setup-ipsec-vpn

mirror of synced 2024-11-22 21:16:02 +03:00

Author	SHA1	Message	Date
hwdsl2	efcfbe8da3	New Libreswan version - Support upgrading to Libreswan 4.11.	2023-05-05 00:07:07 -05:00
hwdsl2	1a79a5cfce	New Libreswan version - Support upgrading to Libreswan 4.10.	2023-03-01 08:55:12 -06:00
hwdsl2	c356a75bca	Update docs	2023-01-04 18:58:29 -06:00
hwdsl2	2bd37ccf66	Cleanup - Save a redirect and make VPN setup slightly faster by using raw.githubusercontent.com directly instead of https://github.com/hwdsl2/setup-ipsec-vpn/raw/...	2022-10-23 14:05:57 -05:00
hwdsl2	d1da04b1d4	New Libreswan version - Support upgrading to Libreswan 4.9. - Compilation of Libreswan 4.9 on Ubuntu 18.04 requires newer versions of NSS packages. They are installed in a similar way as apply_ubuntu1804_nss_fix in ikev2setup.sh. Ref: https://github.com/libreswan/libreswan/issues/892	2022-10-21 00:11:15 -05:00
hwdsl2	6e596825e2	Improve VPN ciphers - Improve security by removing support for modp1536 (DH group 5), which is less secure and rarely used by VPN clients. To do this, we specify modp2048 on the "ike=" line in ipsec.conf.	2022-09-30 01:11:18 -05:00
hwdsl2	025387df91	Improve VPN ciphers - Improve security by removing support for modp1024 (DH group 2), which is less secure and no longer enabled in Libreswan by default. - The native VPN client on Android devices uses modp1024 for the IPsec/L2TP and IPsec/XAuth ("Cisco IPsec") modes. After this change, Android users should instead connect using IKEv2 mode (recommended).	2022-09-29 22:52:40 -05:00
hwdsl2	cc99e18123	Cleanup	2022-09-24 18:56:27 -05:00
hwdsl2	32faed40d5	Improve IP check - Instead of finding the server's public IP, use the IP address on the default route if it is not a private IP. This makes VPN setup slightly faster by skipping IP detection. - Add a fallback URL for finding the server's public IP. - Cleanup	2022-09-24 00:58:16 -05:00
hwdsl2	34d9ad06d5	New Libreswan version - Support upgrading to Libreswan 4.7.	2022-05-25 23:59:21 -05:00
hwdsl2	b2626dc921	Cleanup	2022-04-27 00:05:45 -05:00
hwdsl2	e5703d8aaa	Cleanup	2022-03-07 21:29:13 -06:00
hwdsl2	42c8d288e2	Cleanup - Improve backup of VPN config files	2022-02-18 21:42:37 -06:00
hwdsl2	5c85b5693c	Cleanup - Change the default action to 'continue' in VPN scripts	2022-02-12 12:24:26 -06:00
hwdsl2	6dbc47e0db	Improve upgrade scripts - Stop IPsec service before updating Libreswan	2022-02-08 23:46:11 -06:00
hwdsl2	35c23f1144	Improve upgrade scripts - Make specifying Libreswan version optional. Retrieve and install the latest supported version by default. - Other minor improvements	2022-01-29 12:34:10 -06:00
hwdsl2	e16151f183	Improve upgrade scripts - Cleanup	2022-01-29 01:47:45 -06:00
hwdsl2	c56ebe9cfe	Improve upgrade scripts - Make specifying Libreswan version optional in vpnupgrade.sh. Install the latest supported version by default. - Remove Libreswan version check	2022-01-22 22:30:39 -06:00
hwdsl2	5b1377dcf3	Cleanup	2022-01-22 21:34:53 -06:00
hwdsl2	6393470f46	Cleanup	2022-01-15 23:41:00 -06:00
hwdsl2	62723fe0c6	Update IKEv2 script - When upgrading Libreswan using vpnupgrade.sh, also update the IKEv2 helper script to the latest version.	2022-01-13 23:47:27 -06:00
hwdsl2	18b830c998	New Libreswan version - Support updating to Libreswan 4.6	2022-01-11 22:47:18 -06:00
hwdsl2	c25baaf9a9	Cleanup	2022-01-04 23:01:14 -06:00
hwdsl2	c78b398057	Update year	2022-01-02 00:09:03 -06:00
hwdsl2	e2a9c4a0c3	Cleanup	2021-09-11 10:07:33 -05:00
hwdsl2	263ffe97cc	Cleanup	2021-09-07 09:02:22 -05:00
hwdsl2	da7697a5b0	Cleanup - Update scripts to use bash instead of sh - Update docs	2021-08-27 23:35:31 -05:00
hwdsl2	0e8e6a020c	New Libreswan version - Support updating to Libreswan 4.5	2021-08-22 11:49:35 -05:00
hwdsl2	52216d8f59	Improve update scripts - Refactor VPN update scripts into functions - Cleanup	2021-08-22 00:43:14 -05:00
hwdsl2	8e570129b2	Cleanup	2021-08-14 00:26:27 -05:00
hwdsl2	6daacff466	Cleanup	2021-08-07 16:12:26 -05:00
hwdsl2	61025818bb	Optimize binary size - Use the gcc "-s" option when compiling Libreswan. This reduces binary size by ~80%.	2021-07-10 01:57:11 -05:00
hwdsl2	64eb0e1f49	Cleanup	2021-06-09 00:42:28 -05:00
hwdsl2	ac0bde54bb	New Libreswan version - Use new Libreswan version 4.4 - Support updating to Libreswan 4.4 - Other small improvements and cleanup	2021-04-24 16:15:05 -05:00
hwdsl2	804856064b	Minor fix and cleanup - Minor fix for CentOS 8 for the uncommon scenario where the server has "nftables" service enabled - Cleanup	2021-04-01 23:06:36 -05:00
hwdsl2	1972501725	New Libreswan version - Use new Libreswan version 4.3 - Support updating to Libreswan 4.3 - Other small improvements - Update tests	2021-02-21 23:54:37 -06:00
hwdsl2	4deb437562	Fix permissions - Set the executable bit for .sh files. Ref: #910. Thanks @reuixiy!	2021-02-13 14:40:48 -06:00
hwdsl2	5779b2e6c8	Improve output - Improve output for the VPN setup and upgrade scripts. The outputs of the scripts are now significantly reduced and only include the most useful information for users. - Other minor cleanup	2021-02-05 21:49:35 -06:00
hwdsl2	1808095bb7	New Libreswan version - Use new Libreswan version 4.2 - Support updating to Libreswan 4.2 from older versions. The upgrade scripts can now install one of these versions: 3.32, 4.1 or 4.2. - Other small improvements - Update tests	2021-02-04 01:47:04 -06:00
hwdsl2	3b90d2d394	Cleanup	2021-01-07 12:02:44 -06:00
hwdsl2	a5a1f4adb1	Cleanup	2021-01-03 14:05:13 -06:00
hwdsl2	dabf765978	Update year	2021-01-03 00:35:24 -06:00
hwdsl2	de7a529c6c	Cleanup - Remove Debian 8 from VPN upgrade script, which is EOL on 06/30/2020 - Include OS arch when checking Libreswan version - Other minor improvements	2021-01-02 14:25:50 -06:00
hwdsl2	b3ad82fd48	Cleanup	2020-12-31 23:09:58 -06:00
hwdsl2	cac5191155	Add version check - Check for latest supported Libreswan version, and remind users who use a non-latest version of the VPN scripts that they can upgrade - Other minor improvements	2020-12-31 18:24:41 -06:00
hwdsl2	e7bbb50670	Add Amazon Linux 2	2020-12-26 00:19:50 -06:00

46 Commits