| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | returning reference pointer on get_ref() | Martin Willi | 2008-05-06 | 1 | -7/+3 |
| | | |||||
| * | implemented IKE_SA uniqueness using ipsec.conf uniqueids paramater | Martin Willi | 2008-04-14 | 1 | -1/+27 |
| | | | | | additionally supports a "keep" value to keep the old IKE_SA | ||||
| * | using dpd actions to enforce connection state | Martin Willi | 2008-04-11 | 1 | -34/+3 |
| | | | | | dpd actions a per child-, not peer ike-sa | ||||
| * | implementation of an CFG attribute framework, currently supporting virtual IPs | Martin Willi | 2008-04-09 | 1 | -13/+8 |
| | | | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool | ||||
| * | fixed two other memory leaks | Tobias Brunner | 2008-04-03 | 1 | -1/+1 |
| | | |||||
| * | mediation extension adapted to the naming convention of the current version ↵ | Tobias Brunner | 2008-03-26 | 1 | -5/+5 |
| | | | | | of the draft. note: the external interface (config, autotools) has not yet been changed | ||||
| * | added equals() method to peer_cfg, ike_cfg, proposals, auth_info | Martin Willi | 2008-03-26 | 1 | -0/+10 |
| | | | | | | | allows easier merging of ipsec.conf connections replaced some iterators through enumerators made proposals algorithm_t private using enumerator | ||||
| * | merged the modularization branch (credentials) back to trunk | Martin Willi | 2008-03-13 | 1 | -109/+66 |
| | | |||||
| * | implemented Expanded EAP types to support vendor specific methods | Martin Willi | 2007-12-13 | 1 | -1/+8 |
| | | |||||
| * | implemented RFC4478 (repeated authentication) | Martin Willi | 2007-11-20 | 1 | -21/+23 |
| | | | | | | changed %V printf handler to take a time delta, %#V now takes two arguments | ||||
| * | experimental P2P-NAT-T for IKEv2 merged back from branch | Tobias Brunner | 2007-10-03 | 1 | -1/+38 |
| | | |||||
| * | moved force_encap to ike_config, enables responder to enforce udp encapsulation | Martin Willi | 2007-10-01 | 1 | -10/+1 |
| | | | | | fixed bugs in force_encap code | ||||
| * | implemented IKEv2 force_encap connection parameter | Martin Willi | 2007-10-01 | 1 | -3/+12 |
| | | | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls | ||||
| * | peer_cfg now knows about group memberships | Andreas Steffen | 2007-09-13 | 1 | -5/+16 |
| | | |||||
| * | added mobike=yes|no connection option | Martin Willi | 2007-08-29 | 1 | -1/+10 |
| | | | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes | ||||
| * | support for virtual IP definition on client side: | Martin Willi | 2007-05-22 | 1 | -14/+21 |
| | | | | | | | | if leftsourceip is defined, it is requested. server may define rightsourceip=%config to accept any, or it may overwrite it using rightsourceip. if server does not return an IP, client enforces its configured leftsourceip. | ||||
| * | cleaned up apidoc | Martin Willi | 2007-04-11 | 1 | -2/+18 |
| | | | | | | | added some comments removed configuration.[ch], as it does not make sense like it is | ||||
| * | restructured file layout | Martin Willi | 2007-04-10 | 1 | -0/+345 |
| new configuration structure: peer_cfg: configuration related to a peer (authenitcation, ...= ike_cfg: config to use for IKE setup (proposals) child_Cfg: config for CHILD_SA (proposals, traffic selectors) a peer_cfg has one ike_cfg and multiple child_cfg's stroke now uses fixed count of threads | |||||
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |