sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-04 00:00:14 -04:00
Code Issues Projects Releases Wiki Activity
strongswan/conf/plugins
History
Tobias Brunner 04486507b2 kernel-netlink: Add an option to install routes for SAs with XFRM interfaces 
Since these might conflict with IKE traffic, this requires special care.
One option is to install bypass policies for the peer, which install
appropriate (throw) routes.  However, that won't work if the traffic to
the gateway itself should be protected, in particular, for host-to-host
tunnels.  So an alternative is to set a mark for the IKE socket and then
exclude that traffic from table 220 via the kernel-netlink plugin's
fwmark option.
2023-02-22 13:37:45 +01:00
..
addrblock.opt
addrblock: Allow limiting validation depth of issuer addrblock extensions
2022-01-24 17:32:06 +01:00
android_log.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
attr-sql.opt
attr-sql: Make release of online leases during startup optional
2017-05-19 15:22:51 +02:00
attr.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
bliss.opt
Implemented improved BLISS-B signature algorithm
2015-02-25 21:45:34 +01:00
botan.opt
botan: Use strongSwan's RNG interface in Botan plugin
2021-02-15 09:27:51 +01:00
bypass-lan.opt
bypass-lan: Allow ignoring or only considering subnets of specific interfaces
2017-02-08 10:38:28 +01:00
certexpire.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
coupling.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
curl.opt
curl: Add an option to select the SSL/TLS backend (if available)
2023-01-23 11:17:33 +01:00
dhcp.opt
dhcp: Only use DHCP server port if explicitly configured
2018-07-02 11:39:22 +02:00
dnscert.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
drbg.opt
drbg: Implemented NIST SP-800-90A DRBG
2019-10-16 16:46:24 +02:00
duplicheck.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-aka-3gpp2.opt
eap-aka-3gpp: Add plugin that implements 3GPP MILENAGE algorithm in software
2017-07-05 10:03:38 +02:00
eap-aka-3gpp.opt
eap-aka-3gpp: Add plugin that implements 3GPP MILENAGE algorithm in software
2017-07-05 10:03:38 +02:00
eap-aka.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-dynamic.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-gtc.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-peap.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-radius.opt
conf: Explicitly add time unit to default value for options that accept them
2022-11-10 16:49:35 +01:00
eap-sim.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-simaka-sql.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-tls.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
eap-tnc.opt
Implemented PT-EAP protocol (RFC 7171)
2014-05-12 06:59:21 +02:00
eap-ttls.opt
Implemented PT-EAP protocol (RFC 7171)
2014-05-12 06:59:21 +02:00
error-notify.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
ext-auth.opt
ext-auth: Add an ext-auth plugin invoking an external authorization script
2014-10-06 18:30:46 +02:00
forecast.opt
forecast: Document strongswan.conf options
2015-02-20 16:34:55 +01:00
gcrypt.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
ha.opt
conf: Fix typo for ha plugin's buffer size option
2022-01-03 10:20:08 +01:00
imc-attestation.opt
libimcv: Evaluate IMA SHA-256 measurements
2021-01-08 11:00:15 +01:00
imc-hcd.opt
Some whitespace fixes
2019-08-22 15:18:06 +02:00
imc-os.opt
Some whitespace fixes
2019-08-22 15:18:06 +02:00
imc-scanner.opt
Updated IMC/IMV entries in strongswan.conf man page
2014-05-31 20:37:57 +02:00
imc-swima.opt
imc-swima: Support subscriptions
2018-07-29 10:37:36 +02:00
imc-test.opt
Updated IMC/IMV entries in strongswan.conf man page
2014-05-31 20:37:57 +02:00
imv-attestation.opt
pts: Variable size PCR banks
2020-10-07 16:54:32 +02:00
imv-os.opt
Updated IMC/IMV entries in strongswan.conf man page
2014-05-31 20:37:57 +02:00
imv-scanner.opt
Updated IMC/IMV entries in strongswan.conf man page
2014-05-31 20:37:57 +02:00
imv-swima.opt
imv-swima: Implemented SW event processing
2017-07-08 23:19:51 +02:00
imv-test.opt
Updated IMC/IMV entries in strongswan.conf man page
2014-05-31 20:37:57 +02:00
ipseckey.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
kernel-libipsec.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
kernel-netlink.opt
kernel-netlink: Add an option to install routes for SAs with XFRM interfaces
2023-02-22 13:37:45 +01:00
kernel-pfkey.opt
kernel-pfkey: Add option to install routes via internal interface
2018-03-21 10:37:49 +01:00
kernel-pfroute.opt
kernel-pfroute: Set lower MTU on TUN devices
2021-11-09 09:43:01 +01:00
led.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
load-tester.opt
load-tester: Also request a virtual IPv6 address
2020-10-27 16:40:38 +01:00
lookip.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
ntru.opt
ntru: Replaced ntru_drbg by drbg
2019-10-16 16:46:24 +02:00
openssl.opt
openssl: Make fips_mode option work with OpenSSL 3
2021-12-08 11:34:18 +01:00
osx-attr.opt
conf: Add documentation for new osx-attr option
2015-08-28 15:49:58 +02:00
p-cscf.opt
p-cscf: Make sending requests configurable and disable it by default
2016-03-10 11:57:38 +01:00
pkcs11.opt
pkcs11: Fix documentation of load_certs option
2017-02-06 11:18:47 +01:00
radattr.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
random.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
resolve.opt
Fixed some typos, courtesy of codespell
2022-12-22 19:03:37 +01:00
revocation.opt
revocation: Enforce a (configurable) timeout when fetching OCSP/CRL
2022-10-03 10:48:46 +02:00
save-keys.opt
save-keys: Add options to enable saving IKE and/or ESP keys
2018-02-15 23:03:29 +01:00
socket-default.opt
socket-default: Add an option to force the sending interface via IP_PKTINFO
2017-05-23 16:49:39 +02:00
sql.opt
conf: Install config files world-readable but warn about permissions for certain options
2014-02-12 15:16:57 +01:00
stroke.opt
stroke: Add an option to disable side-swapping of configuration options
2015-08-21 18:19:26 +02:00
systime-fix.opt
systime-fix: Add timeout option to stop waiting for valid system time
2017-11-08 16:20:35 +01:00
tnc-ifmap.opt
conf: Install config files world-readable but warn about permissions for certain options
2014-02-12 15:16:57 +01:00
tnc-imc.opt
conf: Document libtnccs options
2014-02-12 14:34:34 +01:00
tnc-imv.opt
conf: Document libtnccs options
2014-02-12 14:34:34 +01:00
tnc-pdp.opt
conf: Install config files world-readable but warn about permissions for certain options
2014-02-12 15:16:57 +01:00
tnccs-11.opt
conf: Document libtnccs options
2014-02-12 14:34:34 +01:00
tnccs-20.opt
Some whitespace fixes
2019-08-22 15:18:06 +02:00
tpm.opt
libtpmtss: Establish session with TPM 2.0
2021-12-11 16:21:59 +01:00
unbound.opt
conf: Replace hard-coded /etc where appropriate
2023-01-16 11:36:58 +01:00
updown.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
vici.opt
vici: Document strongswan.conf options
2014-05-07 14:13:38 +02:00
whitelist.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
wolfssl.opt
wolfssl: Fixes, code style changes and some refactorings
2019-04-24 12:26:08 +02:00
xauth-eap.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00
xauth-pam.opt
conf: Options of all plugins documented
2014-02-12 14:34:34 +01:00