summaryrefslogtreecommitdiff
path: root/puppet/modules/site_openvpn
AgeCommit message (Expand)Author
2013-10-15puppet - openvpn gateway address is hard coded as a /24 network (Bug #1863)varac
2013-10-02only add vpn_(un)?limited_udp_resolver and vpn_(un)?limited_tcp_resolver line...Micah Anderson
2013-09-25openvpn is restarted before package is installed (Bug #3904)varac
2013-09-24seperate cert and key deployment (#3918)varac
2013-09-19Depend services on deployment of default key, cert and ca (Feature #3838)varac
2013-09-19tidy openvpn x509 definitions (#3831)varac
2013-09-19only deploy x509 stuff for nodes if it existes in hiera (Feature #3875)varac
2013-09-19Merge branch 'develop' of ssh://code.leap.se/leap_platform into developvarac
2013-09-18Setup a class dependency for every tag 'leap_service' to make sure that shore...Micah Anderson
2013-09-18openvpn should use /usr/local/share/ca-certificates/leap_ca.crt (Feature #3831)varac
2013-09-13remove x509::ca for leap_ca in site_openvpn::keys and site_stunnel::stunnel (...varac
2013-07-23fix linting errorMicah Anderson
2013-07-16lint site_openvpn manifestsMicah Anderson
2013-07-09use file_line from stdlib instead of line, now both vpn_unlimited_tcp_resolve...varac
2013-07-04more robust openvpn restartingMicah Anderson
2013-05-16special casing for pistoncloud/openstack/ec2Micah Anderson
2013-04-30setup a site_config::params class that can be used to set some common variabl...Micah Anderson
2013-03-29fixed site_openvpn bug with redefined variable.elijah
2013-03-17added support for "limited" service levels (although vpn is not yet actually ...elijah
2013-02-27openvpn -- added support for optional "free" rate-limited service via special...elijah
2013-02-26require that the package unbound be installed before trying to write to itsMicah Anderson
2013-02-21linted a bitvarac
2013-02-21lintedvarac
2013-02-21lintedvarac
2013-01-31tag 'base' is a bad idea because it invokes apache::base as wellvarac
2013-01-31Merge branch 'develop' of ssh://leap.se/leap_platform into developelijah
2013-01-31added /etc/openvpn/ca_bundle.pem in order to allow multiple CA certs to be used.elijah
2013-01-31tag 'service' for all service classesvarac
2013-01-30lintedvarac
2013-01-29added support for client ca cert in site openvpn.elijah
2013-01-29fix variable name for re-ordered factMicah Anderson
2013-01-29fix variable scopingMicah Anderson
2013-01-29fix syntax error from enclosing variables in curlyMicah Anderson
2013-01-29enclose the variables in curly braces, as recommended by puppet-lintMicah Anderson
2013-01-29add a new fact that provides a fact for each configured ip address, telling youMicah Anderson
2013-01-17notify unbound when these configuration files changeMicah Anderson
2013-01-17fix typo in cidr variable nameMicah Anderson
2013-01-17change to using the CIDR notation for unbound access listMicah Anderson
2013-01-17fully qualify the variables that are used in the vpn gateway resolverMicah Anderson
2013-01-17unfortunately the version of unbound that is in wheezy does not support wildcardMicah Anderson
2013-01-17fix unbound access controlMicah Anderson
2013-01-16setup openvpn gateway resolver to listen on the udp/tcp virtual network ips soMicah Anderson
2013-01-16update unbound submodule to fix infinite service restart problemMicah Anderson
2013-01-16setup site_unbound with a basic caching-only configuration and include that onMicah Anderson
2013-01-16remove unnecessary include that was left over from c2d57624c15dfaff038f9991f0...Micah Anderson
2012-12-10openvpn: use x509 module to deploy certs (fixes #1064)varac
2012-11-23enable ip_forwarding #1029varac
2012-11-23openvpn -- enforce certain cipher choices on the serverelijah
2012-11-22clean up openvpn and x509 pathselijah
2012-11-22deploy openvpn server.crt and server.keyvarac
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-02 10:28:14 +0000