aboutsummaryrefslogtreecommitdiffstats
path: root/config/ovpnenhance/openvpn_cli.xml_tls
diff options
context:
space:
mode:
authormfuchs <martin.fuchs@trendchiller.com>2009-05-19 21:30:08 +0200
committermfuchs <martin.fuchs@trendchiller.com>2009-05-19 21:30:08 +0200
commit7d9e42f0b179417650e9b336fdf925b058863250 (patch)
treea37ab8059813e7ce843f44b8374f29c146d2e1df /config/ovpnenhance/openvpn_cli.xml_tls
parent1e6391adbc715503f008ec7efa0f5355d54bb558 (diff)
downloadpfsense-packages-7d9e42f0b179417650e9b336fdf925b058863250.tar.gz
pfsense-packages-7d9e42f0b179417650e9b336fdf925b058863250.tar.bz2
pfsense-packages-7d9e42f0b179417650e9b336fdf925b058863250.zip
add OpenVPN-TLS, etc... enhancements package for 1.2.x
Diffstat (limited to 'config/ovpnenhance/openvpn_cli.xml_tls')
-rw-r--r--config/ovpnenhance/openvpn_cli.xml_tls240
1 files changed, 240 insertions, 0 deletions
diff --git a/config/ovpnenhance/openvpn_cli.xml_tls b/config/ovpnenhance/openvpn_cli.xml_tls
new file mode 100644
index 00000000..b9b85cf6
--- /dev/null
+++ b/config/ovpnenhance/openvpn_cli.xml_tls
@@ -0,0 +1,240 @@
+<packagegui>
+ <name>openvpnclient</name>
+ <title>OpenVPN: Client</title>
+ <include_file>openvpn.inc</include_file>
+ <delete_string>An OpenVPN client has been deleted.</delete_string>
+ <addedit_string>An OpenVPN client has been created/modified.</addedit_string>
+ <tabs>
+ <tab>
+ <text>Server</text>
+ <url>/pkg.php?xml=openvpn.xml</url>
+ </tab>
+ <tab>
+ <text>Client</text>
+ <url>/pkg.php?xml=openvpn_cli.xml</url>
+ <active/>
+ </tab>
+ <tab>
+ <text>Client-specific configuration</text>
+ <url>/pkg.php?xml=openvpn_csc.xml</url>
+ </tab>
+ </tabs>
+ <adddeleteeditpagefields>
+ <columnitem>
+ <fieldname>disable</fieldname>
+ <fielddescr>Disabled</fielddescr>
+ <type>checkbox</type>
+ </columnitem>
+ <columnitem>
+ <fieldname>serveraddr</fieldname>
+ <fielddescr>Server</fielddescr>
+ </columnitem>
+ <columnitem>
+ <fieldname>protocol</fieldname>
+ <fielddescr>Protocol</fielddescr>
+ </columnitem>
+ <columnitem>
+ <fieldname>description</fieldname>
+ <fielddescr>Description</fielddescr>
+ </columnitem>
+ </adddeleteeditpagefields>
+ <fields>
+ <field>
+ <fieldname>disable</fieldname>
+ <fielddescr>Disable this tunnel</fielddescr>
+ <description>This allows you to disable this tunnel without removing it from the list.</description>
+ <required/>
+ <type>checkbox</type>
+ </field>
+ <field>
+ <fieldname>protocol</fieldname>
+ <fielddescr>Protocol</fielddescr>
+ <description>The protocol to be used for the VPN.</description>
+ <required/>
+ <type>select</type>
+ <options>
+ <option>
+ <value>TCP</value>
+ <name>TCP</name>
+ </option>
+ <option>
+ <value>UDP</value>
+ <name>UDP</name>
+ </option>
+ </options>
+ <default_value>UDP</default_value>
+ </field>
+ <field>
+ <fieldname>serveraddr</fieldname>
+ <fielddescr>Server address</fielddescr>
+ <description>This is the address OpenVPN will try to connect to in order to establish the tunnel. Set it to the remote endpoint's address.</description>
+ <required/>
+ <type>input</type>
+ </field>
+ <field>
+ <fieldname>serverport</fieldname>
+ <fielddescr>Server port</fielddescr>
+ <description>The port OpenVPN will use to connect to the server. Most people would want to use 1194 here.</description>
+ <required/>
+ <type>input</type>
+ <default_value>1194</default_value>
+ <size>5</size>
+ </field>
+ <field>
+ <fieldname>interface_ip</fieldname>
+ <fielddescr>Interface IP</fielddescr>
+ <description>This specifies the IPs to be assigned to the local interface. Expressed as a CIDR range. The first address in the range will be set to the remote endpoint of the interface, and the second will be assigned to the local endpoint. For TLS VPNs, the interface IPs are assigned by the server pool.</description>
+ <type>input</type>
+ </field>
+ <field>
+ <fieldname>remote_network</fieldname>
+ <fielddescr>Remote network</fielddescr>
+ <description>This is the network that will be accessable from your endpoint. Expressed as a CIDR range. You may leave this blank if all you want is to access the VPN clients. You normally want this set to the remote endpoint's LAN network.</description>
+ <type>input</type>
+ </field>
+ <field>
+ <fieldname>proxy_hostname</fieldname>
+ <fielddescr>Proxy Host</fielddescr>
+ <description>Proxy server hostname.</description>
+ <type>input</type>
+ </field>
+ <field>
+ <fieldname>proxy_port</fieldname>
+ <fielddescr>Proxy port</fielddescr>
+ <description>The port OpenVPN will use on the proxy server.</description>
+ <type>input</type>
+ <default_value>3128</default_value>
+ <size>5</size>
+ </field>
+ <field>
+ <fieldname>crypto</fieldname>
+ <fielddescr>Cryptography</fielddescr>
+ <description>Here you can choose the cryptography algorithm to be used.</description>
+ <required/>
+ <type>select</type>
+ <default_value>BF-CBC</default_value>
+ </field>
+ <field>
+ <fieldname>auth_method</fieldname>
+ <fielddescr>Authentication method</fielddescr>
+ <description>The authentication method to be used.</description>
+ <required/>
+ <type>select</type>
+ <options>
+ <option>
+ <value>shared_key</value>
+ <name>Shared key</name>
+ </option>
+ <option>
+ <value>pki</value>
+ <name>PKI (Public Key Infrastructure)</name>
+ </option>
+ </options>
+ <onchange>onAuthMethodChanged()</onchange>
+ </field>
+ <field>
+ <fieldname>shared_key</fieldname>
+ <fielddescr>Shared key</fielddescr>
+ <description>Paste your shared key here.</description>
+ <type>textarea</type>
+ <encoding>base64</encoding>
+ <rows>8</rows>
+ <cols>40</cols>
+ </field>
+ <field>
+ <fieldname>ca_cert</fieldname>
+ <fielddescr>CA certificate</fielddescr>
+ <description>Paste the server's CA certificate in X.509 format here.</description>
+ <type>textarea</type>
+ <encoding>base64</encoding>
+ <rows>8</rows>
+ <cols>40</cols>
+ </field>
+ <field>
+ <fieldname>client_cert</fieldname>
+ <fielddescr>Client certificate</fielddescr>
+ <description>Paste your client certificate in X.509 format here.</description>
+ <type>textarea</type>
+ <encoding>base64</encoding>
+ <rows>8</rows>
+ <cols>40</cols>
+ </field>
+ <field>
+ <fieldname>client_key</fieldname>
+ <fielddescr>Client key</fielddescr>
+ <description>Paste your client key in RSA format here.</description>
+ <type>textarea</type>
+ <encoding>base64</encoding>
+ <rows>8</rows>
+ <cols>40</cols>
+ </field>
+ <field>
+ <fieldname>tls</fieldname>
+ <fielddescr>TLS</fielddescr>
+ <description>Paste your HMAC signature (TLS) here (optional).</description>
+ <type>textarea</type>
+ <encoding>base64</encoding>
+ <rows>8</rows>
+ <cols>40</cols>
+ </field>
+ <field>
+ <fieldname>use_lzo</fieldname>
+ <fielddescr>LZO compression</fielddescr>
+ <description>Checking this will compress the packets using the LZO algorithm before sending them.</description>
+ <type>checkbox</type>
+ </field>
+ <field>
+ <fieldname>use_shaper</fieldname>
+ <fielddescr>Limit outgoing bandwidth</fielddescr>
+ <description>Maximum outgoing bandwidth for this tunnel. Leave empty for no limit. The input value has to be something between 100 bytes/sec and 100 Mbytes/sec (entered as bytes per second).</description>
+ <type>input</type>
+ </field>
+ <field>
+ <fieldname>use_dynamicport</fieldname>
+ <fielddescr>Dynamic sourceport</fielddescr>
+ <description>Checking this will let the openvpn client choose a dynamic sourceport for this connection.</description>
+ <type>checkbox</type>
+ </field>
+ <field>
+ <fieldname>passtos</fieldname>
+ <fielddescr>Pass Type-Of-Service</fielddescr>
+ <description>Checking this will set the TOS field of the tunnel packet to what the payload's TOS is.</description>
+ <type>checkbox</type>
+ </field>
+ <field>
+ <fieldname>infiniteresolvretry</fieldname>
+ <fielddescr>Infinitely resolve server</fielddescr>
+ <description>Infinitely retry to resolve the host name of the OpenVPN server. Useful for not permanently internet-connected machines.</description>
+ <type>checkbox</type>
+ </field>
+ <field>
+ <fieldname>custom_options</fieldname>
+ <fielddescr>Custom options</fielddescr>
+ <description>You can put your own custom options here, separated by semi-colons (;). They'll be added to the client configuration.</description>
+ <type>textarea</type>
+ <cols>65</cols>
+ <rows>5</rows>
+ </field>
+ <field>
+ <fieldname>description</fieldname>
+ <fielddescr>Description</fielddescr>
+ <description>You may enter a description here. This is optional and is not parsed.</description>
+ <type>input</type>
+ </field>
+ </fields>
+ <custom_php_command_before_form>
+ openvpn_get_ciphers(&amp;$pkg);
+ </custom_php_command_before_form>
+ <custom_php_after_head_command>
+ openvpn_print_javascript('client');
+ </custom_php_after_head_command>
+ <custom_php_after_form_command>
+ openvpn_print_javascript2();
+ </custom_php_after_form_command>
+ <custom_php_validation_command>
+ openvpn_validate_input('client', $_POST, &amp;$input_errors);
+ </custom_php_validation_command>
+ <custom_php_resync_config_command>
+ openvpn_resync('client', $id);
+ </custom_php_resync_config_command>
+</packagegui>