hwdsl2
5894ea2e1f
Update IKEv2 script
...
- Allow running from inside a container, so that it can be used with:
https://github.com/hwdsl2/docker-ipsec-vpn-server
2020-05-30 17:35:27 -05:00
hwdsl2
60d89c7181
Update docs
2020-05-30 02:52:49 -05:00
hwdsl2
9a9496b41b
Update docs
2020-05-25 14:29:51 -05:00
hwdsl2
5fe5f04835
Update upgrade scripts
...
- Ref: 71d67ae
2020-05-25 13:40:04 -05:00
hwdsl2
71d67ae690
CentOS/RHEL fixes
...
- Use nftables only if firewalld is active (CentOS/RHEL 8)
- Fix RHEL 7 server-optional repo names. See:
https://access.redhat.com/articles/4599971
- Fix an issue where the codeready-builder repo cannot be enabled
on EC2 (RHEL 8). Fixes #804 .
2020-05-24 15:07:08 -05:00
hwdsl2
a087be669f
Cleanup
2020-05-24 00:14:05 -05:00
hwdsl2
d457ebd16d
CentOS 8 fixes
...
- Use nftables instead of iptables-services for CentOS 8
- Existing firewalld rules are now preserved during VPN setup,
which will be saved as part of nftables rules
2020-05-24 00:10:35 -05:00
hwdsl2
fab5d51d78
Cleanup
...
- No need to apply IPTables rules for Ubuntu/Debian
2020-05-23 17:57:38 -05:00
hwdsl2
54d0d9d37d
Update docs
2020-05-21 00:22:05 -05:00
hwdsl2
0a0607feb9
Update IKEv2 script
...
- Save client configuration to home folder
2020-05-17 18:09:40 -05:00
hwdsl2
09c68fda01
Update docs
...
- Add troubleshooting section for Android MTU/MSS issues
- Remove "Access VPN server's subnet". This seems to work fine using
the default configuration, without additional IPTables rules
2020-05-16 23:35:52 -05:00
hwdsl2
b028661f6f
Update IKEv2 script
...
- Raspberry Pi (Raspbian) kernels do not support MOBIKE
2020-05-16 22:11:01 -05:00
hwdsl2
f38e2ea4f2
Cleanup
2020-05-14 23:07:47 -05:00
hwdsl2
d44b09d577
Update docs
2020-05-11 23:23:38 -05:00
hwdsl2
5bf8b86192
Update IKEv2 script
...
- Fix CentOS detection
- Set MOBIKE question default to 'yes'
2020-05-11 23:15:05 -05:00
hwdsl2
6a285499e3
Update upgrade scripts
...
- Support upgrading to Libreswan 3.32
- Update ikev2 setup helper script
2020-05-11 11:28:37 -05:00
hwdsl2
b293aa3081
New Libreswan version
...
- Upgrade Libreswan to 3.32
2020-05-11 10:59:08 -05:00
hwdsl2
207fb6574d
Update links
...
- Add a link to IKEv2 how-to guide
2020-05-11 01:19:03 -05:00
hwdsl2
ace41ebc29
Add IKEv2 script
...
- Add a helper script for automatic IKEv2 setup
- Update IKEv2 docs
2020-05-11 01:18:34 -05:00
hwdsl2
1839943b0e
Update docs
2020-05-03 22:12:17 -05:00
hwdsl2
9e6b26b1b2
Update docs
2020-05-03 01:59:37 -05:00
hwdsl2
7076376aac
Update IKEv2 docs
...
- For users running Libreswan 3.31, the "Use RSA/PSS signatures" option
needs to be enabled in the strongSwan Android VPN client.
- Ref: https://lists.libreswan.org/pipermail/swan/2020/003440.html
2020-04-30 01:13:39 -05:00
hwdsl2
f15db57ea5
Fix upgrade bug
...
- Fixed an issue where the upgrade script could break the IKEv2 section
of /etc/ipsec.conf for users who manually added IKEv2
2020-04-30 00:12:56 -05:00
hwdsl2
dae0c03356
Improve output
...
- Inhibit warning messages from Libreswan compilation
2020-04-29 11:00:25 -05:00
hwdsl2
5983c79904
Fix IKEv2
...
- Apply fix for an IKEv2 regression in Libreswan
- Ref: https://github.com/libreswan/libreswan/commit/90f8a09
https://github.com/libreswan/libreswan/issues/333
https://github.com/libreswan/libreswan/issues/329
2020-04-26 16:27:00 -05:00
hwdsl2
dbb3c6b436
Improve RPi workaround
...
- Newer Raspbian kernels now support SHA512
2020-04-26 00:32:54 -05:00
hwdsl2
c251d6d6ea
Add Ubuntu 20.04
2020-04-25 23:02:24 -05:00
hwdsl2
48d9b06bab
Update upgrade scripts
...
- Support upgrading to Libreswan 3.31
2020-04-12 00:28:00 -05:00
hwdsl2
2c660bb914
New Libreswan version
...
- Upgrade Libreswan to 3.31
- "USE_DH2=true" is required for keeping Windows clients compatibility
Ref: https://github.com/libreswan/libreswan/commit/8fcbbc7
- "USE_XFRM_INTERFACE_IFLA_HEADER=true" is required for compilation on
older Linux distributions
Ref: https://github.com/libreswan/libreswan/commit/c21909c
2020-04-11 17:11:12 -05:00
hwdsl2
03c4dd9b24
Update clients-zh.md
2020-04-11 17:02:00 -05:00
Stephen Nancekivell
228d801adb
Update clients.md ( #767 )
2020-04-11 16:19:35 -05:00
hwdsl2
ca6bf9818d
Update docs
2020-01-15 23:58:44 -08:00
hwdsl2
815fdc0b1c
Update docs
2020-01-13 00:22:25 -08:00
hwdsl2
53a4bbb06a
Add install note
2020-01-13 00:09:30 -08:00
hwdsl2
4360737eaf
Improve OS detection
2020-01-13 00:07:39 -08:00
hwdsl2
4b28ce5de9
Update IKEv2 docs
...
- Update macOS and iOS IKEv2 instructions
2019-11-10 19:32:29 -08:00
hwdsl2
0dfe0d3021
Update IKEv2 docs
...
- Add new IKEv2 instructions for Android 10
Ref: https://wiki.strongswan.org/issues/3196
- Change certificate validity period to 120 months
2019-11-10 17:23:12 -08:00
hwdsl2
b01471bf2f
Update Azure config
...
- Add Standard_B1ls to VM size options
2019-11-10 15:51:28 -08:00
hwdsl2
f1a002d139
Update Azure config
...
- Add Ubuntu 18.04 to OS options
2019-11-01 21:47:15 -07:00
hwdsl2
3b6a61481f
Fix Azure deploy
...
- Fix handling of special characters in the Azure deployment config
by quoting the VPN parameters
- Fixes #644 . Thanks @turbozapekanka for the report!
2019-11-01 21:34:56 -07:00
hwdsl2
3858040f55
Update docs
2019-11-01 16:15:29 -07:00
hwdsl2
99e194e683
Add CentOS 8
...
- Add support for CentOS/RHEL 8
2019-11-01 13:31:23 -07:00
hwdsl2
60716c0654
Update docs
2019-09-22 21:11:31 -07:00
hwdsl2
3353888ee9
Set sha2-truncbug to no
...
- This fixes VPN connection issues on iOS 13
- Android 6.x and 7.x users may require sha2-truncbug=yes. Will note
this in the documentation
- Fixes #638
2019-09-22 20:37:23 -07:00
hwdsl2
9c17bcf63a
Update docs
2019-09-08 23:49:51 -05:00
hwdsl2
1187cea1d7
Update docs
2019-09-07 22:34:19 -05:00
hwdsl2
c769212a92
Update docs
2019-09-06 18:57:00 -05:00
hwdsl2
772da07efd
Add Debian 10
...
- Add Debian 10 to supported OS
- Add a note on Debian 10 kernel versions
2019-08-20 11:06:11 -05:00
hwdsl2
b9a4c23350
Update docs
...
- Update troubleshooting section
- Closes #606
2019-08-08 00:12:55 -05:00
hwdsl2
609f24257d
New Libreswan version
...
- Upgrade Libreswan to 3.29
2019-06-10 21:05:51 -05:00