projects / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: beffdc6) | patch
ike: support multiple addresses, ranges and subnets in IKE address config
authorMartin Willi <martin@revosec.ch>
Thu, 25 Jul 2013 13:37:13 +0000 (15:37 +0200)
committerMartin Willi <martin@revosec.ch>
Wed, 4 Sep 2013 08:38:37 +0000 (10:38 +0200)
commit3070697f9f7cc87e5abd9924dccedda9b2656100
tree37ed9ecd70ba236de9a02ec45262256b24a62579tree | snapshot
parentbeffdc6ab8cb5139c9e0b0ee2e7585c5262e702fcommit | diff
ike: support multiple addresses, ranges and subnets in IKE address config

Replace the allowany semantic by a more powerful subnet and IP range matching.
Multiple addresses, DNS names, subnets and ranges can be specified in a comma
separated list. Initiators ignore the ranges/subnets, responders match
configurations against all addresses, ranges and subnets.
16 files changed:
src/charon-cmd/cmd/cmd_connection.c diff | blob | history
src/charon-nm/nm/nm_service.c diff | blob | history
src/conftest/config.c diff | blob | history
src/frontends/android/jni/libandroidbridge/backend/android_service.c diff | blob | history
src/frontends/osx/charon-xpc/xpc_dispatch.c diff | blob | history
src/libcharon/config/ike_cfg.c diff | blob | history
src/libcharon/config/ike_cfg.h diff | blob | history
src/libcharon/plugins/ha/ha_tunnel.c diff | blob | history
src/libcharon/plugins/load_tester/load_tester_config.c diff | blob | history
src/libcharon/plugins/maemo/maemo_service.c diff | blob | history
src/libcharon/plugins/medcli/medcli_config.c diff | blob | history
src/libcharon/plugins/medsrv/medsrv_config.c diff | blob | history
src/libcharon/plugins/sql/sql_config.c diff | blob | history
src/libcharon/plugins/stroke/stroke_config.c diff | blob | history
src/libcharon/plugins/stroke/stroke_list.c diff | blob | history
src/libcharon/plugins/uci/uci_config.c diff | blob | history
strongSwan - IPsec VPN