allanger/container-openvpn
1
0
Fork 0
Code Issues 4 Pull Requests Actions Packages Projects Releases Activity
467 Commits 5 Branches 6 Tags 707 KiB
3539cbef73
Commit Graph

467 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Adam Monsen
b81b2dd472 Derive from alpine 3.4 instead of 3.2 
To work around known vulnerabilities in alpine 3.2 such as CVE-2016-2177
and CVE-2016-2178.

See https://github.com/kylemanna/docker-openvpn/issues/140
 2016-06-24 13:53:45 -07:00
Kyle Manna
4f269704c4 Merge pull request #135 from efrecon/master 
Automatically creating CCD directory
 2016-06-23 06:28:05 -07:00
Emmanuel Frecon
3e747b353e Sending key to proper location! 2016-06-23 12:20:13 +02:00
Martin d'Allens
dac38246bd Add "key-direction 1" to client .ovpn 
Adding this setting avoids connection errors on some clients, when the .ovpn file is imported directly in Gnome NetworkManager.

Server logs:
    Authenticate/Decrypt packet error: packet HMAC authentication failed
    TLS Error: incoming packet authentication failed from ...

Client logs:
    nm-openvpn: TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
    nm-openvpn: TLS Error: TLS handshake failed

NetworkManager version: 1.2.0
openvpn version: OpenVPN 2.3.10
 2016-06-13 12:09:54 +02:00
Emmanuel Frecon
c12fdcd83f Automatically creating CCD directory 2016-06-08 09:14:08 +02:00
Kyle Manna
50f387169a tests: dual-proto: Kill both background servers 
* Kill both the udp and tcp background jobs.
 2016-06-01 15:05:41 -07:00
Kyle Manna
22cc82d21d tests: dual-proto: Fail gracefully on firewall 
* Firewall was already configured, don't exit the unit test.
 2016-06-01 14:44:35 -07:00
Kyle Manna
14827df71d Merge branch 'dual-proto' of git://github.com/dave-burke/docker-openvpn into dave-burke-dual-proto 2016-06-01 14:44:16 -07:00
Kyle Manna
e8eb47ef2b test: Add a simple completion message and test cnt 
* Simplify the review of the test log by looking for a magic line.
 2016-06-01 14:43:28 -07:00
Kyle Manna
30adfd5632 tests: basic: Fail gracefully on firewall 
* Firewall was already configured, don't exit the unit test.
 2016-06-01 13:41:25 -07:00
Kyle Manna
f3a24fee60 travis: Fail when a unit test fails 
* Oops, this never actually aborted when something went wrong.
* Fix that and abort.
* Print a brief message about the last script run that blew up.
 2016-06-01 13:36:31 -07:00
Kyle Manna
61bb4a933c travis: Add test header 
* Print a brief header to describe the test about to be run
 2016-06-01 12:40:00 -07:00
Dave Burke
a5b9ade314 Add dual protocol documentation 2016-05-31 21:12:30 -05:00
Dave Burke
5d436643b2 Add dual protocol test 2016-05-31 21:12:30 -05:00
Dave Burke
d77ba5e1e8 Combine user args with generated args 
Generated arguments will be added only if matching arguments were not
specified by the user. User arguments will be placed after generated
arguments. This allows the user to override any generated configuration
values.
 2016-05-31 21:11:03 -05:00
Dave Burke
097376db75 Set working dir in ovpn_run instead of Dockerfile 2016-05-28 22:34:41 -05:00
Kyle Manna
caffc0b715 Merge pull request #130 from rgarrigue/patch-1 
Update README.md
 2016-05-25 22:18:36 -07:00
Rémy G
7eede0d8e5 Update README.md 
Typo fix
 2016-05-25 20:44:12 +02:00
Kyle Manna
22f90831cf Merge pull request #127 from mediatemple/add_extra_config 
allow specifying extra config
 2016-05-17 21:26:14 -07:00
Nate Jones
793f83d620 adding tests for extra server config 2016-05-17 08:42:22 -07:00
Nate Jones
191cb45106 allow specifying extra config 2016-05-16 09:56:27 -07:00
Kyle Manna
df63db02a0 Merge pull request #126 from mediatemple/add_ovpn_listclients 
adding ovpn_listclients script
 2016-05-11 21:43:42 -07:00
Nate Jones
d3fcec15f1 adding ovpn_listclients script 2016-05-11 16:02:27 -07:00
Kyle Manna
98f9681d3e Merge pull request #122 from TheNotary/readme-debug-section 
Debugging tips added to readme
 2016-04-23 16:21:48 -07:00
TheNotary
74ba753f70 Created a debug section in readme 2016-04-23 10:52:39 -07:00
Kyle Manna
cd8fd6afaa Merge pull request #119 from rudijs/fragment-option 
Add openvpn.conf gerneration -f fragment directive option
 2016-04-11 18:54:59 -07:00
Rudi Starcevic
9ea4815a74 Fix incorrect local image being used 2016-04-06 15:21:13 +08:00
Rudi Starcevic
74bfad0aac Add openvpn.conf gerneration -f fragment directive option 2016-04-06 15:06:02 +08:00
Kyle Manna
ed51116fb6 docs: Add contribution guidelines 
* High level overview of contribution guidelines.
 2016-04-04 23:49:14 -07:00
Kyle Manna
eb22992a2f Merge pull request #102 from fabn/otp 
Two factor authentication using a token application
 2016-03-14 07:42:30 -07:00
Kyle Manna
286676879d Merge pull request #107 from croepha/selinux 
Updated SELinux docs
 2016-02-23 21:56:59 -08:00
David Butler
42bf842202 Updated SELinux docs 
for hosts not allowing module loading
 2016-02-23 12:05:13 -06:00
Kyle Manna
bd51bb273e Merge pull request #104 from croepha/selinux 
Selinux policy and docs
 2016-02-17 15:07:15 -08:00
Kyle Manna
70b70e298d Merge pull request #105 from mypetyak/master 
Added documentation details on using TCP protocol.
 2016-02-17 15:06:43 -08:00
Christopher Bunn
95c260a97a Added documentation details on using TCP protocol. 2016-02-16 22:44:10 -08:00
Fabio Napoleoni
35c9103454 Updated Alpine Linux packages, including pamtester 2016-02-15 21:01:52 +01:00
Fabio Napoleoni
d481313311 Back to Alpine Linux using packaged version of google-authenticator 2016-02-11 18:10:51 +01:00
David Butler
9b824fb35a Fix typo 2016-02-10 13:01:54 -06:00
David Butler
7a9abf4c14 Update README.md 2016-02-10 12:37:56 -06:00
David Butler
44055aa687 added docs for SELinux policy file 2016-02-10 12:34:35 -06:00
David Butler
8356a664d8 Added linux policy file 2016-02-10 12:25:45 -06:00
Fabio Napoleoni
ba7b925a9f Using a different volume name for otp test, should allow tests to run 2016-02-10 17:12:49 +01:00
Fabio Napoleoni
517ad6aeb2 Implemented tests for 2 factor authentication 2016-02-10 16:59:15 +01:00
Fabio Napoleoni
9c6f3311a1 Fix for Dockerfile, trailing slash is needed. 2016-02-07 14:45:28 +01:00
Fabio Napoleoni
dc4656ef48 OTP documentation 2016-02-07 14:30:56 +01:00
Fabio Napoleoni
e8d93ea4fa Use $USER@$OVPN_CN for OTP label. 2016-02-07 13:22:20 +01:00
Fabio Napoleoni
10dd404159 Fixes pam authentication when dealing with virtual users 2016-02-07 03:48:44 +01:00
Fabio Napoleoni
607063b358 Do not cache user credentials 2016-02-07 02:53:43 +01:00
Fabio Napoleoni
bb3d1add3c Export user pass option in client when OTP is enabled 2016-02-06 21:40:11 +01:00
Fabio Napoleoni
c24a22deea Allow interactive usage 2016-02-06 21:38:26 +01:00