head 1.2; access; symbols pkgsrc-2026Q1:1.2.0.122 pkgsrc-2026Q1-base:1.2 pkgsrc-2025Q4:1.2.0.120 pkgsrc-2025Q4-base:1.2 pkgsrc-2025Q3:1.2.0.118 pkgsrc-2025Q3-base:1.2 pkgsrc-2025Q2:1.2.0.116 pkgsrc-2025Q2-base:1.2 pkgsrc-2025Q1:1.2.0.114 pkgsrc-2025Q1-base:1.2 pkgsrc-2024Q4:1.2.0.112 pkgsrc-2024Q4-base:1.2 pkgsrc-2024Q3:1.2.0.110 pkgsrc-2024Q3-base:1.2 pkgsrc-2024Q2:1.2.0.108 pkgsrc-2024Q2-base:1.2 pkgsrc-2024Q1:1.2.0.106 pkgsrc-2024Q1-base:1.2 pkgsrc-2023Q4:1.2.0.104 pkgsrc-2023Q4-base:1.2 pkgsrc-2023Q3:1.2.0.102 pkgsrc-2023Q3-base:1.2 pkgsrc-2023Q2:1.2.0.100 pkgsrc-2023Q2-base:1.2 pkgsrc-2023Q1:1.2.0.98 pkgsrc-2023Q1-base:1.2 pkgsrc-2022Q4:1.2.0.96 pkgsrc-2022Q4-base:1.2 pkgsrc-2022Q3:1.2.0.94 pkgsrc-2022Q3-base:1.2 pkgsrc-2022Q2:1.2.0.92 pkgsrc-2022Q2-base:1.2 pkgsrc-2022Q1:1.2.0.90 pkgsrc-2022Q1-base:1.2 pkgsrc-2021Q4:1.2.0.88 pkgsrc-2021Q4-base:1.2 pkgsrc-2021Q3:1.2.0.86 pkgsrc-2021Q3-base:1.2 pkgsrc-2021Q2:1.2.0.84 pkgsrc-2021Q2-base:1.2 pkgsrc-2021Q1:1.2.0.82 pkgsrc-2021Q1-base:1.2 pkgsrc-2020Q4:1.2.0.80 pkgsrc-2020Q4-base:1.2 pkgsrc-2020Q3:1.2.0.78 pkgsrc-2020Q3-base:1.2 pkgsrc-2020Q2:1.2.0.74 pkgsrc-2020Q2-base:1.2 pkgsrc-2020Q1:1.2.0.54 pkgsrc-2020Q1-base:1.2 pkgsrc-2019Q4:1.2.0.76 pkgsrc-2019Q4-base:1.2 pkgsrc-2019Q3:1.2.0.72 pkgsrc-2019Q3-base:1.2 pkgsrc-2019Q2:1.2.0.70 pkgsrc-2019Q2-base:1.2 pkgsrc-2019Q1:1.2.0.68 pkgsrc-2019Q1-base:1.2 pkgsrc-2018Q4:1.2.0.66 pkgsrc-2018Q4-base:1.2 pkgsrc-2018Q3:1.2.0.64 pkgsrc-2018Q3-base:1.2 pkgsrc-2018Q2:1.2.0.62 pkgsrc-2018Q2-base:1.2 pkgsrc-2018Q1:1.2.0.60 pkgsrc-2018Q1-base:1.2 pkgsrc-2017Q4:1.2.0.58 pkgsrc-2017Q4-base:1.2 pkgsrc-2017Q3:1.2.0.56 pkgsrc-2017Q3-base:1.2 pkgsrc-2017Q2:1.2.0.52 pkgsrc-2017Q2-base:1.2 pkgsrc-2017Q1:1.2.0.50 pkgsrc-2017Q1-base:1.2 pkgsrc-2016Q4:1.2.0.48 pkgsrc-2016Q4-base:1.2 pkgsrc-2016Q3:1.2.0.46 pkgsrc-2016Q3-base:1.2 pkgsrc-2016Q2:1.2.0.44 pkgsrc-2016Q2-base:1.2 pkgsrc-2016Q1:1.2.0.42 pkgsrc-2016Q1-base:1.2 pkgsrc-2015Q4:1.2.0.40 pkgsrc-2015Q4-base:1.2 pkgsrc-2015Q3:1.2.0.38 pkgsrc-2015Q3-base:1.2 pkgsrc-2015Q2:1.2.0.36 pkgsrc-2015Q2-base:1.2 pkgsrc-2015Q1:1.2.0.34 pkgsrc-2015Q1-base:1.2 pkgsrc-2014Q4:1.2.0.32 pkgsrc-2014Q4-base:1.2 pkgsrc-2014Q3:1.2.0.30 pkgsrc-2014Q3-base:1.2 pkgsrc-2014Q2:1.2.0.28 pkgsrc-2014Q2-base:1.2 pkgsrc-2014Q1:1.2.0.26 pkgsrc-2014Q1-base:1.2 pkgsrc-2013Q4:1.2.0.24 pkgsrc-2013Q4-base:1.2 pkgsrc-2013Q3:1.2.0.22 pkgsrc-2013Q3-base:1.2 pkgsrc-2013Q2:1.2.0.20 pkgsrc-2013Q2-base:1.2 pkgsrc-2013Q1:1.2.0.18 pkgsrc-2013Q1-base:1.2 pkgsrc-2012Q4:1.2.0.16 pkgsrc-2012Q4-base:1.2 pkgsrc-2012Q3:1.2.0.14 pkgsrc-2012Q3-base:1.2 pkgsrc-2012Q2:1.2.0.12 pkgsrc-2012Q2-base:1.2 pkgsrc-2012Q1:1.2.0.10 pkgsrc-2012Q1-base:1.2 pkgsrc-2011Q4:1.2.0.8 pkgsrc-2011Q4-base:1.2 pkgsrc-2011Q3:1.2.0.6 pkgsrc-2011Q3-base:1.2 pkgsrc-2011Q2:1.2.0.4 pkgsrc-2011Q2-base:1.2 pkgsrc-2011Q1:1.2.0.2 pkgsrc-2011Q1-base:1.2 pkgsrc-2010Q4:1.1.0.28 pkgsrc-2010Q4-base:1.1 pkgsrc-2010Q3:1.1.0.26 pkgsrc-2010Q3-base:1.1 pkgsrc-2010Q2:1.1.0.24 pkgsrc-2010Q2-base:1.1 pkgsrc-2010Q1:1.1.0.22 pkgsrc-2010Q1-base:1.1 pkgsrc-2009Q4:1.1.0.20 pkgsrc-2009Q4-base:1.1 pkgsrc-2009Q3:1.1.0.18 pkgsrc-2009Q3-base:1.1 pkgsrc-2009Q2:1.1.0.16 pkgsrc-2009Q2-base:1.1 pkgsrc-2009Q1:1.1.0.14 pkgsrc-2009Q1-base:1.1 pkgsrc-2008Q4:1.1.0.12 pkgsrc-2008Q4-base:1.1 pkgsrc-2008Q3:1.1.0.10 pkgsrc-2008Q3-base:1.1 cube-native-xorg:1.1.0.8 cube-native-xorg-base:1.1 pkgsrc-2008Q2:1.1.0.6 pkgsrc-2008Q2-base:1.1 cwrapper:1.1.0.4 pkgsrc-2008Q1:1.1.0.2 pkgsrc-2008Q1-base:1.1; locks; strict; comment @# @; 1.2 date 2011.03.05.17.46.41; author cegger; state Exp; branches; next 1.1; 1.1 date 2008.01.09.12.25.41; author hubertf; state Exp; branches; next ; desc @@ 1.2 log @Apply patches from debian: - Bug fix: "Disconnect after an hour and loops trying to reconnect" - Additional vpnc functionality (resolvconf, Target Networks, DNSUpdate options) Bump revision @ text @$NetBSD$ --- vpnc.8.template.orig 2008-11-19 20:36:12.000000000 +0000 +++ vpnc.8.template @@@@ -48,9 +48,9 @@@@ command line options .IP \(bu config file(s) specified on the command line .IP \(bu -/etc/vpnc/default.conf +@@PKG_SYSCONFDIR@@/vpnc/default.conf .IP \(bu -/etc/vpnc.conf +@@PKG_SYSCONFDIR@@/vpnc.conf .IP \(bu prompting the user if not found above @@@@ -63,9 +63,9 @@@@ place to set an option wins. configuration filenames which do not contain a / will be searched at -.B /etc/vpnc/ +.B @@PKG_SYSCONFDIR@@/vpnc/ and -.B /etc/vpnc/.conf. +.B @@PKG_SYSCONFDIR@@/vpnc/.conf. Otherwise .B and @@@@ -74,9 +74,9 @@@@ will be used. If no configuration file is specified on the command-line at all, both -.B /etc/vpnc/default.conf +.B @@PKG_SYSCONFDIR@@/vpnc/default.conf and -.B /etc/vpnc.conf +.B @@PKG_SYSCONFDIR@@/vpnc.conf will be loaded. .SH OPTIONS @@@@ -91,8 +91,8 @@@@ for security reasons) or be stored in a Prints your configuration; output can be used as vpnc.conf .SH FILES -.I /etc/vpnc.conf -.I /etc/vpnc/default.conf +.I @@PKG_SYSCONFDIR@@/vpnc.conf +.I @@PKG_SYSCONFDIR@@/vpnc/default.conf .RS The default configuration file. You can specify the same config directives as with command line options and additionaly @@@@ -110,7 +110,7 @@@@ See for further details. .RE -.I /etc/vpnc/*.conf +.I @@PKG_SYSCONFDIR@@/vpnc/*.conf .RS vpnc will read configuration files in this directory when the config filename (with or without .conf) is specified on the command line. @@@@ -149,11 +149,11 @@@@ IKE Authmode hybrid .P .P -CA-Dir /etc/vpnc +CA-Dir @@PKG_SYSCONFDIR@@/vpnc .P \fBor\fR .P -CA-File /etc/vpnc/vpn-example-com.pem +CA-File @@PKG_SYSCONFDIR@@/vpnc/vpn-example-com.pem .P .P @@@@ -176,7 +176,7 @@@@ named something like 722d15bd.X, where X make sure that files with colliding hashes have different names. The number can be derived from the certificate file itself: .P -openssl x509 -subject_hash -noout -in /etc/vpnc/vpn-example-com.pem +openssl x509 -subject_hash -noout -in @@PKG_SYSCONFDIR@@/vpnc/vpn-example-com.pem See also the .B \-\-print\-config @@@@ -187,6 +187,40 @@@@ Advanced features like manual setting of disabling /etc/resolv.conf rewriting is documented in the README of the vpnc package. +.SH ADVANCED USAGE +The vpnc-connect script shipped with this package some additional +features: +.IP "Custom route setting" +By default, the default route is deleted after connection and replaced +with the new one (going trough the VPN tunnel device). However, some +people wish to limit the target address range to few IP ranges. +This can be done using the config directive +.B Target networks +in the config file. For example: +.RS +.PD 0 +Target networks 123.234.210.0/24 10.1.0.0/16 +.PD +.RE +.IP "Multiple config profiles management" +You can have multiple config files and select one on connection by +specifying a short profile name instead of a config file path. In this +case, the file +.I @@PKG_SYSCONFDIR@@/vpnc/PROFILE.conf +is used as config file (where PROFILE is the short profile name). +.IP "/etc/resolv.conf update" +If the package +.B resolvconf +is installed and the VPN gateway sends some DNS server data, the +script will use resolution to integrate the received data into +.I /etc/resolv.conf. +To disable this behaviour, set the config directive +.I DNSUpdate +to the +.I "no" +value. + + .SH TODO .PD 0 Certificate support (Pre-Shared-Key + XAUTH is known to be insecure). @ 1.1 log @Fix a few leftovers from previous update, noted by Jukka Sallmi in private mail: * remove RCS ID from patch-ab * remove duplicate line in Makefile * Update checksums @ text @d3 2 a4 2 --- vpnc.8.template.orig 2007-09-10 22:39:48.000000000 +0200 +++ vpnc.8.template 2007-09-14 16:08:21.000000000 +0200 d84 41 @