Job Evers‐Meltzer
bc604fb3e2
Update instructions on README ( #547 )
...
Tweaked README instructions as the paths were slightly different.
7 years ago
tetov
ac6db06a19
grammar edit ( #540 )
...
* grammar edit
* Update openssl.yml
7 years ago
Ruben Jongejan
fd5433efed
renamed localhost group to fix duplicate naming of group&host ( #537 )
7 years ago
Jack Ivanov
1b56dd660b
Update docs about sudo #529
7 years ago
Jack Ivanov
58d5a06e87
delete tasks and move to roles ( #519 )
7 years ago
Ruben Jongejan
07ddb5863b
improved readability with native yaml ( #530 )
7 years ago
Jack Ivanov
97369c303a
define local_dns if dns tag used ( #533 )
7 years ago
Jack Ivanov
d10a86b331
Revert "define local_dns if dns tag used ( #531 )" ( #532 )
...
This reverts commit 627b7d5d9b
.
7 years ago
Jack Ivanov
627b7d5d9b
define local_dns if dns tag used ( #531 )
7 years ago
Jack Ivanov
0031d2809e
Disable the Signature Algorithm check and add default vars. Fixes #525
7 years ago
Christopher J. Pilkington
27f9cda361
Add additional delay for ec2 instance prior to ssh ( #527 )
...
* Add additional delay for ec2 instance prior to ssh
* Add 10 second delay to all, rather than to cloud-ec2
7 years ago
Osman Surkatty
25b6ab9e0a
Added missing minimum policy actions. ( #522 )
...
Going through the installation process it appears that you're missing the following calls: `ec2:describeAddresses` and `ec2:allocateAddress`. This change fixes that.
7 years ago
Christopher J. Pilkington
a225bde2b8
Specify EIP domain ( #521 )
7 years ago
Jack Ivanov
6f170982aa
move to Elastic IP ( #512 )
7 years ago
Jack Ivanov
9f698fdd68
Get strongswan from the Zesty repo on Xenial ( #515 )
7 years ago
Dan Guido
6527d04a6f
add FAQ about software updates ( #506 )
...
* add FAQ about software updates
* toc
* grammar
* grammar
* link
* grammar
7 years ago
Dan Guido
e3c5015f2e
Aws documentation ( #505 )
...
* Add AWS and Cloudformation specific docs
Closes #482
Closes #468
* readme enhancements
* various grammatical issues fixed
7 years ago
Dan Guido
a97b210ee8
Update README.md
7 years ago
Jack Ivanov
bd348af9c2
Implementing blocks and additional fail hints #487 ( #497 )
...
change the troubleshooting url
7 years ago
Jack Ivanov
2f5c050fd2
dpdaction to clear ( #498 )
7 years ago
Jack Ivanov
0ed68b6c30
Properly configure ICMP restrictions ( #492 )
7 years ago
Ryan Kasper
0cb43650cb
Windows 10 -PfsGroup None --> -PfsGroup ECP256 ( #493 )
...
* Windows 10 -PfsGroup None --> -PfsGroup ECP256
Fixes broken tunnel when rekey (CREATE_CHILD_SA request [ N(REKEY_SA) SA No TSi TSr KE ]) occurs (on my Windows 10 1703 build 15063.138 Creator's Update system this is ~every 57 minutes)
* Update Windows Client PfsGroup Commandline
7 years ago
forkbomber
f002f32836
Fix typo related to "Error 809" and filtered IKE_AUTH requests ( #496 )
7 years ago
Jack Ivanov
540c761d3b
Disable RSA in the mobileconfigs. Fixes #486
7 years ago
Nicholas
aea22475c3
Fixed broken links to ansible deployment instructions ( #484 )
...
* Fixed broken link in EC2 IAM instructions
* Fixed broken in step 6 of instructions
7 years ago
Dan Guido
31d6bd39a1
The docs got out of sync with the scripts ( #480 )
...
* The docs got out of sync with the scripts
* restructure
* fix links
7 years ago
Jack Ivanov
451394100d
Some enhances in the compat ciphers ( #464 )
...
raise the IntegrityCheckMethod to SHA384
Move Windows to ECDSA
Increase IntegrityCheckMethod
7 years ago
Dan Guido
0d1c760a63
Doc improvements ( #479 )
...
* cleanup
* typos
* Closes #289
Add instructions for connecting to the VPN and configuring on demand.
7 years ago
Dan Guido
aac052da46
this option is deprecated ( #477 )
7 years ago
Dan Guido
8c430bd555
typo ( #474 )
7 years ago
Jack Ivanov
2782df8cfd
Move back to 16.04. Forgot to change after testing
7 years ago
Jack Ivanov
c3fcfe5d0d
Let users choose the distro version #449 ( #466 )
...
Make dpdaction great again
add 1704 to travis
Make EC2 image name more convenient
modify apparmor profile
7 years ago
Dan Guido
cbb8237a4c
fix link ( #472 )
7 years ago
Dan Guido
3aa4b6e8df
Add linters to our CI ( #471 )
7 years ago
Jay Little
f75c857656
Fix broken links. ( #469 )
7 years ago
Dan Guido
39822a1b4e
Add back table of contents ( #463 )
...
* toc
* shift left
* derp
7 years ago
Dan Guido
b94b455aba
typo
7 years ago
Dan Guido
22e145c241
Update documentation to include minimum required IAM policy ( #461 )
...
* Updating documentation to include minimum required IAM polcy. Closes
* Slightly more concise
7 years ago
Andy Boutte
76cdc69548
CF tested and working for EC2 deployment ( #431 )
...
* AWS CloudFormation #132
* IPv6 EC2 draft
* CF tested and working for EC2 deployment
* IPv6 Implementation, EC2, Cloudformation
* Fixed ipv6 networking
* adding ip6tables rule for DHCP on AWS
7 years ago
Dan Guido
0e4aace6b6
Update deploy-to-ubuntu.md
7 years ago
Jack Ivanov
a7b06058cb
remove the proxy role #440 ( #457 )
...
* remove the proxy role #440
* Separate facts. Make roles more independent from each other
move openssl to local tasks
move unneeded tasks
7 years ago
Dan Guido
019d729fe6
Better documentation ( #459 )
...
* Closes #443
* Remove numbers
* context
* split up local and scripted
* Closes #458
* .
* better layout
* Closes #451
* do this later
* grammar
* typo
7 years ago
Dan Guido
0b05ea19bc
Windows needs SHA2-256. Closes #453 . ( #456 )
7 years ago
Dan Guido
8173b84ff8
Change uniqueids back to never ( #448 )
...
We need this to allow multiple connections with the same id/certificate
7 years ago
Dan Guido
77700f6c8e
clarification about ciphers
7 years ago
Dan Guido
b29772f146
prefer ed25519
7 years ago
Dan Guido
f9f7be7b0d
Fix a typo from #439
7 years ago
Dan Guido
1778cb1f45
disable dpd #430 ( #437 )
...
Closes #430
7 years ago
Dan Guido
8e5e6d5088
remove extraneous integrity algos from AEAD ciphers ( #439 )
...
In reference to
https://github.com/trailofbits/algo/issues/9#issuecomment-294370560
7 years ago
MiWCryptAnalytics
14e8f309fe
Update troubleshooting with note about ip frag ( #427 )
...
* Update troubleshooting with note about ip frag
note about ip fragmentation on consumer routers
* clarify
Closes #305
7 years ago