octoleo
/
openvpn-install
mirror of https://github.com/namibia/openvpn-install.git
1
1
Fork 0
Code Issues Releases Activity
703 Commits 5 Branches 0 Tags 811 KiB
Commit Graph

703 Commits

Author SHA1 Message Date
ValdikSS 0265fc0e06 Use different exit codes on error 2015-11-15 13:37:22 +03:00
ValdikSS 15a39afd11 Do not allow OpenVPN to set (low) buffer sizes 2015-11-15 13:36:20 +03:00
ValdikSS 2574097eb4 Use EUID to check root 2015-11-15 13:34:19 +03:00
Nyr d32416561b Grep for DROP as well as REJECT 2015-10-07 19:57:04 +02:00
Nyr 5c65625bcc Merge pull request #76 from PeterDaveHello/patch-1 
Don't run the script if download failed
 2015-10-07 13:38:21 +02:00
Peter Dave Hello 5741989e69 Update README.md 
Use `&&` instead of `;` in the command,
do not run the script if download failed.
 2015-10-07 16:00:06 +08:00
Nyr eb8d8257a0 The BIG commit 
- Upgrade to easy-rsa 3.0.0
- Firewall support: rules are added for both FirewallD and iptables if
needed.
- Creation of our own configuration files for both the server and
clients.
- Using subnet topology instead of the deprecated net30.
- Removed port 53 question during install: user can just choose that
port during setup.
- Removed internal networking option: this is a road warrior installer
after all.
- Bugfix: the default easy-rsa directory was not correctly deleted if
one was already there.
 2015-09-12 21:48:08 +02:00
Nyr abe2ac44b1 Offer updated 2015-09-04 20:56:25 +02:00
Nyr e176938ecd Offer updated 2015-08-06 19:43:23 +02:00
Nyr b46a0541dd Replaced Yandex DNS with Google 
Yandex DNS is not stable enough, Google was previously missing.
 2015-08-05 02:17:24 +02:00
Nyr 67b4cd68e2 Merge pull request #57 from hcartiaux/master 
Remove a useless wc
 2015-08-04 16:27:58 +02:00
Hyacinthe Cartiaux 91e09dedf1 Remove a useless use of wc 2015-08-01 20:27:30 +02:00
Nyr 7d467d9666 Multiple improvements 
- Better UX for client certificate revocation: a list of the current
client names is shown to the user
- easy-rsa 2.2.2 now used by default: it’s easier for me to maintain a
single version
 2015-07-22 08:02:59 +02:00
Nyr b778c1aed9 Cosmetic bugfix 2015-06-29 09:23:44 +02:00
Nyr e6168baf80 Offer updated 2015-06-29 08:53:13 +02:00
Nyr cf48ecd3b0 Bugfixes 
- Little fix for Debian Jessie
- Better systemd detection
- Fixed revocation on CentOS
 2015-04-28 18:35:54 +02:00
Nyr 68b5ff7e99 Revert "Cleaner port 53 setup" 
This reverts commit fb036d575b.
 2015-03-10 10:44:47 +01:00
Nyr fb036d575b Cleaner port 53 setup 2015-02-16 17:33:22 +01:00
Nyr fad088013c CentOS support and other improvements 2015-02-11 19:51:19 +01:00
Nyr a256194ecb Add feedback during removal abortion 2015-01-25 20:45:07 +01:00
Nyr 98b39e7354 Added a confirmation dialog before removing 2015-01-21 03:03:14 +01:00
Nyr 135db489b7 Update README.md 2014-12-10 23:31:04 +01:00
Nyr 6d4af520b8 Bugfix for systems with a non-standard rc.local 2014-11-07 00:53:28 +01:00
Nyr 215140b682 Options for custom DNS and intra-VPN connectivity 2014-11-04 21:57:36 +01:00
Nyr 2174037768 Now using in-line certificates 2014-10-23 03:16:09 +02:00
Nyr 091e487472 Cleanup 2014-10-23 00:19:08 +02:00
Nyr 936a8b8ff0 Removed useless cat 2014-09-25 04:00:32 +02:00
Nyr 091ef01a8b Bug fix + future bulletproofness 
- Use always double [[]] blocks (bug fix for the test at line 208 under
some circumstances)
- bash shell is now forced
- All variables are now quoted
 2014-09-18 23:34:22 +02:00
Nyr afb30c44da Now using resolvers from resolv.conf 
This will help with some ISPs restricting access to third party DNS
servers like it happens with LowEndSpirit and Torqhost.
 2014-05-15 18:20:53 +02:00
Nyr cb60a28742 Updated providers list 2014-03-26 21:52:50 +01:00
Nyr c72a4d2b5e Bugfix: port redirect wasn't correctly set when a custom port was in place 2014-03-12 21:14:38 +01:00
Nyr a69dae3021 Check if the script is running on a Debian-based system before starting 
Fixed some spacing too
 2014-03-12 21:06:57 +01:00
Nyr 6d89279940 Bugfix for systems with multiple IPv4 addresses available 2013-12-20 18:50:30 +01:00
Nyr ee9750a210 Use Easy-RSA 2.2.2 instead of the master branch with Debian Jessie and Ubuntu Saucy 
This was needed for Debian Jessie, but using always the latest Easy-RSA
was a bad idea.

I will force Easy-RSA 2.2.2 for now and until Jessie becomes stable.
Then we can probably just use the distro packages instead of Github,
but for now this will work.
 2013-12-19 22:09:20 +01:00
Nyr 8184a1ae97 Now under the MIT license 2013-12-09 00:56:49 +01:00
Nyr 96a640fc80 Create LICENSE.txt 2013-12-09 00:53:09 +01:00
Nyr 87ef7b452c Updated providers list 2013-11-29 22:23:59 +01:00
Nyr 5256374010 Added Hostowisko to providers list 2013-11-12 21:28:58 +01:00
Nyr 42e039700c Updated list of providers 2013-10-21 17:29:08 +02:00
Nyr b30130b506 Bugfixes 
- easy-rsa was downloaded from Github even on systems where it was available by default.
- easy-rsa.tar.gz is now removed when no longer needed.
 2013-10-04 19:04:12 +02:00
Nyr 6c22c657f7 Update openvpn-install.sh 2013-08-22 17:00:53 +02:00
Nyr 2533e2e113 Bugfix: routes not being pushed 2013-08-05 00:58:43 +02:00
Nyr a202ca29df Fixed one-liner 2013-08-05 00:31:42 +02:00
Nyr 12c6b4de62 Short URL for the one-liner 2013-08-04 15:13:14 +02:00
Nyr 0eda63842c Remove temporary files when they are no longer needed 2013-08-04 14:22:02 +02:00
Nyr 31040f475a 2048 bit keys by default and Debian Jessie compatibility 2013-08-04 14:11:38 +02:00
Nyr 730691c8a1 Various bugfixes and improvements 
- Assisted configuration for servers behind a NAT
- Better IP autodetection
- Fix certificate revocation
 2013-07-07 21:28:08 +02:00
Nyr ce8077f048 Bugfix: better IPv4 autodetection on some IPv6 enabled servers 2013-05-14 22:05:53 +02:00
Nyr 4f631dab20 Bugfix: iptables were incorrectly positioned on /etc/rc.local 2013-05-14 20:59:03 +02:00
Nyr c0adc8c75b Added option for client certificate revocation 2013-05-14 17:41:53 +02:00