| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-12-05 | 0.12.105+vyos2+lithium3debian/0.12.105+vyos2+lithium3 | Alex Harpin | |
| 2014-12-04 | vyatta-cfg-vpn: formatting changes for style consistency | Alex Harpin | |
| Update lib/Vyatta/VPN/vtiIntf.pm to have consistent identation levels and style throughout. | |||
| 2014-12-04 | vyatta-cfg-vpn: reduce the vti mark base to prevent integer overflow | Alex Harpin | |
| Reduce the vtiMarkBase value to prevent integer overflow on the created ip xfrm states and policies. | |||
| 2014-12-04 | vyatta-cfg-vpn: update vti creation in line with changes to strongswan | Alex Harpin | |
| Update the VTI creation process to go along with the changes added to the vyatta-strongswan package, due to changes in the kernel vti module. This also removes the need for additional netfilter rules to ensure that packets are directed to the corresponding VTI. Bug #358 http://bugzilla.vyos.net/show_bug.cgi?id=358 | |||
| 2014-12-04 | vyatta-cfg-vpn: update parseVtiTun to account for vti changes | Alex Harpin | |
| Update the parseVtiTun function to account for the new way of configuring VTIs. Bug #358 http://bugzilla.vyos.net/show_bug.cgi?id=358 | |||
| 2014-12-04 | vyatta-cfg-vpn: move scripts/vtiIntf.pm to lib/Vyatta/VPN/vtiIntf.pm | Alex Harpin | |
| Move vtiIntf.pm to a more logical place, in line with all the other packages. | |||
| 2014-10-29 | 0.12.105+vyos2+lithium2debian/0.12.105+vyos2+lithium2 | Daniil Baturin | |
| 2014-10-29 | Update changelog for the new branch. | Daniil Baturin | |
| 2014-10-19 | 0.12.105+vyos1+helium4debian/0.12.105+vyos1+helium4 | Daniil Baturin | |
| 2014-10-19 | Remove the VTI script after use. | Daniil Baturin | |
| 2014-10-08 | 0.12.105+vyos1+helium3debian/0.12.105+vyos1+helium3 | Daniil Baturin | |
| 2014-10-06 | Merge pull request #10 from cyclops8456/helium | Daniil Baturin | |
| Commits for Bug #291 and Bug #332 | |||
| 2014-10-05 | vyatta-cfg-vpn: prevent duplicate local rsa key includes | Alex Harpin | |
| Prevent duplicate include statements, for the local rsa keys, being added to the ipsec.secrets file when more than one VPN connection is configured. Bug #332 http://bugzilla.vyos.net/show_bug.cgi?id=332 | |||
| 2014-10-05 | vyatta-cfg-vpn: formatting changes for style consistency | Alex Harpin | |
| Update scripts/vpn-config.pl to have consistent identation levels and style throughout. | |||
| 2014-10-05 | vyatta-cfg-vpn: rename vti-up-down.sh to vti-up-down | Alex Harpin | |
| Rename vti-up-down.sh to vti-up-down to be consistent with others. | |||
| 2014-10-05 | vyatta-cfg-vpn: fix for vti interface going down remains routed | Alex Harpin | |
| Revert the fix put in place for Bug #183 as this causes multiple routes to be installed when more than one VTI routes to the same subnet (in the case of failure over routing etc). As it stands, when one of these interfaces goes down, the additional route remains active, resulting in this route still being used even though no traffic can pass. Removing the up-client fix proposed for Bug #183 fixes this issue and doesn't affect the normal operation of these VTIs. Bug #291 http://bugzilla.vyos.net/show_bug.cgi?id=291 | |||
| 2014-09-20 | Merge pull request #9 from cyclops8456/helium | Daniil Baturin | |
| vyatta-cfg-vpn: add libnfnetlink-dev to build dependencies | |||
| 2014-09-20 | vyatta-cfg-vpn: updated the debian package maintainer address | Alex Harpin | |
| 2014-09-20 | vyatta-cfg-vpn: add libnfnetlink-dev to build dependencies | Alex Harpin | |
| Add libnfnetlink-dev to the list of build dependencies, required for compiling src/cfgcti. Bug #317 http://bugzilla.vyos.net/show_bug.cgi?id=317 | |||
| 2014-09-10 | Remove gre-multipoint reference | Kim Hagen | |
| 2014-08-23 | Rename vyatta-update-nhrp.pl to vyos-update-nhrp.pl and change options | Kim Hagen | |
| 2014-08-03 | 0.12.105+vyos1+helium2vyos/1.1.0-beta1debian/0.12.105+vyos1+helium2 | Daniil Baturin | |
| 2014-08-03 | Bug #224: rename "enabled|disabled" to "enable|disable" for consistency. | Daniil Baturin | |
| 2014-06-25 | Merge pull request #8 from ryanriske/helium-bug241 | Daniil Baturin | |
| Bug 241: Use auto=route for connection-type respond. | |||
| 2014-06-17 | Bug 241: Use auto=route for connection-type respond. | Ryan Riske | |
| 2014-05-26 | Merge pull request #4 from TriJetScud/helium | Daniil Baturin | |
| Remove automatic IKE version negoiation. | |||
| 2014-05-25 | Merge pull request #6 from TriJetScud/helium-pull-req | Daniil Baturin | |
| Initial MOBIKE Configuration Support | |||
| 2014-05-25 | Initial MOBIKE Configuration Support | Jeff Leung | |
| For IKEv2, there is support for MOBIKE which basically allows IPSec connections to roam from interface to interface. When MOBIKE is used, the IKE negoiation phase uses UDP port 4500 rather than using proto-51. In strongSwan 4.5.x MOBIKE is automatically enabled for IKEv2 connections. We expose the ability to enable/disable MOBIKE to the user. | |||
| 2014-05-25 | Merge pull request #5 from ryanriske/helium-dhgroups | Daniil Baturin | |
| Bug 197: Add back support for groups 22-24 for phase2 pfs | |||
| 2014-05-25 | Bug 197: Add back support for groups 22-24 for phase2 pfs | Ryan Riske | |
| 2014-05-25 | Merge pull request #3 from ryanriske/helium-sha2 | Daniil Baturin | |
| Bug 220: Add support for SHA2 hashes | |||
| 2014-05-25 | Remove automatic IKE version negoiation. | Jeff Leung | |
| According to the strongSwan 4.5.x documentation, the keyexchange configuration value "ike" is a synonym to "ikev2". In strongSwan 5.0.0 however, the configuration value "ike" will try to negoiate IKEv2 connections but will accept IKEv1 connections if the remote peer sends an IKEv1 request. | |||
| 2014-05-25 | Bug 220: Add support for SHA2 hashes | Ryan Riske | |
| 2014-05-24 | Merge pull request #2 from ryanriske/helium-dhgroups | Daniil Baturin | |
| Add support for DH groups 14-26 | |||
| 2014-05-24 | Add support for DH groups 14-26 | Ryan Riske | |
| 2014-05-22 | Merge pull request #1 from TriJetScud/helium | Daniil Baturin | |
| Adding initial support for IKEv2 Site-to-Site VPNs | |||
| 2014-05-21 | Adding initial support for IKEv2/IKEv1 Site-to-Site VPN's by adding the ↵ | Jeff Leung | |
| optional "vpn ipsec ike-group <IKEGROUP> key-exchange" parameter. | |||
| 2014-04-27 | Bug #183: Add up-client action to the interface up/down script. | Daniil Baturin | |
| Patch by Masakazu Asama. | |||
| 2014-02-15 | 0.12.105+vyos1+helium1debian/0.12.105+vyos1+helium1 | Daniil Baturin | |
| 2014-02-15 | New branch | Daniil Baturin | |
| 2014-01-29 | 0.12.105+hydrogen2debian/0.12.105+hydrogen2 | Daniil Baturin | |
| 2014-01-29 | Fix vpn ppp up script | Stig Thormodsrud | |
| Signed-off-by: Daniil Baturin <daniil@baturin.org> | |||
| 2014-01-29 | Move %any peers to the end in ipsec.secrets | Stig Thormodsrud | |
| Signed-off-by: Daniil Baturin <daniil@baturin.org> | |||
| 2013-11-17 | 0.12.105+hydrogen1vyos/1.0.0debian/0.12.105+hydrogen1 | Daniil Baturin | |
| 2013-11-17 | New branch | Daniil Baturin | |
| 2013-02-19 | 0.12.105+daisy6vyatta/VC6.6R1/i386vyatta/VC6.6R1/amd64debian/0.12.105+daisy6daisy | Saurabh Mohan | |
| 2013-02-19 | perltidy run for vyatta-cfg-vpn | Saurabh Mohan | |
| 2013-02-12 | 0.12.105+daisy5debian/0.12.105+daisy5 | Saurabh Mohan | |
| 2013-02-12 | mGRE support for change of local-ip addr change. | Saurabh Mohan | |
| VYATTA-118: workaround added to update ipsec settings when tunnel local-ip is modified. | |||
| 2013-02-05 | 0.12.105+daisy4debian/0.12.105+daisy4 | Saurabh Mohan | |
 |
index : vyatta-cfg-vpn.git | |
| Vyatta VPN configuration (mirror of https://github.com/vyos/vyatta-cfg-vpn.git) |
| summaryrefslogtreecommitdiff |