1
0
mirror of synced 2024-11-25 22:36:04 +03:00
Commit Graph

805 Commits

Author SHA1 Message Date
hwdsl2
6ce1be392d Cleanup 2021-08-13 22:10:44 -05:00
hwdsl2
97d90ec379 Update docs 2021-08-13 02:12:53 -05:00
hwdsl2
3f8193390f Update tests 2021-08-13 02:12:38 -05:00
hwdsl2
560d433918 Update template 2021-08-13 02:12:23 -05:00
hwdsl2
920e7a5fc8 Improve VPN setup
- Add a new wrapper script for IPsec VPN setup on all supported OS.
  The previous vpnsetup.sh has been moved to vpnsetup_ubuntu.sh.
2021-08-13 02:11:49 -05:00
hwdsl2
779a86f933 Cleanup 2021-08-13 02:11:31 -05:00
hwdsl2
c54484a910 Rename Ubuntu/Debian script 2021-08-13 01:20:07 -05:00
hwdsl2
21dc90e656 Update IKEv2 script
- Cleanup
2021-08-11 00:03:25 -05:00
hwdsl2
c8b5bb87f0 Update interface check
- Update network interface check in quickstart.sh so that it is
  consistent with vpnsetup.sh.
2021-08-10 23:09:48 -05:00
hwdsl2
6a396b096a Update tests 2021-08-10 03:43:12 -05:00
hwdsl2
6514fa2cd3 Update docs 2021-08-10 03:43:00 -05:00
hwdsl2
50053e3be7 Add quick start script 2021-08-10 02:57:18 -05:00
hwdsl2
6daacff466 Cleanup 2021-08-07 16:12:26 -05:00
hwdsl2
688a700fd6 Update tests 2021-08-07 02:15:11 -05:00
hwdsl2
1b1c1ecc8f Update tests 2021-08-06 01:50:09 -05:00
hwdsl2
72ad762184 Update tests 2021-08-03 00:49:11 -05:00
hwdsl2
ab50fa7264 Update IKEv2 script
- Minor improvements to client name input prompts. Abort and exit
  if the user presses Enter without specifying a client name.
- Cleanup
2021-07-31 23:36:43 -05:00
hwdsl2
6aa15b8a21 Update docs 2021-07-31 15:32:02 -05:00
hwdsl2
c928068a20 Update IKEv2 script
- Cleanup
2021-07-31 15:31:13 -05:00
hwdsl2
2c3f4e20a5 Update IKEv2 script
- Cleanup
2021-07-30 08:47:10 -05:00
hwdsl2
c6cfd1fe49 Update docs 2021-07-28 23:33:29 -05:00
hwdsl2
88ab115874 Update docs 2021-07-27 09:53:25 -05:00
hwdsl2
2e17ef68ce Update OS detection 2021-07-27 00:59:15 -05:00
hwdsl2
f18c3c0207 Update docs 2021-07-25 20:55:54 -05:00
hwdsl2
8d26e0b6c9 Update IKEv2 script
- Improve checking for MOBIKE support. Linux kernels on QNAP systems
  do not support MOBIKE.
  Ref: https://github.com/hwdsl2/docker-ipsec-vpn-server/issues/247
- Switch to use /etc/ipsec.d/.vpnconfig to store generated password
  for IKEv2 client config files, instead of vpnclient.p12.password.
  Migrate to use .vpnconfig if the older config file is found.
  Ref: 45ee41d
2021-07-25 20:55:40 -05:00
hwdsl2
0951ca4925 Update tests 2021-07-24 16:29:10 -05:00
hwdsl2
02bdbeb9a2 Update docs 2021-07-24 16:26:20 -05:00
hwdsl2
45ee41d930 Update IKEv2 script
- Improve IKEv2 setup: Save generated password for IKEv2 client
  configuration files to vpnclient.p12.password, so that it can
  be re-used for later runs of the helper script. Previously,
  a different password is generated each time the script is run.
2021-07-24 15:58:48 -05:00
hwdsl2
8db2a9ebd8 Update docs 2021-07-23 01:25:25 -05:00
hwdsl2
855a285cff Update IKEv2 script
- Cleanup
2021-07-23 00:22:51 -05:00
hwdsl2
a0409b4399 Cleanup
- In rare cases, if a parent process traps SIGPIPE, the 'tr'
  command in the VPN setup scripts could output an error
  'tr: write error: Broken pipe'. This is a cosmetic error
  that does NOT affect the functionality of the scripts. This
  commit hides the error in such cases.
2021-07-21 23:12:06 -05:00
hwdsl2
b59eb58ac9 Update docs 2021-07-21 01:56:11 -05:00
hwdsl2
7afbca94a5 Cleanup 2021-07-17 00:52:04 -05:00
hwdsl2
90b4f797a9 Update tests 2021-07-13 22:30:12 -05:00
hwdsl2
5d43404beb Update IKEv2 script
- Simplify IKEv2 setup: Use an auto-generated password to protect
  client configuration files. Remove the steps for user input.
- Cleanup
2021-07-13 22:09:25 -05:00
hwdsl2
a90caf428b Update IKEv2 script
- Add support for Alpine Linux in a Docker container. See:
  https://github.com/hwdsl2/docker-ipsec-vpn-server
2021-07-12 23:41:33 -05:00
hwdsl2
61025818bb Optimize binary size
- Use the gcc "-s" option when compiling Libreswan. This reduces
  binary size by ~80%.
2021-07-10 01:57:11 -05:00
hwdsl2
4422bea6a4 Update tests 2021-06-20 15:22:32 -05:00
hwdsl2
02b6d05c82 Update IPTables rules
- Allow traffic from IKEv2 and IPsec/XAuth ("Cisco IPsec") clients to
  IPsec/L2TP clients. Ref: #983
- Cleanup
- Update docs
2021-06-20 15:02:33 -05:00
hwdsl2
282a8e5e5a Update tests 2021-06-12 22:34:34 -05:00
hwdsl2
64eb0e1f49 Cleanup 2021-06-09 00:42:28 -05:00
hwdsl2
99dd5702e7 Update docs 2021-06-06 15:27:56 -05:00
hwdsl2
9072c0889c Update docs 2021-06-06 12:04:19 -05:00
hwdsl2
7376fc02d2 Update docs 2021-06-04 17:27:21 -05:00
hwdsl2
e05cdb4b83 Update docs 2021-06-04 14:48:19 -05:00
hwdsl2
247298bb05 Update tests 2021-06-03 22:09:56 -05:00
hwdsl2
811ce6a9aa Update IKEv2 script
- Check certificate status when exporting a client configuration
  using --exportclient
2021-06-01 23:35:19 -05:00
hwdsl2
5adaa29947 Update tests 2021-06-01 02:43:44 -05:00
hwdsl2
d6088751b9 Update docs 2021-06-01 02:31:14 -05:00
hwdsl2
ea52ab4683 Update IKEv2 script
- New: Revoke a client certificate using the helper script. Users can
  also manually revoke a client certificate, see https://git.io/ikev2
- Check for certificate validity when exporting client configurations
- Delete CRL from IPsec database when removing IKEv2
- Cleanup
2021-06-01 02:30:51 -05:00