summaryrefslogtreecommitdiffstats
path: root/etc/rc.openvpn
Commit message (Collapse)AuthorAgeFilesLines
* Make scripts able to react when called from FCGI with GET methodErmal2013-12-131-1/+4
|
* Remove redundant test for OpenVPN resync_neededPhil Davis2013-10-111-1/+1
|
* Check for disabled OpenVPN instances in openvpn_resync_if_neededPhil Davis2013-10-011-11/+15
| | | It is much cleaner if we check first for disabled OpenVPN instances, before diving into all the other checks. Note, the final openvpn_resync() does call other routines that finally check if the instance is disabled, but there are so many checks here for various conditions to be met before calling openvpn_resync that it looks better (safer) to bail out early if the instance is disabled.
* Fix logic inn detecting if OpenVPN resync neededPhil Davis2013-09-291-1/+1
| | | | Commit https://github.com/pfsense/pfsense/commit/f33dcc5c79c54af7daf91a81cfdd7f489e8cb67c reversed the logic sequence when testing if $resync_needed - the individual tests were changed from "==" to "!=" and so on, but the conjunction also need to be changed - "or" needs to be "and". I had noticed that VPNs on some gateway groups of mine didn't failover recently, but hadn't gone looking for the problem until now. This might help bug #3243 - it will probably now make the OpenVPN resync on every interface/gateway change for the cases of CARP VIPs and VLANs mentioned in that bug report. At least that will be better than not resyncing at all.
* Introduce two new functions to be used on locking.Ermal2013-09-041-1/+7
| | | | | | | - try_lock: used for trying to get an EXCLUSIVE lock for a specified timeout by default of 5 - unlock_force: which just releases any locks held on a specified lock Use this new functions on rc.openvpn to avoid spurious stale locks around.
* Add safety belts to code in rc.openvpn to avoid php errors to leave stale ↵Ermal2013-09-041-10/+13
| | | | locks around
* Handle comma-separated list arg to rc.openvpnPhil Davis2013-06-291-23/+29
| | | The argument passed to rc.openvpn can be a comma-separated list of gateways - not just 1 gateway. Enhance the code to loop and process each gateway.
* Optimize which OpenVPN instances are restartedPhil Davis2013-05-071-2/+23
|
* Fix wrong check added on commit 1f64b66bf0 that was checking openvpn server ↵Renato Botelho2013-05-071-2/+2
| | | | twice and don't checking openvpn client
* Handle gateway argument to rc.opnvpnPhil Davis2013-05-071-6/+12
| | | | | Various fixups to make this work. Now I can: - Unplug an interface, any OpenVPN servers/clients in a gateway group using that interface are restarted and come up on the highest tier available interface. OpenVPN servers/clients that are only on that interface go down, of course. - Plug in the cable again, any OpenVPN servers/clients in a gateway group using that interface are restarted and come up on the now-highest tier available interface (i.e. they fail back if the interface that just came up is higher tier). OpenVPN servers/clients that are only on that interface now come up.
* Support even openvpn specifying a gateway group on the interfaceErmal2013-04-121-3/+6
|
* Correct syntax. Also support passing an interface as argumentErmal2013-04-121-5/+6
|
* Take into consideration the argument passed to the script and reload only ↵Ermal2013-04-121-27/+35
| | | | related items
* Handle case with no server or no client OpenVPNPhil Davis2012-10-111-6/+12
| | | | | If there are OpenVPN servers but not clients, this warning is emitted: Warning: Invalid argument supplied for foreach() in /etc/rc.openvpn on line 55 This fixes handles that case, and the case of OpenVPN clients but no servers.
* We should also resync openvpn clients since they can use gateway groups too.jim-p2012-09-191-1/+5
|
* Make the openvpn resync less intrusive, only trigger this if the OpenVPN ↵smos2012-09-131-2/+7
| | | | interface is actually a gateway group name. Otherwise we skip.
* Remove this filter configure call, something else will take care of this and ↵smos2012-07-281-2/+0
| | | | we don't need to do that here.
* Fix perms on rc.openvpn, seems to work with that set.jim-p2012-07-181-0/+0
|
* Add openvpn openvpn reload scriptsmos2012-06-301-0/+54
OpenPOWER on IntegriCloud