Project

General

Profile

Download (10.4 KB) Statistics
| Branch: | Tag: | Revision:

root/usr/local/pkg/openvpn.xml @ 67e0cf87

1 
<packagegui>
2 
	<name>openvpnserver</name>
3 
	<title>OpenVPN: Server</title>
4 
	<include_file>openvpn.inc</include_file>
5 
	<delete_string>An OpenVPN server has been deleted.</delete_string>
6 
	<addedit_string>An OpenVPN server has been created/modified.</addedit_string>
7 
	<tabs>
8 
		<tab>
9 
			<text>Server</text>
10 
			<url>/pkg.php?xml=openvpn.xml</url>
11 
			<active/>
12 
		</tab>
13 
		<tab>
14 
			<text>Client</text>
15 
			<url>/pkg.php?xml=openvpn_cli.xml</url>
16 
		</tab>
17 
		<tab>
18 
			<text>Client-specific configuration</text>
19 
			<url>/pkg.php?xml=openvpn_csc.xml</url>
20 
		</tab>
21 
	</tabs>
22 
	<adddeleteeditpagefields>
23 
		<columnitem>
24 
			<fieldname>disable</fieldname>
25 
			<fielddescr>Disabled</fielddescr>
26 
			<type>checkbox</type>
27 
		</columnitem>
28 
		<columnitem>
29 
			<fieldname>protocol</fieldname>
30 
			<fielddescr>Protocol</fielddescr>
31 
		</columnitem>
32 
		<columnitem>
33 
			<fieldname>addresspool</fieldname>
34 
			<fielddescr>Address pool</fielddescr>
35 
		</columnitem>
36 
		<columnitem>
37 
			<fieldname>description</fieldname>
38 
			<fielddescr>Description</fielddescr>
39 
		</columnitem>
40 
	</adddeleteeditpagefields>
41 
	<fields>
42 
		<field>
43 
			<fieldname>disable</fieldname>
44 
			<fielddescr>Disable this tunnel</fielddescr>
45 
			<description>This allows you to disable this tunnel without removing it from the list.</description>
46 
			<required/>
47 
			<type>checkbox</type>
48 
		</field>
49 
		<field>
50 
			<fieldname>protocol</fieldname>
51 
			<fielddescr>Protocol</fielddescr>
52 
			<description>The protocol to be used for the VPN.</description>
53 
			<required/>
54 
			<type>select</type>
55 
			<options>
56 
				<option>
57 
					<value>TCP</value>
58 
					<name>TCP</name>
59 
				</option>
60 
				<option>
61 
					<value>UDP</value>
62 
					<name>UDP</name>
63 
				</option>
64 
			</options>
65 
			<default_value>UDP</default_value>
66 
		</field>
67 
		<field>
68 
			<fieldname>dynamic_ip</fieldname>
69 
			<fielddescr>Dynamic IP</fielddescr>
70 
			<description>Allow connected clients to retain their connections if their IP address changes.</description>
71 
			<type>checkbox</type>
72 
		</field>
73 
		<field>
74 
			<fieldname>local_port</fieldname>
75 
			<fielddescr>Local port</fielddescr>
76 
			<description>The port this OpenVPN server will listen on. 1194 is the default OpenVPN port. Each server requires a unique port.</description>
77 
			<required/>
78 
			<type>input</type>
79 
			<default_value>1194</default_value>
80 
			<size>5</size>
81 
		</field>
82 
		<field>
83 
			<fieldname>addresspool</fieldname>
84 
			<fielddescr>Address pool</fielddescr>
85 
			<description>This is the address pool to be assigned to the clients. Expressed as a CIDR range (eg. 10.0.8.0/24). If the 'Use static IPs' field isn't set, clients will be assigned addresses from this pool. Otherwise, this will be used to set the local interface's IP.</description>
86 
			<required/>
87 
			<type>input</type>
88 
		</field>
89 
		<field>
90 
			<fieldname>nopool</fieldname>
91 
			<fielddescr>Use static IPs</fielddescr>
92 
			<description>If this option is set, IPs won't be assigned to clients. Instead, the server will use static IPs on its side, and the clients are expected to use this same value in the 'Address pool' field.</description>
93 
			<required/>
94 
			<type>checkbox</type>
95 
		</field>
96 
		<field>
97 
			<fieldname>local_network</fieldname>
98 
			<fielddescr>Local network</fielddescr>
99 
			<description>This is the network that will be accessable from the remote endpoint. Expressed as a CIDR range. You may leave this blank if you don't want to add a route to the local network through this tunnel on the remote machine. This is generally set to your LAN network.</description>
100 
			<type>input</type>
101 
		</field>
102 
		<field>
103 
			<fieldname>remote_network</fieldname>
104 
			<fielddescr>Remote network</fielddescr>
105 
			<description>This is a network that will be routed through the tunnel, so that a site-to-site VPN can be established without manually changing the routing tables. Expressed as a CIDR range. If this is a site-to-site VPN, enter here the remote LAN here. You may leave this blank if you don't want a site-to-site VPN.</description>
106 
			<type>input</type>
107 
		</field>
108 
		<field>
109 
			<fieldname>client2client</fieldname>
110 
			<fielddescr>Client-to-client VPN</fielddescr>
111 
			<description>If this option is set, clients will be able to talk to each other. Otherwise, they will only be able to talk to the server.</description>
112 
			<required/>
113 
			<type>checkbox</type>
114 
		</field>
115 
		<field>
116 
			<fieldname>crypto</fieldname>
117 
			<fielddescr>Cryptography</fielddescr>
118 
			<description>Here you can choose the cryptography algorithm to be used.</description>
119 
			<required/>
120 
			<type>select</type>
121 
			<default_value>BF-CBC</default_value>
122 
		</field>
123 
		<field>
124 
			<fieldname>auth_method</fieldname>
125 
			<fielddescr>Authentication method</fielddescr>
126 
			<description>The authentication method to be used.</description>
127 
			<required/>
128 
			<type>select</type>
129 
			<options>
130 
				<option>
131 
					<value>shared_key</value>
132 
					<name>Shared key</name>
133 
				</option>
134 
				<option>
135 
					<value>pki</value>
136 
					<name>PKI (Public Key Infrastructure)</name>
137 
				</option>
138 
			</options>
139 
			<onchange>onAuthMethodChanged()</onchange>
140 
		</field>
141 
		<field>
142 
			<fieldname>shared_key</fieldname>
143 
			<fielddescr>Shared key</fielddescr>
144 
			<description>Paste your shared key here.</description>
145 
			<type>textarea</type>
146 
			<encoding>base64</encoding>
147 
			<rows>8</rows>
148 
			<cols>40</cols>
149 
		</field>
150 
		<field>
151 
			<fieldname>ca_cert</fieldname>
152 
			<fielddescr>CA certificate</fielddescr>
153 
			<description>Paste your CA certificate in X.509 format here.</description>
154 
			<type>textarea</type>
155 
			<encoding>base64</encoding>
156 
			<rows>8</rows>
157 
			<cols>40</cols>
158 
		</field>
159 
		<field>
160 
			<fieldname>server_cert</fieldname>
161 
			<fielddescr>Server certificate</fielddescr>
162 
			<description>Paste your server certificate in X.509 format here.</description>
163 
			<type>textarea</type>
164 
			<encoding>base64</encoding>
165 
			<rows>8</rows>
166 
			<cols>40</cols>
167 
		</field>
168 
		<field>
169 
			<fieldname>server_key</fieldname>
170 
			<fielddescr>Server key</fielddescr>
171 
			<description>Paste your server key in RSA format here.</description>
172 
			<type>textarea</type>
173 
			<encoding>base64</encoding>
174 
			<rows>8</rows>
175 
			<cols>40</cols>
176 
		</field>
177 
		<field>
178 
			<fieldname>dh_params</fieldname>
179 
			<fielddescr>DH parameters</fielddescr>
180 
			<description>Paste your Diffie Hellman parameters in PEM format here.</description>
181 
			<type>textarea</type>
182 
			<encoding>base64</encoding>
183 
			<rows>8</rows>
184 
			<cols>40</cols>
185 
		</field>
186 
		<field>
187 
			<fieldname>crl</fieldname>
188 
			<fielddescr>CRL</fielddescr>
189 
			<description>Paste your certificate revocation list (CRL) in PEM format here (optional).</description>
190 
			<type>textarea</type>
191 
			<encoding>base64</encoding>
192 
			<rows>8</rows>
193 
			<cols>40</cols>
194 
		</field>
195 
		<field>
196 
			<fieldname>dhcp_domainname</fieldname>
197 
			<fielddescr>DHCP-Opt.: DNS-Domainname</fielddescr>
198 
			<description>Set connection-specific DNS Suffix.</description>
199 
			<type>input</type>
200 
		</field>
201 
		<field>
202 
			<fieldname>dhcp_dns</fieldname>
203 
			<fielddescr>DHCP-Opt.: DNS-Server</fielddescr>
204 
			<description>Set domain name server addressses, separated by semi-colons (;).</description>
205 
			<type>input</type>
206 
		</field>
207 
		<field>
208 
			<fieldname>dhcp_wins</fieldname>
209 
			<fielddescr>DHCP-Opt.: WINS-Server</fielddescr>
210 
			<description>Set WINS server addressses (NetBIOS over TCP/IP Name Server), separated by semi-colons (;).</description>
211 
			<type>input</type>
212 
		</field>
213 
		<field>
214 
			<fieldname>dhcp_nbdd</fieldname>
215 
			<fielddescr>DHCP-Opt.: NBDD-Server</fielddescr>
216 
			<description>Set NBDD server addresses (NetBIOS over TCP/IP Datagram Distribution Server), separated by semi-colons (;).</description>
217 
			<type>input</type>
218 
		</field>
219 
		<field>
220 
			<fieldname>dhcp_ntp</fieldname>
221 
			<fielddescr>DHCP-Opt.: NTP-Server</fielddescr>
222 
			<description>Set NTP server addresses (Network Time Protocol), separated by semi-colons (;).</description>
223 
			<type>input</type>
224 
		</field>
225 
		<field>
226 
			<fieldname>dhcp_nbttype</fieldname>
227 
			<fielddescr>DHCP-Opt.: NetBIOS node type</fielddescr>
228 
			<description>Set NetBIOS over TCP/IP Node type. Possible options: b-node (broadcasts), p-node (point-to-point name queries to a WINS server), m-node (broadcast then query name server), and h-node (query name server, then broadcast).</description>
229 
			<type>select</type>
230 
			<options>
231 
				<option>
232 
					<value>0</value>
233 
					<name>none</name>
234 
				</option>
235 
				<option>
236 
				<value>1</value>
237 
					<name>b-node</name>
238 
				</option>
239 
				<option>
240 
					<value>2</value>
241 
					<name>p-node</name>
242 
				</option>
243 
				<option>
244 
					<value>4</value>
245 
					<name>m-node</name>
246 
				</option>
247 
				<option>
248 
					<value>8</value>
249 
					<name>h-node</name>
250 
				</option>
251 
			</options>
252 
			<default_value>0</default_value>
253 
		</field>
254 
		<field>
255 
			<fieldname>dhcp_nbtscope</fieldname>
256 
			<fielddescr>DHCP-Opt.: NetBIOS Scope</fielddescr>
257 
			<description>Set NetBIOS over TCP/IP Scope. A NetBIOS Scope ID provides an extended naming service for NetBIOS over TCP/IP. The NetBIOS scope ID isolates NetBIOS traffic on a single network to only those nodes with the same NetBIOS scope ID.</description>
258 
			<type>input</type>
259 
		</field>
260 
		<field>
261 
			<fieldname>dhcp_nbtdisable</fieldname>
262 
			<fielddescr>DHCP-Opt.: Disable NetBIOS</fielddescr>
263 
			<description>If this option is set, Netbios-over-TCP/IP will be disabled.</description>
264 
			<type>checkbox</type>
265 
		</field>
266 
		<field>
267 
			<fieldname>use_lzo</fieldname>
268 
			<fielddescr>LZO compression</fielddescr>
269 
			<description>Checking this will compress the packets using the LZO algorithm before sending them.</description>
270 
			<type>checkbox</type>
271 
		</field>
272 
		<field>
273 
			<fieldname>custom_options</fieldname>
274 
			<fielddescr>Custom options</fielddescr>
275 
			<description>You can put your own custom options here, separated by semi-colons (;). They'll be added to the server configuration.</description>
276 
			<type>textarea</type>
277 
			<cols>65</cols>
278 
			<rows>5</rows>
279 
		</field>
280 
		<field>
281 
			<fieldname>description</fieldname>
282 
			<fielddescr>Description</fielddescr>
283 
			<description>You may enter a description here. This is optional and is not parsed.</description>
284 
			<type>input</type>
285 
		</field>
286 
	</fields>
287 
	<custom_php_command_before_form>
288 
		openvpn_get_ciphers(&amp;$pkg);
289 
	</custom_php_command_before_form>
290 
	<custom_php_after_head_command>
291 
		openvpn_print_javascript('server');
292 
	</custom_php_after_head_command>
293 
	<custom_php_after_form_command>
294 
		openvpn_print_javascript2();
295 
	</custom_php_after_form_command>
296 
	<custom_php_validation_command>
297 
		openvpn_validate_input('server', $_POST, &amp;$input_errors);
298 
	</custom_php_validation_command>
299 
	<custom_php_resync_config_command>
300 
		openvpn_resync('server', $id);
301 
	</custom_php_resync_config_command>
302 
</packagegui>
(8-8/11)