| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Change interface for enumerator_create_filter() callback | Tobias Brunner | 2017-05-26 | 1 | -6/+16 |
| | | | | | | This avoids the unportable 5 pointer hack, but requires enumerating in the callback. | ||||
| * | shunt-manager: Add an optional namespace for each shunt | Tobias Brunner | 2017-02-16 | 1 | -23/+67 |
| | | | | | | This will allow us to reuse the names of child configs e.g. when they are defined in different connections. | ||||
| * | Implemented IPsec policies restricted to given network interface | Andreas Steffen | 2016-04-09 | 1 | -2/+16 |
| | | |||||
| * | Support manually-set IPsec policy priorities | Andreas Steffen | 2016-04-09 | 1 | -1/+3 |
| | | |||||
| * | shunt-manager: Install "outbound" FWD policy | Tobias Brunner | 2016-04-09 | 1 | -2/+8 |
| | | | | | | | If there is a default drop policy forwarded traffic might otherwise not be allowed by a specific passthrough policy (while local traffic is allowed). | ||||
| * | kernel: Use structs to pass information to the kernel-ipsec interface | Tobias Brunner | 2016-04-09 | 1 | -35/+47 |
| | | |||||
| * | libhydra: Move kernel interface to libcharon | Tobias Brunner | 2016-03-03 | 1 | -13/+12 |
| | | | | | This moves hydra->kernel_interface to charon->kernel. | ||||
| * | kernel-interface: Pass the same data to del_policy() that was passed to ↵ | Tobias Brunner | 2015-11-10 | 1 | -11/+16 |
| | | | | | | | | add_policy() The additional data can be helpful to identify the exact policy to delete. | ||||
| * | shunt-manager: Resolve %dynamic to %any4/6 before installing policies | Tobias Brunner | 2015-09-16 | 1 | -7/+22 |
| | | | | | | | | | left|rightsubnet default to %dynamic, which is basically 0.0.0.0/0 until an address is assigned to it. So if only one side was undefined and the other traffic selector was IPv6 an address family mismatch would occur. References #595. | ||||
| * | shunt-manager: Don't install policies in case of an address family or IP ↵ | Tobias Brunner | 2015-09-16 | 1 | -0/+20 |
| | | | | | | | protocol mismatch References #595. | ||||
| * | shunt-manager: Add flush() method to properly uninstall shunts | Tobias Brunner | 2015-07-27 | 1 | -4/+40 |
| | | | | | | This will allow us to uninstall shunts before unloading the kernel-interface plugins. | ||||
| * | shunt-manager: Remove stored entries if installation fails | Tobias Brunner | 2015-07-27 | 1 | -2/+11 |
| | | |||||
| * | shunt-manager: Add a lock to safely access the list of shunt policies | Tobias Brunner | 2015-07-27 | 1 | -3/+17 |
| | | |||||
| * | shunt-manager: Install passthrough policies with highest priority | Tobias Brunner | 2014-06-19 | 1 | -9/+34 |
| | | | | | | | This avoids conflicts with regular IPsec policies. Similarly, use the lowest priority for drop policies. | ||||
| * | Moved data structures to new collections subfolder | Tobias Brunner | 2012-10-24 | 1 | -1/+1 |
| | | |||||
| * | Release leaking child config after uninstalling shunt policy | Martin Willi | 2012-07-23 | 1 | -0/+1 |
| | | |||||
| * | Remove policies in kernel interfaces based on their priority. | Tobias Brunner | 2011-07-27 | 1 | -6/+9 |
| | | | | | | | This allows to unroute a connection while the same connection is currently established. In this case both CHILD_SAs share the same reqid but the installed policies have different priorities. | ||||
| * | shunt manager installs policies with %any hosts | Andreas Steffen | 2011-07-14 | 1 | -3/+6 |
| | | |||||
| * | Adapted shunt manager to changed kernel interface (reqid in del_policy). | Tobias Brunner | 2011-07-06 | 1 | -3/+6 |
| | | |||||
| * | implemented PASS and DROP shunt policies | Andreas Steffen | 2011-06-28 | 1 | -0/+242 |
 |
index : tteras/strongswan | |
| tteras' strongSwan tree | gitolite |
| aboutsummaryrefslogtreecommitdiffstats |