Lamont Openvpn P2P
- By LaMont Jones
Channel | Revision | Published | Runs on |
---|---|---|---|
latest/stable | 6 | 19 Mar 2021 | |
latest/edge | 6 | 19 Mar 2021 |
juju deploy lamont-openvpn-p2p
Deploy universal operators easily with Juju, the Universal Operator Lifecycle Manager.
Platform:
-
ca_certificate_filename | string
Default: /etc/openvpn/ca.crt
name of ca certificate file on unit
-
cipher | string
Default: AES-128-CBC
Cipher to use.
-
config_trigger | string
change this to cause the config-changed hook to run.
-
crl_filename | string
certificate revocation list filename
-
device | string
Default: tun0
Interface name for vpn device
-
extra_commands | string
yaml string of extra directives for the config (usually routes)
-
group | string
Default: openvpn
group for openvpn
-
local_ip_address | string
Address to listen on
-
local_port | string
Default: 1194
port to listen on (default: 1194)
-
nagios_context | string
Default: juju
Used by the nrpe subordinate charms. A string that will be prepended to instance name to set the host name in nagios. So for instance the hostname would be something like: juju-myservice-0 If you're running multiple environments with the same services in them this allows you to differentiate between them.
-
nagios_servicegroups | string
Default: vpn
Used by the nrpe subordinate charms. servicegroup for our checks.
-
openvpn_origin | string
Default: distro
Repository from which to install. May be one of the following: distro (default), ppa:somecustom/ppa, a deb url sources entry, or a supported Cloud Archive release pocket. Supported Cloud Archive sources include: cloud:precise-folsom, cloud:precise-folsom/updates, cloud:precise-folsom/staging, cloud:precise-folsom/proposed. Note that updating this setting to a source that is known to provide a later version of openvpn will trigger a software upgrade.
-
protocol | string
Default: udp
vpn protocol: one of udp, tcp-server, tcp-client, udp6, tcp6-server, tcp6-client
-
remote_cert_tls | string
remote-cert-tls field: '', 'client', or 'server'
-
remote_cn | string
x509 name of the remote end (verified if not empty string)
-
remote_ip_address | string
Address to connect to
-
remote_port | string
Default: 1194
port to connect to (default: 1194)
-
server_certificate_filename | string
name of server certificate file on unit
-
server_key_filename | string
name of server key file on unit
-
ssh_auth_key_path | string
path to the ssh authorized keys file for "user"
-
tls_auth_direction | string
Default: 0
tls-auth direction
-
tls_auth_key | string
base64 encoded tls-auth key
-
tls_auth_key_filename | string
name of tls-auth key file on unit, if any
-
tls_mode | string
Default: client
one of 'client' or 'server' for tls handshake
-
tun_ip6_address | string
IPv6 address on the tunnel device, if any. CIDR format (e.g.: 2001:db8::3/64)
-
tun_ip_address | string
IPv4 address on the tunnel device, if any
-
tun_peer6_address | string
Peer IPv6 address on the tunnel device, if any. (e.g.: 2001:db8:1::1)
-
tun_peer_address | string
Peer IPv4 address in the tunnel, if any
-
user | string
Default: openvpn
user for openvpn
-
vpn_name | string
Default: p2p
name of the vpn. config file will be /etc/openvpn/${vpn_name}.conf