summaryrefslogtreecommitdiffstats
path: root/roles/openvpn/client
Commit message (Collapse)AuthorAgeFilesLines
* another corner case since f24 has systemd and el6 does notKevin Fenzi2017-05-141-2/+9
|
* and try and handle f24 here tooKevin Fenzi2017-05-141-4/+4
|
* try and use correct logicKevin Fenzi2017-05-141-1/+1
|
* try and handle cases for f24 not being updated to the new setup eitherKevin Fenzi2017-05-141-2/+2
|
* fix version here tooKevin Fenzi2017-05-141-1/+1
|
* handle poor old rhel6Kevin Fenzi2017-05-141-3/+27
|
* Check the certificate key usagePatrick Uiterwijk2017-05-141-0/+1
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* also need cert and key under clientKevin Fenzi2017-05-141-2/+2
|
* switch openvpn to use seperate service units and directories for client and ↵Kevin Fenzi2017-05-141-5/+18
| | | | server, hopefully in a mostly transparent way that will not cause much outage
* change state=running to start=started as the old one is going away in ↵Kevin Fenzi2017-04-131-3/+3
| | | | ansible 2.7
* Disable openvpn client handler for nowKevin Fenzi2016-08-311-4/+4
|
* Update out vpn configs for better encryption.Kevin Fenzi2016-08-311-0/+2
|
* Another pile of trailing whitespace fixesKevin Fenzi2016-08-081-1/+1
|
* fixing logic for openvpn package install w/dnfTim Flink2015-11-261-1/+1
|
* Install the openvpn client package with dnf on F22+Pierre-Yves Chibon2015-11-171-0/+10
|
* Move fix-routes.sh to openvpn base and run it on restartPatrick Uiterwijk2015-11-042-15/+0
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Running the script doesnt work yet. But we still want the script.Patrick Uiterwijk2015-10-231-2/+2
| | | | Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Make fix-routes not terminate with status 2 if it fixed itPatrick Uiterwijk2015-10-231-1/+1
| | | | | | | | This will make openvpn think something went wrong and terminate the connection. I did this to make it easily visible when running with ansible, but in this case it messes things up. Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Add script to OpenVPN for VPN route fixingPatrick Uiterwijk2015-10-233-0/+18
| | | | | | | This will make sure that always after a start/restart the VPN routes are created Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Disable persist-tun for openvpnPatrick Uiterwijk2015-10-211-1/+0
| | | | | | | | | | | | | | | | This should solve the issue where RHEL7 machines that get a network hiccup need an OpenVPN restart to restore their routes. The code is broken in the current upstream OpenVPN release, such that it does tear down some of the routes during a ping-restart (when the connection is dropped due to network hiccups), but the reconnection code does not restore the routes. I am working on an upstream patch to fix this, but in the meantime disabling persist-tun will make sure that OpenVPN does the entire initialization upon reconnection, which makes sure that all routes are created. Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
* Move all puppet_private stuff to ansible private so we can stop using puppet ↵Kevin Fenzi2015-09-251-2/+2
| | | | private.
* Change all instances of ansible_distribution_major_version to filter to int ↵Kevin Fenzi2015-05-271-2/+2
| | | | for comparisons.
* This is now fixed in a systemd update in rhel7.1 so drop the workaroundKevin Fenzi2015-04-221-16/+1
|
* Work around rhel 7.1 systemd template bug: ↵Kevin Fenzi2015-03-261-2/+17
| | | | https://bugzilla.redhat.com/show_bug.cgi?id=1206007
* Does this need quotes?Kevin Fenzi2014-12-151-2/+2
|
* Try this one.Kevin Fenzi2014-12-151-2/+2
|
* Split this out to see if we can debug it some.Kevin Fenzi2014-12-151-2/+9
|
* Update state from installed/removed to present/absent for yum module as per ↵Praveen Kumar2014-11-051-1/+1
| | | | latest documents -> http://docs.ansible.com/yum_module.html
* fixing typo in restart notificationTim Flink2014-09-241-1/+1
|
* changing openvpn restart notifications to work on sysvinit and systemd style ↵Tim Flink2014-09-241-1/+3
| | | | machines
* newer fedora openvpn behaves more like rhel7 than rhel6Tim Flink2014-09-241-4/+4
|
* Yes. It was a typo.Ralph Bean2014-09-101-1/+1
|
* Try copy here too.Kevin Fenzi2014-08-121-1/+1
|
* Move back from copy to file for testingPierre-Yves Chibon2014-08-011-1/+1
|
* Use copy instead of filePierre-Yves Chibon2014-08-011-1/+1
|
* Fix mode for the .crtPierre-Yves Chibon2014-08-011-1/+1
|
* Try adjusting the notify handlerPierre-Yves Chibon2014-08-011-1/+1
|
* Let's just invert dest and sourcePierre-Yves Chibon2014-08-011-4/+4
|
* Y'all get quotesPierre-Yves Chibon2014-08-011-3/+3
|
* More quotes for the handler namesPierre-Yves Chibon2014-08-011-1/+1
|
* Tag all the openvpn tasks as 'openvpn'Pierre-Yves Chibon2014-08-011-0/+4
|
* Fix accessing the modePierre-Yves Chibon2014-08-011-1/+1
|
* And we put directly the destination, no location setPierre-Yves Chibon2014-08-011-1/+1
|
* What about quotesPierre-Yves Chibon2014-08-011-4/+4
|
* Add the logic to enable the openvpn server on EL6, EL7 and Fedora in the ↵Pierre-Yves Chibon2014-08-011-0/+12
| | | | client and the server
* Adjust the openvpn handler automatically to the distribution usedPierre-Yves Chibon2014-08-011-0/+2
|
* Clean openvpn server files that were doing nothing in the clientPierre-Yves Chibon2014-08-01154-309/+0
|
* Fix the files list in the openvpn/client rolePierre-Yves Chibon2014-08-011-0/+25
|
* Dependencies between roles are marked in the meta folder not the tasks onePierre-Yves Chibon2014-08-012-3/+3
|
* Mark the openvpn client and server as requesting the openvpn base rolePierre-Yves Chibon2014-08-011-0/+3
|
generated by cgit (git 2.34.1) at 2025-09-28 11:41:53 +0000