| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Merge branch 'multi-cert' | Martin Willi | 2013-03-01 | 1 | -0/+4 |
| |\ | | | | | | | | | Allows the configuration of multiple certificates in leftcert, and select the correct certificate to use based on the received certificate requests. | ||||
| | * | Add ipsec.conf.5 updates regarding multiple certificates in leftcert | Martin Willi | 2013-01-18 | 1 | -0/+4 |
| | | | |||||
| * | | Merge branch 'opaque-ports' | Martin Willi | 2013-03-01 | 1 | -0/+8 |
| |\ \ | | | | | | | | | | | | | Adds a %opaque port option and support for port ranges in left/rightprotoport. Currently not supported by any of our kernel backends. | ||||
| | * | | Document ipsec.conf leftprotoport extensions in manpage | Martin Willi | 2013-02-21 | 1 | -0/+8 |
| | |/ | |||||
| * / | Add ikedscp documentation to ipsec.conf.5 | Martin Willi | 2013-02-06 | 1 | -0/+5 |
| |/ | |||||
| * | Added an option that allows to force IKEv1 fragmentation | Tobias Brunner | 2013-01-12 | 1 | -4/+9 |
| | | |||||
| * | Use a connection specific option to en-/disable IKEv1 fragmentation | Tobias Brunner | 2012-12-24 | 1 | -0/+10 |
| | | |||||
| * | Updated ipsec.conf.5 regarding (CA) certificates loaded from smartcards | Martin Willi | 2012-10-24 | 1 | -5/+7 |
| | | |||||
| * | Add leftcert ipsec.conf.5 documentation about smartcard certificates | Martin Willi | 2012-10-24 | 1 | -0/+12 |
| | | |||||
| * | Add ipsec.conf.5 documentation for explicit PRFs in IKE proposals | Martin Willi | 2012-10-24 | 1 | -7/+17 |
| | | |||||
| * | Update ipsec.conf.5, leftsubnet can handle multiple subnets in IKEv1 with Unity | Martin Willi | 2012-09-18 | 1 | -2/+3 |
| | | |||||
| * | Set AUTH_RULE_IDENTITY_LOOSE for rightid=%<identity> | Tobias Brunner | 2012-09-18 | 1 | -0/+12 |
| | | |||||
| * | Some updates to ipsec.conf(5) man page | Tobias Brunner | 2012-09-12 | 1 | -49/+70 |
| | | |||||
| * | Add uniqueids=never to ignore INITIAL_CONTACT notifies | Tobias Brunner | 2012-09-10 | 1 | -9/+16 |
| | | | | | | | With uniqueids=no the daemon still deletes any existing IKE_SA with the same peer if an INITIAL_CONTACT notify is received. With this new option it also ignores these notifies. | ||||
| * | Merge branch 'multi-vip' | Martin Willi | 2012-08-31 | 1 | -6/+16 |
| |\ | | | | | | | | | | | | | Brings support for multiple virtual IPs and multiple pools in left/rigthsourceip definitions. Also introduces the new left/rightdns options to configure requested DNS server address family and respond with multiple connection specific servers. | ||||
| | * | Updated ipsec.conf.5 with multiple left/rightsourceip support | Martin Willi | 2012-08-30 | 1 | -6/+6 |
| | | | |||||
| | * | Add a description of the leftdns option to ipsec.conf.5 | Martin Willi | 2012-08-21 | 1 | -0/+10 |
| | | | |||||
| * | | Documentation for eap-dynamic added | Tobias Brunner | 2012-08-31 | 1 | -0/+1 |
| |/ | |||||
| * | Added ESP log group for libipsec log messages. | Tobias Brunner | 2012-08-08 | 1 | -1/+2 |
| | | |||||
| * | Add an ipsec.conf leftgroups2 parameter for the second authentication round | Martin Willi | 2012-07-26 | 1 | -0/+6 |
| | | |||||
| * | Some updates in ipsec.conf(5) for 5.0.0 | Tobias Brunner | 2012-06-26 | 1 | -36/+50 |
| | | |||||
| * | added secret as valid authby argument | Andreas Steffen | 2012-06-18 | 1 | -1/+1 |
| | | |||||
| * | Add documentation for signature hash algorithm enforcing to man ipsec.conf | Martin Willi | 2012-06-12 | 1 | -4/+11 |
| | | |||||
| * | starter: Drop support for %defaultroute. | Tobias Brunner | 2012-06-11 | 1 | -16/+2 |
| | | |||||
| * | Updated ipsec.conf(5) to reflect changes to IPComp support. | Tobias Brunner | 2012-05-24 | 1 | -4/+2 |
| | | |||||
| * | Merge branch 'ikev1' | Martin Willi | 2012-05-02 | 1 | -367/+79 |
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/encoding/generator.c src/libcharon/encoding/payloads/notify_payload.c src/libcharon/encoding/payloads/notify_payload.h src/libcharon/encoding/payloads/payload.c src/libcharon/network/receiver.c src/libcharon/sa/authenticator.c src/libcharon/sa/authenticator.h src/libcharon/sa/ikev2/tasks/ike_init.c src/libcharon/sa/task_manager.c src/libstrongswan/credentials/auth_cfg.c | ||||
| | * | Merge branch 'ikev1-clean' into ikev1-master | Martin Willi | 2012-03-20 | 1 | -360/+78 |
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: configure.in man/ipsec.conf.5.in src/libcharon/daemon.c src/libcharon/plugins/eap_ttls/eap_ttls_peer.c src/libcharon/plugins/eap_radius/eap_radius_accounting.c src/libcharon/plugins/eap_radius/eap_radius_forward.c src/libcharon/plugins/farp/farp_listener.c src/libcharon/sa/ike_sa.c src/libcharon/sa/keymat.c src/libcharon/sa/task_manager.c src/libcharon/sa/trap_manager.c src/libstrongswan/plugins/x509/x509_cert.c src/libstrongswan/utils.h Applied lost changes of moved files keymat.c and task_manager.c. Updated listener_t.message hook signature in new plugins. | ||||
| | | * | Updated ipsec.conf man page for the use of IKEv1 with pluto | Martin Willi | 2012-03-20 | 1 | -332/+73 |
| | | | | |||||
| | | * | Dropped support of deprecated authby=eap and eap= options | Martin Willi | 2012-03-20 | 1 | -33/+4 |
| | | | | |||||
| * | | | updated supported EAP methods | Andreas Steffen | 2012-03-30 | 1 | -5/+14 |
| |/ / | |||||
| * | | Added ASN debug group to log low-level encoding/decoding (ASN.1, X.509). | Tobias Brunner | 2011-12-16 | 1 | -1/+1 |
| | | | | | | | | | | | This will allow us to remove quite some clutter from the LIB debug group for higher debug levels. | ||||
| * | | Charon also supports type=passthrough|drop. | Tobias Brunner | 2011-12-14 | 1 | -6/+0 |
| | | | |||||
| * | | Documented xauth_identity in ipsec.conf(5) man page. | Tobias Brunner | 2011-12-14 | 1 | -3/+7 |
| |/ | |||||
| * | Documented the strict flag (!) for ike and esp options in ipsec.conf. | Tobias Brunner | 2011-09-26 | 1 | -8/+38 |
| | | |||||
| * | PTS log group documented in man pages. | Tobias Brunner | 2011-09-12 | 1 | -1/+1 |
| | | |||||
| * | Document charon's default log levels in ipsec.conf(5). | Tobias Brunner | 2011-09-12 | 1 | -4/+6 |
| | | |||||
| * | Fixed common misspellings. | Tobias Brunner | 2011-07-20 | 1 | -2/+2 |
| | | | | | Mostly found by 'codespell'. | ||||
| * | Added documentation and NEWS for closeaction | Martin Willi | 2011-06-07 | 1 | -0/+6 |
| | | |||||
| * | Default value for keyingtries documented properly. | Tobias Brunner | 2011-05-31 | 1 | -2/+2 |
| | | |||||
| * | Note about certificates added to CA section in ipsec.conf man page. | Tobias Brunner | 2011-05-05 | 1 | -2/+5 |
| | | |||||
| * | Updated ipsec.conf.5 with new ESN options | Martin Willi | 2011-04-20 | 1 | -2/+10 |
| | | |||||
| * | Some typos fixed. | Tobias Brunner | 2011-02-07 | 1 | -1/+1 |
| | | |||||
| * | Added support for trustchain key strength checking to rightauth option | Martin Willi | 2011-01-07 | 1 | -2/+7 |
| | | |||||
| * | Added a left/rightcertpolicy keyword to specify certificatePolicy requirements | Martin Willi | 2011-01-07 | 1 | -0/+4 |
| | | |||||
| * | Added a tfc ipsec.conf keyword to control Traffic Flow Confidentiality | Martin Willi | 2010-12-20 | 1 | -0/+7 |
| | | |||||
| * | Changed some minor stuff in ipsec.conf(5) man page. | Tobias Brunner | 2010-10-19 | 1 | -12/+27 |
| | | | | | Also added some "links" to strongswan.conf(5). | ||||
| * | Added accepted values to all options in ipsec.conf(5) man page. | Tobias Brunner | 2010-10-19 | 1 | -129/+110 |
| | | |||||
| * | Removed unsupported options from ipsec.conf(5) man page. | Tobias Brunner | 2010-10-19 | 1 | -55/+0 |
| | | |||||
| * | Fixed SEE ALSO references in main man pages. | Tobias Brunner | 2010-10-19 | 1 | -1/+1 |
| | | |||||
| * | Added notes about expiry and rekey to ipsec.conf(5) man page. | Tobias Brunner | 2010-10-19 | 1 | -5/+83 |
| | | |||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |