Page MenuHomeVyOS Platform

remfalc (Remy Falco)
User

Projects

User does not belong to any projects.

User Details

User Since
Feb 24 2021, 1:13 PM (161 w, 1 d)

Recent Activity

Mar 23 2021

remfalc added a comment to T3350: OpenVPN config file generation broken.

Another solution it include "user" defined file for options
An example CLI

set interfaces openvpn vtun10 openvpn-option-include '/config/openvpn/included.conf'
diff --git a/data/templates/openvpn/server.conf.tmpl b/data/templates/openvpn/server.conf.tmpl
index 79288e40..bcc88c09 100644
--- a/data/templates/openvpn/server.conf.tmpl
+++ b/data/templates/openvpn/server.conf.tmpl
@@ -288,3 +288,8 @@ compat-names
 {%     endfor %}
 {%   endfor %}
 {% endif %}
+
+# Include file for configuration options
+{% if openvpn_option_include is defined and openvpn_option_include is not none %}
+config {{ openvpn_option_include }}
+{% endif %}
diff --git a/interface-definitions/interfaces-openvpn.xml.in b/interface-definitions/interfaces-openvpn.xml.in
index effbdd67..2cba59af 100644
--- a/interface-definitions/interfaces-openvpn.xml.in
+++ b/interface-definitions/interfaces-openvpn.xml.in
@@ -314,6 +314,14 @@
               <multi/>
             </properties>
           </leafNode>
+          <leafNode name="openvpn-option-include">
+            <properties>
+              <help>Additional OpenVPN file configuration. You must
+                use the syntax of openvpn.conf in this file. Using this
+                without proper knowledge may result in a crashed OpenVPN server.
+                Check system log to look for errors.</help>
+            </properties>
+          </leafNode>
           <leafNode name="persistent-tunnel">
Mar 23 2021, 4:09 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.0)

Mar 17 2021

remfalc added a comment to T3350: OpenVPN config file generation broken.

I am not sure why these extra options are parsed to begin with. My view is Vyos gives the possibility to write extra config file elements because it is not yet supported by the Vyos system configuration. Therefore it should be up to the user to write the correct data as it was in the past.
There should be absolutely no parsing whatsoever and options must be passed through the file unchanged.

Mar 17 2021, 8:06 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.0)

Feb 24 2021

remfalc updated the task description for T3350: OpenVPN config file generation broken.
Feb 24 2021, 2:22 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.0)
remfalc created T3350: OpenVPN config file generation broken.
Feb 24 2021, 2:19 PM · VyOS 1.4 Sagitta, VyOS 1.3 Equuleus (1.3.0)