Cockpit OpenVPN and IPSec UI

Hi all,
we’ve just completed the new VPN UI for cockpit that links both IPSec and OpenVPN configuration under the same module.

Overview

This module contains 6 menu items:

Dashboard

Contains statistics about your vpn tunnels, both IPsec and OpenVPN (also for roadwarrior).

IPSec

You can create, update or delete IPSec tunnels and also enable or disable each tunnels.

OpenVPN tunnels

You can create, update, delete, enable or disable both server and client tunnels. For server tunnels you can also download the configuration.

OpenVPN roadwarriors

You can enable or disable your roadwarrior server and configure it. You can create, update, delete, enable, disable, and disconnect roadwarrior user.

You can also download or send_with_email the configuration of roadwarrior account:

Logs and About

Contains the standard views to check logs and get info about the module.

Main news

Roadwarrior

  • send OpenVPN configuration using mail
  • automatic creation of host object on IP reservation
  • passtos option is enabled by default

IPSec / OpenVPN tunnels

  • statistics

Breaking changes

Roadwarrior

  • push custom routes (not editable from the old Server Manager)
  • protocol change UDP/TCP (not compatible with the old Server Manager)
  • enable/disable accounts (not compatible with the old Server Manager)
  • algorithm and compression selection (not editable from the old Server Manager)
6 Likes

The whole module is almost done, we are doing little cosmetic adjustments.

Thank you do @dz00te for the excellent testing!

excuse my ignorance, but how can I install the new modules in the cockpit?? I only see legacy links to each module.

edit: I may have found my answer… have to remove the old version and install cockpit again.

unfortunatly that didn’t work… it only installed the version previously removed.

(1/2): nethserver-cockpit-lib-0.8.0-1.7.g151b22a.ns7.noarch.rpm | 28 kB 00:00:00
(2/2): nethserver-cockpit-0.8.0-1.7.g151b22a.ns7.noarch.rpm | 2.1 MB 00:00:06

Total 314 kB/s | 2.2 MB 00:00:07
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
Updating : nethserver-cockpit-lib-0.8.0-1.7.g151b22a.ns7.noarch 1/3
Installing : nethserver-cockpit-0.8.0-1.7.g151b22a.ns7.noarch 2/3
Cleanup : nethserver-cockpit-lib-0.8.0-1.ns7.noarch 3/3
Verifying : nethserver-cockpit-lib-0.8.0-1.7.g151b22a.ns7.noarch 1/3
Verifying : nethserver-cockpit-0.8.0-1.7.g151b22a.ns7.noarch 2/3
Verifying : nethserver-cockpit-lib-0.8.0-1.ns7.noarch 3/3

Installed:
nethserver-cockpit.noarch 0:0.8.0-1.7.g151b22a.ns7

Dependency Updated:
nethserver-cockpit-lib.noarch 0:0.8.0-1.7.g151b22a.ns7

Complete!

Any hints for an idiot who probably missed the post detailing how it’s done?

Hi,
the command is:

yum install --enablerepo=nethserver-testing nethserver-vpn-ui nethserver-ipsec-tunnels nethserver-openvpn

Hi friends,

really like it! Especially the security part in roadwarrior service with dropdownmenus for digest, cipher and TLS. Also to push custom routes. Everything needed is there. :star_struck:

Great work! Thank you very much!

EDIT: But I can save the advanced options. Not in Firefox nor in Opera. Click on save-button and nothing happens.

2 Likes

Released!

Still have this problem. Does this work on your side?
PS: in original post I wrote “can” instead of “can’t”. Sorry. :blush:

It works for me at least in the RoadWarrior page.

In which page do you have the problem?

In RoadWarrior page:

If I click on save, nothing happens.

I still can’t reproduce. Maybe you have a validation error?
If you expand the “Advanced options” section and then click to “Save”, what happens?

Is there anything relevant inside the browser console?

It doesn’t work ether with or without changing advanced options. I tried all variants.
I’m not at work today. No relevant info in browser console.
It’s an older test vm, so I’ll setup a completely new one from scratch. On this machine I did a lot of installations and rollbacks, so maybe it time to let it die… :latin_cross: :pensive:
I’ll give response when it done.