515 Commits

Author SHA1 Message Date
Henry N
fdd576eea5
openvpn.conf: TAB/ident
All entries after "server:" with a TAP/ident
2020-04-07 20:21:32 +02:00
Henry N
d670973f0b
Arch: do-daemonize no is default
Arch Linux starts "/usr/bin/unbound -d -p".
"-d" do not fork into the background.
So the "daemonize: no" is default. (For Systemd on Arch Linux)
2020-04-04 22:14:40 +02:00
Henry N
96e2420ad0
arch-Linux: Remove defaults
use-syslog is default, directory /etc/unbound is default, port 53 is default
2020-04-04 21:55:40 +02:00
Henry N
3cc3715b0e
arch: username unbound default
"username: unbound" is default. Found in arch linu xdefauls unbound.conf and https://www.nlnetlabs.nl/documentation/unbound/unbound.conf/#username
2020-04-04 21:20:02 +02:00
Henry N
f15c88c0aa
Text unbound.conf.d/openvpn.conf 2020-04-02 21:03:46 +02:00
Henry N
e5f169ad3b
Remove intermediate echo 2020-04-01 23:58:37 +02:00
Henry N
6e21a54081
Full path to remove include openvpn.conf
Full path to remove include of /etc/unbound/unbound.conf.d/openvpn.conf,
and missing ":" after the "include".
2020-04-01 23:53:36 +02:00
Henry N
d744222674
DNS Rebinding fix for all OS 2020-04-01 23:35:36 +02:00
Henry N
d31dad466a
harden-glue: and qname-minimisation for all OS
harden-glue: yes and qname-minimisation: yes for all OS, not only for Arch.
2020-04-01 23:25:27 +02:00
Henry N
148cbf93a9
one unbound config for all OS
Fix for #602
Create new config as /etc/unbound/unbound.conf.d/openvpn.conf,
include this into /etc/unbound/unbound.conf.
On uninstall simple remove the include, if if was injected by openvpn-install.
2020-04-01 00:57:56 +02:00
randomshell
7ed9cac8d7
Change Adguard DNS to Anycast (#596)
See map at https://adguard.com/en/adguard-dns/overview.html
2020-03-31 23:05:44 +02:00
Henry N
44105eb060 Fix systemd unit issue on Debian 9 (#585)
On Debian 9 the copy of unit file `/etc/systemd/system/openvpn@.service` has no effect, see #583.
Same problem as #129 and #378, unit can not start on OpenVZ.

It must execute `systemctl enable` before `systemctl restart`.
So the new link to `/etc/systemd/system/openvpn@.service` was created before `systemctl restart`.

Fix https://github.com/angristan/openvpn-install/issues/583
2020-03-28 15:41:37 +01:00
Henry N
3d075c8708
Print warning about empty public interface (#581)
Warning, if cannot detect public interface, and give user a choice to continue or abord.
2020-03-26 21:27:16 +01:00
Henry N
23e533431a
Fix error messag mkdir /etc/iptables (#580)
Fix this error message:
mkdir: cannot create directory ‘/etc/iptables’: File exists
2020-03-26 21:24:50 +01:00
Henry N
130659b003
Add explicit-exit-notify for UDP (#579)
For faster reconnects with UDP is better to send the the explicit-exit-notify to server. With this the server can directly see, that the client will exit.
2020-03-26 21:24:20 +01:00
Stanislas
14bcfbd531
Run action on PRs (#582) 2020-03-26 21:22:48 +01:00
Henry N
aab5e7b2ff
Fix getting pulic interface in IPv6 only (#578)
In a IPv6 only environment, the variable $NIC would be empty and iptables in add-openvpn-rules.sh will fail by missing argument.
2020-03-26 21:22:22 +01:00
randomshell
6bb87ae716
Install semanage command on CentoOS (#554)
CentOS has selinux enabled by default but it hasn't the `semanage` command required to run OpenVPN on another port.
'policycoreutils-python*' match `policycoreutils-python' in CentOS 7 and `policycoreutils-python-utils` in Centos 8.
2020-03-14 20:25:22 +01:00
xPakrikx
3f2ad88cbf
Custom DNS option wrong value fix (#559)
Custom DNS option wrong value fix
2020-03-10 10:43:13 +01:00
Stanislas Lange
7a4f9278e7 Add new DNS option: NextDNS 2020-03-03 23:04:18 +01:00
Stanislas
006167b3c7
Doc: Add Viscosity as a supported macOS client 2020-02-20 23:57:43 +01:00
angristan
4b0f47b534 Fix Fedora detection 2020-01-27 18:08:06 +01:00
Stanislas
69c4751236
Remove saythanks.io :(
RIP https://github.com/BlitzKraft/saythanks.io/issues/60
2020-01-27 17:40:40 +01:00
Stanislas
caa571f768
Fix GitHub action (#515) 2019-11-11 15:37:09 +09:00
Safa Bayar
12ba1a9d9a Add Centos 8 Support (#506) 2019-11-11 15:18:34 +09:00
Dominic Dumrauf
40a9fb975a Documenting One-Stop Solution for AWS (#490) 2019-10-02 11:40:49 +09:00
Rhys Perry
a3ed51df0c Update supported architectures (#492) 2019-09-23 16:41:58 +09:00
Dominic Dumrauf
7e8fd767aa Updating documentation around existing headless user addition feature (#488)
This closes #422
2019-09-19 16:59:20 +09:00
Stanislas
bc109db04f
Add support for custom DNS input (#470)
Close #258 #260

Co-authored-by: Sayem Chowdhury <sayem314@gmail.com>
2019-08-20 21:02:47 +02:00
Stanislas
4080585ab5
Workaround to remove unharmful easy-rsa error (#469)
Until easy-rsa 3.0.7.

https://github.com/OpenVPN/easy-rsa/issues/261

Fix #454
2019-08-20 21:02:05 +02:00
Stanislas
04141c6c91
Support Raspbian (#462)
Fix #382
2019-08-20 21:01:35 +02:00
angristan
0e3e7f2705 Update sysctl comment 2019-08-20 17:58:51 +02:00
Stanislas
cee02eb803
Fix CentOS detection during install (#468)
Fix #463
2019-08-20 13:36:16 +02:00
Stanislas
1acab15a26
Insert iptables rules at the top (#466)
Fix #346 #465
2019-08-20 11:55:43 +02:00
Stanislas Lange
f207302334 Revert "Insert iptables rules at the top (#461)"
This reverts commit de021b67d55df0b552b8cc3920314ad844728c1b.
2019-08-20 11:20:24 +02:00
Stanislas
de021b67d5
Insert iptables rules at the top (#461)
Fix #346
2019-08-20 00:24:01 +02:00
angristan
6c4104c25d Update ISSUE_TEMPLATE.md 2019-08-19 23:50:17 +02:00
Stanislas
30735c91d8
Add Amazon Linux 2 support (#459) 2019-08-19 23:25:48 +02:00
Stanislas
2aab3792ca
Remove Travis Badge from README
Since we use Actions now.
2019-08-16 18:33:16 +02:00
angristan
d904476647 Fix github action 2019-08-16 18:31:46 +02:00
angristan
85c3f77d01 Fix workflows path 2019-08-16 18:30:25 +02:00
Stanislas
4fe6541a8d
Add GitHub actions workflow for shellcheck (#458)
* Remove Travis

* Add GitHub actions workflow for shellcheck
2019-08-16 18:28:12 +02:00
Stanislas
b095c23496
Update README.md
My username is lowercase now
2019-07-28 23:31:34 +02:00
Stanislas
a57f5e69ba
Debian 10 + armhf = OK (#450) 2019-07-17 18:14:24 +02:00
David Barda
4255046bd6 Update README: HMAC-SHA1 is not broken (#448)
Remove irrelevant data from readme, as HMAC strength does not depend on the collisions of the hash function
2019-07-15 19:21:18 +02:00
Stanislas
dea1d6db2b
Add support for lz4-v2 (#444)
Close #366
2019-07-05 17:49:31 +02:00
Stanislas
980a483ebc
Update FUNDING.yml 2019-07-01 15:05:44 +02:00
Stanislas
b7bbc57284
Create FUNDING.yml 2019-07-01 15:02:17 +02:00
angristan
5844a8440f Add support for Debian 10
Fix #439
2019-06-30 23:06:42 +02:00
Stanislas
a34d13adbb
Update LICENSE 2019-06-05 01:13:03 +02:00