Skip to content
Snippets Groups Projects
Select Git revision
0 results
Search by author
  • Any Author
0 authors
  1. Nov 21, 2018
    • Matthias Schiffer's avatar
      gluon-mesh-vpn-core: add gluon-wan exec wrapper · eda3aa33
      Matthias Schiffer authored 
      gluon-wan is a sudo-like exec wrapper that switches the process group to
gluon-mesh-vpn, making it use the WAN dnsmasq rather than resolving over
the mesh.

Note that this only affects DNS at the moment. Processes running under
gluon-wan will still use the regular mesh IPv6 routing table, and not the
WAN routing table. This is not a problem for IPv4, as there is only one
IPv4 routing table.

Fixes #1575
      eda3aa33
  3. Aug 24, 2018
  5. Jul 25, 2018
  7. Jul 17, 2018
  9. Apr 13, 2018
  11. Mar 08, 2018
  13. Mar 07, 2018
  15. Feb 25, 2018
  17. Feb 04, 2018
    • Martin Weinelt's avatar
      gluon-mesh-vpn-core: add public key to nodeinfo response · 42763d21
      Martin Weinelt authored 
      This is currently only implemented in the gluon-mesh-vpn-fastd
package.

Advertising the public key may be deemed problematic when
your threat-model involves protecting the nodes privacy
from tunnel traffic correlation by onlink observers.

It can be enabled by setting site.mesh_vpn.fastd.pubkey_privacy
to `false`.
      42763d21
  19. Jan 19, 2018
    • Matthias Schiffer's avatar
      treewide: rework check_site_lib.lua · 7ccdacd2
      Matthias Schiffer authored 
      In addition to significant internal differences in check_site_lib.lua (in
particular unifying error handling to a single place for the upcoming
multi-domain support), this changes the way fields are addressed in site
check scripts: rather than providing a string like 'next_node.ip6', the
path is passed as an array {'next_node', 'ip6'}.

Other changes in site check scripts:
* need_array and need_table now pass the full path to the sub fields to the
subcheck instead of the key and value
* Any check referring to a field inside a table implies that all higher
levels must be tables if they exist: a check for {'next_node', 'ip6'} adds
an implicit (optional) check for {'next_node'}, which allows to remove many
explicit checks for such tables
      7ccdacd2
    • lemoer's avatar
      treewide: forbid use of selected site variables in domain specific or site configs · 50812b16
      lemoer authored 
      [Matthias schiffer: rebase, add a few more restrictions]
      50812b16
  21. Aug 11, 2017
  23. Aug 07, 2017
  25. Mar 26, 2017
  27. Mar 10, 2017

Impressum - Datenschutz