 David Woodhouse
|
9b6657caa1
oncp: Tear down ESP if receiving new config fails
|
5 years ago |
|
David Woodhouse
|
31ff2f6551
Increase buffer size for oNCP configuration
|
5 years ago |
|
David Woodhouse
|
b4f50f8bd5
For Pulse, send ESP only of the same IP protocol as we're connected over
|
5 years ago |
|
David Woodhouse
|
59d1622992
Set ESP Next Header correctly for IPv6 again
|
5 years ago |
|
David Woodhouse
|
931bdf10b4
Split out construct_esp_packet() to avoid duplication
|
5 years ago |
|
David Woodhouse
|
b795ff3525
Add Pulse Connect Secure support
|
5 years ago |
|
David Woodhouse
|
347060a852
Consolidate common parts of setup_esp_keys()
|
5 years ago |
|
David Woodhouse
|
7d14e11619
Don't read from non-readable fds
|
5 years ago |
 Daniel Lenski
|
1f5b30e731
no need to send multiple probe packets as an ESP keepalive
|
5 years ago |
|
Daniel Lenski
|
62c60badd1
Remove first oNCP negotiation request (only second is necessary)
|
6 years ago |
|
Daniel Lenski
|
46de5eee61
Reduce unnecessary connection-rebuilding for Juniper
|
6 years ago |
|
Daniel Lenski
|
a4b9d85dcc
Clarify a few uncommented corners of the ESP support
|
6 years ago |
|
Daniel Lenski
|
f3b37c5bf2
fix memory leak in Juniper logout function (caught with valgrind)
|
6 years ago |
|
Daniel Lenski
|
ae550fbbcc
move sending of ONCP control packets for enabling/disabling ESP into oncp.c
|
6 years ago |
|
David Woodhouse
|
69226f4006
Move Juniper ESP probe handling to oncp.c
|
6 years ago |
|
Daniel Lenski
|
0ca5974685
add new_keys argument to esp_setup_keys() in preparation for supporting GlobalProtect ESP
|
7 years ago |
|
Daniel Lenski
|
342a85bf8b
relax requirements for Juniper hostname packet response
|
7 years ago |
|
Daniel Lenski
|
76583bb434
factor out common dump_buf_hex() and free_optlist() utility functions
|
7 years ago |
|
Daniel Lenski
|
b2b1dd0702
store length of ESP encryption and HMAC keys so that they can be manipulated separately for both Juniper and GP
|
7 years ago |
|
Daniel Lenski
|
df273812d1
add oncp_bye() to logout the Juniper session
|
7 years ago |
 Nikolay Martynov
|
9ac5e23221
Do not drop vpn connection if packet arrived is larger than MTU
|
7 years ago |
|
Nikolay Martynov
|
575ae537cb
IPv6 packet size field doesn't include header size, take this into account
|
8 years ago |
 David Woodhouse
|
8f8734bfa8
Increase oNCP configuration buffer size
|
8 years ago |
 Jon DeVree
|
4ce9c9241f
Add Content-Length header to mimic official pulse client
|
8 years ago |
|
David Woodhouse
|
c81ebc6f84
Simplify ESP conditionals
|
8 years ago |
|
David Woodhouse
|
41b8d2b38a
Fix FreeBSD9 build warnings
|
8 years ago |
|
David Woodhouse
|
56fcfea71c
Fix warning about unused esp_kmp_hdr in non-ESP build
|
8 years ago |
|
David Woodhouse
|
4aad4c8778
Strip commas from DNS search paths
|
9 years ago |
|
David Woodhouse
|
db3501d5c7
Fix typos pointed out by Anders Jonsson
|
9 years ago |
|
David Woodhouse
|
d1b86efd84
Handle fragmented KMP 301 packet in setup
|
9 years ago |
