[Swan-commit] Changes to ref refs/heads/main
Paul Wouters
paul at vault.libreswan.fi
Mon Apr 19 18:24:22 UTC 2021
New commits:
commit e07359be7de44ed229282b551e7fb123fdfb51b7
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Apr 19 14:22:27 2021 -0400
documentation: update CHANGES
commit cbda446be246f926936d5ef4ba6406a59e700d9c
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Apr 19 14:19:24 2021 -0400
pluto: phase out never updated PLUTO_VERSION
This is exposed to updown scripts for version checking. But
unfortunately, we never updated this to 3.0 or 4.0 when we
changed major version in libreswan. So now it is too late to
change it without breaking on a minor update, so it is better
to just kill it.
commit 25d3f18dd8f77c0c409d24609d54c2a336ff4cf5
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Apr 19 14:16:43 2021 -0400
pluto: fix PLUTO_PEER_CLIENT and PLUTO_PEER_CLIENT_NET for NAT'ed transport mode
In that case, it should show the public IP of peer, not the pre-NAT
IP address that only appears within the IPsec subsystem stack.
(also: please stop using Transport Mode with NAT, thanks)
commit 1b2c4d8236e2709670021ebfe8e3b21e77fa365c
Author: Paul Wouters <pwouters at redhat.com>
Date: Mon Apr 19 14:15:56 2021 -0400
pluto: Actually set PLUTO_CONNECTION_TYPE= as promised for updown
Set to either "tunnel" or "transport"
More information about the Swan-commit
mailing list