diff options
| author | Matthew Grooms <mgrooms@pfsense.org> | 2008-08-27 19:52:22 +0000 |
|---|---|---|
| committer | Matthew Grooms <mgrooms@pfsense.org> | 2008-08-27 19:52:22 +0000 |
| commit | 630848858364a7de7df495d11fa5cfb8df3fa2d7 (patch) | |
| tree | b4d78e23435a30effd71171be978c300164c48ca /etc/inc/openvpn.inc | |
| parent | dc4089399356749c73f75140e39777ee8398fac6 (diff) | |
| download | pfsense-630848858364a7de7df495d11fa5cfb8df3fa2d7.zip pfsense-630848858364a7de7df495d11fa5cfb8df3fa2d7.tar.gz | |
Replace the old openvpn status page with a new implementation. We now add
a tcp management port option to each OpenVPN server. Instead of rooting
through the OpenVPN logs once a minute for status updates, we now submit a
request to the management port to obtain informaiton. We probably need to
add a pf rule to prevent management ports from being accessed by unwanted
processes.
Diffstat (limited to 'etc/inc/openvpn.inc')
| -rw-r--r-- | etc/inc/openvpn.inc | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/etc/inc/openvpn.inc b/etc/inc/openvpn.inc index b9689ba..add1d51 100644 --- a/etc/inc/openvpn.inc +++ b/etc/inc/openvpn.inc @@ -309,9 +309,12 @@ EOD; $conf .= "push \"route $ip $mask\"\n"; } - // The port we'll listen at + // The local port to listen on $conf .= "lport {$settings['local_port']}\n"; + // The management port to listen on + $conf .= "management 127.0.0.1 {$settings['local_port']}\n"; + if (!empty($settings['maxclients'])) $conf .= "max-clients {$settings['maxclients']}\n"; |
