Commit Graph

227 Commits

Author SHA1 Message Date
David Myers
ee3cb979f7 Document how to use WireGuard on Ubuntu clients (#1071) 2018-08-28 17:25:40 +03:00
TC1977
3144458ac7 Update cloud-amazon-ec2.md (#1081) 2018-08-28 17:05:01 +03:00
TC1977
6d3bb1cf2b Update minimum required IAM changes for deployment (#1080)
Ansible2.5 allows Algo to directly ask AWS for the region list, rather than have it hardcoded and updated manually. Updated the documented minimum required permissions to include "DescribeRegions".
2018-08-28 17:03:43 +03:00
Jack Ivanov
e8947f318b Large refactor to support Ansible 2.5 (#976)
* Refactoring, booleans declaration and update users fix

* Make server_name more FQDN compatible

* Rename variables

* Define the default value for store_cakey

* Skip a prompt about the SSH user if deploying to localhost

* Disable reboot for non-cloud deployments

* Enable EC2 volume encryption by default

* Add default server value (localhost) for the local installation

Delete empty files

* Add default region to aws_region_facts

* Update docs

* EC2 credentials fix

* Warnings fix

* Update deploy-from-ansible.md

* Fix a typo

* Remove lightsail from the docs

* Disable EC2 encryption by default

* rename droplet to server

* Disable dependencies

* Disable tls_cipher_suite

* Convert wifi-exclude to a string. Update-users fix

* SSH access congrats fix

* 16.04 > 18.04

* Dont ask for the credentials if specified in the environment vars

* GCE server name fix
2018-08-27 10:05:45 -04:00
Josh Dimarsky
a57a0adf5e Fixed broken link; clarified example docker command (#1064) 2018-08-24 11:42:59 +03:00
Quentin Moss
e0c317a958 Update documentation link (#1043) 2018-07-30 10:28:14 -04:00
Quentin Moss
b88f697b28 Update troubleshooting docs to include iOS reconnection loop (#1042)
* Update troubleshooting docs to include iOS reconnection loop

* nits
2018-07-30 09:01:03 -04:00
Mike Myers
c65961a1f3 Amazon ec2 documentation (#1035)
* Add link to documentation on Amazon EC2 setup

* Add images to document the AWS EC2 account setup

* Create AWS EC2 setup instructions

* remove line breaks

* remove line breaks

* Add images documenting AWS EC2 policy creation

* Update image showing advised minimum AWS policy

* Add instructions for minimum AWS permission policy

* Delete aws-ec2-attach-policy.png

* Updated image to reflect new AWS policy guidance

* Delete aws-ec2-new-user-confirm.png

* Updated image to reflect new AWS policy guidance
2018-07-22 17:58:09 -04:00
TC1977
facd55c635 Update deploy-to-ubuntu.md (#1019)
* Update deploy-to-ubuntu.md

rewrite of #813

* Update deploy-to-ubuntu.md
2018-07-03 10:02:54 -04:00
Jack Ivanov
07a6bbe652
Move max_mss to config.cfg (#1015)
* Move max_mss to config.cfg

* Add docs about max_mss

* Update troubleshooting.md
2018-07-03 09:06:45 +03:00
Jack Ivanov
4ca8c03e3c New default cipher suite (#991)
* New ciphers enabled

* Update CHANGELOG.md

* Switch ecparam to secp384r1

* Change CertificateType to ECDSA384
2018-06-27 11:22:45 -04:00
Mikael Forsgren
2931227db4 New Google Cloud Region (#1013)
Added the new Google Cloud Region Finland (europe-north1) with 3 zones
2018-06-26 13:01:45 +03:00
TC1977
6faac307af Update troubleshooting.md (#992)
Many times people are reaching VPC limits not because they're running other VPCs on AWS, but because they've already deployed several times (AWS allows five VPCs per region). This lets people know they can simply delete their old VPCs instead of contacting AWS support.
2018-06-04 11:09:01 -04:00
Jack Ivanov
daca84b640 Update references to 18.04 2018-05-30 17:11:32 +03:00
Paul Kehrer
b928e4ff06 fix faq entry about cryptography build failure (#967) 2018-05-25 06:02:16 -07:00
Jack Ivanov
3488e660ad Add WireGuard support for Android (#910)
* WireGuard Implementation

* Update client-android.md

* Update README.md

* WireGuard unattended upgrades

* Update README.md

* reload-module-on-update and syntax fix

* SaveConfig to true

* Azure firewall. Fixes #962

* Update README.md

* Update client-android.md
2018-05-24 08:15:27 -07:00
Jack Ivanov
c82bd8c5ff DNS-over-HTTPS (#875) 2018-04-25 12:27:58 -07:00
Cat Jones
e78df40468 adds DigitalOcean documentation (#869) 2018-04-23 15:58:40 -07:00
iliyan jeliazkov
a8b4a47a88 Updating the language of the instructions (#880) 2018-04-18 22:10:03 -04:00
Anton T Johansson
7c087aeed9 Fixed path in Network Manager section (#860)
"configs" directory missing in paths.
2018-03-29 17:33:18 -04:00
Micah R Ledbetter
a2e051ef00 Add a workaround for disabling DNS filtering to the FAQ (#852)
* Add a workaround for disabling DNS filtering to the FAQ

* Update faq.md
2018-03-28 11:24:20 -07:00
Micah R Ledbetter
e944ee993a Embed certs into Windows deployment scripts (#840)
- Obviate need to copy separate script and certificate files
- Allow execution from any directory, not just the script's parent
  directory (no assumption of any particular working directory)
- Fix docs that neglected to mention copying cacert.pem
- Fix docs that incorrectly referred to the user cert store

As part of this work, rewrite the windows_client.ps1.j2 deployment
script template

- Add comment-based help
- Require admin privileges
- Use a Param() block
- Use parameter sets with -Add and -Remove switches
- Add the -GetInstalledCerts switch, to list any Algo certificates
  installed the machine's cert store
- Add the -SaveCerts switch, to save the embedded certificates to files
- Put Jinja2 variables inside Powershell variables,
- Use native Powershell cmdlets rather than shell out to certutil.exe
- Add a playbook to regenerate the windows_USER.ps1 scripts
2018-03-28 11:20:43 -07:00
Micah R Ledbetter
a8784bc0f4 Add FAQ entry regarding IPSEC backdoor (#460) (#853) 2018-03-28 11:20:17 -07:00
Arun John Kuruvilla
aea9c9a5e2 Removed ssh_public_key variable for AWS. Issue #773 (#817) 2018-03-27 21:53:13 +03:00
Rob
1edb95df9c Update client-android.md (#842)
* Update client-android.md

Changed Installation via profiles sections - Opening the helper html file in Chrome (v65.0.3325.109 on Android 6.0.1) does not work correctly.

* Update client-android.md

* Update client-android.md
2018-03-22 09:26:50 -04:00
Damian Gerow
62fc22ab59 Creates a Docker container to run algo (#331)
* Creates a Docker container to run algo

* Simplistic testing of the Docker image

This simply uses the same LXC system that was just tested.
It's functional, but minimal.

* More thorough tests against Docker

This doubles the number of LXC containers in use,
but does provide a more thorough test of the Docker
image.
2018-03-16 16:38:53 -04:00
Zac Connelly
3bb6c32abb update troubleshooting doc (#827)
* update troubleshooting doc

* remove breakline

* bump issue to the bottom
2018-03-12 11:49:45 -04:00
Achim Staebler
054dc0afcd Instructions for Ubuntu needed compiler install (#791)
build-essential and python-dev are required when compiling pycrypt. Added the necessary packages to the apt-get install line.
2018-01-24 09:03:47 -08:00
Brian Harrington
bd4ea1235f GCE correct variable key (#734)
`server_name` should be `gce_server_name` for Google Compute Engine
2017-11-21 00:49:54 -05:00
Allan
e01521bbf4 Update to deploy-to-ubuntu.md (#628)
* Update to deploy-to-ubuntu.md

A fresh install (Off CD / ISO) doesn't include python-pip or python virtualenv module.
The fixes above take care of the additional requirements, as well as updating pip.

* Update deploy-to-ubuntu.md

Fix Typo
2017-11-12 18:49:58 -05:00
Jurgen Verhasselt
d08e525906 Docs to deploy from, and setup client on, Fedora Workstation (#711)
* docs/client-linux.md housekeeping

* add fedora-workstation instructions to client-linx.md

* add deploy-from-fedora-workstation doc

* change client-linux.md to internal link

* add deploy-from-fedora-workstation links

* correct markup

* correct typo
2017-11-12 17:10:19 -05:00
Stev Witzel
8009778012 Add new GCP zones in Frankfurt (#656)
* add new Frankfurt zones to algo script and ansible docs
* backfill ansible docs for recently added GCP zones in London and Sydney
2017-08-29 08:32:22 -05:00
Dan Guido
0a1d64e629 Update client-linux.md 2017-07-16 19:20:41 -04:00
Jack Ivanov
78bd5b017c client fixes (#605) 2017-06-21 13:39:54 -04:00
Jack Ivanov
5755493382 Update faq.md
chloe.re is unavailable anymore. awesome_bot breaks travisci
2017-06-21 17:19:21 +02:00
Jack Ivanov
91c375d63f Update cloud-azure.md 2017-06-21 17:12:20 +02:00
Dan Guido
fa466caeb2 Modify guidance 2017-06-19 11:33:42 -04:00
defunct
ae2a2b522e Add UpdateStack to IAM template (#588)
Resolves #585
2017-06-07 12:18:57 -04:00
Martey Dodoo
2f4d0c016a Add new Google Cloud us-west1-c zone. (#583)
Add new Google Cloud zone (see
https://cloudplatform.googleblog.com/2017/05/Oregon-region-us-west1-adds-third-zone-Cloud-SQL-and-Regional-Managed-Instance-Groups.html).
Restore original default zone (europe-west1-b; see a470bf071e).
2017-06-07 00:31:22 -04:00
defunct
220da6eb53 Update AWS policy in documentation (#587)
Resolves #579
2017-06-07 00:31:00 -04:00
Jack Ivanov
a20e0eed55 Update deploy-from-windows.md 2017-05-31 18:06:41 +02:00
Jack Ivanov
91d9eb8f88 Update deploy-from-windows.md 2017-05-31 18:03:28 +02:00
Christopher De Vries
87e1282ebb Make documentation on iptables for local installation clearer. (#575) 2017-05-31 08:56:17 -04:00
Martey Dodoo
d59d67f0ea Add additional Gloud Cloud Engine zones. (#569)
* Add additional Gloud Cloud Engine zones.

Add GCE zones for Northern Virginia (us-east4), Singapore
(asia-southeast1), and Tokyo (asia-northeast1) regions.

* Update possible GCE zones in documentation.
2017-05-27 14:22:05 +02:00
Jack Ivanov
0131505195 Enhance PS1 script (#510)
update docs

Update README.md

update readme
2017-05-23 11:31:53 -04:00
Jack Ivanov
40e0363b18 Add html helper for Android (#554)
* add html helper #280

move to the new local schema

fix a typo

* Update client-android.md
2017-05-21 22:27:53 -04:00
Jack Ivanov
1b56dd660b Update docs about sudo #529 2017-05-08 22:39:18 +02:00
Osman Surkatty
25b6ab9e0a Added missing minimum policy actions. (#522)
Going through the installation process it appears that you're missing the following calls: `ec2:describeAddresses` and `ec2:allocateAddress`. This change fixes that.
2017-05-06 09:16:35 -04:00
Dan Guido
6527d04a6f add FAQ about software updates (#506)
* add FAQ about software updates

* toc

* grammar

* grammar

* link

* grammar
2017-04-30 15:44:47 -04:00
Dan Guido
e3c5015f2e Aws documentation (#505)
* Add AWS and Cloudformation specific docs

Closes #482
Closes #468

* readme enhancements

* various grammatical issues fixed
2017-04-30 14:28:44 -04:00
forkbomber
f002f32836 Fix typo related to "Error 809" and filtered IKE_AUTH requests (#496) 2017-04-27 12:46:28 -04:00
Dan Guido
31d6bd39a1 The docs got out of sync with the scripts (#480)
* The docs got out of sync with the scripts

* restructure

* fix links
2017-04-23 16:36:30 -04:00
Dan Guido
0d1c760a63 Doc improvements (#479)
* cleanup

* typos

* Closes #289

Add instructions for connecting to the VPN and configuring on demand.
2017-04-23 14:54:54 -04:00
Dan Guido
8c430bd555 typo (#474) 2017-04-22 22:38:29 -04:00
Dan Guido
3aa4b6e8df Add linters to our CI (#471) 2017-04-22 14:57:39 -04:00
Dan Guido
39822a1b4e Add back table of contents (#463)
* toc

* shift left

* derp
2017-04-21 12:20:33 -04:00
Dan Guido
b94b455aba typo 2017-04-20 18:28:16 -04:00
Dan Guido
22e145c241 Update documentation to include minimum required IAM policy (#461)
* Updating documentation to include minimum required IAM polcy. Closes

* Slightly more concise
2017-04-20 18:15:31 -04:00
Dan Guido
0e4aace6b6 Update deploy-to-ubuntu.md 2017-04-20 18:00:55 -04:00
Jack Ivanov
a7b06058cb remove the proxy role #440 (#457)
* remove the proxy role #440

* Separate facts. Make roles more independent from each other

move openssl to local tasks

move unneeded tasks
2017-04-20 18:00:17 -04:00
Dan Guido
019d729fe6 Better documentation (#459)
* Closes #443

* Remove numbers

* context

* split up local and scripted

* Closes #458

* .

* better layout

* Closes #451

* do this later

* grammar

* typo
2017-04-20 17:56:03 -04:00
MiWCryptAnalytics
14e8f309fe Update troubleshooting with note about ip frag (#427)
* Update troubleshooting with note about ip frag

note about ip fragmentation on consumer routers

* clarify

Closes #305
2017-04-17 23:41:04 -04:00
Dan Guido
77ad0576bf Update troubleshooting.md 2017-04-13 22:20:36 -04:00
Dan Guido
75cc96f9d6 Update troubleshooting.md 2017-04-13 22:16:50 -04:00
mathew19
e7593ab8b8 Update TROUBLESHOOTING.md (#393)
* Update TROUBLESHOOTING.md

Added example for problems with MTU size on Linux(Ubuntu)

* Update troubleshooting.md

* fix Advanced Usage broken link (#399)

* Update TROUBLESHOOTING.md

Added example for problems with MTU size on Linux(Ubuntu)
2017-04-13 22:15:04 -04:00
Rob Nee
41fae80f69 Fix link to RedHat/Centos doc (#398) 2017-04-13 19:39:53 -04:00
Dan Guido
85ca265260 Update faq.md 2017-04-13 15:34:44 -04:00
Michael Mattioli
de12d51859 Reorganize documentation for GitHub pages (#378)
Reorganize documentation for clarity and use with GitHub pages static
site generator. This closes #371.
2017-04-12 20:25:31 -04:00
Dan Guido
0256f3b31c add virtualenv to CentOS instructions 2017-04-09 10:11:26 -04:00
Jack Ivanov
3b8d04d06c remove the logging role 2017-04-05 16:25:56 +02:00
Dan Guido
5a172eb3ec new Slack channel 2017-04-04 16:50:15 -04:00
Dan Guido
c2ecab3f98 another typo ugh 2017-04-04 16:22:57 -04:00
Dan Guido
3a511eab44 I suck at making this stupid TOC :-x 2017-04-04 16:21:31 -04:00
Dan Guido
8c6f1f9c69 add note about network manager on older Ubuntu 2017-04-04 16:20:48 -04:00
Dan Guido
fb09a4138f Update TROUBLESHOOTING.md 2017-04-03 16:54:20 -04:00
Dan Guido
2fc9122ae8 add router troubleshooting faq 2017-04-03 16:53:04 -04:00
Josh Soref
84bbcb88d0 Spelling fixes (#342)
* spelling: algorithm

* spelling: bertrand

* spelling: between

* spelling: checking

* spelling: conjunction

* spelling: contributor

* spelling: delimited

* spelling: fashion

* spelling: droplet

* spelling: javascript

* spelling: nameserver

* spelling: obligatory

* spelling: official

* spelling: overridden

* spelling: overwrite

* spelling: parameter

* spelling: suppressing
2017-04-02 19:14:38 -04:00
Dan Guido
ceca178eff Update TROUBLESHOOTING.md 2017-04-01 14:36:32 -04:00
Dan Guido
ab22e9aee9 add note about Apple client support 2017-04-01 14:35:30 -04:00
Dan Guido
4b140bc5ed Update TROUBLESHOOTING.md 2017-04-01 14:26:35 -04:00
Dan Guido
c24d51b87b Update TROUBLESHOOTING.md 2017-04-01 14:12:23 -04:00
Dan Guido
eeae3ad34e add info about reconfiguring the apple profile 2017-04-01 14:11:01 -04:00
brad2014
09e5d87c7b Minor name and documentation edits (#327) 2017-04-01 00:19:10 -04:00
Dan Guido
e729119b24 Update TROUBLESHOOTING.md 2017-03-30 15:53:30 -04:00
Dan Guido
ea40249adf Update TROUBLESHOOTING.md 2017-03-30 15:52:34 -04:00
Dan Guido
c081913566 Update TROUBLESHOOTING.md 2017-03-30 15:52:01 -04:00
Dan Guido
770e1bbe7f Update WINDOWS.md 2017-03-27 18:15:12 -04:00
Dan Guido
8fbc1348e0 typo 2017-03-27 01:33:46 -04:00
Dan Guido
3aa5383b74 add FAQ about new regions 2017-03-27 01:24:42 -04:00
Dan Guido
9fe8965ccd another typo 2017-03-25 19:06:11 -04:00
Dan Guido
40d03e257a typo 2017-03-25 19:05:23 -04:00
Dan Guido
1a3341c449 add python2 vs 3 issue 2017-03-25 19:05:00 -04:00
Dan Guido
592f43d44c convention 2017-03-18 17:36:45 -04:00
Dan Guido
970e5b1f44 Update TROUBLESHOOTING.md 2017-03-18 17:29:25 -04:00
Jack Ivanov
6facb6cb4f FreeBSD / HardenedBSD (#262)
* FreeBSD draft

ifconfig fix

Pre-tasks fixes

fix hardcoded IP

some refactoring

disable system-based tags

disable freebsd tags

FreeBSD vpn role

add defaults

ssh role freebsd

default fix

dns_adblocking freebsd

ubuntu dict fix

* HardenedBSD

update-users BSD

* Rebuild the kernel

docs changing
2017-03-18 12:22:07 +03:00
Jack Ivanov
adffe60342 Update AZURE.md 2017-03-06 21:23:17 +03:00
Jack Ivanov
9b017a3670 Azure: How to create app credentials #261 2017-03-06 20:35:02 +03:00
Jack Ivanov
c6f5bcc5f2 Create AZURE.md 2017-03-06 19:03:57 +03:00
Jack Ivanov
a49caa3c31 Update CLIENT.md 2017-03-04 23:08:31 +03:00
Jack Ivanov
7cde31e50f Update CLIENT.md 2017-03-04 23:06:30 +03:00
Jack Ivanov
2a4d1837b5 Some fixes. Fedora client. Close #44 2017-03-04 23:05:02 +03:00
Jack Ivanov
95c42002f2 Update WINDOWS.md 2017-02-28 22:30:43 +03:00
Jack Ivanov
71b3b5ac46 Install from Windows #193 2017-02-28 22:29:21 +03:00
Alex Van Camp
9d3a65b555 Android client setup documentation (#251). Fixes #240
* Android client setup documentation

This is a first draft of Android Setup instructions. I expect that these will need some revising and that the formatting of this document will benefit from more tweaking.

We may also want to elaborate on the contents of the "advanced settings" menu ([screenshot](https://i.imgur.com/smsmdQF.png)).

* improve appearance on mobile devices
2017-02-26 23:18:57 +03:00
Dan Guido
0422fe4c9e typo 2017-02-12 13:13:24 -05:00
Dan Guido
d334e42048 explicit pointer to avenues for support 2017-02-12 13:07:13 -05:00
Dan Guido
013a3ca321 TOC 2017-02-07 17:29:17 -05:00
Dan Guido
a94c427596 Move FAQ to its own doc. 2017-02-07 17:27:13 -05:00
Dan Guido
2f9417e659 Update Troubleshooting.md 2017-02-07 17:02:18 -05:00
Dan Guido
e95ee10c3c slightly better docs 2017-02-07 17:01:31 -05:00
Dan Guido
2559c264c6 Slightly better docs 2017-02-07 16:46:58 -05:00
Jack Ivanov
1681b98eb2 update the troubleshooting page #146 2017-01-14 20:27:18 +03:00
Jack Ivanov
ea4e82d66d move troubleshooting from the landing readme page 2017-01-14 20:07:52 +03:00
Jack Ivanov
2598d58746 Update ADVANCED.md 2017-01-10 19:04:29 +03:00
Jack Ivanov
ce2e9f17d7 update ADVANCED.md #199 2017-01-04 17:16:55 +03:00
Dan Guido
13b403d4b9 Update ADVANCED.md 2017-01-01 22:57:08 +01:00
Dan Guido
460ff57f9b Update ADVANCED.md
Pulled in some changes from #199, thanks @grempe
2017-01-01 15:18:53 +01:00
Glenn Rempe
9975cecbb3 Fixes #197, remove unused do_ssh_name var from examples and code 2016-12-30 18:40:44 -08:00
Dan Guido
4dc476572b clarifications 2016-12-30 19:20:09 +01:00
Dan Guido
76de7153fe consistency 2016-12-29 14:03:55 +01:00
Dan Guido
3d28bce00f Tidy this up 2016-12-20 20:41:03 -05:00
kennwhite
7b7185fcd2 Update pre-install_redhat_centos_6.x.md 2016-12-19 16:22:27 -05:00
kennwhite
6522afde8c Rename Pre-install_steps_RedHat_CentOS_6.x.md to pre-install_redhat_centos_6.x.md 2016-12-19 16:13:39 -05:00
kennwhite
00864a7da3 Notes & recipe to install from RH/Cent 6.8 VMs
It was very difficult to satisfy all the library dependencies, particularly for Digital Ocean ("dopy") and pycrypto ("cryptography") on RPM-based distros, particularly with the default version of Python that ships with the 6.x line. These steps allow an end-to-end install (verified on Digital Ocean and EC2) with zero warnings or errors.
2016-12-19 16:08:41 -05:00
defunct
46e5e0aa33 Add new Ohio region 2016-10-18 10:35:34 -04:00
Dan Guido
1a3a14943c pull in changes from master 2016-10-15 19:26:28 +02:00
Dan Guido
bff7c414b2 Initial commit of reorg'd docs 2016-10-13 15:27:06 +02:00