Commit Graph

244 Commits

Author SHA1 Message Date
Callan Bryant
ddaeb19b54
vendor + update modules 2020-11-29 21:07:40 +00:00
Callan Bryant
45b61f8a63
support ExternalHostname which has precedence over IPs 2020-11-29 18:34:05 +00:00
Callan Bryant
6ca3614cff
Merge pull request #29 from Snowb1ind/master
Update Quick Start to use latest release
2020-11-26 19:20:12 +00:00
Wintermute
c213130c3d Quick Start using latest version 2020-11-26 13:31:53 +03:00
Callan Bryant
526a8df1ed
update png 2020-11-19 23:46:18 +00:00
Callan Bryant
dea2e86bc6
go fmt 2020-11-19 22:57:29 +00:00
Callan Bryant
08b8372148
apply rule of silence to up/down cmds 2020-11-19 22:57:02 +00:00
Callan Bryant
0579b4cdd3
Merge pull request #25 from fs111/up-down
Implements PostUp and PostDown commands using `/bin/sh`
2020-11-19 22:53:56 +00:00
Andre Kelpe
e782db30e9 Implements PostUp and PostDown commands using /bin/sh
This introduces PostUp and PostDown in dsnet. PostUp and PostDown allow
the user to run arbitrary commands after the device is up or down. These
are typically used to change the firewall rules via iptables. A working
example would be

...
    "PostUp" : "iptables -A FORWARD -i dsnet -j ACCEPT; iptables -A FORWARD -o dsnet -j ACCEPT; iptables -t nat -A POSTROUTING -o ens2 -j MASQUERADE ",
    "PostDown" : "iptables -D FORWARD -i dsnet -j ACCEPT; iptables -D FORWARD -o dsnet -j ACCEPT; iptables -t nat -D POSTROUTING -o ens2 -j MASQUERADE ",
...

All commands are executed by `/bin/sh` and no filtering or sandboxing is
applied. Users of this should know what they are doing.

Fixes https://github.com/naggie/dsnet/issues/16
2020-11-19 23:21:11 +01:00
Callan Bryant
704e5ba51c
deterministic wg interface name on edgeos explanation 2020-11-18 19:34:38 +00:00
Callan Bryant
e2f7ff022e
screenshots with IPv6 2020-11-18 17:29:39 +00:00
Callan Bryant
ee8cb4c545
Merge pull request #24 from frillip/master
Updated dsnet-nsupdate for IPv6 support in v0.2.2
2020-11-05 08:30:43 +00:00
Phil martin
6cbaa992ed Updated dsnet-nsupdate for IPv6 support in v0.2.2 2020-11-04 13:55:35 +00:00
Callan Bryant
38dd7c6d95
add IPv6 info to report 2020-11-02 18:26:14 +00:00
Callan Bryant
f1e1a6838f
fix allowedIPs construction where networks are provided 2020-11-02 17:56:12 +00:00
Callan Bryant
aa785b9ab6
split off config generation 2020-11-01 09:17:25 +00:00
Callan Bryant
5ff1659d22
specify that wg-quick is default 2020-10-30 13:08:39 +00:00
Callan Bryant
d042250c1a
create deterministic wg interface names for vyatta 2020-10-30 13:02:46 +00:00
Callan Bryant
c8c27e8ce0
add IPv6 to interface 2020-10-30 12:34:35 +00:00
Callan Bryant
227ed206a4
Merge pull request #22 from naggie/ipv6
IPv6 support
2020-10-29 17:00:47 +00:00
Callan Bryant
4ad58382f6
go fmt 2020-10-28 00:39:15 +00:00
Callan Bryant
135fa12f00
update docs 2020-10-27 22:19:58 +00:00
Callan Bryant
112379c70a
remove redundant allowed IP enumeration 2020-10-27 22:00:21 +00:00
Callan Bryant
0481996116
add allowedIPs conditionally 2020-10-27 21:57:44 +00:00
Callan Bryant
a6bacff44d
update getwgpeerconfgs 2020-10-27 21:42:21 +00:00
Callan Bryant
047a0dc7be
fix json marshalling of uninitialised JSONIPnet 2020-10-27 21:21:22 +00:00
Callan Bryant
ddb0b4c549
conditional IPv4/6 and fix vyatta 2020-10-27 21:03:45 +00:00
Callan Bryant
63b22e0554
only save peer allowed IP of net version is defined 2020-10-27 00:00:38 +00:00
Callan Bryant
c4d2898170
correct comment 2020-10-26 23:49:12 +00:00
Callan Bryant
5477a321b2
fix CIDR notation for Peer IPs 2020-10-26 23:37:19 +00:00
Callan Bryant
dfd617273b
add missing bracket 2020-10-26 22:47:48 +00:00
Callan Bryant
06905db6df
allow empty IPNets 2020-10-26 22:47:02 +00:00
Callan Bryant
555ffad58b
prevent segfault when parsing empty CIDR 2020-10-26 22:44:09 +00:00
Callan Bryant
b770d387bf
fix unititialised IPNet marshalling 2020-10-26 22:39:08 +00:00
Callan Bryant
34ff77b27a
...also for vyatta 2020-10-26 21:39:55 +00:00
Callan Bryant
5a870dab60
use ExternalIP6 if ExternalIP not available 2020-10-26 18:27:35 +00:00
Callan Bryant
608dbf176f
check config contains external IPv6/IPv4 2020-10-26 18:11:56 +00:00
Callan Bryant
965fc367ac
check for ULA and no IP 2020-10-26 18:10:39 +00:00
Callan Bryant
f57fa3473d
fix lookup of v6: do not require 2020-10-26 17:58:15 +00:00
Callan Bryant
d58b2f5a54
detect IPv6 and IPv4 for server 2020-10-26 08:27:22 +00:00
Callan Bryant
7bbe28a145
add CIDR subnet properly 2020-10-26 08:08:39 +00:00
Callan Bryant
e7da49c1a8
don't use string respresentations unnecessarily 2020-10-25 22:59:57 +00:00
Callan Bryant
e7fb9dc5ce
IPv6 config to template 2020-10-25 22:56:49 +00:00
Callan Bryant
f7f06f00fa
check for IP networks before allocating 2020-10-25 22:27:33 +00:00
Callan Bryant
9a942c1040
remove debug 2020-10-25 21:02:06 +00:00
Callan Bryant
ac9baf0039
fc -> fd 2020-10-25 15:15:46 +00:00
Callan Bryant
cb75689825
move allocation out of loop 2020-10-25 14:59:46 +00:00
Callan Bryant
19f25ff847
working psudorandom v6 allocator 2020-10-25 14:57:18 +00:00
Callan Bryant
64a73d18ed
rename getULA to getULAnet 2020-10-25 10:06:25 +00:00
Callan Bryant
af3e1b2ea9
make allocation universal, given a network 2020-10-25 08:23:43 +00:00