Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/vyos/vyatta-cfg-vpn
Vyatta VPN configuration
https://github.com/vyos/vyatta-cfg-vpn
e376591198e41eee717c0ca6879419a937990378 authored over 3 years ago by Christian Poessinger <[email protected]>
IPsec: T627: Fix misuse of `vpn_die()`
dd6419e6e215cc19690686dd474357028b2e6dd6 authored almost 4 years ago by Daniil Baturin <[email protected]>221a762e5ceb898cd69d2dec69a00539f434549d authored almost 4 years ago by erkin <[email protected]>
pre-shared-secret: T3131: Fix typo of word secret
6497cdbbf72fe8298a770bcf2627b7b04561320c authored about 4 years ago by Daniil Baturin <[email protected]>
There is typo in the spelling of "secret" mentioned in detailed information
of the pre-shared-se...
993f5bf9f54bcb7af20d44e7618586b55064a372 authored about 4 years ago by Daniil Baturin <[email protected]>
cfg-vpn: T2916: Fix typo for vti interface disable state
c3c27021ac9b8b3d946e4d7a5eeb9b47e3e3206c authored over 4 years ago by Daniil Baturin <[email protected]>2d24f456b15dd3a5c53b8119cbc98f45fba3f89e authored over 4 years ago by sever-sever <[email protected]>
vfg-vpn: T2895: Removing unnecessary duplicate check for leftsubnet
10b8c6fdde6b6abc06200d60218950a9af81e34e authored over 4 years ago by Daniil Baturin <[email protected]>e93ca9815a95329d42889ded196b4943b639d189 authored over 4 years ago by sever-sever <[email protected]>
cfg-vpn: T2806: Fix local prefix is source from loopback
13d2b50ec7ed3641bb56c2fdcce07807777bf220 authored over 4 years ago by Christian Poessinger <[email protected]>e4b094de012e041f7556af17a4e16f76163872f1 authored over 4 years ago by sever-sever <[email protected]>
IPsec: T2647: Replace obsoleted ipsec.conf option
342eb4fae3fd6c3b79440a9932c43f29e27d74c3 authored over 4 years ago by Daniil Baturin <[email protected]>c3fd8886f733ea06581b8f98bb92d023c1419b5a authored over 4 years ago by erkin <[email protected]>
IPSec tunnels: T2728: Fixed protocol selector for tunnels
ce56258f8dd52c5a14482a1055e4f23b89e462f6 authored over 4 years ago by Daniil Baturin <[email protected]>The protocol selector used for tunnels in transport mode was ignored by the configuration script...
cec720d0fd241f656100b10674bf2c7c4f02b4ea authored over 4 years ago by zsdc <[email protected]>ESP: T2701: Fixed "pfs enable" option usage
66a3c73455d80adc920d4120fb31a9b0070b4158 authored over 4 years ago by Daniil Baturin <[email protected]>When in ESP group configured "pfs enable" option (default behavior), PFS settings are taken from...
c56ddd91ac9a99bb410c872a4d777e962c08f36d authored over 4 years ago by zsdc <[email protected]>9b27f7fd624a69a242f84f73a8b085587fb18d0b authored over 4 years ago by Christian Poessinger <[email protected]>
strongSwan: T2000: Add warning message if local prefix did not config…
756b511a02bf9367540368d44c1e0c05e468a2d0 authored over 4 years ago by Daniil Baturin <[email protected]>600e35bbae36ed5482c0816d077c86ab1a84c2ec authored over 4 years ago by DmitriyEshenko <[email protected]>
dmvpn: T2091: Move variable to cycle for multiple profiles
e0591ef0d2726fbb56261e888d59c83628d501e6 authored over 4 years ago by Daniil Baturin <[email protected]>7824620387475ccf977b1c859422b5fd7f0e8029 authored over 4 years ago by Daniil Baturin <[email protected]>
VTI: T1291: Fix for invlid VTI interface down state
5b016450085ceeb285175a71ddb5a8251221deb6 authored over 4 years ago by Christian Poessinger <[email protected]>In case when between hosts exists two IPSec tunnels for VTI (for example, when both sides act as...
00825afd79a45977698e25f31db65fc60d96628f authored over 4 years ago by zsdc <[email protected]>5929f6f61635fe9ba92fe294bead2318c7aeebed authored over 4 years ago by DmitriyEshenko <[email protected]>
strongSwan: T2049: Added lost "disable" option to ESP PFS settings
64ebf2127d62165870e03653659116e381d1582e authored over 4 years ago by Christian Poessinger <[email protected]>a775210134986905b4c34fe0ba72e48b61681178 authored over 4 years ago by zsdc <[email protected]>
8522b9cb88f918e62f627bc983b12b48a7a34a63 authored almost 5 years ago by John Estabrook <[email protected]>
c03e8eb7e06433feef9ab3f163620b0c283ef733 authored almost 5 years ago by Christian Poessinger <[email protected]>
strongSwan: T2049: Extended list of cipher suites
1a81e83b00406ef4ad8d0e126ab28037c405e206 authored almost 5 years ago by Christian Poessinger <[email protected]>
The list of supported cipher suites actualized according to the:
https://wiki.strongswan.org/pro...
9e7435826d97d1e603edb05efb89ece95887c0ba authored about 5 years ago by Christian Poessinger <[email protected]>
e68d155960822d85b4f08acb1fa48cac8b49fddf authored about 5 years ago by Christian Poessinger <[email protected]>
* 'equuleus' of github.com:vyos/vyatta-cfg-vpn:
Jenkins: import Pipeline from vyos-1x commit b...
c4c8711939f709c445fe634b2f624933fa9651ab authored about 5 years ago by Christian Poessinger <[email protected]>
* 'current' of github.com:vyos/vyatta-cfg-vpn:
dmvpn: T1784: Run ipsec-settings before DMVPN
...
dmvpn: T1784: Run ipsec-settings before DMVPN
006beada13e22929b7439a2123f0b434b666d4cc authored about 5 years ago by Christian Poessinger <[email protected]>69678925f5383f0087b0c764e272b6c2ff25f4bd authored about 5 years ago by DmitriyEshenko <[email protected]>
T1780 Adding IPSec IKE close-action
a27ec88521929ebf4354ea09e84559ad41837da8 authored about 5 years ago by Christian Poessinger <[email protected]>495c59a20cf35aeb5449f9166859f823c0ab08a7 authored about 5 years ago by DmitriyEshenko <[email protected]>
f3a9ad83ac87263fa3014bbe4678fd2d116c4bfc authored over 5 years ago by Christian Poessinger <[email protected]>
2ff7343c11aad93d1d6e00c9bb8ac316d9320227 authored over 5 years ago by Christian Poessinger <[email protected]>
4fa5187c66fe9b7375b6b3edd2d422706924d6e4 authored over 5 years ago by Daniil Baturin <[email protected]>
662278f70a1269873651ff175980b4acea76633a authored over 5 years ago by UnicronNL <[email protected]>
[accel-l2tp] - T834: L2TP implementation
a36a6c764bc7fb2d1f76179c13e0b6c7d9cf61a6 authored over 5 years ago by hagbard-01 <[email protected]>
- disable legacy update-l2tp.pl
- ipsec-settings.py last entry to run after all the legacy s...
7500490824d1675c62c152abc1ac49fe2324f62e authored over 5 years ago by runborg <[email protected]>
51e07664ab03d001dfca457db06d82325d1e964f authored over 5 years ago by hagbard <[email protected]>
b117d9a9e8adce4b05fe493b60a1c2fb653e01f9 authored over 5 years ago by Kim Hagen <[email protected]>
68ebd6165d7b5aba30b3b8e924675cb8983da55c authored over 5 years ago by Kim <[email protected]>
* make dhcp interface work for vti interfaces
* clean up code, loger timeout use python api
...
9900fb602e29b52e940ba7ee6eae3886b764fbfe authored almost 6 years ago by hagbard <[email protected]>
2d3677832f40a4ff0db73345aed160e40e248fc7 authored almost 6 years ago by hagbard <[email protected]>
a1121dbb2f99e61103ee3973a2f719396162ddb2 authored almost 6 years ago by Kim <[email protected]>
d8557aae8831317163ba884ec12e5f2b47633ecc authored almost 6 years ago by Kim Hagen <[email protected]>
a774a829810a1adccabda31028f727fd2ba3b978 authored almost 6 years ago by Kim Hagen <[email protected]>
12996340fe2a1e15613bb047d2f649f6205688ad authored almost 6 years ago by Daniil Baturin <[email protected]>
cb29fb982e5b3a97520de0dbcba4b0286d87281b authored almost 6 years ago by hagbard <[email protected]>
2116cbff52c588fe68dd91faf903c4d00ba9fd96 authored almost 6 years ago by hagbard <[email protected]>
8365c04cccb6e0216b048ca30e289081f0c0ae44 authored almost 6 years ago by hagbard <[email protected]>
2fff1e01a2bf70af8da2b38375d08ee3213db284 authored about 6 years ago by Daniil Baturin <[email protected]>
a413b8acc402c52fcc112b27ed722709db84579b authored about 6 years ago by hagbard <[email protected]>
de1f3fbfaaa499e476ae15d53a023e286908c009 authored about 6 years ago by Daniil Baturin <[email protected]>
a15cc184a9d2f5fcff971828bb5f043bb244d6dc authored about 6 years ago by Daniil Baturin <[email protected]>
c99bab513e81e7d3e135a57d95cdf1375ead393c authored about 6 years ago by Daniil Baturin <[email protected]>
2fbd0e519cc232d86651df3f00eca1135ed58af8 authored over 6 years ago by Daniil Baturin <[email protected]>
T787: Make sure dmvpn config is generated after ipsec config.
68b37220255fff247cc8796fee29070d2634707c authored over 6 years ago by Daniil Baturin <[email protected]>3b09d829a524dceee31c88f71e49ab93b1078961 authored over 6 years ago by Runar Borge <[email protected]>
Two IPsec kernel stacks are currently available: KLIPS and NETKEY. The
Linux kernel NETKEY code ...
'interfaces' option no longer available in StrongSWAN as of their Wiki [1].
[1]: https://wiki.s...
ac3e95a9fce6ce8fc9592072a66fcf140f123e36 authored over 6 years ago by Christian Poessinger <[email protected]>9e5bbf83dfd8698488baadc3e6d74df6924908b6 authored over 6 years ago by Daniil Baturin <[email protected]>
60fc8a28827c55050ead78371fbefd7566df6287 authored over 6 years ago by Daniil Baturin <[email protected]>
Using the default: tag in the template for now, this issue should be
addressed properly when we g...
5ff70d5fe970fa13b76ed4207dded560cd6b3ea1 authored over 6 years ago by Daniil Baturin <[email protected]>
In 5.5 from stretch, it's inside the swanctl package.
In 5.6 from sid, the swanctl package depen...
Lowered minimum DPD interval and timeout as per T542
4f43655e6f68257a8f3e27ebe11846de5a7a1c93 authored almost 7 years ago by Kim <[email protected]>1d0a489519e0f67985b5b92ebaf2723b826aef20 authored almost 7 years ago by unixninja92 <[email protected]>
T126: charon listening on ALL interfaces
489211d40ccd6d594817993a94d12278da7c5579 authored about 7 years ago by Daniil Baturin <[email protected]>b53019e4bf1b51b40cefc263479ee0531341cb78 authored about 7 years ago by Taniadz <[email protected]>
d0e7c861ed20d871d71efd46caf517bbee8c1a69 authored about 7 years ago by Taniadz <[email protected]>
55d30fb7a0cf3e794cacef8210590297c37373c2 authored about 7 years ago by Taniadz <[email protected]>
60960c1c891d99d2fe10aa0daa5367e31833cb25 authored about 7 years ago by Taniadz <[email protected]>
ff15bdcdeda459bb7cf5de450d02ea2cee53041c authored about 7 years ago by Daniil Baturin <[email protected]>
Fix VTI interface configuration to set both ikey and okey
18f30fbda88e075fbd48459f2f6d646ba333ff3c authored over 7 years ago by Kim <[email protected]>
Without this, the outgoing traffic is marked and encrypted but incoming
traffic isn't properly f...
T287: Add missingok to logrotate for ipsec
876cb466c7256973917dc56f81f08bf8364b900d authored almost 8 years ago by Daniil Baturin <[email protected]>If this is not present, it causes hourly messages in /var/log/messages like this:
Mar 2 19:1...
0ff779958f9c8951bb7e3e866ca52bc70b470fa9 authored almost 8 years ago by Paul Gear <[email protected]>7308178f1b9925064b728a53d79bbdcaef6eaf20 authored almost 9 years ago by UnicronNL <[email protected]>
enable config for dead peer detection
82b5e5a3763affe18d77f707f614ccc56d0c84d6 authored almost 9 years ago by UnicronNL <[email protected]>b5deaca6cebe4ea23f818e2db9447071a6531c0c authored almost 9 years ago by UnicronNL <[email protected]>
ce7363f43a0eedfd42c5df5753ded95f648f0108 authored almost 9 years ago by Kim Hagen <[email protected]>
c27d2596db3acd27b8beaded9502cc48afb20c27 authored almost 9 years ago by Kim Hagen <[email protected]>
984030a79c415ac5d4041db1bd638b86946871fd authored almost 9 years ago by Kim Hagen <[email protected]>
9118f812de63247b4d4ee9e4262d040090697bea authored almost 9 years ago by Kim Hagen <[email protected]>
e6bde39b75eca1f4b30b7d4fa3c6eb9dd0100775 authored almost 9 years ago by Kim Hagen <[email protected]>
38ddb04edcf5d9a87edd7047ff3f2bce9bf0ba24 authored almost 9 years ago by Daniil Baturin <[email protected]>
a9d0b5972c64c1d32fe89def263df635525b1d7d authored almost 9 years ago by Daniil Baturin <[email protected]>
This reverts commit fbddff7f2b6b485c93b5d3cf4d60a75f84c3a2b6.
2cda998101aa8d83ab92e9d3d1abddf672ac2c2d authored almost 9 years ago by Kim Hagen <[email protected]>This reverts commit 8353f0f8fc746c69d6006e5bba9baf45afe16385.
849551db87c42494d7c44fd463aebba003ba978e authored almost 9 years ago by Kim Hagen <[email protected]>