1
0
mirror of synced 2024-11-30 00:26:04 +03:00
Commit Graph

590 Commits

Author SHA1 Message Date
hwdsl2
7674810559 Clean up sysctl settings 2020-11-28 11:54:49 -06:00
hwdsl2
427e50a9ed Update upgrade scripts
- Set sha2-truncbug to "no" when upgrading. This is required for
  iOS 13/14 and macOS 10.15/11 VPN clients to connect.
- References: 3353888 #882
2020-11-27 11:16:12 -06:00
hwdsl2
cf1865a66e Improve RPi detection
- Add check for 64-bit versions of Raspberry Pi OS, e.g. Ubuntu 20.04
  on Raspberry Pi 4
- Ref: #852
2020-11-24 21:27:40 -06:00
hwdsl2
4eb84bb3bf Update docs
- Closes #882
2020-11-24 20:53:04 -06:00
hwdsl2
b0f60d70bd Update workflows
- Use Ubuntu 20.04 as GitHub Actions runner
2020-11-17 22:32:08 -06:00
hwdsl2
ccd072541b Update Debian check
- Add check for Debian 10. See: https://git.io/vpndebian10
- Remove Debian 7 check
2020-11-17 00:50:35 -06:00
hwdsl2
b57678b893 Update upgrade scripts
- Remove support for upgrading to old Libreswan versions 3.19-3.25
- Minor improvements
2020-11-15 11:47:14 -06:00
hwdsl2
ecd99a6bba Fix version detection
- Fix Libreswan version detection in upgrade scripts
2020-11-12 10:25:09 -06:00
hwdsl2
694679b59c Update upgrade scripts
- Replace the obsolete ike-frag option in ikev2.conf (if exists),
  which was removed in Libreswan 4.1.
2020-11-12 00:39:20 -06:00
hwdsl2
5a13026701 Apply Libreswan fix
- Fix detection for sysvinit initsystem:
  cfe4dabab4
2020-11-11 23:05:29 -06:00
hwdsl2
1dee0d4262 Update upgrade scripts
- Support upgrading to Libreswan 4.1
2020-11-11 01:10:27 -06:00
hwdsl2
afb8a7acce New Libreswan version
- Upgrade Libreswan from 3.32 to 4.1
2020-11-11 00:27:44 -06:00
hwdsl2
fe01d0aa29 Update AWS template
- Send cfn-signal on error, so that stack creation can be cancelled
  earlier without waiting for the timeout
- Other minor improvements
2020-11-09 00:32:05 -06:00
hwdsl2
bff8e6cbc8 Update docs 2020-11-08 11:19:26 -06:00
Fuchen Shi
ba0d3f8dbd
Update ikev2-howto-zh.md (#867) 2020-11-08 11:09:47 -06:00
hwdsl2
72237c8e56 Update AWS template
- Increased timeout to 15 mins
- Exit script on command failures using bash "-e" flag
- Update docs
2020-11-07 14:55:02 -06:00
S. X. Liang
08c6ab2135
Update cloudformation-template-ipsec (#850)
* Update cloudformation-template-ipsec

- Add "CreationPolicy" to notify the user when the setup script succeeds on the virtual machine. The stack fails if the script fails.
- The timeout is 10 minutes.
- This feature is to be tested on Debian(s). I have personally tested it on Ubuntu20.

* Update README.md

- Remove the notice no longer needed. (The stack will be flagged as CREATE_COMPLETE only when the script succeeds on the VM.)

* Update README-zh.md

- 移除没用的贴士。堆栈将会自动检查脚本是否成功执行。
2020-11-07 14:41:22 -06:00
hwdsl2
4fa17ce958 Fix for EPEL repo
- Remove workaround for EPEL repo issues (bff3fe5)
- "yum makecache" may have higher disk space requirements that could
  cause issues on systems with low free disk space
2020-09-30 22:49:49 -05:00
hwdsl2
091dd4b31e Update docs 2020-09-07 01:01:16 -05:00
hwdsl2
7d3046fc14 Update docs
- Add translation for AWS deployment README
2020-08-29 14:06:59 -05:00
hwdsl2
b891abc724 Update Azure config
- Add Ubuntu 20.04 to OS options, and set as default
2020-08-29 00:01:05 -05:00
hwdsl2
ec869e7c05 Update AWS template
- Remove Debian 10, which doesn't work on EC2 for IPsec/L2TP mode due to:
  https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients.md#debian-10-kernel
2020-08-28 00:05:52 -05:00
hwdsl2
1d8b3550cb Update docs 2020-08-27 23:47:46 -05:00
hwdsl2
a0e0a6ba54 Update AWS template
- Filter AMIs using official Ubuntu and Debian AWS account IDs
- Change Debian AMI names back to using wildcards
- Closes: #841
2020-08-27 22:47:46 -05:00
hwdsl2
220954470d Update docs 2020-08-27 01:16:34 -05:00
hwdsl2
89a7008a6c Update AWS template
- Change Debian AMI names to be more specific
  Ref: https://wiki.debian.org/Cloud/AmazonEC2Image
- Change default OS to Ubuntu 20.04
- Minor wording changes
2020-08-27 00:27:00 -05:00
hwdsl2
580678aed5 Update docs 2020-08-26 23:53:41 -05:00
S. X. Liang
736877330b
Add AWS deployment template (#838)
Add AWS deployment template

Authored-by: Scottpedia (https://github.com/Scottpedia)
2020-08-26 22:20:04 -05:00
hwdsl2
fbbc7faf49 Update workflows 2020-08-09 18:14:56 -05:00
hwdsl2
f8f97e014a Cleanup 2020-08-09 14:49:02 -05:00
hwdsl2
d18801452d Add IPTables check
- Add IPTables check to work around an issue with Raspberry Pi OS
  kernel updates
- Ref: #835
2020-08-09 13:56:08 -05:00
hwdsl2
eca137a560 Remove Debian 8
- Remove Debian 8 (LTS support ended on June 30, 2020)
- Cleanup
2020-07-25 14:22:19 -05:00
hwdsl2
e381e06cb4 Update issue templates 2020-07-21 10:58:11 -05:00
hwdsl2
43aa8a22c5 Update issue templates 2020-07-19 19:44:25 -05:00
hwdsl2
bde54094b8 Add issue templates 2020-07-17 00:21:50 -05:00
hwdsl2
22b1bdac80 Update tests 2020-07-12 17:17:21 -05:00
hwdsl2
5e090770c8 Update IKEv2 script
- Allow specifying custom DNS servers
- Add notes about the IKEv2 MOBIKE extension
- Cleanup
2020-07-12 17:14:30 -05:00
hwdsl2
5d8932e411 Update IKEv2 docs 2020-07-12 14:42:04 -05:00
hwdsl2
6c88c7fd27 Fix for CentOS/RHEL 8
- Fix firewalld detection when the setup script is run again
2020-07-11 20:19:11 -05:00
hwdsl2
145fcbef1b Update workflows 2020-07-11 16:48:12 -05:00
hwdsl2
3b4a666e02 Update workflows 2020-07-09 01:41:52 -05:00
hwdsl2
0f7ea7610d Update docs 2020-07-07 12:17:09 -05:00
hwdsl2
8f42527e16 Update workflows 2020-07-07 12:16:55 -05:00
hwdsl2
5344da426f Update docs 2020-07-07 01:52:14 -05:00
hwdsl2
b686bbb0df Add workflows
- Run automated tests on multiple OS using GitHub actions
2020-07-07 01:51:04 -05:00
hwdsl2
bff3fe5a4b Fix for EPEL repo
- Add workaround for EPEL repo issues
2020-07-06 23:03:13 -05:00
hwdsl2
71dc5bab01 Update IKEv2 docs
- Connecting multiple IKEv2 clients from behind the same NAT
  requires setting the "local ID" field to match the client name.
  Ref: https://github.com/libreswan/libreswan/issues/237
2020-07-06 22:42:45 -05:00
hwdsl2
93e89919ac Update IKEv2 docs 2020-07-04 01:35:10 -05:00
hwdsl2
8283bdb32f CentOS/RHEL 8 fix
- Fix fail2ban rules for nftables on CentOS/RHEL 8
2020-07-02 17:52:13 -05:00
hwdsl2
012c19fed1 Update IKEv2 script
- Allow specifying the validity period of client certificates
2020-07-02 11:48:35 -05:00