aboutsummaryrefslogtreecommitdiffstats
path: root/src/stroke
Commit message (Collapse)AuthorAgeFilesLines
* renamed STROKE_DOWNSRCIP to STROKE_DOWN_SRCIPAndreas Steffen2008-07-013-4/+4
|
* added a "ipsec down-srcip <start> [<end>]" command to terminate IKE_SAs by ↵Martin Willi2008-07-014-0/+31
| | | | remote virtual ip
* IPComp for IKEv2Tobias Brunner2008-05-081-0/+1
|
* supporting multiple comma seperated subnets in left/rightsubnet definitionMartin Willi2008-04-252-12/+6
| | | | | e.g. leftsubnet=10.2.0.0/16,10.4.0.0/16
* support for hash and URL encoded certificate payloads in charonTobias Brunner2008-04-181-0/+1
|
* respecting ipsec.conf cachecrls= optionMartin Willi2008-04-171-0/+7
|
* implemented IKE_SA uniqueness using ipsec.conf uniqueids paramaterMartin Willi2008-04-141-0/+1
| | | | additionally supports a "keep" value to keep the old IKE_SA
* implementation of an CFG attribute framework, currently supporting virtual IPsMartin Willi2008-04-092-35/+2
| | | | | | updated ipsec.conf sourceip parameter to support CIDR notatation to serve from a pool %poolname to query a separate (database?) pool
* mediation extension adapted to the naming convention of the current version ↵Tobias Brunner2008-03-262-4/+4
| | | | of the draft. note: the external interface (config, autotools) has not yet been changed
* merged the modularization branch (credentials) back to trunkMartin Willi2008-03-133-7/+19
|
* implemented Expanded EAP types to support vendor specific methodsMartin Willi2007-12-131-1/+2
|
* added RCSIDAndreas Steffen2007-10-084-2/+6
|
* experimental P2P-NAT-T for IKEv2 merged back from branchTobias Brunner2007-10-032-1/+12
|
* implemented IKEv2 force_encap connection parameterMartin Willi2007-10-012-0/+2
| | | | | enforces UDP encapsulation by faking NAT detection payloads to hurdle restrictive firewalls
* added mobike=yes|no connection optionMartin Willi2007-08-292-0/+2
| | | | | | | yes: include mobike support notifies as initiator no: only enable mobike as responder when initiator supports it default: yes
* added ↵Andreas Steffen2007-08-101-0/+6
| | | | listaacerts,listacerts,rereadsecerts,rereadocspcerts,rereadaacerts,rereadacerts to stroke
* fixed typo stroke keyword listAndreas Steffen2007-08-101-1/+1
|
* set STROKE_REREAD_FIRST to STROKE_REREAD_SECRETSAndreas Steffen2007-08-101-4/+9
|
* set STROKE_REREAD_FIRST to STROKE_REREAD_SECRETSAndreas Steffen2007-08-101-1/+1
|
* added rereadsecrets keyword to strokeAndreas Steffen2007-08-102-0/+2
|
* support of ipsec rereadsecrets for strokeAndreas Steffen2007-08-101-6/+8
|
* support of left|rightgroups parameterAndreas Steffen2007-05-201-0/+1
|
* added listaacerts, listacerts, listgroups, rereadaacerts, and rereadacerts ↵Andreas Steffen2007-04-144-6/+31
| | | | keywords
* added support for 0.0.0.0/0 traffic selectorsMartin Willi2007-03-012-0/+3
| | | | fixed routing to make correct 0.0.0.0/0 routes
* merged tasking branch into trunkMartin Willi2007-02-282-0/+6
|
* support of ca info recordsAndreas Steffen2007-02-231-0/+1
|
* added support of ca information records and ocsp keywordsAndreas Steffen2007-02-144-30/+107
|
* merged EAP framework from branch into trunkMartin Willi2007-02-122-0/+3
| | | | | includes a lot of other modifications
* added support for transport mode and (experimental!) BEET modeMartin Willi2006-12-212-0/+2
| | | | | support for the type=transport/tunnel parameter in charon
* implemented reauthentication using the new reauth=yes|no parameter Martin Willi2006-12-192-0/+2
|
* fixed stddef.h includeMartin Willi2006-12-141-1/+1
|
* solved 64 bit issue in push/pop stroke interfaceAndreas Steffen2006-10-311-1/+1
|
* better split up of library files "types.h" & "definitions.h"Martin Willi2006-10-312-9/+7
| | | | | | | | | centralized all printf specifier character definitions reuse of arginfo handlers more cleanups fixed more AMD64 issues added DEBUG_LEVEL compile flag to exclude DBGn() statements
* added verbosity level to strokeMartin Willi2006-10-242-0/+5
|
* updated stroke to allow run-time manipulation of debug levelsMartin Willi2006-10-184-45/+8
|
* added hostaccess supportAndreas Steffen2006-09-252-0/+3
|
* added auth_method fieldAndreas Steffen2006-09-181-0/+1
|
* implemented handling of dpdaction and dpddelay ipsec.conf parametersMartin Willi2006-09-082-2/+2
|
* reuse reqid when a ROUTED child_sa gets INSTALLEDMartin Willi2006-09-052-0/+7
| | | | | | | | | fixed a bug in retransmission code added support for the "keyingtries" ipsec.conf parameter added support for the "dpddelay" ipsec.conf parameter done some work for "dpdaction" behavior some other cleanups and fixes
* added possibility to route CHILD_SAs, without to set them upMartin Willi2006-07-214-4/+42
| | | | | | | support for auto=route parameter support for ipsec route and ipsec unroute initiating of CHILD and/or IKE_SAs based on kernel acquires
* added support for leftprotoport and rightprotoportMartin Willi2006-07-052-0/+6
|
* added support of updown parameterAndreas Steffen2006-07-031-0/+1
|
* applied new changes from NATT teamMartin Willi2006-06-231-157/+0
| | | | | DPD only done when no IPsec and IKE traffic processed minor changes here and there
* readded local_credential_storeMartin Willi2006-06-202-19/+43
| | | | | | added sendcert policy to connection some other cleanups
* implemented rereadcrls rereadcacertsAndreas Steffen2006-06-205-65/+114
|
* added support for "ike" and "esp" keywordsMartin Willi2006-06-152-0/+7
| | | | | | | fixed bugs in proposal code algorithm selection for charon works now with ipsec.conf a lot of other fixes
* fixed logleve(l) keyword typoMartin Willi2006-06-152-47/+34
|
* fixed down keywordMartin Willi2006-06-133-4/+5
|
* support for stroke listcerts|listcacerts|listall and left|rightca=Andreas Steffen2006-06-123-74/+108
|
* gperf creates optimum hash table for stroke keywordsAndreas Steffen2006-06-123-0/+254
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-10-05 03:27:20 +0000