l2tpns.git
17 years agoSecurity: Rhys Kidd identified a vulnerability in the handling of
bodea [Mon, 4 Dec 2006 20:50:02 +0000 (20:50 +0000)]
Security: Rhys Kidd identified a vulnerability in the handling of
heartbeat packets.  Drop oversize heartbeat packets.

18 years agofix comment
bodea [Mon, 23 Oct 2006 02:51:53 +0000 (02:51 +0000)]
fix comment

18 years agoallow DNS servers to be specified using either old or new vendor-specific Ascend...
bodea [Wed, 2 Aug 2006 14:17:30 +0000 (14:17 +0000)]
allow DNS servers to be specified using either old or new vendor-specific Ascend formats

18 years agocleanup clash between timeout and session_timout
bodea [Wed, 2 Aug 2006 13:35:39 +0000 (13:35 +0000)]
cleanup clash between timeout and session_timout

18 years agofix sign problem with reporting of unknown RADIUS VSAs
bodea [Wed, 2 Aug 2006 12:54:45 +0000 (12:54 +0000)]
fix sign problem with reporting of unknown RADIUS VSAs

18 years agofix log message
bodea [Mon, 17 Jul 2006 07:53:08 +0000 (07:53 +0000)]
fix log message

18 years agoresolve gcc 4.1 warning by changing ip_hash to a union
bodea [Sat, 1 Jul 2006 14:07:35 +0000 (14:07 +0000)]
resolve gcc 4.1 warning by changing ip_hash to a union

18 years agoadd radius_bind_{min,max} options
bodea [Sat, 1 Jul 2006 12:40:10 +0000 (12:40 +0000)]
add radius_bind_{min,max} options

18 years agoset acct-disconnect-cause from result code AVP if no disconnect cause AVP is present
bodea [Thu, 22 Jun 2006 15:30:29 +0000 (15:30 +0000)]
set acct-disconnect-cause from result code AVP if no disconnect cause AVP is present

18 years agoadd session/idle timeouts
bodea [Sun, 11 Jun 2006 12:46:18 +0000 (12:46 +0000)]
add session/idle timeouts

18 years agokludge around problem with Netgear DM602 authentication
bodea [Sat, 3 Jun 2006 08:16:46 +0000 (08:16 +0000)]
kludge around problem with Netgear DM602 authentication

18 years agoconvert manual.html to docbook
bodea [Tue, 23 May 2006 14:28:25 +0000 (14:28 +0000)]
convert manual.html to docbook

18 years agoremove unused param_packet_[tr]x structures
bodea [Mon, 22 May 2006 07:41:33 +0000 (07:41 +0000)]
remove unused param_packet_[tr]x structures

18 years agoremove defunct PLUGIN_PACKET_{RX,TX} constants
bodea [Thu, 18 May 2006 16:49:30 +0000 (16:49 +0000)]
remove defunct PLUGIN_PACKET_{RX,TX} constants

18 years agocorrect comment: throttle_speed rather than throttle_rate
bodea [Thu, 18 May 2006 14:40:31 +0000 (14:40 +0000)]
correct comment: throttle_speed rather than throttle_rate

18 years agouse %u when logging unsigned values
bodea [Tue, 16 May 2006 06:46:37 +0000 (06:46 +0000)]
use %u when logging unsigned values

18 years agono magic
bodea [Fri, 5 May 2006 08:10:18 +0000 (08:10 +0000)]
no magic

18 years agoupdate copyright years
bodea [Thu, 4 May 2006 01:01:56 +0000 (01:01 +0000)]
update copyright years

18 years ago*** empty log message ***
bodea [Fri, 28 Apr 2006 08:51:16 +0000 (08:51 +0000)]
*** empty log message ***

18 years agocosmetic changes
bodea [Fri, 28 Apr 2006 07:17:49 +0000 (07:17 +0000)]
cosmetic changes

18 years agoremove non-working setuid option
bodea [Thu, 27 Apr 2006 14:37:27 +0000 (14:37 +0000)]
remove non-working setuid option

18 years agoadd Multilink support from Khaled Al Hamwi
bodea [Thu, 27 Apr 2006 09:53:49 +0000 (09:53 +0000)]
add Multilink support from Khaled Al Hamwi

18 years agoapply patch from liran
bodea [Wed, 26 Apr 2006 01:15:43 +0000 (01:15 +0000)]
apply patch from liran

18 years agoinitial converion of liran's "Practical VPNs" to docbook
bodea [Mon, 24 Apr 2006 15:19:41 +0000 (15:19 +0000)]
initial converion of liran's "Practical VPNs" to docbook

18 years agoonly poll clifd if successfully bound
bodea [Sun, 23 Apr 2006 23:18:30 +0000 (23:18 +0000)]
only poll clifd if successfully bound

18 years agointerpret "local" direction correctly (as LAC) in disconnect AVPs release_2_1_18
bodea [Tue, 18 Apr 2006 06:00:46 +0000 (06:00 +0000)]
interpret "local" direction correctly (as LAC) in disconnect AVPs

18 years agodon't shutdown on TerminateReq, wait for CDN
bodea [Tue, 18 Apr 2006 06:00:07 +0000 (06:00 +0000)]
don't shutdown on TerminateReq, wait for CDN

18 years agoadd Acct-Terminate-Cause to RADIUS stop records release_2_1_17
bodea [Thu, 13 Apr 2006 11:14:35 +0000 (11:14 +0000)]
add Acct-Terminate-Cause to RADIUS stop records

18 years agoset source address for DAE responses
bodea [Wed, 5 Apr 2006 02:13:48 +0000 (02:13 +0000)]
set source address for DAE responses

18 years agoset IP_PKTINFO on controlfd for recvfromto
bodea [Wed, 5 Apr 2006 01:50:33 +0000 (01:50 +0000)]
set IP_PKTINFO on controlfd for recvfromto

18 years agosend nsctl responses back using the correct source address
bodea [Wed, 5 Apr 2006 01:45:57 +0000 (01:45 +0000)]
send nsctl responses back using the correct source address

18 years agofix IPCP length test to allow Terminate-Request (4 bytes)
bodea [Mon, 27 Mar 2006 03:01:08 +0000 (03:01 +0000)]
fix IPCP length test to allow Terminate-Request (4 bytes)

18 years agodecrease ip_conntrack_tcp_timeout_established to 5hrs release_2_1_16
bodea [Thu, 23 Feb 2006 01:07:23 +0000 (01:07 +0000)]
decrease ip_conntrack_tcp_timeout_established to 5hrs

18 years agoadditional length checks in processlcp
bodea [Fri, 17 Feb 2006 15:05:13 +0000 (15:05 +0000)]
additional length checks in processlcp
allow peer to request a new magic-number, or to disable magic-numbers

18 years agoavoid endless loop in processipcp, processipv6cp
bodea [Fri, 17 Feb 2006 14:35:53 +0000 (14:35 +0000)]
avoid endless loop in processipcp, processipv6cp

18 years agovalidate source of RADIUS packets
bodea [Fri, 17 Feb 2006 13:27:07 +0000 (13:27 +0000)]
validate source of RADIUS packets

18 years agoensure session changes from LCP ConfigReq/ConfigNak are sent to cluster
bodea [Thu, 19 Jan 2006 21:31:25 +0000 (21:31 +0000)]
ensure session changes from LCP ConfigReq/ConfigNak are sent to cluster

18 years agoreturn on failed lcp
bodea [Thu, 19 Jan 2006 21:06:39 +0000 (21:06 +0000)]
return on failed lcp

18 years agohandle LCP NAK of magic-number
bodea [Thu, 19 Jan 2006 21:00:24 +0000 (21:00 +0000)]
handle LCP NAK of magic-number

18 years agocorrect addition of single IP to pool
bodea [Thu, 19 Jan 2006 20:55:03 +0000 (20:55 +0000)]
correct addition of single IP to pool

18 years agosend configured magic-no in LCP EchoReq when LCP is opened
bodea [Tue, 20 Dec 2005 04:57:16 +0000 (04:57 +0000)]
send configured magic-no in LCP EchoReq when LCP is opened

18 years agoadd service-type/framed-protocol to RADIUS records release_2_1_15
bodea [Mon, 19 Dec 2005 06:18:13 +0000 (06:18 +0000)]
add service-type/framed-protocol to RADIUS records

18 years agofix session MRU, tunnel MTU
bodea [Mon, 19 Dec 2005 06:08:42 +0000 (06:08 +0000)]
fix session MRU, tunnel MTU

18 years agobreak LCP configure loop with shutdown
bodea [Thu, 15 Dec 2005 14:23:03 +0000 (14:23 +0000)]
break LCP configure loop with shutdown

18 years agoreduce logging of LCP EchoReply packets
bodea [Thu, 15 Dec 2005 14:18:16 +0000 (14:18 +0000)]
reduce logging of LCP EchoReply packets

18 years agodrop backtrace
bodea [Wed, 14 Dec 2005 02:19:15 +0000 (02:19 +0000)]
drop backtrace

18 years agorun PLUGIN_RADIUS_ACCOUNT for Start records release_2_1_14
bodea [Fri, 9 Dec 2005 00:43:17 +0000 (00:43 +0000)]
run PLUGIN_RADIUS_ACCOUNT for Start records

18 years ago- Reject unknown/unconfigured protocols on the master. release_2_1_13
bodea [Wed, 7 Dec 2005 05:21:37 +0000 (05:21 +0000)]
- Reject unknown/unconfigured protocols on the 
- Sanity check MRU before using in ppp_code_rej, protoreject.

18 years agoboring: spacing change
bodea [Tue, 6 Dec 2005 23:53:14 +0000 (23:53 +0000)]
boring: spacing change

18 years agoadd ping-sweep
bodea [Tue, 6 Dec 2005 12:48:47 +0000 (12:48 +0000)]
add ping-sweep

18 years agoremove parsemac
bodea [Tue, 6 Dec 2005 09:43:42 +0000 (09:43 +0000)]
remove parsemac

18 years agoremove unused MAC config type
bodea [Tue, 6 Dec 2005 00:00:31 +0000 (00:00 +0000)]
remove unused MAC config type

18 years agounused: sessiont.{ns,nr}
bodea [Mon, 5 Dec 2005 14:10:42 +0000 (14:10 +0000)]
unused: sessiont.{ns,nr}

18 years agoindicate spare (struct padding) bytes
bodea [Mon, 5 Dec 2005 13:56:12 +0000 (13:56 +0000)]
indicate spare (struct padding) bytes

18 years agofix CTUNNEL decompress error message
bodea [Mon, 5 Dec 2005 12:47:12 +0000 (12:47 +0000)]
fix CTUNNEL decompress error message

18 years agofix IPCP negotiation of secondary DNS server
bodea [Sun, 4 Dec 2005 13:06:49 +0000 (13:06 +0000)]
fix IPCP negotiation of secondary DNS server

18 years agouse License header, fix BuildRoot
bodea [Fri, 25 Nov 2005 04:55:38 +0000 (04:55 +0000)]
use License header, fix BuildRoot

18 years agofix constants
bodea [Fri, 25 Nov 2005 04:23:55 +0000 (04:23 +0000)]
fix constants

18 years agoadd test/ping-sweep
bodea [Fri, 25 Nov 2005 02:18:40 +0000 (02:18 +0000)]
add test/ping-sweep

18 years ago*** empty log message *** release_2_1_12
bodea [Thu, 17 Nov 2005 23:50:35 +0000 (23:50 +0000)]
*** empty log message ***

18 years agoset MTU on tunnel interface so the kernel will re-fragment large packets to within MRU
bodea [Thu, 17 Nov 2005 07:35:35 +0000 (07:35 +0000)]
set MTU on tunnel interface so the kernel will re-fragment large packets to within MRU

18 years agofix checksum recalc
bodea [Thu, 17 Nov 2005 06:46:24 +0000 (06:46 +0000)]
fix checksum recalc

18 years agoensure MRU is sane
bodea [Thu, 17 Nov 2005 05:24:17 +0000 (05:24 +0000)]
ensure MRU is sane

18 years agolayer 4 info implies !frag release_2_1_11
bodea [Mon, 14 Nov 2005 21:08:30 +0000 (21:08 +0000)]
layer 4 info implies !frag

18 years agoaccess-list rule counters are unsigned
bodea [Mon, 14 Nov 2005 20:19:08 +0000 (20:19 +0000)]
access-list rule counters are unsigned

18 years agoexclude counter when comparing filter rules
bodea [Mon, 14 Nov 2005 09:49:01 +0000 (09:49 +0000)]
exclude counter when comparing filter rules

18 years agofix fragment handling in ip_filter
bodea [Mon, 14 Nov 2005 08:38:02 +0000 (08:38 +0000)]
fix fragment handling in ip_filter

19 years ago- Reset restart counters correctly. release_2_1_10
bodea [Fri, 4 Nov 2005 14:41:50 +0000 (14:41 +0000)]
- Reset restart counters correctly.
- Reset timers on sending ConfigReq.
- Only send one RADIUS Start record, even if IPCP is restarted.

19 years agoadd Framed-Route entries to RADIUS records
bodea [Wed, 19 Oct 2005 03:09:29 +0000 (03:09 +0000)]
add Framed-Route entries to RADIUS records

19 years agofix LCP Echo frequency
bodea [Tue, 18 Oct 2005 07:19:28 +0000 (07:19 +0000)]
fix LCP Echo frequency

19 years ago*** empty log message ***
bodea [Wed, 12 Oct 2005 07:16:53 +0000 (07:16 +0000)]
*** empty log message ***

19 years agoadd intercept-capture script
bodea [Wed, 12 Oct 2005 07:16:13 +0000 (07:16 +0000)]
add intercept-capture script

19 years agoadd Cisco-AVPairs to RADIUS accounting records via plugin_radius_account release_2_1_9
bodea [Tue, 11 Oct 2005 09:04:53 +0000 (09:04 +0000)]
add Cisco-AVPairs to RADIUS accounting records via plugin_radius_account

19 years agomove plugin_radius_reset from *ctl to auto* plugins
bodea [Tue, 11 Oct 2005 07:59:09 +0000 (07:59 +0000)]
move plugin_radius_reset from *ctl to auto* plugins

19 years agodon't send tunnel HELLO when there are pending control messages
bodea [Tue, 11 Oct 2005 07:06:56 +0000 (07:06 +0000)]
don't send tunnel HELLO when there are pending control messages

19 years agoFix RADIUS authentication on DAE responses.
foonly [Tue, 11 Oct 2005 02:27:40 +0000 (02:27 +0000)]
Fix RADIUS authentication on DAE responses.

19 years agofix Calling-Station-Id in RADIUS accounting records
bodea [Fri, 30 Sep 2005 13:13:26 +0000 (13:13 +0000)]
fix Calling-Station-Id in RADIUS accounting records

19 years agocalc Mbps correctly release_2_1_8
bodea [Mon, 19 Sep 2005 02:39:57 +0000 (02:39 +0000)]
calc Mbps correctly

19 years agomove code from signal handlers into mainloop, avoiding a race
bodea [Mon, 19 Sep 2005 00:29:12 +0000 (00:29 +0000)]
move code from signal handlers into mainloop, avoiding a race
condition when forking CLI

19 years agobyte ordering release_2_1_7
bodea [Fri, 16 Sep 2005 13:20:39 +0000 (13:20 +0000)]
byte ordering

19 years agofix protocol-reject
bodea [Fri, 16 Sep 2005 12:13:22 +0000 (12:13 +0000)]
fix protocol-reject

19 years agofix protocol-reject
bodea [Fri, 16 Sep 2005 11:46:48 +0000 (11:46 +0000)]
fix protocol-reject

19 years ago*** empty log message *** release_2_1_6
bodea [Fri, 16 Sep 2005 06:11:28 +0000 (06:11 +0000)]
*** empty log message ***

19 years ago*** empty log message ***
bodea [Fri, 16 Sep 2005 06:10:21 +0000 (06:10 +0000)]
*** empty log message ***

19 years agoset mss, adjust checksum
bodea [Fri, 16 Sep 2005 05:54:53 +0000 (05:54 +0000)]
set mss, adjust checksum

19 years ago*** empty log message ***
bodea [Fri, 16 Sep 2005 05:35:31 +0000 (05:35 +0000)]
*** empty log message ***

19 years ago*** empty log message ***
bodea [Fri, 16 Sep 2005 05:30:30 +0000 (05:30 +0000)]
*** empty log message ***

19 years ago*** empty log message ***
bodea [Fri, 16 Sep 2005 05:20:32 +0000 (05:20 +0000)]
*** empty log message ***

19 years agomss tweaking now internal
bodea [Fri, 16 Sep 2005 05:05:18 +0000 (05:05 +0000)]
mss tweaking now internal

19 years ago- Add l2tp_mtu configuration option, used to define MRU, MSS.
bodea [Fri, 16 Sep 2005 05:04:28 +0000 (05:04 +0000)]
- Add l2tp_mtu configuration option, used to define MRU, MSS.
- Adjust TCP MSS options in SYN and SYN,ACK packets to avoid
  fragmentation of tcp packets.

19 years agomake MRU configurable, NAK config requests for larger values
bodea [Thu, 15 Sep 2005 09:34:46 +0000 (09:34 +0000)]
make MRU configurable, NAK config requests for larger values

19 years ago*** empty log message ***
bodea [Tue, 13 Sep 2005 14:27:14 +0000 (14:27 +0000)]
*** empty log message ***

19 years agofix code-reject/protocol-reject
bodea [Tue, 13 Sep 2005 14:23:07 +0000 (14:23 +0000)]
fix code-reject/protocol-reject

19 years agoany traffic on a tunnel resets lastrec, not just control messages
bodea [Mon, 12 Sep 2005 05:16:42 +0000 (05:16 +0000)]
any traffic on a tunnel resets lastrec, not just control messages

19 years agoadd cluster_mcast_ttl release_2_1_5
bodea [Tue, 6 Sep 2005 01:44:46 +0000 (01:44 +0000)]
add cluster_mcast_ttl

19 years agoadd cluster_mcast_ttl option
bodea [Fri, 2 Sep 2005 23:59:56 +0000 (23:59 +0000)]
add cluster_mcast_ttl option

19 years agorestart BGP on receipt of CEASE
bodea [Fri, 2 Sep 2005 23:39:34 +0000 (23:39 +0000)]
restart BGP on receipt of CEASE

19 years agobug fix
bodea [Thu, 1 Sep 2005 06:59:06 +0000 (06:59 +0000)]
bug fix

19 years agoincrease size of PPP buffers to MAXETHER
bodea [Wed, 31 Aug 2005 12:41:09 +0000 (12:41 +0000)]
increase size of PPP buffers to MAXETHER

19 years agoavoid Code-Reject loop
bodea [Wed, 31 Aug 2005 12:38:38 +0000 (12:38 +0000)]
avoid Code-Reject loop