Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-09-24 | added firewall information to nodes (needed for `leap compile firewall`) | elijah | |
2015-03-19 | don't set a lower --fragment by default yet (not compatible with android client) | elijah | |
2015-03-05 | change default MTU to 1400 (#6745) | Micah Anderson | |
Change-Id: Ia4b93776c6ae316b47f6e0b8e2763aa6fa9cab92 | |||
2014-11-10 | change default openvpn fragment size back to 1500 so we don't break backward ↵ | elijah | |
compatibility with older clients | |||
2014-11-10 | openvpn - support customizing --fragment, and set default to 1400 | elijah | |
2014-07-01 | A vpn node picks its openvpn.gateway as obfsproxy gateway address | irregulator | |
2014-07-01 | Attach node's name to scramblesuit password and port secrets | irregulator | |
This makes every node with obfsproxy service have unique port and password for scramblesuit pluggable transport. | |||
2014-07-01 | Include obfsproxy descriptors in openvpn.json | irregulator | |
This is needed so as obfsproxy service is automatically deployed along with eip service. | |||
2014-05-13 | Revert "update cipher configuration for openvpn to use the IANA name" | Micah Anderson | |
This reverts commit ae50675e9095750cee9810237fb6b9f60030dae4. Older openssl implementations (wheezy, android, others) aren't able to parse this newer string, so reverting to the deprecated name until we are sure the support is there | |||
2014-05-06 | update cipher configuration for openvpn to use the IANA name, due to | Micah Anderson | |
deprecation warning: 2014-05-06 18:10:23,594 - INFO - L#826 : leap.openvpn:outReceived() - Tue May 6 18:10:23 2014 Deprecated TLS cipher name 'DHE-RSA-AES128-SHA', please use IANA name 'TLS-DHE-RSA-WITH-AES-128-CBC-SHA' Change-Id: I159b26604993d38806fcb7c2ed8f6de8138999f7 | |||
2014-05-06 | add the tun-ipv6 configuration to the eip-service (#4163) | Micah Anderson | |
Change-Id: I4781f0c3e1c74f5a45217a4d631603fa1a622fd6 | |||
2014-04-05 | revert openvpn tls-cipher: closes https://leap.se/code/issues/5429 | elijah | |
2014-04-05 | openvpn: allow for configurable keepalive (aka ping & ping-restart) closes ↵ | elijah | |
https://leap.se/code/issues/4127 | |||
2014-03-20 | allow ability to customize openvpn security stuff: tls-cipher, auth, and ↵ | elijah | |
cipher config options. | |||
2014-03-14 | added support for environment specific providers (e.g. ↵ | elijah | |
provider.production.json). requires latest leap_cli. | |||
2013-03-17 | added support for "limited" service levels (although vpn is not yet actually ↵ | elijah | |
rate limited). | |||
2013-02-27 | openvpn -- added support for optional "free" rate-limited service via ↵ | elijah | |
special client certificates with the FREE prefix in the common name. | |||
2013-01-21 | client ca -- configure the webapp with the client ca | elijah | |
2012-11-28 | updated service templates to reflect new command names | elijah | |
2012-11-22 | clean up openvpn and x509 paths | elijah | |
2012-11-17 | added better warnings to openvpn service when files are missing | elijah | |
2012-11-15 | added eip-service.json | elijah | |
2012-11-14 | added provider_base (latest leap_cli required) | elijah | |