summaryrefslogtreecommitdiff
path: root/sbin/ipsecctl
AgeCommit message (Expand)Author
2005-10-16Prepare for better host specification parser: dns names, interfaces, etc. ButHans-Joerg Hoexer
2005-10-16Unset debug flag.Hans-Joerg Hoexer
2005-10-16Add keyword "any" for addresses, reduces to "0.0.0.0/0".Hans-Joerg Hoexer
2005-10-16cleanup messages generated by err(3)Hans-Joerg Hoexer
2005-09-23- beef up DESCRIPTIONJason McIntyre
2005-09-23Remove some uncommented section headers from the template man page (RETURNHans-Joerg Hoexer
2005-09-22use "force" keyword when adding to Phase 1 section, otherwise isakmpd willHans-Joerg Hoexer
2005-09-20add an entry to "Phase 1" section for each remote peer.Hans-Joerg Hoexer
2005-09-20add a "Connection=..." entry for active connectionsHans-Joerg Hoexer
2005-09-19grammar;Jason McIntyre
2005-08-23grammar + formatting tweaks;Jason McIntyre
2005-08-22document recent changesHans-Joerg Hoexer
2005-08-22Teach ipsecctl to control isakmpd.Hans-Joerg Hoexer
2005-08-22spellingDavid Krause
2005-08-19more useful error messageHans-Joerg Hoexer
2005-08-11document recent changes, with jmc@Hans-Joerg Hoexer
2005-08-10- typoJason McIntyre
2005-08-09Document how to read keys from a file.Hans-Joerg Hoexer
2005-08-09Rewrite handling of transforms. Now both ah and esp can be specified andHans-Joerg Hoexer
2005-08-09Correct keysize for 3des-cbcHans-Joerg Hoexer
2005-08-08pfkey pieces for static keying, enable static keyingHans-Joerg Hoexer
2005-08-08add crypto transforms and static keying rulesHans-Joerg Hoexer
2005-08-08prepare for static keyingHans-Joerg Hoexer
2005-08-05more key handling stuff.Hans-Joerg Hoexer
2005-08-05prepare for authentication and encryption keys, not used yet.Hans-Joerg Hoexer
2005-08-05simplify a bit.Hans-Joerg Hoexer
2005-08-03be more careful when using struct ipsec_auth, might be NULL now.Hans-Joerg Hoexer
2005-08-02Make use of struct ipsec_auth dynamic.Hans-Joerg Hoexer
2005-07-24use correct function names in error messagesHans-Joerg Hoexer
2005-07-24prepare for combining SAs and flows in one single rule, no functional changeHans-Joerg Hoexer
2005-07-23document automatic generation of reverse SA rules.Hans-Joerg Hoexer
2005-07-23add automatic creation of reverse SAs.Hans-Joerg Hoexer
2005-07-23prepare for specifying both in and out key, not used yet.Hans-Joerg Hoexer
2005-07-23prepare for specifying incoming and outgoing SPIs, not used yet.Hans-Joerg Hoexer
2005-07-10allow reading key from a fileHans-Joerg Hoexer
2005-07-10tweaks;Jason McIntyre
2005-07-10tweaks;Jason McIntyre
2005-07-09Mention tcpmd5, .Xr ipsec(4) and tcp(4).Hans-Joerg Hoexer
2005-07-09forgot to .Xr tcp(4)Hans-Joerg Hoexer
2005-07-09describe how to setup tcpmd5Hans-Joerg Hoexer
2005-07-09make sure, output of -ss is identical to syntax for SA rulesHans-Joerg Hoexer
2005-07-09it's ok to not specify the key when deleting a tcpmd5 SAHans-Joerg Hoexer
2005-07-09also bail out when pfkey returns ESRCH (eg. trying to delete a non-existing SA)Hans-Joerg Hoexer
2005-07-09small cleanupsHans-Joerg Hoexer
2005-07-09add support tcpmd5Hans-Joerg Hoexer
2005-07-09Provide infrastructure for adding/deleting SAs, will be used by tcpmd5 andHans-Joerg Hoexer
2005-07-07set flow type (use, require, etc.) when a rule is created. Up to now this wasHans-Joerg Hoexer
2005-07-07Do not mix rule types with flow typesHans-Joerg Hoexer
2005-07-07add type for rules; will need this for tcpmd5Hans-Joerg Hoexer
2005-07-07add prototype for pfkey_parse()Hans-Joerg Hoexer