- Fix namespecific_rclink variable warning for non BSD systems (#214)
- Workaround for MODULES-2874 (#201)
- Fix for external CA handling with exported resources (#201)
- Drop Support for Puppet 3.x (#212)
- Support for FreeBSD (#180)
- Support for port-share (#182/#185)
- Support for pre-shared keys (#186)
- Support LDAP anonymous binds (#189)
- Fix
.ovpnfiles generation (#190) - Support for external CAs (#192)
- Small Typo fix (#192)
- Fix support for Amazon Linux (#194)
- Client
pulloption (#195) - Allow
remote_hostto be an array of servers (#195) - More robust Shared CA handling (#191, #196)
- Support for Ubuntu 15.04 (#168)
- Support for specifying TLS-Cipher (#169)
- Support for specifying custom certificate expiry (#169)
- Support for README in download configs (#169)
- Support for Tunnelblick configurations (#169)
- Fix certificate revocation in Ubuntu Precise (#169)
- Use concat for ovpn generation (#176)
This will be the last version of version 2.x with new features.
- Support to send ipv6 routes (#153, #154)
- Support for
nobindparam for server in client mode (#156) - Fixing autostart_all behaviour (#163)
- Add systemd support for Debian >= 8.0 (#161)
- Support for Archlinux (#162)
- Support to enable/disable service management(#158)
- Fix installation for older Redhat based systems (#165)
- Add ability to specify custom options for clients (#167)
- Support for systems without
lsb-releasepackage (#134) - Support for Amazon EC2 OS (#134)
- Move default log path for status log to
/var/log/openvpn(#139) - Support for
formatparameter (#138) - Ability to configure autostart management on debian (#144)
- Fix ordering in
/etc/default/openvpnwith puppet future parser (#142 - Support for TLS auth when server acts as client (#147)
- Support for customer server options (#147)
- Allow disabling
ns-cert-type serverfor server-clients (#147) - Fix pam plugin path on RedHat/CentOS (#148)
- Fix server in client mode (#137)
- Support for removing a client specific conf file (#115)
- Support for
rcvbufandsndbuf(#116) - Fix RedHat and CentOS package selection (#97)
- Support for TLS and x509-name verification (#118)
- Fix unset client cipher producing invalid configs (#129)
- Support to share a CA between multiple server instances (#112)
- Support for systemd (#127)
- Support for setting
upand/ordownscripts for clients (#89) - Fixing the permissions of the created directories and files (#90, #92, #94, #102)
- Refactor templates to use instance variables instead of
scope.lookupvar(#100) - Add client mode server (#100)
- Move CA management into its own defined type (#100)
- Fix LDAP-Support on Debian Wheezy (#103)
- Support for status-version (#108)
- Change layout of downloadable client config to prevent overriding other client configurations when extracting the tarball (#104)
- Add
ns-cert-type serverfor server-clients (#109)
- Do not include deprecated
concat::setupanymore (#71) - Only warn about pam deprecation if it's used (#72)
- Ability to specify a
downscript (#75) - Support for
client-cert-not-requiredin server config (#76) - Support for
auth-retryin client config (#76) - Support for
setenvin client config (#79) - Support for
setenv_safein client config (#79) - Support for
cipherin client config (#80) - Support for
push routein client specific config (#80)
- Fix Ubuntu Trusty support (#64)
- Basic support to hand out IPv6 addresses (#66)
- Ability to specify the common name of a server (#65)
- Options for KEY_EXPIRE, CA_EXPIRE, KEY_NAME, KEY_OU, KEY_CN easy-rsa vars. (#58, #70)
- Options for cipher, verb, persist-key, persist-tun server directives. (#58, #70)
- A lot of stuff I don't know anymore 😞