m0n0wall-ovpn (1.21) unstable; urgency=low * Fixed error due to missing function in util.inc: Fatal error: Call to undefined function: sigkillbyname() in /etc/inc/vpn.inc on line 60 Thanks to Steven McCoy. -- Peter Allgeyer Sat, 14 Jan 2006 11:59:35 +0100 m0n0wall-ovpn (1.21) unstable; urgency=low * New upstream release of m0n0wall (1.21) * OpenVPN binary build with: # setenv CFLAGS "-DLOG_OPENVPN=LOG_LOCAL6 -O2" * slightly few space on filesystem /cf, because the original images were used to produce the new OpenVPN images -- Peter Allgeyer Fri, 13 Jan 2006 18:05:25 +0100 m0n0wall-ovpn (1.2-3) unstable; urgency=low * New upstream release of OpenVPN (2.0.5) * Added support for automatic setting of NAT rules - workable, but still far away from being perfect: the source IP/net which is NATed might be bigger than needed. It would be better, if NAT is being enabled by a script after the tunnel was being set up. -- Peter Allgeyer Tue, 06 Dec 2005 19:31:37 +0100 m0n0wall-ovpn (1.2-2) unstable; urgency=low * New upstream release of OpenVPN (2.0.4) -- Peter Allgeyer Wed, 02 Nov 2005 11:27:28 +0100 m0n0wall-ovpn (1.2-1) unstable; urgency=low * OpenVPN didn't start correctly; newline added for entries in dirtyfile and check against this file corrected * ovpn_srv_dirty and ovpn_cli_dirty are only called once in vpn_openvpn_srv_edit.php or vpn_openvpn_cli_edit.php -- Peter Allgeyer Tue, 25 Oct 2005 13:14:56 +0200 m0n0wall-ovpn (1.2) unstable; urgency=low * Removed push options for pre-shared-key mode, because "--pull" isn't allowed on client side. * LZO compression enabled * build with: # setenv CFLAGS "-Os" # ./configure --enable-small --disable-plugins --disable-management \ --disable-socks --disable-http --disable-debug \ --with-lzo-headers=/usr/local/include \ --with-lzo-lib=/usr/local/lib -- Peter Allgeyer Sat, 22 Oct 2005 10:29:32 +0200 m0n0wall-ovpn (1.2b10-5) unstable; urgency=low * mfsroot size set to 16 MB for storing more CRLs, Certs etc. * image size increased to 7.5 MB for storing more CRLs, Certs etc. * Disabling a CRL list wipes out the CRL from the server config. * Avoid killing all running processes by clicking apply button -> fixed. * Avoid rebooting for adding/deleting new interfaces -> fixed. * Little bugfix for ns_cert_type. * Set default of maxcli to none. * Disabled Anti-Spoofing rules for OpenVPN. -- Peter Allgeyer Sun, 09 Oct 2005 18:47:23 +0200 m0n0wall-ovpn-TEST4 (1.2b10-5) unstable; urgency=low * CRL support added. -- Peter Allgeyer Tue, 04 Oct 2005 20:53:25 +0200 m0n0wall-ovpn-TEST3 (1.2b10-5) unstable; urgency=low * CCD support added. * Remote ip-address entry added for PSK. * Various fixes for javascript and input validation. * Client page: + Pre Shared Key added. + Bridging support added. + Expert mode added. -- Peter Allgeyer Tue, 04 Oct 2005 20:53:25 +0200 m0n0wall-ovpn-TEST2 (1.2b10-5) unstable; urgency=low * Port binding needs better checking, so that it isn't possible to define the same socket twice. Check only needed for enabled services (or being enabled one). -> fixed. * TAP bridging included into server page. * Expert mode for OpenVPN server added. Initial work was done by Youri Kersloot . * Pre Shared Key added. * Lots of bugfixes. -- Peter Allgeyer Thu, 29 Sep 2005 23:58:08 +0200 m0n0wall-ovpn-TEST1 (1.2b10-5) unstable; urgency=low * Testing version based on 1.2b10-ovpn4 * Supports assigning static IP addresses to tap interfaces or assigning IP addresses to clients by DHCP. * TAP bridging is now in working state. * ovpn_tap_link in interfaces.inc corrected. * Moved configuration parameters to extra files under /var/etc. -- Peter Allgeyer Wed, 21 Sep 2005 18:10:59 +0200 m0n0wall-ovpn (1.2b10-4) unstable; urgency=low * third public available version based on 1.2b10 * Changed back to in client tunnel configuration. * Fixed support for TCP. -- Peter Allgeyer Mon, 19 Sep 2005 12:34:02 +0200 m0n0wall-ovpn (1.2b10-3) unstable; urgency=low * second public available version based on 1.2b10 * Fixed (again) menu entry in fbegin.inc for OpenVPN status page. * Corrected interface assignment for VLAN interfaces in interfaces_assign.php. * Interface description changed form OPTn (tunx/tapx) to TUNx/TAPx. * Minor fixes for input validation and JavaScript code in interfaces_opt.php, needed to add the "0" to subnet numbering. * No line breaking for "Connected Since" in status_ovpn.php. * Because there are no useful status entries for OpenVPN client mode at the moment, I have corrected the title "OpenVPN status entries" to "OpenVPN server status entries" in status_ovpn.php. * Completly new algorithm for getting next interface/port in line. Errors and inconsistencies with interface/port numbering are now (hopefully) history. * It is unnecessary to point to reboot the system in vpn_openvpn_srv_edit.php, so I have removed it. -- Peter Allgeyer Fri, 16 Sep 2005 13:47:16 +0200 m0n0wall-ovpn (1.2b10-1) unstable; urgency=low * first version based on 1.2b10 * Fixed several php errors, when creating a new OpenVPN server/client. * Fixed menu entry for OpenVPN status page. * Input validation and JavaScript code for interfaces_opt.php. * Fixed problem with renaming Interfaces: Shows new name immediately after clicking save. -- Peter Allgeyer Tue, 13 Sep 2005 17:25:58 +0200 m0n0wall-ovpn (1.2b9-18) unstable; urgency=low * fifth public available version * This release will be mostly the same as in in m0n0wall 1.2b10. * Javascript for TLS is functional again. * Minor error in config.inc. * Corrected push-options in openvpn.inc. * First attempt of a bridging solution to TAP interfaces. * Max. TUN interfaces: 17, max. TAP interfaces: 4 * Status page changes due to TAP interface stats * Show all interfaces as optional ones, so that interface can be bridged to a physical or vlan interface, further, description can be changed. -- Peter Allgeyer Fri, 09 Sep 2005 17:47:38 +0200 m0n0wall-ovpn (1.2b9-17) unstable; urgency=low * forth public available version * WARNING: Configuration parameter changed: is now * status.php wipes out private keys * cdrom version created (not tested) -- Peter Allgeyer Tue, 06 Sep 2005 17:49:35 +0200 m0n0wall-ovpn (1.2b9-16) unstable; urgency=low * third public available version * fixed problems with enabling/disabling push options * changed is_null() to empty() for certs and keys * implemeted PSK for TLS auth -- Peter Allgeyer Mon, 05 Sep 2005 18:31:58 +0200 m0n0wall-ovpn (1.2b9-15) unstable; urgency=low * second public available version * No spoofing rules for WAN interface. Fixed problems with spoofing rules, if openvpn is bound to 0.0.0.0 * Recompiled openvpn with #define LOG_OPENVPN LOG_LOCAL6. Configure options used: --disable-lzo --disable-plugins --disable-management --disable-socks --disable-http --disable-debug. gcc option changed to -Os. Stripped binary. * added "--keep-alive 10 60" option to OpenVPN server * new OpenVPN status page -- Peter Allgeyer Sun, 04 Sep 2005 17:41:53 +0200 m0n0wall-ovpn (1.2b9-12) unstable; urgency=low * first public available version -- Peter Allgeyer Fri, 02 Sep 2005 23:23:56 +0200