| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2023-09-29 | T5625: allow "restart vpn" to work when ipsec-interfaces is not set | Daniil Baturin | |
| 2022-11-21 | T4812: Add op-mode show vpn ipsec connections | Viacheslav Hletenko | |
| Add new op-mode command to show all configured VPN connections show vpn ipsec connections | |||
| 2022-04-26 | op-mode: T4395: Extend show vpn debug for IPSec | Viacheslav Hletenko | |
| Op-mode 'show vpn debug' Old Perl code 'vyatta-vpn-op.pl --op=show-vpn-debug' doesn't give us enough debug information In fact it show only 'ipsec statusall' Add python script to get all required and useful debug info | |||
| 2018-11-18 | T956: add a new script for displaying IPsec SAs. | Daniil Baturin | |
| 2018-11-05 | T304: remove the "show vpn debug detail" command that was based on a script ↵ | Daniil Baturin | |
| StrongSWAN no longer provides. | |||
| 2018-11-05 | T930: add missing sudo to ip xfrm commands. | Daniil Baturin | |
| 2017-09-03 | Fixes for show vpn ike sa and show vpn ipsec sa | jules-vyos | |
| Fixed 'show vpn ike sa' to actually show output when the tunnel isn't up. Foxed 'show vpn ipsec sa' to actually use the pretty-printing code, rather than swanctl --list-sas, which is pretty unpleasant. | |||
| 2017-07-27 | Move into the CORRECT tree location. | jules-vyos | |
| 2017-07-27 | Add templates for extended commands | jules-vyos | |
| 2017-02-08 | change ipsec newhostkey command with openssl command | Kim Hagen | |
| 2016-09-15 | Reimplementation of TriJetScud's ↵ | Kim Hagen | |
| commit:578688a25ba784d839512fefafab4cabdaf32fc5. Simpilfy the operational commands Instead of trying to parse the outout of ipsec or swanctl, just dump whatever swanctl outputs. | |||
| 2016-05-11 | Merge branch 'current' into address-debconf-warnings | C.J. Collier | |
| Conflicts: templates/show/vpn/ipsec/sa/nat-traversal/node.def.in templates/show/vpn/ipsec/sa/node.def templates/show/vpn/ipsec/status/node.def.in | |||
| 2016-05-11 | vyatta-op-vpn (0.15.0+vyos2+current2+nmu1) UNRELEASED; urgency=low | C.J. Collier | |
| * Non-maintainer upload. * address lintian issues - script-not-executable: removed #!/usr/bin/perl from .pm files - debhelper-but-no-misc-depends: added ${misc:Depends} to Depends: field - debian-rules-missing-recommended-target: added build-arch build-indep - out-of-date-standards-version: updated standards version to 3.9.4 - package-contains-linda-override: removed linda override - file-in-unusual-dir: not triggering, removed from override - script-with-language-extension: renamed vyatta-gen-x509-keypair.sh vyatta-gen-x509-keypair * address dpkg-gencontrol issue: - unknown substitution variable ${shlibs:Depends} - removed * address dpkg-source issue: - debian/source/format set to "3.0 (native)" * removed all references to /opt/vyatta but one from source Signed-off-by: C.J. Collier <cjcollier@linuxfoundation.org> | |||
| 2016-05-11 | Merge pull request #16 from LLC-Technologies-Collier/address-debconf-warnings | Kim | |
| Address debconf warnings | |||
| 2016-05-11 | Update pluto.pid references to charon.pid | Jeff Leung | |
| Since pluto doesn't exist anymore in strongSwan 5.0 and later series, we are updating references from pluto* to charon*. | |||
| 2016-05-11 | Simpilfy the operational commands | Jeff Leung | |
| Instead of trying to parse the outout of ipsec or swanctl, just dump whatever swanctl outputs. | |||
| 2016-05-11 | vyatta-op-vpn (0.15.0+vyos2+current2+nmu1) UNRELEASED; urgency=low | C.J. Collier | |
| * Non-maintainer upload. * address lintian issues - script-not-executable: removed #!/usr/bin/perl from .pm files - debhelper-but-no-misc-depends: added ${misc:Depends} to Depends: field - debian-rules-missing-recommended-target: added build-arch build-indep - out-of-date-standards-version: updated standards version to 3.9.4 - package-contains-linda-override: removed linda override - file-in-unusual-dir: not triggering, removed from override - script-with-language-extension: renamed vyatta-gen-x509-keypair.sh vyatta-gen-x509-keypair * address dpkg-gencontrol issue: - unknown substitution variable ${shlibs:Depends} - removed * address dpkg-source issue: - debian/source/format set to "3.0 (native)" Signed-off-by: C.J. Collier <cjcollier@linuxfoundation.org> | |||
| 2013-02-05 | Merge + support show vpn ipsec sa detail/statistics profile | Saurabh Mohan | |
| 2013-01-29 | Support for reset vpn ipsec-profile | Saurabh Mohan | |
| 2013-01-22 | Dmvpn merge with mirantis jan22-2013 | Saurabh Mohan | |
| 2012-09-19 | Bugfix 8376: Add vti as an option under 'reset vpn ipsec-peer' | Saurabh Mohan | |
| Add a new cli 'reset vpn ipsec-peer <peer-ip> vti'. | |||
| 2011-10-27 | Bugfix 7568: Add ability to get to in-kernel information for ipsec ↵ | John Southworth | |
| transformations (cherry picked from commit f1174364ed3380fb346ffe1d4e63b2e3684e59e7) | |||
| 2011-10-27 | Move 'clear vpn' to 'reset vpn' | John Southworth | |
| (cherry picked from commit ece19376837fb087cfd12b9418aa710ee407a8df) | |||
| 2011-05-05 | Add ability to generate an x509 key pair (certificate signing request, ↵ | John Southworth | |
| private key) | |||
| 2011-02-25 | Fix 'show vpn ike status' | John Southworth | |
| 2011-02-04 | Allow debugging of specific peers and tunnels | John Southworth | |
| 2011-02-02 | Work on new IPsec operational mode script. Split into perl module; ↵ | John Southworth | |
| Adjustments for showing per tunnel information; Fix parsing of ipsecstatus all when using GRE matching | |||
| 2011-01-31 | Work on new IPsec operational mode script. Fix some syntax; make show based ↵ | John Southworth | |
| on peer better; Add show ike secrets | |||
| 2011-01-31 | Work on new IPsec operational mode script. Integrate with more CLI commands | John Southworth | |
| 2011-01-28 | Work on new IPsec operational mode script. Integrated with the vyatta-cli | John Southworth | |
| 2011-01-21 | Bugfix 2837: Change vpn rsa-key generate to generate vpn rsa-key to be more ↵ | John Southworth | |
| consistent with the rest of the system | |||
| 2010-08-11 | remove CLI backend env variables usage | An-Cheng Huang | |
| * use the new cli-shell-api instead. | |||
| 2010-07-20 | part of fix for BZ 5839 - move clear process cmds under restart | Mohit Mehta | |
| 2010-05-26 | remove op-mode command to show vpn route in table 220 | Mohit Mehta | |
| 2010-04-19 | Fix Bug 5542 | Mohit Mehta | |
| * allow clear and show commands for IPsec even if site-to-site is not configured since l2tp might be using it | |||
| 2010-03-17 | Fix Bug 5464 "show vpn ipsec status" returns no interface and active tunnel ↵ | Mohit Mehta | |
| number | |||
| 2010-01-29 | add op-mode command to show routes added for VPN remote-subnet | Mohit Mehta | |
| 2010-01-12 | fix show vpn commands to work with strongswan | Mohit Mehta | |
| (cherry picked from commit 32927e013922e1a79b0f214773e2500a1260871a) | |||
| 2009-10-09 | * Fix Bug 4017 Add the ability to restart individual IPSec tunnels | Mohit Mehta | |
| added new operational mode commands - clear vpn ipsec-peer peer <peer> # clear all tunnels for given peer clear vpn ipsec-peer peer <peer> tunnel <tunnel> # clear specific tunnel If peer is 0.0.0.0/any/@id then tunnel is brought down and loaded again but connection is not initiated as remote end could be multiple end-points The remote ends will bring up the tunnel when they get/detect tunnel down * don't call script with sudo from templates. use sudo in script where needed * script clean up | |||
| 2008-07-22 | Fix permission on call to ipsec. | Stig Thormodsrud | |
| 2008-06-12 | Fix 3285: "show vpn debug" has bash error | Stig Thormodsrud | |
| 2008-05-23 | Fix 3285: CLI command does not restart VPN: run clear vpn ipsec-process | Stig Thormodsrud | |
| 2008-04-08 | Fix Bug 3069 Help strings should be standardized | Mohit Mehta | |
| - help strings standardized in vyatta-op-vpn | |||
| 2008-03-20 | Fix 3023 "show vpn debug" displays system errors | Stig Thormodsrud | |
| - don't call the debug script if vpn is not configured. | |||
| 2008-03-17 | Fix 2838: Clearing VPN process starts VPN , even if not configured. | Stig Thormodsrud | |
| - fix sloppy script which dies with "Unknown op" on valid ops. - use vyatta config rather than ipsec.conf to determine if running | |||
| 2008-02-24 | Call 'gen_local_rsa_key.pl' from '/opt/vyatta/bin/sudo-users/' rather than ↵ | Marat Nepomnyashy | |
| '/opt/vyatta/sbin/'. Bug 2883 fix. | |||
| 2008-02-22 | Fixed-up operator commands 'clear vpn ipsec-process' and 'show vpn debug ↵ | Marat Nepomnyashy | |
| detail' so that they no longer require sudo password. | |||
| 2008-02-21 | Moved execution of 'show vpn' commands to '/opt/vyatta/bin/sudo-users' so ↵ | Marat Nepomnyashy | |
| that operator users can execute them. Bug 2865 fix. | |||
| 2008-02-17 | Fix 2838 Clearing VPN process starts VPN, even if not configured | Stig Thormodsrud | |
| 2008-01-21 | Added autocompletion for commans 'show vpn ipsec sa detail connection *'.debian/0.1 | Marat Nepomnyashy | |
 |
index : vyatta-op-vpn.git | |
| Vyatta VPN operations mechanism (mirror of https://github.com/vyos/vyatta-op-vpn.git) |
| summaryrefslogtreecommitdiff |