revosec.ch> | 2013-12-19 16:55:43 +0100 |
|---|---|---|
| committer | Martin Willi <martin@revosec.ch> | 2014-06-04 16:32:10 +0200 |
| commit | 1678f0a999bed5e486b56824381332a85c505033 (patch) | |
| tree | 86fd3778a77a8dd89fa61672263e1b38f510efa2 /src/libcharon/plugins/kernel_wfp/ipsecdump.c | |
| parent | 1ca2b1615ac633f2608c2a4e9107685ab083f42a (diff) | |
| download | strongswan-1678f0a999bed5e486b56824381332a85c505033.tar.bz2 strongswan-1678f0a999bed5e486b56824381332a85c505033.tar.xz | |
kernel-wfp: Manually create a ProviderContext to attach individual filters
This gives us more flexibility than using the intransparent FwpmIPsecTunnelAdd,
and fixes the issues we have seen with trap policies. Forward filters are
still missing, but required for site-to-site tunnels.
Diffstat (limited to 'src/libcharon/plugins/kernel_wfp/ipsecdump.c')
| -rw-r--r-- | src/libcharon/plugins/kernel_wfp/ipsecdump.c | 12 |
1 files changed, 0 insertions, 12 deletions
diff --git a/src/libcharon/plugins/kernel_wfp/ipsecdump.c b/src/libcharon/plugins/kernel_wfp/ipsecdump.c index ec3c78ea3..55e64fe93 100644 --- a/src/libcharon/plugins/kernel_wfp/ipsecdump.c +++ b/src/libcharon/plugins/kernel_wfp/ipsecdump.c @@ -504,18 +504,6 @@ static char* layer2name(GUID *guid) return NULL; } -const GUID FWPM_CALLOUT_IPSEC_INBOUND_TUNNEL_V4 = { - 0x191a8a46, 0x0bf8, 0x46cf, { 0xb0,0x45,0x4b,0x45,0xdf,0xa6,0xa3,0x24 } -}; -const GUID FWPM_CALLOUT_IPSEC_INBOUND_TUNNEL_V6 = { - 0x80c342e3, 0x1e53, 0x4d6f, { 0x9b,0x44,0x03,0xdf,0x5a,0xee,0xe1,0x54 } -}; -const GUID FWPM_CALLOUT_IPSEC_OUTBOUND_TUNNEL_V4 = { - 0x70a4196c, 0x835b, 0x4fb0, { 0x98,0xe8,0x07,0x5f,0x4d,0x97,0x7d,0x46 } -}; -const GUID FWPM_CALLOUT_IPSEC_OUTBOUND_TUNNEL_V6 = { - 0xf1835363, 0xa6a5, 0x4e62, { 0xb1,0x80,0x23,0xdb,0x78,0x9d,0x8d,0xa6 } -}; const GUID FWPM_CALLOUT_IPSEC_FORWARD_INBOUND_TUNNEL_V4 = { 0x28829633, 0xc4f0, 0x4e66, { 0x87,0x3f,0x84,0x4d,0xb2,0xa8,0x99,0xc7 } }; |