summaryrefslogtreecommitdiff
path: root/scripts
AgeCommit message (Collapse)Author
2014-10-08Fix 'show vpn ipsec status'Patrick van Staveren
Look for addresses using the local-address node rather than the local-ip node. VyOS Bug #331 http://bugzilla.vyos.net/show_bug.cgi?id=331
2014-08-09vyatta-op-vpn: display the config path location for the rsa key fileAlex Harpin
The command "show vpn ike rsa-keys" currently displays the full system file path rather than using the shorter config path. This sets it to display the config path instead. Bug #278 http://bugzilla.vyos.net/show_bug.cgi?id=278
2014-08-09vyatta-op-vpn: prevent invalid rsa key file from being generatedAlex Harpin
If the command "generate vpn rsa-key" is aborted during key generation it leaves behind a temporary file. If the command is then executed again, this temporary file is appended to rather than being replaced, resulting in a key file with an extra : RSA { line at the beginning. This patch checks if this temporary file exists, deleting it if it does. Bug #262 http://bugzilla.vyos.net/show_bug.cgi?id=262
2013-02-19perltidy run for vyatta-op-vpnSaurabh Mohan
2013-02-05Merge + support show vpn ipsec sa detail/statistics profileSaurabh Mohan
2013-01-29Support for reset vpn ipsec-profileSaurabh Mohan
2013-01-22Dmvpn merge with mirantis jan22-2013Saurabh Mohan
2012-09-19Bugfix 8376: Add vti as an option under 'reset vpn ipsec-peer'Saurabh Mohan
Add a new cli 'reset vpn ipsec-peer <peer-ip> vti'.
2011-10-27Bugfix 7574: Fix output to match command structure for restart vpn and reset vpnJohn Southworth
(cherry picked from commit dc6d6a389a1648ebd3240691d76edf7fa523d05d)
2011-05-05Merge branch 'napa' of git.vyatta.com:/git/vyatta-op-vpn into napaJohn Southworth
2011-05-05Add ability to generate an x509 key pair (certificate signing request, ↵John Southworth
private key)
2011-05-04Fix Bug 7010 Update commands to save/retrieve files from /configMohit Mehta
* use shorter /config path when presenting configuration directory to users
2011-03-08Fix perlcritic errorJohn Southworth
2011-02-25Fix 'show vpn ike status'John Southworth
2011-02-24Make 'show vpn ipsec status' aware of the dhcp-interface optionJohn Southworth
2011-02-07Bugfix 5802: add auto-update feature, for Dynamic DNS peersJohn Southworth
2011-02-07Fix filehandlers to conform to perl style guidelinesJohn Southworth
2011-02-02Work on new IPsec operational mode script. Split into perl module; ↵John Southworth
Adjustments for showing per tunnel information; Fix parsing of ipsecstatus all when using GRE matching
2011-02-01Work on new IPsec operational mode script. Removed calls to external ↵John Southworth
functions; Cleaned up formatting
2011-02-01Work on new IPsec operational mode script. Removed calls to external ↵John Southworth
functions; Processes 6000 tunnel configuration in approx 2 sec.
2011-02-01Work on new IPsec operational mode script. Fix 'show vpn ipsec sa ↵John Southworth
nat-traversal'; Clean up formatting
2011-02-01Work on new IPsec operational mode script. Add more relevent information to ↵John Southworth
'show vpn ipsec sa'
2011-02-01Work on new IPsec operational mode script. Make processing of natt and ↵John Southworth
static values more efficient
2011-01-31Work on new IPsec operational mode script. Added sorting and fixed cases ↵John Southworth
where peer is set to '@<id>'
2011-01-31Work on new IPsec operational mode script. Rework to reduce the amount of ↵John Southworth
redundant information in 'show vpn ipsec sa detail'
2011-01-31Work on new IPsec operational mode script. Fix some syntax; make show based ↵John Southworth
on peer better; Add show ike secrets
2011-01-31Work on new IPsec operational mode script. Integrate with more CLI commandsJohn Southworth
2011-01-31Work on new IPsec operational mode script. New format for commands for the ↵John Southworth
pending addition of ipv6
2011-01-28Work on new IPsec operational mode script. Clean up capitalization; New ↵John Southworth
format for 'show vpn ipsec sa' for pending addition of ipv6
2011-01-28Work on new IPsec operational mode script. Fixed some output bugsJohn Southworth
2011-01-28Work on new IPsec operational mode script. Fixed script to work when not in ↵John Southworth
configure mode
2011-01-27Work on new IPsec operational mode script. setkey is deprecated so switched ↵John Southworth
NAT-T detection to 'ip xfrm'
2011-01-27Work on new IPsec operational mode script. Made processing of NAT-T ↵John Southworth
information more efficient
2011-01-27Work on new IPsec operational mode script. Cleaned up some un-need outputJohn Southworth
2011-01-27Work on new IPsec operational mode script. Better NAT-T detectionJohn Southworth
2011-01-27Work on new IPsec operational mode script. Fixed inverted SPIsJohn Southworth
2011-01-27Work on new IPsec operational mode script. Initial NAT-T detection codeJohn Southworth
2011-01-27Work on new IPsec operational mode script. Still needs a way to detect NAT-TJohn Southworth
2011-01-24Add new operational mode script, doesn't replace current programs yet but ↵John Southworth
included in package; Related to bugs: 5305 and 6228
2011-01-20Make adjustment so OP mode can deal with new secrets file formatJohn Southworth
(cherry picked from commit 35fa51ef099248991ab79d562462c3be6d2c8884)
2010-03-31Fix Bug 5500 Unable to establish a VPN connection from a remote peer with aMohit Mehta
dynamic IP when using FQDN identifier for remote end * fix op-mode part
2010-03-17Fix Bug 5464 "show vpn ipsec status" returns no interface and active tunnel ↵Mohit Mehta
number
2010-01-12fix show vpn commands to work with strongswanMohit Mehta
(cherry picked from commit 32927e013922e1a79b0f214773e2500a1260871a)
2010-01-12use correct path for ported newhostkey commandMohit Mehta
(cherry picked from commit dfe4041f35fdfc7d9909c297396cd40bcf3d2d21)
2010-01-12fix op-mode commands for migration to strongswanMohit Mehta
* use `ipsec update` instead of openswan's `ipsec auto` commands to make 'clear vpn ipsec-peer <> tunnel <>' work * no `ipsec barf` in strongswan. instead use detailed version of the command status i.e. `ipsec statusall` for 'show vpn debug detail' * use strongswan's syntax for `ipsec rereadall` and `ipsec status` (cherry picked from commit 2c5e47cc7871bc7da84f3a14398b15cf3b1da352)
2009-10-09* Fix Bug 4017 Add the ability to restart individual IPSec tunnelsMohit Mehta
added new operational mode commands - clear vpn ipsec-peer peer <peer> # clear all tunnels for given peer clear vpn ipsec-peer peer <peer> tunnel <tunnel> # clear specific tunnel If peer is 0.0.0.0/any/@id then tunnel is brought down and loaded again but connection is not initiated as remote end could be multiple end-points The remote ends will bring up the tunnel when they get/detect tunnel down * don't call script with sudo from templates. use sudo in script where needed * script clean up
2008-12-03Fix reference to Vyatta::VPNUtilStephen Hemminger
Should be Vyatta::VPN::Util
2008-12-02Merge branch 'jenner' of suva.vyatta.com:/git/vyatta-op-vpn into jennerStephen Hemminger
Conflicts: scripts/gen_local_rsa_key.pl
2008-12-01"vpn rsa-key generate" command broken - use new perl hierarchy.Stig Thormodsrud
2008-11-21Convert to Vyatta::Stephen Hemminger
generated by cgit v1.2.3 (git 2.39.1) at 2025-09-04 21:37:35 +0000