summaryrefslogtreecommitdiff
path: root/sbin/ipsecctl/ipsecctl.c
AgeCommit message (Expand)Author
2006-05-29add ipsecctl_free_rule() for cleaning up rules.Hans-Joerg Hoexer
2006-03-31wenn dumping rules always show type, srcid and dstid (if set).Hans-Joerg Hoexer
2006-03-31allow specification of encapsulated protocol for flows; ok hshoexerMarkus Friedl
2006-03-30allow specification of outer local ips in flows (SADB_EXT_ADDRESS_SRC); ok hs...Markus Friedl
2006-03-22add support for macros in ipsec.conf(5). some bits have already beenReyk Floeter
2006-02-01noted by lint: include <string.h> instead of <strings.h>, add tow ARGSUSED1Hans-Joerg Hoexer
2006-01-17wrap long lines (no binary change)Reyk Floeter
2006-01-16add support for pre-shared keys with "ike esp" using the new keywordReyk Floeter
2005-12-06more appropriate error messages; ok hshoexerMarkus Friedl
2005-12-06ipip support: ip-in-ip w/o gif(4); ok hshoexerMarkus Friedl
2005-12-01do not choke and dump core when printing bypass flows. noticed by jacobHans-Joerg Hoexer
2005-11-30handle that pfkey_ipsec_flush() can fail.Hans-Joerg Hoexer
2005-11-21Fix memory leaks. From Andrey Matveev <evol at online dot ptt dot ru>,Hans-Joerg Hoexer
2005-11-13fclose() file descriptor of the rule file when we are done with it.Hans-Joerg Hoexer
2005-11-12spacingTheo de Raadt
2005-11-12handle transport/tunnel modeHans-Joerg Hoexer
2005-11-06Improved address and address mask handling, derived from pfctl stuff.Hans-Joerg Hoexer
2005-11-06better handling of ip addresses, prepare for v6. Partially derived from diffHans-Joerg Hoexer
2005-10-30add support for ipcomp.Hans-Joerg Hoexer
2005-10-28more error message cleanupHans-Joerg Hoexer
2005-10-16cleanup messages generated by err(3)Hans-Joerg Hoexer
2005-08-22Teach ipsecctl to control isakmpd.Hans-Joerg Hoexer
2005-08-09Rewrite handling of transforms. Now both ah and esp can be specified andHans-Joerg Hoexer
2005-08-08add crypto transforms and static keying rulesHans-Joerg Hoexer
2005-08-08prepare for static keyingHans-Joerg Hoexer
2005-08-05prepare for authentication and encryption keys, not used yet.Hans-Joerg Hoexer
2005-08-03be more careful when using struct ipsec_auth, might be NULL now.Hans-Joerg Hoexer
2005-08-02Make use of struct ipsec_auth dynamic.Hans-Joerg Hoexer
2005-07-24prepare for combining SAs and flows in one single rule, no functional changeHans-Joerg Hoexer
2005-07-09it's ok to not specify the key when deleting a tcpmd5 SAHans-Joerg Hoexer
2005-07-09add support tcpmd5Hans-Joerg Hoexer
2005-07-07set flow type (use, require, etc.) when a rule is created. Up to now this wasHans-Joerg Hoexer
2005-07-07Do not mix rule types with flow typesHans-Joerg Hoexer
2005-07-07add type for rules; will need this for tcpmd5Hans-Joerg Hoexer
2005-06-30grmpf, forgot to add -d to usage()...Hans-Joerg Hoexer
2005-06-30add -d flag for flow deletion. Enable flow deletion.Hans-Joerg Hoexer
2005-06-30Prepare for flow deletion, no functional change yet.Hans-Joerg Hoexer
2005-05-27show flow type (require, use, etc.)Hans-Joerg Hoexer
2005-05-27use new sysctl to retrieve flow informations including IDsHans-Joerg Hoexer
2005-05-27Support for dumping the SADB.Hans-Joerg Hoexer
2005-05-25prepare for new sysctl interface, not used yetHans-Joerg Hoexer
2005-05-23minor memset->bzero, clarify an error condition, and plug a leak.Kjell Wooding
2005-05-23tap. tap. is this thing on?Kjell Wooding
2005-04-12help option useless; any unused option does thatTheo de Raadt
2005-04-05cleanup; ok hshoexer@Jason McIntyre
2005-04-04fix cvs id tagsHans-Joerg Hoexer
2005-04-04Add ipsecctl utility, work in progressHans-Joerg Hoexer