servers

rc/servers

History

Timotej Lazar 937c75e097 ocserv: notify users about certificates about to expire		2025-08-12 10:59:02 +02:00
..
files	ocserv: notify users about certificates about to expire	2025-08-12 10:59:02 +02:00
handlers	Add ocserv role	2025-04-12 18:38:48 +02:00
meta	ocserv: notify users about certificates about to expire	2025-08-12 10:59:02 +02:00
tasks	ocserv: notify users about certificates about to expire	2025-08-12 10:59:02 +02:00
templates	ocserv: support UDP	2025-05-16 14:26:26 +02:00
README.md	Add ocserv role	2025-04-12 18:38:48 +02:00

README.md

Install and configure ocserv with a script to configure nftables on (dis)connection.

Create a self‐signed CA authority for issuing user certificates. User and group are read from the CN and OU certificate subject fields, respectively. To configure VPN groups, define the variable vpn as follows:

"vpn": {
    "network": "<VPN network>"
    "routes": {
        "<group>": [ "<route>", … ]
        …
    }
}