| 1 |
c98e7fb7
|
Scott Ullrich
|
<?xml version="1.0" encoding="utf-8" ?>
|
| 2 |
|
|
<packagegui>
|
| 3 |
|
|
<name>sasyncd</name>
|
| 4 |
|
|
<version>0.1.0</version>
|
| 5 |
7a657f0c
|
Scott Ullrich
|
<title>Services: VPN Failover</title>
|
| 6 |
c98e7fb7
|
Scott Ullrich
|
<!-- configpath gets expanded out automatically and config items will be
|
| 7 |
|
|
stored in that location -->
|
| 8 |
7a657f0c
|
Scott Ullrich
|
<configpath>['ipsec']['failover']</configpath>
|
| 9 |
bf0797b9
|
Scott Ullrich
|
<aftersaveredirect>pkg_edit.php?xml=sasyncd.xml&id=0</aftersaveredirect>
|
| 10 |
c98e7fb7
|
Scott Ullrich
|
<!-- Menu is where this packages menu will appear -->
|
| 11 |
|
|
<menu>
|
| 12 |
7a657f0c
|
Scott Ullrich
|
<name>VPN failover</name>
|
| 13 |
e790dffe
|
Chris Buechler
|
<tooltiptext>The sasyncd daemon synchronizes IPSec SA and SPD information between a number of failover IPsec gateways. The most typical scenario is to run sasyncd on hosts also running isakmpd and sharing a common IP-address using carp.</tooltiptext>
|
| 14 |
c98e7fb7
|
Scott Ullrich
|
<section>Services</section>
|
| 15 |
|
|
<configfile>sasyncd.xml</configfile>
|
| 16 |
|
|
</menu>
|
| 17 |
|
|
<adddeleteeditpagefields>
|
| 18 |
|
|
<columnitem>
|
| 19 |
|
|
<fielddescr>Interface</fielddescr>
|
| 20 |
|
|
<fieldname>interface</fieldname>
|
| 21 |
|
|
</columnitem>
|
| 22 |
|
|
<columnitem>
|
| 23 |
|
|
<fielddescr>Peer IP</fielddescr>
|
| 24 |
|
|
<fieldname>peerip</fieldname>
|
| 25 |
|
|
</columnitem>
|
| 26 |
|
|
</adddeleteeditpagefields>
|
| 27 |
83c5299b
|
Scott Ullrich
|
<tabs>
|
| 28 |
|
|
<tab>
|
| 29 |
|
|
<text>Tunnels</text>
|
| 30 |
|
|
<url>vpn_ipsec.php</url>
|
| 31 |
|
|
</tab>
|
| 32 |
|
|
<tab>
|
| 33 |
|
|
<text>Mobile clients</text>
|
| 34 |
|
|
<url>vpn_ipsec_mobile.php</url>
|
| 35 |
|
|
</tab>
|
| 36 |
|
|
<tab>
|
| 37 |
|
|
<text>Pre-shared keys</text>
|
| 38 |
|
|
<url>vpn_ipsec_keys.php</url>
|
| 39 |
|
|
</tab>
|
| 40 |
|
|
<tab>
|
| 41 |
|
|
<text>CAs</text>
|
| 42 |
|
|
<url>vpn_ipsec_ca.php</url>
|
| 43 |
|
|
</tab>
|
| 44 |
|
|
<tab>
|
| 45 |
348327b7
|
Chris Buechler
|
<text>Failover IPsec</text>
|
| 46 |
83c5299b
|
Scott Ullrich
|
<url>/pkg_edit.php?xml=sasyncd.xml&id=0</url>
|
| 47 |
|
|
<active/>
|
| 48 |
|
|
</tab>
|
| 49 |
|
|
</tabs>
|
| 50 |
c98e7fb7
|
Scott Ullrich
|
<!-- fields gets invoked when the user adds or edits a item. the following items
|
| 51 |
|
|
will be parsed and rendered for the user as a gui with input, and selectboxes. -->
|
| 52 |
|
|
<fields>
|
| 53 |
2aa08153
|
Scott Ullrich
|
<field>
|
| 54 |
|
|
<fielddescr>Failover IP</fielddescr>
|
| 55 |
|
|
<fieldname>ip</fieldname>
|
| 56 |
9f8e19f4
|
Scott Ullrich
|
<description>Enter the IP address you would like to use for failover. HINT: You normally want to use a public CARP ip.</description>
|
| 57 |
|
|
<type>input</type>
|
| 58 |
2aa08153
|
Scott Ullrich
|
</field>
|
| 59 |
c98e7fb7
|
Scott Ullrich
|
</fields>
|
| 60 |
c0b9da84
|
Scott Ullrich
|
<custom_add_php_command>
|
| 61 |
|
|
/* automatically turn on prefer old sa's until sasyncd is finished being ported */
|
| 62 |
|
|
if($_POST['ip'] != "")
|
| 63 |
|
|
$config['ipsec']['preferoldsa'] = true;
|
| 64 |
|
|
</custom_add_php_command>
|
| 65 |
cdf4da9c
|
Scott Ullrich
|
<custom_add_php_command_late>
|
| 66 |
|
|
/* resync vpn settings */
|
| 67 |
c0b9da84
|
Scott Ullrich
|
mwexec("/usr/bin/killall racoon");
|
| 68 |
cdf4da9c
|
Scott Ullrich
|
vpn_ipsec_configure();
|
| 69 |
|
|
</custom_add_php_command_late>
|
| 70 |
c98e7fb7
|
Scott Ullrich
|
</packagegui>
|