]> git.ipfire.org Git - thirdparty/strongswan.git/commitdiff
projects / thirdparty / strongswan.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1a71178)
Add an option to disable the farp plugin
authorTobias Brunner <tobias@strongswan.org>
Wed, 20 Mar 2013 14:57:13 +0000 (15:57 +0100)
committerTobias Brunner <tobias@strongswan.org>
Wed, 20 Mar 2013 15:37:43 +0000 (16:37 +0100)
man/strongswan.conf.5.in patch | blob | blame | history
src/libcharon/plugins/farp/farp_plugin.c patch | blob | blame | history

diff --git a/man/strongswan.conf.5.in b/man/strongswan.conf.5.in
index 3d80d7602cb138886c136e23e02143958802b1a0..db19c7ef897fa8a3974afbb593913206891d6376 100644 (file)
--- a/man/strongswan.conf.5.in
+++ b/man/strongswan.conf.5.in
@@ -539,6 +539,9 @@ Start phase2 EAP TNC protocol after successful client authentication
 .BR charon.plugins.eap-ttls.request_peer_auth " [no]"
 Request peer authentication based on a client certificate
 .TP
+.BR charon.plugins.farp.enable " [yes]"
+Enable faking of ARP responses for remote IP addresses of established CHILD_SAs
+.TP
 .BR charon.plugins.ha.fifo_interface " [yes]"
 
 .TP
diff --git a/src/libcharon/plugins/farp/farp_plugin.c b/src/libcharon/plugins/farp/farp_plugin.c
index a30c11962892a59af02b712be604397d3046378a..cc8599c9fba85e995fff1c9d57a58030bafd2c59 100644 (file)
--- a/src/libcharon/plugins/farp/farp_plugin.c
+++ b/src/libcharon/plugins/farp/farp_plugin.c
@@ -65,6 +65,12 @@ plugin_t *farp_plugin_create()
 {
        private_farp_plugin_t *this;
 
+       if (!lib->settings->get_bool(lib->settings, "%s.plugins.farp.enable", TRUE,
+                                                                charon->name))
+       {
+               return NULL;
+       }
+
        INIT(this,
                .public = {
                        .plugin = {
Unnamed repository; edit this file 'description' to name the repository.