angristan
36af5ec100
Update DH/RSA defaults
2018-09-22 14:19:51 +02:00
angristan
b898a99485
Add compression support
...
It is disabled by default.
2018-09-22 14:08:42 +02:00
angristan
7ed823cdf2
Remove OpenVPN APT repo during removal
2018-09-22 11:41:31 +02:00
angristan
c96a71c7d6
Fix OpenVPN repo for Debian 8
2018-09-22 11:40:54 +02:00
angristan
80c0b971d6
Improved and safer code
...
Thanks to shellcheck!
2018-09-21 23:48:11 +02:00
angristan
76607e781c
Sorry...
2018-09-21 22:22:09 +02:00
angristan
a0ff4d7cf9
Improve questions for NATed servers
2018-09-21 21:53:39 +02:00
angristan
4144fa9dff
Make encryption customization optional
...
A lot of people don't know much about cryptography.
Since the script already overwrite OpenVPN's default settings, there is no need for most people to modify them.
2018-09-21 17:17:41 +02:00
xiagw
0f67214490
Improve Debian/Ubuntu version checking ( #187 )
2018-09-20 22:00:16 +02:00
angristan
0a5c3c1401
Rewrite README
2018-09-20 17:16:04 +02:00
Stanislas
e920f7fbc2
Refactoring, cleanup and fixes ( #293 )
2018-09-20 00:05:02 +02:00
Stanislas
136a46874e
Rework and cleanup systemd service handling ( #294 )
...
* Don't hardcode server.conf in systemd service
* Rework and cleanup service handling
2018-09-18 14:55:00 +02:00
angristan
d3974220ef
Fix public interface in iptables rules
2018-09-18 12:37:07 +02:00
angristan
974b80dbc1
Remove unused variables
2018-09-17 18:05:51 +02:00
Stanislas
594486c177
Rework iptables handling ( #291 )
2018-09-17 01:11:30 +02:00
angristan
18b025e831
Improve sysctl config
2018-09-16 22:45:04 +02:00
Stanislas
bfed14544e
Add IPv6 NAT support ( #238 )
2018-09-16 17:55:50 +02:00
angristan
f6c9a63e38
Drop support for Arch Linux
...
Arch Linux isn't very used and is not available on cloud providers. I cannot test it easily so it is a burden to maintain for me
2018-09-16 01:34:01 +02:00
angristan
8a5de575b7
Drop Debian 7 support
...
Debian 7 is EOL and I can't test it on cloud providers anymore
2018-09-16 01:29:04 +02:00
angristan
3209441775
Better bash
2018-09-16 01:26:37 +02:00
angristan
62380c512b
Drop CentOS 6 support
2018-09-16 01:26:30 +02:00
randomshell
f057e0aa5f
Add self-hosted DNS resolver (Unbound)
2018-09-16 00:53:33 +02:00
angristan
4bf4257cf3
Merge two mv commands
2018-09-05 20:26:33 +02:00
angristan
2997a7e8b6
Remove "|| return"
2018-09-05 20:20:46 +02:00
angristan
ea40b45b52
Fix /dev/urandom usage on unprivileged LXC containers
...
Fixes https://github.com/angristan/openvpn-install/issues/280
2018-09-02 22:32:58 +02:00
Angristan
64f62cf874
Remove log-append for now and create log dir
...
See https://github.com/Angristan/OpenVPN-install/issues/275
2018-08-23 00:40:36 +02:00
Angristan
d8d0bbb5da
Add access logs (log-append)
...
And move log files to /var/log/openvpn. Makes more sense and access logs can be very useful.
2018-08-22 22:11:36 +02:00
Angristan
1b18e7f2a7
Re-add a default suggestion for the client name
...
But only during the setup, not for additional clients
2018-08-18 21:47:10 +02:00
Angristan
47c86874dc
Update check on the client's name input
2018-08-18 19:55:36 +02:00
Angristan
9ef0bbc47d
Add password option for clients ( #160 )
2018-08-18 19:40:07 +02:00
Jebtrix
df172b962d
Add option to generate random port in private port range ( #229 )
2018-08-18 15:57:24 +02:00
Sayem Chowdhury
5501de73c8
Improved code ( #243 )
2018-07-15 11:25:59 +02:00
cezar97
63ac18075d
Add quad9 secondary DNS ( #248 )
...
See https://www.quad9.net/faq/#Is_there_a_service_that_Quad9_offers_that_does_not_have_the_blocklist_or_other_security .
2018-07-06 22:11:22 +02:00
Jebtrix
b8f0b44c55
[FIX] Unable to select AdGuard DNS choice ( #228 )
2018-05-29 10:18:24 +02:00
Angristan
6cecc16f0d
Fixes #217 "Package 'gpg' has no installation candidate"
2018-05-10 00:29:05 +02:00
Timofey Vasenin
d2a3b3bec6
Backport improvements of external IP handling ( #213 )
...
* [backport] Remove IP address detection fallback
It was never used, the one-liner is enough.
* [backport] Improve NAT detection
Cleaner and better:
- Not relying in an external service
- Avoids a false positive when the server has multiple public IPv4
addresses and the user selects one which is not the default gateway
2018-05-08 21:23:36 +02:00
Timofey Vasenin
b3fba4fddc
[backport] Fix system resolvers option for environments running systemd-resolved ( #214 )
2018-05-08 21:01:32 +02:00
Stanislas
2f6821d778
Add support for Ubuntu 18.04
2018-05-08 20:53:57 +02:00
Timofey Vasenin
71bb6e8371
Remove unneeded -r argument from some rm commands
...
Backport the relevant part of:
d717353769
2018-05-07 18:50:01 +02:00
cezar97
61d89e3ba2
Remove .ovpn on cert revoke or OpenVPN uninstall ( #178 )
2018-04-10 11:06:19 +02:00
Angristan
d7e706ac24
Add Cloudflare resolvers
...
Fixes #193
2018-04-01 23:12:05 +02:00
Angristan
42f6553dcc
Add GPG dependency
2018-02-25 17:37:03 +01:00
Angristan
687eb9019d
Fix Fedora detection
...
Fixes #168
2018-02-22 21:47:35 +01:00
Kcchouette
f252614a36
Remove unsupported version of ubuntu ( #163 )
...
* Remove unsupported version of ubuntu
Remove 12.04 as the support finished on April 28, 2017
Remove 16.10 as the support finished 2017-07-20
Remove 17.04 as the support finished 2018-01-13
2018-02-14 14:48:36 +01:00
Angristan
febdc04340
Support Ubuntu 17.10
...
Fixes #161
2018-02-13 22:38:48 +01:00
Angristan
501f8a9b36
Use a different client name for new users
...
Just in case the user keeps the default "client" username when installing, reusing "client" will fail. A tiny commit for lazy users.
2018-02-12 16:07:37 +01:00
Angristan
cffe4bee4a
Inverse FDN's DNS servers for DNSSEC
...
The .12 does not validate DNSSEC while the .40 does, so I'm putting the .40 first.
2018-01-27 20:21:28 +01:00
Angristan
edbf48646e
Merge pull request #151 from cezar97/master
...
Randomize CN and Server Name and verify Server Name
2018-01-25 12:24:50 +01:00
Angristan
d19283c46f
Optmize vars
...
I'm not removing the PiVPN mention because I don't want to credit them, but to not bloat the script.
Their contribution will be available via git blame + https://github.com/Angristan/OpenVPN-install/pull/151 :)
2018-01-25 12:23:25 +01:00
Angristan
7c7084238f
Update EasyRSA to 3.0.4
...
Fixes "./easyrsa: 644: ./easyrsa: [[: not found"
2018-01-23 12:19:01 +01:00