Project

General

Profile

Download (4.49 KB) Statistics
| Branch: | Tag: | Revision:

root/etc/rc.openvpn @ c4421dfa

# Date Author Comment
feb2e013 10/11/2013 09:20 AM Phil Davis

Remove redundant test for OpenVPN resync_needed
634054cc 10/02/2013 05:03 AM Phil Davis

Check for disabled OpenVPN instances in openvpn_resync_if_needed

It is much cleaner if we check first for disabled OpenVPN instances, before diving into all the other checks. Note, the final openvpn_resync() does call other routines that finally check if the instance is disabled, but there are so many checks here for various conditions to be met before calling openvpn_resync that it looks better (safer) to bail out early if the instance is disabled.
78b2a705 09/29/2013 12:42 PM Phil Davis

Fix logic inn detecting if OpenVPN resync needed

Commit https://github.com/pfsense/pfsense/commit/f33dcc5c79c54af7daf91a81cfdd7f489e8cb67c reversed the logic sequence when testing if $resync_needed - the individual tests were changed from "==" to "!=" and so on, but the conjunction also need to be changed - "or" needs to be "and". I had noticed that VPNs on some gateway groups of mine didn't failover recently, but hadn't gone looking for the problem until now....
8171a2c2 09/04/2013 08:48 AM Ermal LUÇI

Introduce two new functions to be used on locking.

- try_lock: used for trying to get an EXCLUSIVE lock for a specified timeout by default of 5
- unlock_force: which just releases any locks held on a specified lock

Use this new functions on rc.openvpn to avoid spurious stale locks around.
f33dcc5c 09/04/2013 08:31 AM Ermal LUÇI

Add safety belts to code in rc.openvpn to avoid php errors to leave stale locks around
7ef9de3f 06/30/2013 04:09 AM Phil Davis

Handle comma-separated list arg to rc.openvpn

The argument passed to rc.openvpn can be a comma-separated list of gateways - not just 1 gateway. Enhance the code to loop and process each gateway.
e960b298 05/07/2013 02:31 PM Phil Davis

Optimize which OpenVPN instances are restarted
252612d7 05/07/2013 12:24 PM Renato Botelho

Fix wrong check added on commit 1f64b66bf0 that was checking openvpn server twice and don't checking openvpn client
1f64b66b 05/07/2013 05:59 AM Phil Davis

Handle gateway argument to rc.opnvpn

Various fixups to make this work. Now I can:
- Unplug an interface, any OpenVPN servers/clients in a gateway group using that interface are restarted and come up on the highest tier available interface. OpenVPN servers/clients that are only on that interface go down, of course....
c653ce27 04/12/2013 07:36 PM Ermal LUÇI

Support even openvpn specifying a gateway group on the interface
c44d097f 04/12/2013 07:09 PM Ermal LUÇI

Correct syntax. Also support passing an interface as argument
8f10998b 04/12/2013 06:59 PM Ermal LUÇI

Take into consideration the argument passed to the script and reload only related items
b95f5460 10/11/2012 01:11 PM Phil Davis

Handle case with no server or no client OpenVPN

If there are OpenVPN servers but not clients, this warning is emitted:
Warning: Invalid argument supplied for foreach() in /etc/rc.openvpn on line 55
This fixes handles that case, and the case of OpenVPN clients but no servers.
ea68f6cc 09/19/2012 12:19 PM Jim Pingle

We should also resync openvpn clients since they can use gateway groups too.
e288ddb1 09/13/2012 04:52 PM Seth Mos

Make the openvpn resync less intrusive, only trigger this if the OpenVPN interface is actually a gateway group name. Otherwise we skip.
4b163ece 07/28/2012 03:57 PM Seth Mos

Remove this filter configure call, something else will take care of this and we don't need to do that here.
edf583c6 07/18/2012 03:38 PM Jim Pingle

Fix perms on rc.openvpn, seems to work with that set.
2b73d3a0 06/30/2012 05:40 PM Seth Mos

Add openvpn openvpn reload script