From bb9f99853c723c5100c3fffbc592ba79f3abebfe Mon Sep 17 00:00:00 2001 From: Jernej Jakob Date: Tue, 14 Apr 2020 17:15:58 +0200 Subject: openvpn: T149: IPv6 support - allow configuring IPv6 server addresses and push options - add IPv6 server client IP pool - add IPv6 push dhcp-option DNS6 - allow configuring IPv6 server client addresses - allow configuring IPv6 site-to-site addresses - validate all IPv6 options and addresses - use protos that explicitely open an IPv6 listening socket (tcp6-server, tcp6-client, udp6) as the default on Linux listens on IPv4 only (https://community.openvpn.net/openvpn/ticket/360) - add validator for any IPv6 address, host or network (used by pool) --- interface-definitions/interfaces-openvpn.xml.in | 94 +++++++++++++++++++++---- 1 file changed, 79 insertions(+), 15 deletions(-) (limited to 'interface-definitions') diff --git a/interface-definitions/interfaces-openvpn.xml.in b/interface-definitions/interfaces-openvpn.xml.in index 574a3a58c..b5da8cf76 100644 --- a/interface-definitions/interfaces-openvpn.xml.in +++ b/interface-definitions/interfaces-openvpn.xml.in @@ -233,15 +233,15 @@ - Local IP address of tunnel + Local IP address of tunnel (IPv4 or IPv6) - + - Subnet-mask for local IP address of tunnel + Subnet-mask for local IP address of tunnel (IPv4 only) @@ -256,8 +256,12 @@ ipv4 Local IPv4 address + + ipv6 + Local IPv6 address + - + @@ -341,9 +345,14 @@ ipv4 Remote end IPv4 address + + ipv6 + Remote end IPv6 address + + @@ -351,7 +360,11 @@ Remote host to connect to (dynamic if not set) ipv4 - IP address of remote host + IPv4 address of remote host + + + ipv6 + IPv6 address of remote host txt @@ -411,9 +424,14 @@ ipv4 Client IPv4 address + + ipv6 + Client IPv6 address + - + + @@ -423,21 +441,29 @@ ipv4net IPv4 network and prefix length + + ipv6net + IPv6 network and prefix length + - + - Subnet belonging to the client + Subnet belonging to the client (iroute) ipv4net IPv4 network and prefix length belonging to the client + + ipv6net + IPv6 network and prefix length belonging to the client + - + @@ -446,7 +472,7 @@ - Pool of client IP addresses + Pool of client IPv4 addresses @@ -496,6 +522,31 @@ + + + Pool of client IPv6 addresses + + + + + Client IPv6 pool base address with optional prefix length + + ipv6net + Client IPv6 pool base address with optional prefix length (defaults: base = server subnet + 0x1000, prefix length = server prefix length) + + + + + + + + + Disable client IPv6 pool + + + + + DNS suffix to be pushed to all clients @@ -524,8 +575,12 @@ ipv4 DNS server IPv4 address + + ipv6 + DNS server IPv6 address + - + @@ -537,8 +592,12 @@ ipv4net IPv4 network and prefix length + + ipv6net + IPv6 network and prefix length + - + @@ -555,9 +614,14 @@ ipv4net IPv4 network and prefix length + + ipv6net + IPv6 network and prefix length + - + + @@ -568,7 +632,7 @@ net30 - net30 topology + net30 topology (default) point-to-point @@ -579,7 +643,7 @@ Subnet topology - (subnet|point-to-point) + (subnet|point-to-point|net30) -- cgit v1.2.3