| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | Backport #5512 RADIUS secret | Phil Davis | 2015-11-23 | 1 | -1/+1 |
| * | Set leftsendcert=always for IKEv2 configurations with certificates to better ... | jim-p | 2015-10-28 | 1 | -0/+5 |
| * | terminate argument parsing before giving the log level. Ticket #5340 | Chris Buechler | 2015-10-26 | 1 | -1/+1 |
| * | Use 1-6 rather than 0-5 for IPsec logging levels, to stay away from complicat... | Chris Buechler | 2015-10-26 | 1 | -4/+4 |
| * | Make setting charon.plugins.attr.subnet conditional on net_list being set. Set | Matt Smith | 2015-10-21 | 1 | -3/+1 |
| * | Disable strongswan logging under auth since it's all logged under daemon, | Chris Buechler | 2015-10-20 | 1 | -0/+5 |
| * | Limit strongswan trusted CA certificates to those required for authentication of | Matt Smith | 2015-10-16 | 1 | -22/+46 |
| * | only use daemon and not auth for strongswan logging. As it was, all logs were... | Chris Buechler | 2015-10-15 | 1 | -6/+0 |
| * | Set rightca for IPsec phase 1 using Mutual RSA, Mutual RSA + xauth, or EAP-TL... | Matt Smith | 2015-10-15 | 1 | -0/+24 |
| * | Remove original rightsourceip. Ticket #5284 | Chris Buechler | 2015-10-13 | 1 | -1/+0 |
| * | Remove strongswan's cert directories and repopulate them, to ensure no remove... | Chris Buechler | 2015-10-12 | 1 | -0/+5 |
| * | Fix up strongswan logging levels. Remove charondebug since strongswan.conf se... | Chris Buechler | 2015-10-12 | 1 | -7/+11 |
| * | https://redmine.pfsense.org/issues/5207 | Matt Smith | 2015-10-07 | 1 | -2/+1 |
| * | Add support for an IPv6 pool for mobile clients. | Matt Smith | 2015-10-07 | 1 | -4/+13 |
| * | Specify PSK for mobile configurations without the leading ID selectors. Fixes... | Chris Buechler | 2015-10-02 | 1 | -0/+3 |
| * | When using eap-radius, if the virtual address pool is left blank, pull the IP... | jim-p | 2015-10-01 | 1 | -2/+6 |
| * | Specify %any where identifier is "any", so the note on these pages | Chris Buechler | 2015-10-01 | 1 | -0/+3 |
| * | Bring this back, I'll fix issues afterwards. Revert "Remove "auto", it's just... | Chris Buechler | 2015-09-29 | 1 | -1/+3 |
| * | Add L2TP server's interface to mpd.conf | TarasSavchuk | 2015-09-21 | 1 | -0/+7 |
| * | Fix missing DH group 22-24 | Michael Newton | 2015-08-04 | 1 | -0/+9 |
| * | Change the log for CRLs with no data (exists but no certs revoked) to a warni... | Chris Buechler | 2015-07-25 | 1 | -1/+1 |
| * | Add 'any' option for peer ID, for mobile IPsec scenarios where you can't or d... | Chris Buechler | 2015-07-25 | 1 | -1/+3 |
| * | Only omit rightid for PSK mobile types. Flip the logic here as the 2_1 ! | Chris Buechler | 2015-07-23 | 1 | -2/+3 |
| * | Remove "auto", it's just a synonym for IKEv2. Ticket #4873 | Chris Buechler | 2015-07-23 | 1 | -3/+1 |
| * | include vpn.inc so IPsec CRL reload works. require_once filter.inc in | Chris Buechler | 2015-07-23 | 1 | -0/+1 |
| * | make the IPsec bypass LAN from LAN subnet to LAN subnet rather than from | Chris Buechler | 2015-07-22 | 1 | -1/+1 |
| * | Add IPsec advanced option for strict CRL checking | Chris Buechler | 2015-07-22 | 1 | -0/+4 |
| * | write out built-in CRLs for strongswan | Chris Buechler | 2015-07-22 | 1 | -2/+18 |
| * | Fixes for IPSec ASN1.DN, ticket #4792 | Renato Botelho | 2015-07-17 | 1 | -7/+17 |
| * | Add leftid and rightid value between double quotes on ipsec config when type ... | Renato Botelho | 2015-07-16 | 1 | -0/+8 |
| * | Fix issue_ip_type var name spelling | Phil Davis | 2015-07-15 | 1 | -6/+6 |
| * | Fix keyid identifers, and go back to using %any in ipsec.secrets as in previo... | Chris Buechler | 2015-07-03 | 1 | -2/+4 |
| * | sync up vpn.inc with master. Mostly white space and style changes | Chris Buechler | 2015-07-02 | 1 | -280/+426 |
| * | rereadall is not enough here, restore reload call to make sure everything wor... | Renato Botelho | 2015-06-23 | 1 | -0/+1 |
| * | Replace ipsec rereadsecrets + reload by single rereadall, that will re-read a... | Renato Botelho | 2015-06-23 | 1 | -2/+1 |
| * | Instead of sending USR1, just call ipsec reload. And before it, call ipsec re... | Renato Botelho | 2015-06-23 | 1 | -1/+2 |
| * | Partially revert 019ee2bc8c, this workaround is not necessary. Real fix will ... | Renato Botelho | 2015-06-23 | 1 | -8/+0 |
| * | Add a workaround for ticket #4785: | Renato Botelho | 2015-06-23 | 1 | -4/+18 |
| * | Use $myid in ipsec.secrets. Ticket #4785 | Chris Buechler | 2015-06-22 | 1 | -2/+2 |
| * | Specify $myid rather than %any here, otherwise user manager and mobile PSKs w... | Chris Buechler | 2015-06-21 | 1 | -3/+4 |
| * | Fixes #4537 On 32bit platform do not enable direct dispatch on IPsec since it... | Ermal LUÇI | 2015-06-10 | 1 | -0/+3 |
| * | Seems strongswan 5.3.0 has improved the situation on putting multiple phase2 ... | Ermal LUÇI | 2015-04-30 | 1 | -4/+4 |
| * | Revert "Use a dirty hack to make IKEv1 with multiple phase2 to work correctly... | Ermal LUÇI | 2015-04-30 | 1 | -3/+0 |
| * | Revert "Provide a description for the dirty hack to not come back scratching.... | Ermal LUÇI | 2015-04-30 | 1 | -5/+0 |
| * | Provide a description for the dirty hack to not come back scratching.... on it | Ermal LUÇI | 2015-04-24 | 1 | -0/+5 |
| * | Use a dirty hack to make IKEv1 with multiple phase2 to work correctly with on... | Ermal LUÇI | 2015-04-24 | 1 | -0/+3 |
| * | Is better to send the signal to starter rather than to charon directly. Start... | Ermal LUÇI | 2015-04-24 | 1 | -4/+3 |
| * | This was meant to remove duplicates here, even though charon will do by itsel... | Ermal LUÇI | 2015-04-23 | 1 | -1/+1 |
| * | Revert "Revert "Move to specifically specifying the ID type apart when an ip ... | Ermal LUÇI | 2015-04-21 | 1 | -11/+13 |
| * | Allow to configure new modes for phase1 according to RFC 5903 by manually mer... | Ermal LUÇI | 2015-04-20 | 1 | -0/+9 |
