bcedc8d6d6
Fix for Windows 10 DNS Leak
...
The patch includes an update to the OpenVPN server config to
address a DNS leak when using Windows 10, as documented at:
https://community.openvpn.net/openvpn/ticket/605
2016-07-05 13:29:45 -04:00
ff731723d4
Merge pull request #141 from meonkeys/upgrade-base-alpine
...
Derive from alpine 3.4 instead of 3.2
2016-06-25 21:09:47 -07:00
b81b2dd472
Derive from alpine 3.4 instead of 3.2
...
To work around known vulnerabilities in alpine 3.2 such as CVE-2016-2177
and CVE-2016-2178.
See https://github.com/kylemanna/docker-openvpn/issues/140
2016-06-24 13:53:45 -07:00
4f269704c4
Merge pull request #135 from efrecon/master
...
Automatically creating CCD directory
2016-06-23 06:28:05 -07:00
3e747b353e
Sending key to proper location!
2016-06-23 12:20:13 +02:00
dac38246bd
Add "key-direction 1" to client .ovpn
...
Adding this setting avoids connection errors on some clients, when the .ovpn file is imported directly in Gnome NetworkManager.
Server logs:
Authenticate/Decrypt packet error: packet HMAC authentication failed
TLS Error: incoming packet authentication failed from ...
Client logs:
nm-openvpn: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
nm-openvpn: TLS Error: TLS handshake failed
NetworkManager version: 1.2.0
openvpn version: OpenVPN 2.3.10
2016-06-13 12:09:54 +02:00
c12fdcd83f
Automatically creating CCD directory
2016-06-08 09:14:08 +02:00
50f387169a
tests: dual-proto: Kill both background servers
...
* Kill both the udp and tcp background jobs.
2016-06-01 15:05:41 -07:00
22cc82d21d
tests: dual-proto: Fail gracefully on firewall
...
* Firewall was already configured, don't exit the unit test.
2016-06-01 14:44:35 -07:00
14827df71d
Merge branch 'dual-proto' of git://github.com/dave-burke/docker-openvpn into dave-burke-dual-proto
2016-06-01 14:44:16 -07:00
e8eb47ef2b
test: Add a simple completion message and test cnt
...
* Simplify the review of the test log by looking for a magic line.
2016-06-01 14:43:28 -07:00
30adfd5632
tests: basic: Fail gracefully on firewall
...
* Firewall was already configured, don't exit the unit test.
2016-06-01 13:41:25 -07:00
f3a24fee60
travis: Fail when a unit test fails
...
* Oops, this never actually aborted when something went wrong.
* Fix that and abort.
* Print a brief message about the last script run that blew up.
2016-06-01 13:36:31 -07:00
61bb4a933c
travis: Add test header
...
* Print a brief header to describe the test about to be run
2016-06-01 12:40:00 -07:00
a5b9ade314
Add dual protocol documentation
2016-05-31 21:12:30 -05:00
5d436643b2
Add dual protocol test
2016-05-31 21:12:30 -05:00
d77ba5e1e8
Combine user args with generated args
...
Generated arguments will be added only if matching arguments were not
specified by the user. User arguments will be placed after generated
arguments. This allows the user to override any generated configuration
values.
2016-05-31 21:11:03 -05:00
097376db75
Set working dir in ovpn_run instead of Dockerfile
2016-05-28 22:34:41 -05:00
caffc0b715
Merge pull request #130 from rgarrigue/patch-1
...
Update README.md
2016-05-25 22:18:36 -07:00
7eede0d8e5
Update README.md
...
Typo fix
2016-05-25 20:44:12 +02:00
22f90831cf
Merge pull request #127 from mediatemple/add_extra_config
...
allow specifying extra config
2016-05-17 21:26:14 -07:00
793f83d620
adding tests for extra server config
2016-05-17 08:42:22 -07:00
191cb45106
allow specifying extra config
2016-05-16 09:56:27 -07:00
df63db02a0
Merge pull request #126 from mediatemple/add_ovpn_listclients
...
adding ovpn_listclients script
2016-05-11 21:43:42 -07:00
d3fcec15f1
adding ovpn_listclients script
2016-05-11 16:02:27 -07:00
98f9681d3e
Merge pull request #122 from TheNotary/readme-debug-section
...
Debugging tips added to readme
2016-04-23 16:21:48 -07:00
74ba753f70
Created a debug section in readme
2016-04-23 10:52:39 -07:00
cd8fd6afaa
Merge pull request #119 from rudijs/fragment-option
...
Add openvpn.conf gerneration -f fragment directive option
2016-04-11 18:54:59 -07:00
9ea4815a74
Fix incorrect local image being used
2016-04-06 15:21:13 +08:00
74bfad0aac
Add openvpn.conf gerneration -f fragment directive option
2016-04-06 15:06:02 +08:00
ed51116fb6
docs: Add contribution guidelines
...
* High level overview of contribution guidelines.
2016-04-04 23:49:14 -07:00
eb22992a2f
Merge pull request #102 from fabn/otp
...
Two factor authentication using a token application
2016-03-14 07:42:30 -07:00
286676879d
Merge pull request #107 from croepha/selinux
...
Updated SELinux docs
2016-02-23 21:56:59 -08:00
42bf842202
Updated SELinux docs
...
for hosts not allowing module loading
2016-02-23 12:05:13 -06:00
bd51bb273e
Merge pull request #104 from croepha/selinux
...
Selinux policy and docs
2016-02-17 15:07:15 -08:00
70b70e298d
Merge pull request #105 from mypetyak/master
...
Added documentation details on using TCP protocol.
2016-02-17 15:06:43 -08:00
95c260a97a
Added documentation details on using TCP protocol.
2016-02-16 22:44:10 -08:00
35c9103454
Updated Alpine Linux packages, including pamtester
2016-02-15 21:01:52 +01:00
d481313311
Back to Alpine Linux using packaged version of google-authenticator
2016-02-11 18:10:51 +01:00
9b824fb35a
Fix typo
2016-02-10 13:01:54 -06:00
7a9abf4c14
Update README.md
2016-02-10 12:37:56 -06:00
44055aa687
added docs for SELinux policy file
2016-02-10 12:34:35 -06:00
8356a664d8
Added linux policy file
2016-02-10 12:25:45 -06:00
ba7b925a9f
Using a different volume name for otp test, should allow tests to run
2016-02-10 17:12:49 +01:00
517ad6aeb2
Implemented tests for 2 factor authentication
2016-02-10 16:59:15 +01:00
9c6f3311a1
Fix for Dockerfile, trailing slash is needed.
2016-02-07 14:45:28 +01:00
dc4656ef48
OTP documentation
2016-02-07 14:30:56 +01:00
e8d93ea4fa
Use $USER@$OVPN_CN for OTP label.
2016-02-07 13:22:20 +01:00
10dd404159
Fixes pam authentication when dealing with virtual users
2016-02-07 03:48:44 +01:00
607063b358
Do not cache user credentials
2016-02-07 02:53:43 +01:00
