summaryrefslogtreecommitdiff
path: root/puppet/modules/site_openvpn
AgeCommit message (Expand)Author
2014-05-06set the ipv6 configuration options on the serverMicah Anderson
2014-05-06install openvpn from wheezy-backports, this will bring in openvpn 2.3,Micah Anderson
2014-04-24make sure concat fragments are put together before the openvpn serviceMicah Anderson
2014-04-24update indentation to be standardMicah Anderson
2014-04-05openvpn: allow for configurable keepalive (aka ping & ping-restart) closes ht...elijah
2014-04-02Merge pull request #20 from elijh/feature/openvpn-configvarac
2014-03-25 ignore openvpn TLS initialization errors (Feature #5374)varac
2014-03-20allow ability to customize openvpn security stuff: tls-cipher, auth, and ciph...elijah
2013-10-15puppet - openvpn gateway address is hard coded as a /24 network (Bug #1863)varac
2013-10-02only add vpn_(un)?limited_udp_resolver and vpn_(un)?limited_tcp_resolver line...Micah Anderson
2013-09-25openvpn is restarted before package is installed (Bug #3904)varac
2013-09-24seperate cert and key deployment (#3918)varac
2013-09-19Depend services on deployment of default key, cert and ca (Feature #3838)varac
2013-09-19tidy openvpn x509 definitions (#3831)varac
2013-09-19only deploy x509 stuff for nodes if it existes in hiera (Feature #3875)varac
2013-09-19Merge branch 'develop' of ssh://code.leap.se/leap_platform into developvarac
2013-09-18Setup a class dependency for every tag 'leap_service' to make sure that shore...Micah Anderson
2013-09-18openvpn should use /usr/local/share/ca-certificates/leap_ca.crt (Feature #3831)varac
2013-09-13remove x509::ca for leap_ca in site_openvpn::keys and site_stunnel::stunnel (...varac
2013-07-23fix linting errorMicah Anderson
2013-07-16lint site_openvpn manifestsMicah Anderson
2013-07-09use file_line from stdlib instead of line, now both vpn_unlimited_tcp_resolve...varac
2013-07-04more robust openvpn restartingMicah Anderson
2013-05-16special casing for pistoncloud/openstack/ec2Micah Anderson
2013-04-30setup a site_config::params class that can be used to set some common variabl...Micah Anderson
2013-03-29fixed site_openvpn bug with redefined variable.elijah
2013-03-17added support for "limited" service levels (although vpn is not yet actually ...elijah
2013-02-27openvpn -- added support for optional "free" rate-limited service via special...elijah
2013-02-26require that the package unbound be installed before trying to write to itsMicah Anderson
2013-02-21linted a bitvarac
2013-02-21lintedvarac
2013-02-21lintedvarac
2013-01-31tag 'base' is a bad idea because it invokes apache::base as wellvarac
2013-01-31Merge branch 'develop' of ssh://leap.se/leap_platform into developelijah
2013-01-31added /etc/openvpn/ca_bundle.pem in order to allow multiple CA certs to be used.elijah
2013-01-31tag 'service' for all service classesvarac
2013-01-30lintedvarac
2013-01-29added support for client ca cert in site openvpn.elijah
2013-01-29fix variable name for re-ordered factMicah Anderson
2013-01-29fix variable scopingMicah Anderson
2013-01-29fix syntax error from enclosing variables in curlyMicah Anderson
2013-01-29enclose the variables in curly braces, as recommended by puppet-lintMicah Anderson
2013-01-29add a new fact that provides a fact for each configured ip address, telling youMicah Anderson
2013-01-17notify unbound when these configuration files changeMicah Anderson
2013-01-17fix typo in cidr variable nameMicah Anderson
2013-01-17change to using the CIDR notation for unbound access listMicah Anderson
2013-01-17fully qualify the variables that are used in the vpn gateway resolverMicah Anderson
2013-01-17unfortunately the version of unbound that is in wheezy does not support wildcardMicah Anderson
2013-01-17fix unbound access controlMicah Anderson
2013-01-16setup openvpn gateway resolver to listen on the udp/tcp virtual network ips soMicah Anderson