admin/gluetun
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • 86d82c1098 chore(main): let system handle OS signals after first one to stop program Quentin McGaw 2024-11-07 20:05:17 +00:00
  • 842b9004da chore(routing): remove redundant rule ip rule in error messages Quentin McGaw 2024-11-07 19:50:34 +00:00
  • 1114981914 wip port-forwarding-loop-debug Quentin McGaw 2024-11-07 19:55:02 +00:00
  • 4ef0df04aa chore(routing): remove redundant rule ip rule in error messages Quentin McGaw 2024-11-07 19:50:34 +00:00
  • 6ac7ca4f0f feat(healthcheck): log out last error when auto healing VPN Quentin McGaw 2024-11-05 13:32:47 +00:00
  • ddfcbe1bee feat(healthcheck): run TLS handshake after TCP dial if address has 443 port Quentin McGaw 2024-11-05 13:29:43 +00:00
  • 88fd9388e4 chore(lint): remove canonicalheader since it's not reliable Quentin McGaw 2024-11-05 10:42:10 +00:00
  • 69aafa53c9 fix(server/auth): fix wiki link to authentication section Quentin McGaw 2024-11-05 10:33:28 +00:00
  • 3473fe9c15 fix(openvpn): set default mssfix to 1320 for all providers with no default - Partially address #2533 Quentin McGaw 2024-11-05 10:12:02 +00:00
  • c655500045 fix(wireguard): change default WIREGUARD_MTU from 1400 to 1320 - Partially address #2533 Quentin McGaw 2024-11-05 09:57:03 +00:00
  • 96a8015af6 feat(netlink): debug rule logs contain the ip family Quentin McGaw 2024-11-03 20:14:41 +00:00
  • ddd3876f92 chore(dns): upgrade dependency from v2.0.0-rc7 to v2.0.0-rc8 - do not log dial error twice - DNS subserver shuts down without waiting for connections to finish (UDP server would hang sometimes) - DNS over TLS dialer uses tls.Dialer instead of wrapping connection with tls.Client - connection type is just tls instead of dns over tls to reduce repetition in logs - exchange errors contain the request question in their context Quentin McGaw 2024-11-03 12:35:01 +00:00
  • f1f34722ee feat(tun): mention in 'operation not permitted' error the user should specify --device /dev/net/tun Quentin McGaw 2024-10-28 09:22:08 +00:00
  • 937c667ca8 hotfix(perfectprivacy): fix formatting from previous commit Quentin McGaw 2024-10-27 17:20:30 +00:00
  • 3c45f57aaa fix(perfectprivacy): update openvpn expired certificates (#2542) Christoph Kehl 2024-10-27 11:45:25 +01:00
  • 30640eefe2 chore(deps): upgrade dns to v2.0.0-cr7 Quentin McGaw 2024-10-25 14:01:29 +00:00
  • 3f636a038c wip loops Quentin McGaw 2024-10-21 12:45:51 +02:00
  • 052317f95b wipp Quentin McGaw 2024-05-13 07:24:47 +00:00
  • 5f355fabbe http proxy Quentin McGaw 2023-08-23 09:30:51 +00:00
  • 8567522594 chore(dev): pin godevcontainer image to tag v0.20-alpine Quentin McGaw 2024-10-20 12:58:45 +00:00
  • bd8214e648 docs(dev): minor fixes to devcontainer readme Quentin McGaw 2024-10-20 12:57:58 +00:00
  • a61302f135 feat(publicip): resilient public ip fetcher (#2518) Quentin McGaw 2024-10-19 15:21:14 +02:00
  • 3dfb43e117 chore(netlink): debug log ip rule commands in netlink instead of routing package Quentin McGaw 2024-10-19 12:43:26 +00:00
  • 2388e0550b hotfix(publicip): return an error if trying to use cloudflare as ip provider for updating servers data Quentin McGaw 2024-10-11 21:55:03 +00:00
  • a7d70dd9a3 fix(publicip): lock settings during entire update - to prevent race conditions when data is cleared when vpn goes down Quentin McGaw 2024-10-11 21:24:18 +00:00
  • 76a4bb5dc3 chore: use gofumpt for code formatting Quentin McGaw 2024-10-11 19:20:48 +00:00
  • 3daf15a612 chore(lint): fix gopls govet errors Quentin McGaw 2024-10-11 19:14:50 +00:00
  • 81ffbaf057 feat(build): upgrade Go from 1.22 to 1.23 Quentin McGaw 2024-10-11 18:58:10 +00:00
  • abe9dcbe33 chore(lint): add new linters and update codebase - add canonicalheader - add copyloopvar - add fatcontext - add intrange Quentin McGaw 2024-10-11 18:28:00 +00:00
  • 3c8e80a1a4 chore(lint): upgrade linter from v1.56.2 to v1.61.0 - Remove no longer needed exclude rules - Add new exclude rules for printf govet errors - Remove deprecated linters execinquery and exportloopref - Rename linter goerr113 to err113 - Rename linter gomnd to mnd Quentin McGaw 2024-10-11 18:05:40 +00:00
  • 694988b32f chore(devcontainer): drop requirement for docker-compose and use devcontainer.json settings directly Quentin McGaw 2024-10-10 08:34:56 +00:00
  • ea31886299 docs(devcontainer): update readme - remove Windows without WSL step - update 'remote containers extension' to 'dev containers extension' - remove invalid warning on directories creation - simplify customizations section - remove "publish a port" since it can be done at runtime now - remove "run other services" since it's rather unneeded in this case - expand documentation on custom welcome script and where to specify the bind mount - use bullet points instead of subsections headings Quentin McGaw 2024-10-10 08:33:33 +00:00
  • 5b2923ca65 feat(publicip): add ifconfigco option Quentin McGaw 2024-10-08 19:03:10 +00:00
  • 432eaa6c04 feat(vpn): run WaitForDNS before querying the public ip address - Fix #2325 better Quentin McGaw 2024-10-07 20:11:23 +00:00
  • 5fd0af9395 feat(publicip): retry fetching information when connection refused error is encountered - Fix #2325 Quentin McGaw 2024-10-07 20:03:05 +00:00
  • 03deb9aed0 feat(publicip): PUBLICIP_ENABLED replaces PUBLICIP_PERIOD - No point periodically fetch the public IP address. Could not find anything mentioning why this was added. - Simplification of the publicip loop code - PUBLICIP_ENABLED (on, off) can be set to enable or not public ip data fetching on VPN connection - PUBLICIP_PERIOD=0 still works to indicate to disable public ip fetching - PUBLICIP_PERIOD != 0 means to enable public ip fetching - Warnings logged when using PUBLICIP_PERIOD Quentin McGaw 2024-10-07 19:49:25 +00:00
  • cbdd1a933c feat(publicip): cloudflare API support (#2502) Jeremy Lin 2024-10-06 06:30:33 -07:00
  • 99e9bc87cf fix(firewall): deduplicate VPN address accept rule for multiple default routes with the same network interface Quentin McGaw 2024-10-06 09:48:07 +00:00
  • 9ef14ee070 fix(firewall): deduplicate ipv6 multicast output accept rules Quentin McGaw 2024-10-06 09:46:47 +00:00
  • 7842ff4cdc fix(firewall): ipv6 multicast output address value Quentin McGaw 2024-10-06 09:28:39 +00:00
  • 3d6d03b327 fix(firewall): log warning if ipv6 nat filter not supported instead of returning an error - Allow to port forward redirect for IPv4 and not IPv6 if IPv6 NAT is not supported - Fix #2503 Quentin McGaw 2024-10-05 07:52:30 +00:00
  • 7ebbaf4351 docs(Dockerfile): add OPENVPN_MSSFIX environment variable Quentin McGaw 2024-09-29 18:01:20 +00:00
  • 67ae5f5065 feat(server): role based authentication system (#2434) - Parse toml configuration file, see https://github.com/qdm12/gluetun-wiki/blob/main/setup/advanced/control-server.md#authentication - Retro-compatible with existing AND documented routes, until after v3.41 release - Log a warning if an unprotected-by-default route is accessed unprotected - Authentication methods: none, apikey, basic - genkey command to generate API keys - move log middleware to internal/server/middlewares/log v3.39.1 Quentin McGaw 2024-08-23 13:46:52 +00:00
  • cbfdb25190 fix(settings): prevent using FREE_ONLY and PORT_FORWARD_ONLY together with protonvpn (see #2470) Quentin McGaw 2024-09-28 17:51:47 +00:00
  • 638f233b3c fix(storage): add missing selection fields to build noServerFoundError - STREAM_ONLY, PORT_FORWARD_ONLY, SECURE_CORE_ONLY, TOR_ONLY and target ip options affected - Refers to issue #2470 Quentin McGaw 2024-09-28 17:47:56 +00:00
  • c450c54d67 fix(ivpn): split city into city and region - Fix bad city values containing a comma - update ivpn servers data Quentin McGaw 2024-08-19 03:10:53 +00:00
  • d166314f8b fix(nordvpn): remove commas from region values Quentin McGaw 2024-08-19 03:08:14 +00:00
  • 7064a44403 fix(pia): support port forwarding using Wireguard (#2420) Quentin McGaw 2024-08-19 03:19:16 +02:00
  • c33158c13c fix(firewall): delete chain rules by line number (#2411) - Fix #2334 - Parsing of iptables chains, contributing to progress for #1856 Quentin McGaw 2024-08-17 20:12:22 +02:00
  • c665b13cec fix(settings): prevent using FREE_ONLY and PORT_FORWARD_ONLY together with protonvpn (see #2470) Quentin McGaw 2024-09-28 17:51:47 +00:00
  • 970b21a6eb docs(Dockerfile): add missing option definitions - STREAM_ONLY - FREE_ONLY - Document PORT_FORWARD_ONLY is for both PIA and ProtonVPN Quentin McGaw 2024-09-28 17:49:03 +00:00
  • 62747f1eb8 fix(storage): add missing selection fields to build noServerFoundError - STREAM_ONLY, PORT_FORWARD_ONLY, SECURE_CORE_ONLY, TOR_ONLY and target ip options affected - Refers to issue #2470 Quentin McGaw 2024-09-28 17:47:56 +00:00
  • a2e76e1683 feat(server): role based authentication system (#2434) Quentin McGaw 2024-09-18 13:29:36 +02:00
  • 07651683f9 feat(providers): add giganews support (#2479) Quentin McGaw 2024-09-18 13:01:37 +02:00
  • 429aea8e0f docs(github): change and add labels - change "config problem" to "user error" - add "performance" category - add "investigation" category Quentin McGaw 2024-08-25 07:06:13 +00:00
  • 01fa9934bc hotfix(routing): detect vpn local gateway with new routes listing Quentin McGaw 2024-08-25 07:01:33 +00:00
  • ff7cadb43b chore(server): move log middleware to internal/server/middlewares/log Quentin McGaw 2024-08-23 13:46:52 +00:00
  • 540acc915d chore(deps): upgrade vishvananda/netlink from v1.2.1-beta.2 to v1.2.1 Quentin McGaw 2024-08-23 06:46:29 +00:00
  • 703a546c1d Chore(deps): Bump google.golang.org/protobuf from 1.30.0 to 1.33.0 (#2428) dependabot[bot] 2024-08-22 17:24:39 +02:00
  • 4851bd70da chore(deps): remove qdm12/golibs dependency - Implement friendly duration formatting locally Quentin McGaw 2024-08-21 13:27:30 +00:00
  • a2b3d7e30c chore(deps): implement github.com/qdm12/golibs/command locally (#2418) Quentin McGaw 2024-08-21 15:21:31 +02:00
  • 4d60b71583 feat(dns): replace unbound with qdm12/dns@v2.0.0-beta-rc6 (#1742) Quentin McGaw 2024-08-21 14:35:41 +02:00
  • 3f130931d2 hotfix(firewall): fix ip prefix parsing for ipv6 (again) Quentin McGaw 2024-08-19 17:06:45 +00:00
  • 946f055fed hotfix(firewall): handle iptables CIDR ranges with 3 digits for IPv6 Quentin McGaw 2024-08-19 14:02:53 +00:00
  • eaece0cb8e fix(ivpn): split city into city and region - Fix bad city values containing a comma - update ivpn servers data Quentin McGaw 2024-08-19 03:10:53 +00:00
  • 4203f4fabf fix(nordvpn): remove commas from region values Quentin McGaw 2024-08-19 03:08:14 +00:00
  • c39edb6378 fix(pia): support port forwarding using Wireguard (#2420) Quentin McGaw 2024-08-19 03:19:16 +02:00
  • b3cc2781ff hotfix(config): fix missing test lines for previous commit Quentin McGaw 2024-08-19 01:00:30 +00:00
  • 12c411e203 feat(storage): STORAGE_FILEPATH option (#2416) Jean-François Roy 2024-08-18 17:26:46 -07:00
  • 3bf937d705 feat(privado): update servers data Quentin McGaw 2024-08-18 23:29:10 +00:00
  • bc55c25e73 fix(firewall): delete chain rules by line number (#2411) Quentin McGaw 2024-08-17 20:12:22 +02:00
  • 897a9d7f57 feat(config): allow invalid server filters (#2419) Quentin McGaw 2024-08-17 12:01:26 +02:00
  • 4a128677dd chore(github): add 2 labels - servers storage category - nearly resolved status Quentin McGaw 2024-08-17 10:00:23 +00:00
  • 9233f3f5ba feat(pia/updater): use v6 API to get servers data Quentin McGaw 2024-08-16 12:40:22 +00:00
  • 11c2354408 feat(privatevpn): native port forwarding support (#2285) Quentin McGaw 2024-08-16 14:20:00 +02:00
  • 1f2882434a feat(format-servers): add json format option Quentin McGaw 2024-08-16 10:13:55 +00:00
  • 01aaf2c86a Chore(deps): Bump golang.org/x/net from 0.25.0 to 0.28.0 (#2401) dependabot[bot] 2024-08-09 11:35:01 +02:00
  • d260ac7a49 Chore(deps): Bump golang.org/x/text from 0.15.0 to 0.17.0 (#2400) dependabot[bot] 2024-08-09 11:34:47 +02:00
  • 0bea0d4ecd Chore(deps): Bump docker/build-push-action from 5 to 6 (#2324) dependabot[bot] 2024-08-09 11:34:19 +02:00
  • 59994bd6e7 Chore(deps): Bump github.com/klauspost/compress from 1.17.8 to 1.17.9 (#2319) dependabot[bot] 2024-08-09 11:34:02 +02:00
  • 62799d2449 Chore(deps): Bump golang.org/x/sys from 0.20.0 to 0.24.0 (#2404) dependabot[bot] 2024-08-09 11:33:22 +02:00
  • d0f5d0c007 fix(version): log last release by tag name alphabetically instead of date v3.38.1 Quentin McGaw 2024-08-09 07:43:38 +00:00
  • 9807ff90f7 fix(version): log last release by tag name alphabetically instead of date v3.37.1 Quentin McGaw 2024-08-09 07:43:38 +00:00
  • 09c47c740c fix(version): log last release by tag name alphabetically instead of date v3.39.0 Quentin McGaw 2024-08-09 07:43:38 +00:00
  • cd95746624 Chore(deps): Bump github.com/breml/rootcerts from 0.2.16 to 0.2.17 (#2316) dependabot[bot] 2024-08-09 09:07:35 +02:00
  • f40955d747 fix(privatevpn): set openvpn vpn type for no hostname server Quentin McGaw 2024-08-09 06:24:06 +00:00
  • 68dd982606 fix(firewall): VPN_PORT_FORWARDING_LISTENING_PORT behavior fixed by not restricting the destination address to 127.0.0.1 Quentin McGaw 2024-08-05 13:37:49 +00:00
  • 66d1cf7478 fix(format-servers): add missing vpn type column for natively supported providers - nordvpn - surfshark Quentin McGaw 2024-08-03 14:39:54 +00:00
  • c689a4a746 fix(custom-openvpn): remove comments before parsing file Quentin McGaw 2024-08-03 13:37:57 +00:00
  • 06949554dd Chore(deps): Bump github.com/breml/rootcerts from 0.2.16 to 0.2.17 (#2316) dependabot[bot] 2024-08-09 09:07:35 +02:00
  • 8e8cbe0d37 fix(privatevpn): set openvpn vpn type for no hostname server Quentin McGaw 2024-08-09 06:24:06 +00:00
  • 3d72f6092b fix(firewall): VPN_PORT_FORWARDING_LISTENING_PORT behavior fixed by not restricting the destination address to 127.0.0.1 Quentin McGaw 2024-08-05 13:37:49 +00:00
  • 0ac047f9de fix(format-servers): add missing vpn type column for natively supported providers - nordvpn - surfshark Quentin McGaw 2024-08-03 14:39:54 +00:00
  • 129002a058 fix(custom-openvpn): remove comments before parsing file Quentin McGaw 2024-08-03 13:37:57 +00:00
  • e95095ad5c fix(config): log out if port forwarding only servers is enabled Quentin McGaw 2024-07-31 14:44:19 +00:00
  • efecb0ea0e fix(publicip): abort ip data fetch if vpn context is canceled - Prevents requesting the public IP address N times after N VPN failures - Fetching runs with a context local to the 'single run' - Single run writes single run result to a channel back to the caller, RunOnce is now blocking Quentin McGaw 2024-05-18 18:06:01 +00:00
  • b504227625 fix(ipv6): detect ignoring loopback route destinations Quentin McGaw 2024-05-09 18:21:13 +00:00
  • 2b298de59d fix(torguard): update OpenVPN configuration - add aes-128-gcm and aes-128-cbc ciphers - add extra CA certificate value - remove mssfix option - remove sndbuf and rcvbuf ption - remove ping option - remove reneg option Quentin McGaw 2024-05-09 17:59:36 +00:00
  • 3d4c4e505a fix(custom): do not set server name if it does not exist Quentin McGaw 2024-05-01 19:35:40 +00:00
  • 948ebdc4e1 fix(vpnunlimited): allow OpenVPN TCP on port 1197 Quentin McGaw 2024-04-30 08:05:22 +00:00