aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Change behavior of responder during roaming.Tobias Brunner2010-10-121-16/+17
| | | | | | If the current source address is not available anymore, the responder uses ike_mobike_t.roam, thus, uses multiple address combinations when trying to notify the initiator.
* Allow responder to use ike_mobike_t.roam.Tobias Brunner2010-10-121-1/+7
| | | | After getting a response the responder updates the IPsec SAs.
* Send list of additional addresses even if current path is still valid.Tobias Brunner2010-10-121-0/+11
|
* Extracted path checking in ike_sa_t.roam into separate functions.Tobias Brunner2010-10-121-46/+68
|
* Added support for responders to change their address via MOBIKE.Tobias Brunner2010-10-121-0/+20
| | | | | | | If the original responder updates its list of additional addresses we check if the remote endpoint changed and update the IPsec SAs if it did, as we assume the original address became unavailable and the responder already updated the SAs on its side.
* Explicitly configure MOBIKE tasks to update the list of additional addresses.Tobias Brunner2010-10-123-2/+15
|
* Improved check for first IKE_AUTH message in ike_mobike task.Tobias Brunner2010-10-121-3/+6
| | | | | If the original responder initiated a MOBIKE exchange, the previous check was not always correct.
* Migrated ike_mobike task to INIT/METHOD macros.Tobias Brunner2010-10-121-67/+46
|
* Simplified apply_port function in mobike task.Tobias Brunner2010-10-121-16/+9
|
* Do not fire roam events based on local route changes.Tobias Brunner2010-10-121-2/+3
| | | | | These kernel events are triggered on address changes, which is problematic when deleting virtual IP addresses.
* If a changed route has no src, try to find it via interface.Tobias Brunner2010-10-121-37/+48
|
* Get source address from interface if the route does not provide one.Tobias Brunner2010-10-121-2/+49
|
* Do not update hosts based on retransmitted messages.Tobias Brunner2010-10-122-15/+23
|
* Do not update remote host if we are behind a NAT.Tobias Brunner2010-10-121-4/+2
|
* scenarios without RADIUS server can use default iptables scriptAndreas Steffen2010-10-112-168/+0
|
* fixed some evaltest.dat filesAndreas Steffen2010-10-113-5/+5
|
* added ikev2/rw-eap-tnc-block scenarioAndreas Steffen2010-10-1120-0/+269
|
* added eap-radius-filter_id option to strongswan.confAndreas Steffen2010-10-111-0/+13
|
* updated keyexchange entry in ipsec.conf.5 man pageAndreas Steffen2010-10-111-3/+6
|
* updated strongswan.confAndreas Steffen2010-10-111-4/+10
|
* explicit ikev1 key exchange for ikev1/esp-alg-null scenarioAndreas Steffen2010-10-092-0/+2
|
* fixed typoAndreas Steffen2010-10-091-1/+1
|
* *** HISTORICAL MOMENT: IKEv2 becomes the default! ***Andreas Steffen2010-10-092-2/+2
|
* define explicit IKEv1 key exchange mode IIAndreas Steffen2010-10-09136-0/+136
|
* use DBG_TNC for TNC debugging outputAndreas Steffen2010-10-0913-28/+34
|
* changed filter attribute from access to allowAndreas Steffen2010-10-094-6/+6
|
* added ikev2/rw-eap-tnc scenarioAndreas Steffen2010-10-0920-0/+286
|
* TNCCS debug cosmeticsAndreas Steffen2010-10-091-4/+4
|
* revert to standard TNCC/TNCS Initialization functionAndreas Steffen2010-10-092-17/+2
|
* implemented TNC isolation via group membershipsAndreas Steffen2010-10-091-6/+33
|
* implemented a makeshift non-scalable send bufferAndreas Steffen2010-10-081-25/+82
|
* imc/imv cosmeticsAndreas Steffen2010-10-082-4/+7
|
* fixed notationAndreas Steffen2010-10-071-2/+2
|
* created tnc-imc and tnc-imv pluginsAndreas Steffen2010-10-0716-47/+365
|
* deactivate start_phase2_tnc flag after startAndreas Steffen2010-10-071-1/+1
|
* added server side support for EAP-TNCAndreas Steffen2010-10-071-2/+28
|
* Show result of RADIUS authentication along with EAP identityMartin Willi2010-10-071-5/+6
|
* added --debug-tls to charon usage() functionAndreas Steffen2010-10-071-1/+1
|
* define explicit IKEv1 key exchange modeAndreas Steffen2010-10-0761-1/+61
|
* host venus is used in ikev2/rw-eap-tnc-radius scenarioAndreas Steffen2010-10-061-2/+2
|
* added ikev2/rw-eap-tnc-radius-block scenarioAndreas Steffen2010-10-0630-0/+536
|
* added tnccs-11 plugin options to strongswan.confAndreas Steffen2010-10-061-1/+7
|
* version bump to 4.5.0dr5Andreas Steffen2010-10-061-1/+1
|
* configure tnc_config path and preferred_language via strongswan.confAndreas Steffen2010-10-051-2/+8
|
* created hull for TNCCS 2.0 pluginAndreas Steffen2010-10-057-0/+260
|
* use group membership to implement access/isolate redirection in filter-based ↵Andreas Steffen2010-10-051-4/+14
| | | | TNC scenario
* final version of ikev2/rw-eap-tnc-radius scenarioAndreas Steffen2010-10-055-8/+33
|
* fixed typo in image pathAndreas Steffen2010-10-051-1/+1
|
* moved CHILD_SA selection out of attribute loopAndreas Steffen2010-10-051-5/+6
|
* receive name of preferred CHILD_SA via RADIUS Filter-Id attributeAndreas Steffen2010-10-051-0/+59
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-09 11:11:33 +0000