Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(providers): ovpn.com support #2537

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

feat(providers): ovpn.com support #2537

wants to merge 3 commits into from

Conversation

qdm12
Copy link
Owner

@qdm12 qdm12 commented Oct 23, 2024
edited
Loading

Fix #495

Run it with image tag :pr-2537.

Wireguard

docker run --cap-add=NET_ADMIN -e VPN_SERVICE_PROVIDER=ovpn -e VPN_TYPE=wireguard \
-e WIREGUARD_PRIVATE_KEY=MFDyavQNdjUhvNfVIxoeLk6azofLwJ+xiPGDtOLrQUQ= \
-e WIREGUARD_ADDRESSES="10.64.222.21/32" \
-e SERVER_CITIES=amsterdam qmcgaw/gluetun:pr-2537

OpenVPN

I need an Openvpn configuration file to know what settings they use. Right now I just know their ciphers supported, although this may be sufficient.

docker run -it --rm --cap-add=NET_ADMIN -e VPN_SERVICE_PROVIDER=ovpn \
-e VPN_TYPE=openvpn -e OPENVPN_USER=abc -e OPENVPN_PASSWORD=abc \
-e SERVER_CITIES=amsterdam qmcgaw/gluetun:pr-2537

Status

  • multihop servers using MULTIHOP_ONLY=on
  • use server data port as default port if it's defined (only for multihop)
  • servers data update mechanism using ovpn API
  • Check Wireguard works
  • Check OpenVPN works

qdm12
qdm12 commented Oct 23, 2024
View reviewed changes
internal/provider/ovpn/openvpnconf.go Outdated
Comment on lines 13 to 31
providerSettings := utils.OpenVPNProviderSettings{
AuthUserPass: true,
Ciphers: []string{
openvpn.Chacha20Poly1305,
openvpn.AES256gcm,
openvpn.AES256cbc,
openvpn.AES128gcm,
},
}
Copy link
Owner Author

@qdm12 qdm12 Oct 23, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This might need additional settings for OpenVPN to work correctly, probably tls-crypt and tls-auth

@qdm12 qdm12 mentioned this pull request Oct 23, 2024
Open
@qdm12 qdm12 force-pushed the ovpn branch 3 times, most recently from dc2ac01 to 998cb92 Compare October 27, 2024 20:48
@qdm12
initial code
78d5324
@qdm12
Add missing openvpn options
0a8e6b9 
- CA
- TLS auth
- TLS crypt (for singapore)
- `allow-compression asym`
- `replay-window 256`
- remote-cert-tls server
- move aes256gcm as preferred cipher
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

VPN provider support: Ovpn.com
1 participant
@qdm12