summaryrefslogtreecommitdiff
path: root/lib
AgeCommit message (Collapse)Author
2015-04-09Bug:540 correct the order of ESP SA array by removing the reverse directiveJason Hendry
2015-01-15Merge pull request #10 from jhendryUK/cleanse_esp_hashDaniil Baturin
Removing ESP SA's in esp_hash which do not have a last_used key
2015-01-15Merge pull request #11 from jhendryUK/improve_detection_of_dead_tunnelsDaniil Baturin
Improve detection of dead tunnels
2015-01-09Improving dead IKE + ESP detection for IKEv1Jason Hendry
2015-01-09Improving dead IKE detection for IKEv2Jason Hendry
2015-01-09Improving detection of dead tunnels for IKEv2Jason Hendry
2015-01-09Removing ESP SA's in esp_hash which do not have a last_used keyJason Hendry
2014-12-20Merge pull request #9 from jhendryUK/fix_ikev2_dh_group_detectionDaniil Baturin
Fix detection of IKEv2 IKE DH Group
2014-12-19Fix detection of IKEv2 IKE DH GroupJason Hendry
2014-12-07Fix "show vpn ipsec sa" for IKEv2 when rekeying is disabledJason Hendry
2014-12-05Merge pull request #6 from jhendryUK/fix_ikev2_ike_info_without_reauthDaniil Baturin
Bug 396: Fixing output of "show vpn ike sa" when reauth=no
2014-12-02Fixing "show vpn ipsec sa" left/rgiht subnet info when you do not specify a ↵Jason Hendry
protocol in the IPSec tunnel config
2014-12-01Fixing output of "show vpn ike sa" when reauth=noJason Hendry
2014-11-28Updating another typo, $ike_sa is now $esp_saJason Hendry
2014-11-28Fixing typo in variable name, %ike_hash is now %esp_hashJason Hendry
2014-11-28Print ESP info from most recently used SPI. Fixed bug where tunnel with 0 ↵Jason Hendry
bytes of traffic gets reported as down
2014-11-27Fixing detection of IKE SA info with IKEv2Jason Hendry
2014-11-26Add IKEv2 SA info to "show vpn ipsec *" optionsJason Hendry
2014-05-25Merge pull request #2 from ryanriske/helium-sha2vyos/1.1.0-beta1Daniil Baturin
Bug 220: Add support for SHA2 hashes
2014-05-25Bug 220: Add support for SHA2 hashesRyan Riske
2014-05-24Add support for DH groups 14-26Ryan Riske
2013-02-19perltidy run for vyatta-op-vpnSaurabh Mohan
2013-02-05Merge + support show vpn ipsec sa detail/statistics profileSaurabh Mohan
2013-01-22Dmvpn merge with mirantis jan22-2013Saurabh Mohan
2012-12-26Support for dmvpn-ipsec connections in op-vpn.Saurabh Mohan
2011-08-23Bugfix 7465: fix 3des in show commandsJohn Southworth
2011-07-11Bugfix 7316: remove next-hop router from vpn connection line before parsing ↵John Southworth
since we don't display it currently (cherry picked from commit 42a754b96d8d0964a5b828722081edfbc007ad3f)
2011-07-06Fix off by one error on byte conversion functionJohn Southworth
2011-06-16remove extraneous debug outputJohn Southworth
2011-06-09Bugfix 7146: parse properly when port is only setup on one endpointJohn Southworth
2011-05-17fix parsing of esp string when only one side has data. Remove attempt to ↵John Southworth
figure out the dh-group when the pfs-group shows Phase1, since it doesn't work properly
2011-05-05fix special case for wildcard peer since it uses 'EVENT_SA_REPLACE_IF_USED' ↵John Southworth
on initial connection
2011-02-28Moved the diffie-hellman group out to the 'show vpn ike sa' command as it is ↵John Southworth
related to phase1 and not phase2. Processing of the value still happens in the 'show vpn ipsec sa detail' code as it may need the value because if now pfs group is defined for phase2 it uses the same group as phase1
2011-02-28Diffie-Hellman group is an ike parameter, moving it to the peer level of the ↵John Southworth
detailed ipsec output
2011-02-28Print description for a peer from the configuration if it is configured in ↵John Southworth
the show commands
2011-02-25add a function to get the ike state of a peerJohn Southworth
2011-02-25add a function to get the ike state of a peerJohn Southworth
2011-02-25Fix 'show vpn ike status'John Southworth
2011-02-24Fix case where local-ip is 0.0.0.0John Southworth
2011-02-22Clean up some duplicate code in OPMode moduleJohn Southworth
2011-02-18Fix a special case where the peer is 0.0.0.0 for op-mode commandsJohn Southworth
2011-02-11Make spacing between peers more noticableJohn Southworth
2011-02-11 Changed output of ipsec opmode to be cleaner, minor adjustmentJohn Southworth
2011-02-11 Changed output of ipsec opmode to be cleanerJohn Southworth
2011-02-10Faster per peer/tunnel processing for operational mode commandsJohn Southworth
2011-02-08Initial x509 for site-to-site ipsec vpnJohn Southworth
2011-02-07Fix parsing when only the left subnet is configuredJohn Southworth
2011-02-07Fix filehandlers to conform to perl style guidelinesJohn Southworth
2011-02-04Fix handling of IKE SA's in show commandsJohn Southworth
2011-02-04Work on new IPsec operational mode script. Since protocol must be the same ↵John Southworth
on local and remote we can show it on the brief output
generated by cgit v1.2.3 (git 2.39.1) at 2025-09-04 10:30:01 +0000