summaryrefslogtreecommitdiff
path: root/sbin/ipsecctl
AgeCommit message (Expand)Author
2006-06-02Prepare for parsing lifetimes for ike main and quick mode. Not enabled yet.Hans-Joerg Hoexer
2006-06-01Final bits for SA grouping.Hans-Joerg Hoexer
2006-06-01pfkey bits needed for SA groupingHans-Joerg Hoexer
2006-06-01address has two `d', and i had to use a dictionary to check ;)Jason McIntyre
2006-06-01document port matching in flows; ok hshoexer@Christian Weisgerber
2006-06-01change the local-ID section name to always be unique as we may want to use mo...Mathieu Sauve-Frankel
2006-06-01Support flows with port modifiers for proto tcp/udp, e.g.Christian Weisgerber
2006-06-01more to free, needed for SA grouping.Hans-Joerg Hoexer
2006-06-01convert pfkey to ipsec_rule and use ipsecctl_print_rule() when dumpingMarkus Friedl
2006-06-01Add members dst2, proto2 and spi2 to struct ipsec_rule and defineHans-Joerg Hoexer
2006-06-01Prepare for SA grouping.Hans-Joerg Hoexer
2006-06-01print actual key size when warning about the wrong key size; ok hshoexerMarkus Friedl
2006-06-01read the full reply from PFKEY even if sadb_errno is set; ok hshoexerMarkus Friedl
2006-06-01spacingTheo de Raadt
2006-06-01knfHans-Joerg Hoexer
2006-06-01correct error messages to match calloc where appropriateTodd T. Fries
2006-06-01permit feeding isakmpd.fifo IPv6 addressesTodd T. Fries
2006-06-01knfHans-Joerg Hoexer
2006-06-01add more v6 support, this round `any' expands additionally to ::/0Todd T. Fries
2006-06-01rename list link for ipsec_rule structures from "entries" to "rule_entry".Hans-Joerg Hoexer
2006-06-01When no peer is specified, make this rule a "catch-all" rule for any remoteHans-Joerg Hoexer
2006-06-01Generate correct configuration for default peers.Hans-Joerg Hoexer
2006-05-31white spacesHans-Joerg Hoexer
2006-05-31add basicTodd T. Fries
2006-05-31add a little markup;Jason McIntyre
2006-05-31whitespace cleanupHans-Joerg Hoexer
2006-05-31shuffle some newlines to make all the formatting work againMathieu Sauve-Frankel
2006-05-31Small function header knf.Hans-Joerg Hoexer
2006-05-31Prepare for handling unnamed remote peers.Hans-Joerg Hoexer
2006-05-30implement monitor mode for ipsecctl. worked on with markus@Mathieu Sauve-Frankel
2006-05-29enable lists.Hans-Joerg Hoexer
2006-05-29Need protoype for ipsecctl_free_rule(). While around clean upHans-Joerg Hoexer
2006-05-29Provide functions for copying members of rules. Implement copyrule()Hans-Joerg Hoexer
2006-05-29add ipsecctl_free_rule() for cleaning up rules.Hans-Joerg Hoexer
2006-05-29unify code a little bit (consistent variable names).Hans-Joerg Hoexer
2006-05-29Also return proper list of addresses for interface groups.Hans-Joerg Hoexer
2006-05-29As the rule expansion is now aware of host lists, host_if() has toHans-Joerg Hoexer
2006-05-29teach expand_rule() to iterate over host lists, not used yet.Hans-Joerg Hoexer
2006-05-29fix rule numbering (for -vv)Hans-Joerg Hoexer
2006-05-29merge expand_sa() and expand_rule().Hans-Joerg Hoexer
2006-05-29move generation of reverse flow rules to seperat function.Hans-Joerg Hoexer
2006-05-29unify expansion of SA rules. Needed for general rule expansion.Hans-Joerg Hoexer
2006-05-28when parsing host specifications, initialize host address queue pointers, notHans-Joerg Hoexer
2006-05-28prepare for rule expansion. Get rid of addr_node, link structHans-Joerg Hoexer
2006-05-28kill trainling whitespaceHans-Joerg Hoexer
2006-05-28whoops, undo last commit. Of course, set_ipmask() is needed...Hans-Joerg Hoexer
2006-05-28this one not needed yet.Hans-Joerg Hoexer
2006-05-28fill in AF_INET6 casesTodd T. Fries
2006-05-28matching brackets are usefulTodd T. Fries
2006-05-28missing `Ar';Jason McIntyre
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-19 05:16:08 +0000