Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/farynam/mfitbs-openvpn-server
Simple private network deployment tool through Ansible based on OpenVPN. This is a server part.
https://github.com/farynam/mfitbs-openvpn-server
Last synced: 6 days ago
JSON representation
Simple private network deployment tool through Ansible based on OpenVPN. This is a server part.
- Host: GitHub
- URL: https://github.com/farynam/mfitbs-openvpn-server
- Owner: farynam
- License: mit
- Created: 2019-10-01T19:18:10.000Z (about 5 years ago)
- Default Branch: master
- Last Pushed: 2019-10-08T22:11:33.000Z (about 5 years ago)
- Last Synced: 2024-07-05T22:12:31.310Z (4 months ago)
- Homepage:
- Size: 20.5 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
Role Name
=========
mfitbs_openvpn_server
Requirements
------------
* Ansible 2.8.5
* Debian 10
* Debian 9
Role Variables
--------------
###### EasyRSA host
* easy_rsa_host - host on which easyrsa will be installed.
###### Server host
* server_port - Openvpn server/hub port.
* client_to_client - is client to client communication allowed.
###### all
* id_type - ID type (certficate field subject-alt-name) in cert can be DNS or IP
* proto - proto for openvpm connections values:tcp,udp
* host_pki_dir - host PKI dir (where keys, certs, ... being kept).
* dh_len - Diffie–Hellman param length.
* cipher - openvpn cipher.
* log_status - openvpn status log.
* log - openvpn log.
Dependencies
------------
* mfitbs-openvpn-easyrsa
Example Playbook
----------------
* inventory
erh ansible_host=192.168.51.5 ansible_user=root ansible_password=qwerty ansible_ssh_common_args='-o StrictHostKeyChecking=no'
[server]
server ansible_host=192.168.51.4 ansible_user=root ansible_password=qwerty ansible_ssh_common_args='-o StrictHostKeyChecking=no'
[client]
client1 ansible_host=192.168.51.6 client_addr=10.8.0.2 client_mask=255.255.255.0 ansible_user=root ansible_password=qwerty ansible_ssh_common_args='-o StrictHostKeyChecking=no'
* playbook
- name: Test server part
hosts: server
roles:
- role: mfitbs-openvpn-server
vars:
server_port: 1194
proto: tcp
log_status: /var/log/openvpn-status.log
log: /var/log/openvpn.log
host_pki_dir: /etc/pki/openvpn
cipher: AES-256-CBC
id_type: IP
easy_rsa_host: erh
client_to_client: true
tasks:
License
-------
MIT
Author Information
------------------
Marcin Faryna