Age | Commit message (Expand) | Author |
2007-05-10 | Do not crash when lists include the "any" keyword. Reported by | Hans-Joerg Hoexer |
2007-03-16 | move autodetection of the ID type to the parser. this way the | Markus Friedl |
2007-03-06 | Explain, why aesctr has 160 bit keys (128 bit aes key + 32 bit nonce). | Hans-Joerg Hoexer |
2007-02-26 | Really, we don't need two grp18's ;-) | Todd T. Fries |
2007-02-19 | tweak; | Jason McIntyre |
2007-02-19 | Document NULL encryption. | Hans-Joerg Hoexer |
2007-02-19 | Bits for ESP+NULL encryption. This is useful, when AH can not be | Hans-Joerg Hoexer |
2007-02-19 | do not display empty authkey/enckey line when -k option is not | Hans-Joerg Hoexer |
2007-02-19 | undo previous commit and keep the original behaviour of the parser. | Hans-Joerg Hoexer |
2007-02-16 | Address PR 5380: refer to DH MODP well-known group numbers. | Chad Loder |
2007-02-16 | Do not accept '\n' in quoted strings. Addresses issues noticed by | Hans-Joerg Hoexer |
2007-01-10 | allow rule if there is at least _one_ matching address family combination. | Markus Friedl |
2007-01-10 | add -k to usage(); | Jason McIntyre |
2007-01-04 | don't pass -1 as a netmask; report vicviq at gmail.com | Markus Friedl |
2007-01-03 | do not print secret keys by default, -k restores old behaviour; ok hshoexer | Markus Friedl |
2007-01-02 | better support for IPv6 hostname/numeric representation. | Jun-ichiro itojun Hagino |
2006-12-18 | call ike_setup_ids from a more appropriate location. | Mathieu Sauve-Frankel |
2006-12-12 | a rewrite of enc.4, hopefully a little more useful than what we previously | Jason McIntyre |
2006-12-06 | SAD -> SADB; ok hshoexer | Jason McIntyre |
2006-11-30 | typo: wrong rid for protocol | Markus Friedl |
2006-11-30 | use rmv to unregister ipsec connections; ok hshoexer, ho | Markus Friedl |
2006-11-30 | handle multiple SAs with different same src/dst but different port; | Markus Friedl |
2006-11-24 | add support to tag ipsec traffic belonging to specific IKE-initiated | Reyk Floeter |
2006-11-24 | fix typo for remote port; from Brian Candler | Markus Friedl |
2006-11-21 | do not delete sections that might be shared with other connections | Markus Friedl |
2006-11-13 | briefly describe phases 1 and 2, and use these terms more | Jason McIntyre |
2006-11-13 | previous was not quite right; | Jason McIntyre |
2006-11-13 | fix a macro mistake; | Jason McIntyre |
2006-11-13 | Handle rules with addresses from mismatched address families correctly. | Ryan Thomas McBride |
2006-11-10 | check both rule sourace and destination when grouping sa's | Mathieu Sauve-Frankel |
2006-11-10 | When using -vv, also show grouped SAs. | Hans-Joerg Hoexer |
2006-11-10 | Fix grouping for SAs. Now all combinations of SAs are possible, | Hans-Joerg Hoexer |
2006-11-10 | Do not count sa, ike and tcpmd5 rules twice. Fixes PR 5263. | Hans-Joerg Hoexer |
2006-11-01 | KNF unrelated to previous commit. | Ryan Thomas McBride |
2006-11-01 | Add support for aggressive mode (from the k2k6 IPsec hackathon). | Ryan Thomas McBride |
2006-10-19 | note that all rules using enc0 should specify: keep state (if-bound) | Jason McIntyre |
2006-09-29 | add a new section header, since DESCRIPTION is getting so large... | Jason McIntyre |
2006-09-29 | make it clearer what needs to be run, and how; push manual keying down | Jason McIntyre |
2006-09-26 | a better description of what our automatic keying example is up to; | Jason McIntyre |
2006-09-22 | - document which parts need to be packet filtered, and why | Jason McIntyre |
2006-09-22 | typo in err(); from bret.lambert@gmail.com, thanks! | Hans-Joerg Hoexer |
2006-09-19 | sort SAs by spi; ok hshoexer | Markus Friedl |
2006-09-18 | KNF and clean some trailing white spaces, no binary change. | Hans-Joerg Hoexer |
2006-09-15 | reorganise the sections to make more sense; | Jason McIntyre |
2006-09-15 | clarification; | Jason McIntyre |
2006-09-15 | add in filtering rules to allow keying daemons to talk; | Jason McIntyre |
2006-09-14 | simplify an example. ok jmc@ | Hans-Joerg Hoexer |
2006-09-13 | use "proto ipencap" for the gateway filter rules; | Jason McIntyre |
2006-09-12 | note that enc traffic is unecrypted; from mpf | Jason McIntyre |
2006-09-12 | no need to Xr isakmpd.conf.5; | Jason McIntyre |