Age | Commit message (Expand) | Author |
2010-06-07 | fix a quoting wobble for the srcnat keyword; verified by reyk | Jason McIntyre |
2010-06-03 | update the manpages for isakmpd(8) and ipsec.conf(5) to point to iked(8) | Reyk Floeter |
2010-01-02 | Various syntax errors in list headers, found by mandoc(1), | Ingo Schwarze |
2009-10-21 | nat -> match...nat-to in example PF rule. ok mpf@ | Stuart Henderson |
2009-01-29 | tweak previous; | Jason McIntyre |
2009-01-28 | Allow to specify ike and flow explicitly without peer. The any | Alexander Bluhm |
2009-01-20 | Add support to isakmpd(8) and ipsecctl(8) to install SA's with a | Marco Pfatschbacher |
2008-11-29 | Explain how /32 changes the address type to IPV4_ADDR_SUBNET. From Mitja | Hans-Joerg Hoexer |
2008-04-11 | add support for the "include" directive using code from pfctl/parse.y. | Reyk Floeter |
2008-02-22 | Support for specifying aes-{128,192,256}. Originial idea by Prabhu | Hans-Joerg Hoexer |
2008-02-12 | document modifier types; requested by Aurelien | Jason McIntyre |
2007-09-17 | Document the syntax used with manual SAs for automatic creation | Stuart Henderson |
2007-05-31 | convert to new .Dd format; | Jason McIntyre |
2007-03-06 | Explain, why aesctr has 160 bit keys (128 bit aes key + 32 bit nonce). | Hans-Joerg Hoexer |
2007-02-19 | tweak; | Jason McIntyre |
2007-02-19 | Document NULL encryption. | Hans-Joerg Hoexer |
2007-02-16 | Address PR 5380: refer to DH MODP well-known group numbers. | Chad Loder |
2006-12-12 | a rewrite of enc.4, hopefully a little more useful than what we previously | Jason McIntyre |
2006-12-06 | SAD -> SADB; ok hshoexer | Jason McIntyre |
2006-11-24 | add support to tag ipsec traffic belonging to specific IKE-initiated | Reyk Floeter |
2006-11-13 | briefly describe phases 1 and 2, and use these terms more | Jason McIntyre |
2006-11-13 | previous was not quite right; | Jason McIntyre |
2006-11-13 | fix a macro mistake; | Jason McIntyre |
2006-11-01 | Add support for aggressive mode (from the k2k6 IPsec hackathon). | Ryan Thomas McBride |
2006-10-19 | note that all rules using enc0 should specify: keep state (if-bound) | Jason McIntyre |
2006-09-29 | add a new section header, since DESCRIPTION is getting so large... | Jason McIntyre |
2006-09-29 | make it clearer what needs to be run, and how; push manual keying down | Jason McIntyre |
2006-09-26 | a better description of what our automatic keying example is up to; | Jason McIntyre |
2006-09-22 | - document which parts need to be packet filtered, and why | Jason McIntyre |
2006-09-15 | reorganise the sections to make more sense; | Jason McIntyre |
2006-09-15 | clarification; | Jason McIntyre |
2006-09-15 | add in filtering rules to allow keying daemons to talk; | Jason McIntyre |
2006-09-14 | simplify an example. ok jmc@ | Hans-Joerg Hoexer |
2006-09-13 | use "proto ipencap" for the gateway filter rules; | Jason McIntyre |
2006-09-12 | note that enc traffic is unecrypted; from mpf | Jason McIntyre |
2006-09-12 | no need to Xr isakmpd.conf.5; | Jason McIntyre |
2006-09-12 | add a section on packet filtering ipsec traffic; | Jason McIntyre |
2006-09-11 | improvememnts for `local', `peer', and `psk'; ok hshoexer | Jason McIntyre |
2006-09-07 | note that we can filter ipsec traffic on the enc interface; | Jason McIntyre |
2006-09-07 | improve the tcpmd5 section; ok claudio hshoexer | Jason McIntyre |
2006-09-07 | move all the auth/enc/group stuff into one definitive section; | Jason McIntyre |
2006-09-06 | start to group the parameters for AUTOMATIC KEYING in a more logical way; | Jason McIntyre |
2006-09-05 | knock out a ton of Aq/Xo/Xc that was either unneeded, or just plain wrong; | Jason McIntyre |
2006-09-05 | document line splitting using `\'; | Jason McIntyre |
2006-09-05 | slight text shuffle, and make the isakmpd bits clearer; | Jason McIntyre |
2006-09-04 | some wording fixes for the section headers and minor tweaks; | Jason McIntyre |
2006-09-04 | document comments, address syntax, and list expansion; | Jason McIntyre |
2006-09-01 | a little better text for the sections; ok hshoexer | Jason McIntyre |
2006-08-31 | knock out the cpp/m4 stuff from MACROS; after discussion with many... | Jason McIntyre |
2006-08-31 | some improvements to srcid and destid, as noted by mpf; | Jason McIntyre |