aboutsummaryrefslogtreecommitdiffstats
path: root/sysconfig/network-scripts/ifup-ipsec
Commit message (Collapse)AuthorAgeFilesLines
* Remove ipsec-tools scripts (they're now in ipsec-tools itself.)Bill Nottingham2011-06-201-279/+0
|
* Don't use a full path when killing racoon, so it works in MLS policy (#567295)Bill Nottingham2010-06-041-1/+1
|
* Eliminate bunch of unnecessary stat calls and command invocations.Ville Skyttä2010-01-121-1/+1
|
* Use $() instead of `` for process expansion.Bill Nottingham2009-07-301-4/+4
| | | | Adapted from <victor.lowther@gmail.com>.
* Allow use of either ESP only or AH only (#251494, <stijn.tintel@x-tend.be>)Bill Nottingham2009-03-201-18/+55
|
* fix fixBill Nottingham2007-08-101-1/+1
|
* add support for overriding IKE dh group (#251506, <stijn.tintel@x-tend.be>)Bill Nottingham2007-08-091-3/+4
|
* allow overriding of my_identifier (#229343, <cmadams@hiwaay.net>)Bill Nottingham2007-04-161-2/+10
|
* Add a way to manually manage racoon.conf, e.g. to handle separate tunnels withMiloslav Trmac2006-11-151-4/+6
| | | | a shared peer endpoint (#159343)
* pass path to '.' always (#206035)Bill Nottingham2006-09-111-1/+1
|
* - Add ESP authentication support (last part of #168972, based on a patch byMiloslav Trmac2006-07-091-26/+28
| | | | | Aleksandar Milivojevic <alex@milivojevic.org>) - Beautify up handle_keys() a bit.
* Don't use an obsolete peers_certfile syntax (part of #168972, patch byMiloslav Trmac2006-07-081-1/+1
| | | | Aleksandar Milivojevic <alex@milivojevic.org>)
* - Allow disabling AH or ESP with authomatic keying (part of #168972, based onMiloslav Trmac2006-07-081-33/+9
| | | | | | a patch by Aleksandar Milivojevic <alex@milivojevic.org>). - Merge updated documentation in ifup-ipsec to sysconfig.txt, remove the non-canonical copy in ifup-ipsec.
* Eliminate as much duplicated code as possible (part of #168972, based on aMiloslav Trmac2006-07-081-98/+44
| | | | | patch by Aleksandar Milivojevic <alex@milivojevic.org>) Avoid unnecessary differences between ifup-ipsec and ifdown-ipsec
* Move $SRC initialization before first useMiloslav Trmac2006-07-081-5/+4
|
* Prevent IPsec tunelling of local traffic when tunnel subnets overlap (#150862)Miloslav Trmac2006-07-081-7/+19
|
* * ifup-ipsec:Miloslav Trmac2006-05-161-9/+13
| | | | | | | | - Fix key handling when AH or ESP is not used (#166257, patch by Tarhon-Onu Victor <mituc@iasi.rdsnet.ro>) - Allow manual tunnel mode without using AH or ESP * ifdown-ipsec: - Fix syntax errors in manual mode when AH or ESP is not used
* handle non-ascii keys (#150552)Bill Nottingham2005-03-301-24/+34
|
* set proper route (#140654, #146169)Bill Nottingham2005-03-281-2/+4
|
* don't do fwd policies explicitly; let setkey handle itBill Nottingham2005-03-111-12/+0
|
* add fwd policies (#145507)Bill Nottingham2005-01-191-0/+12
|
* racoon's parser got fixed, oops.Bill Nottingham2004-04-131-3/+2
|
* allow for no AH SPI (#116922, <felipe_alfaro@linuxmail.org>)Bill Nottingham2004-03-161-4/+4
|
* fix typoBill Nottingham2003-09-261-1/+1
|
* for tunneling, add a route for the tunneled net through the other hostBill Nottingham2003-09-121-0/+4
|
* more ipsec fixes (#104227, <harald@redhat.com>)Bill Nottingham2003-09-111-4/+4
|
* ipv6 fixes - detect automatic keying better, fix variable names forBill Nottingham2003-09-111-8/+9
| | | | tunneling
* typo (#103781)Bill Nottingham2003-09-041-1/+1
|
* always add info to /etc/racoon/racoon.confr7-26Bill Nottingham2003-07-031-6/+9
|
* make setkey be quietBill Nottingham2003-07-031-4/+4
|
* remove -xBill Nottingham2003-07-031-1/+1
|
* mention that type is requiredBill Nottingham2003-07-031-0/+1
|
* - nuke RSA support, since we're not doing it right nowBill Nottingham2003-07-031-19/+8
| | | | | - switch md5 -> sha1 - clarify some docs
* fix quoting of peer certfileBill Nottingham2003-07-031-1/+1
|
* that ';' is important. damned if i know why, i think the parser is buggy.Bill Nottingham2003-07-021-2/+3
| | | | fix quoting of include files.
* first batch of automatic keying fixes. notably, I can't type.Bill Nottingham2003-07-021-18/+23
|
* some fixes. i love shell quotingBill Nottingham2003-07-021-20/+28
|
* name SPIs something other than 1234Bill Nottingham2003-07-021-9/+9
|
* automatic keying support. not yet tested, either.Bill Nottingham2003-07-021-8/+144
|
* allow different in/out encryption protocols, tooBill Nottingham2003-07-011-8/+8
|
* allow using only AH or ESP, don't require bothBill Nottingham2003-07-011-16/+37
| | | | allow incoming/outgoing keys to be different
* well, fix parsingBill Nottingham2003-07-011-1/+1
|
* initial stuff. may not work. may not even parse.Bill Nottingham2003-07-011-0/+112
generated by cgit v1.2.1 (git 2.21.0) at 2024-11-02 09:22:31 +0000