Cockpit OpenVPN and IPSec UI

#1

Hi all,
we’ve just completed the new VPN UI for cockpit that links both IPSec and OpenVPN configuration under the same module.

Overview

This module contains 6 menu items:

Dashboard

Contains statistics about your vpn tunnels, both IPsec and OpenVPN (also for roadwarrior).

vpn_1
vpn_1.png1132×918 53.3 KB

IPSec

You can create, update or delete IPSec tunnels and also enable or disable each tunnels.

vpn_2
vpn_2.png1143×919 41 KB

OpenVPN tunnels

You can create, update, delete, enable or disable both server and client tunnels. For server tunnels you can also download the configuration.

vpn_3
vpn_3.png1148×921 56.8 KB

OpenVPN roadwarriors

You can enable or disable your roadwarrior server and configure it. You can create, update, delete, enable, disable, and disconnect roadwarrior user.

vpn_5
vpn_5.png1143×917 42.5 KB

You can also download or send_with_email the configuration of roadwarrior account:

1
vpn_4.1.png1143×509 42.5 KB

Logs and About

Contains the standard views to check logs and get info about the module.

Main news

Roadwarrior

  • send OpenVPN configuration using mail
  • automatic creation of host object on IP reservation
  • passtos option is enabled by default

IPSec / OpenVPN tunnels

  • statistics

Breaking changes

Roadwarrior

  • push custom routes (not editable from the old Server Manager)
  • protocol change UDP/TCP (not compatible with the old Server Manager)
  • enable/disable accounts (not compatible with the old Server Manager)
  • algorithm and compression selection (not editable from the old Server Manager)
6 Likes
#2

The whole module is almost done, we are doing little cosmetic adjustments.

Thank you do @dz00te for the excellent testing!

#3

excuse my ignorance, but how can I install the new modules in the cockpit?? I only see legacy links to each module.

edit: I may have found my answer… have to remove the old version and install cockpit again.

#4

unfortunatly that didn’t work… it only installed the version previously removed.

(1/2): nethserver-cockpit-lib-0.8.0-1.7.g151b22a.ns7.noarch.rpm | 28 kB 00:00:00
(2/2): nethserver-cockpit-0.8.0-1.7.g151b22a.ns7.noarch.rpm | 2.1 MB 00:00:06

Total 314 kB/s | 2.2 MB 00:00:07
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
Updating : nethserver-cockpit-lib-0.8.0-1.7.g151b22a.ns7.noarch 1/3
Installing : nethserver-cockpit-0.8.0-1.7.g151b22a.ns7.noarch 2/3
Cleanup : nethserver-cockpit-lib-0.8.0-1.ns7.noarch 3/3
Verifying : nethserver-cockpit-lib-0.8.0-1.7.g151b22a.ns7.noarch 1/3
Verifying : nethserver-cockpit-0.8.0-1.7.g151b22a.ns7.noarch 2/3
Verifying : nethserver-cockpit-lib-0.8.0-1.ns7.noarch 3/3

Installed:
nethserver-cockpit.noarch 0:0.8.0-1.7.g151b22a.ns7

Dependency Updated:
nethserver-cockpit-lib.noarch 0:0.8.0-1.7.g151b22a.ns7

Complete!

Any hints for an idiot who probably missed the post detailing how it’s done?

#5

Hi,
the command is:

yum install --enablerepo=nethserver-testing nethserver-vpn-ui nethserver-ipsec-tunnels nethserver-openvpn
#6

Hi friends,

really like it! Especially the security part in roadwarrior service with dropdownmenus for digest, cipher and TLS. Also to push custom routes. Everything needed is there. :star_struck:

Great work! Thank you very much!

EDIT: But I can save the advanced options. Not in Firefox nor in Opera. Click on save-button and nothing happens.

2 Likes
#7

Released!

#8

Still have this problem. Does this work on your side?
PS: in original post I wrote “can” instead of “can’t”. Sorry. :blush:

#9

It works for me at least in the RoadWarrior page.

In which page do you have the problem?

#10

In RoadWarrior page:

grafik
grafik.png710×562 16.4 KB

If I click on save, nothing happens.

#11

I still can’t reproduce. Maybe you have a validation error?
If you expand the “Advanced options” section and then click to “Save”, what happens?

Is there anything relevant inside the browser console?

#12

It doesn’t work ether with or without changing advanced options. I tried all variants.
I’m not at work today. No relevant info in browser console.
It’s an older test vm, so I’ll setup a completely new one from scratch. On this machine I did a lot of installations and rollbacks, so maybe it time to let it die… :latin_cross: :pensive:
I’ll give response when it done.