You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
To automate VPN setup even more the server could export basically the client's services.conf file which tells clients which services to configure once the certificates have been deployed to basically make it possible to acquire the certificate and configure related services with single command:
certidude bootstrap ca.example.lan
By default assume clients to have sort of dumb config which accepts anything that eg VPN gateway suggests during negotiation.
However in certain cases it makes sense to constrain config on the client side:
Which VPN client software is to be configured (OpenVPN or StrongSwan)
How is the service configured eg as a service running in the background or user controlled (eg via NetworkManager)
Which ciphers are used
Which DNS domains are forwarded and to which IP address
Which subnets are routed to VPN tunnel
The text was updated successfully, but these errors were encountered:
To automate VPN setup even more the server could export basically the client's services.conf file which tells clients which services to configure once the certificates have been deployed to basically make it possible to acquire the certificate and configure related services with single command:
By default assume clients to have sort of dumb config which accepts anything that eg VPN gateway suggests during negotiation.
However in certain cases it makes sense to constrain config on the client side:
The text was updated successfully, but these errors were encountered: