Maint: OpenVPN option: remove all ping-* options
- Use the built-in healthcheck vpn restart mechanism instead - Restarting with `ping-restart` or `ping-exit` would only restart with the same `remote` connection - Specify `ping` options as VPN specific to ensure the server doesn't disconnect us
This commit is contained in:
Quentin McGaw (desktop)
@@ -25,11 +25,10 @@ func (c *Cyberghost) BuildConf(connection models.Connection,
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"remote-cert-tls server",
|
||||
"ping 10",
|
||||
"ping-exit 60",
|
||||
"tls-exit",
|
||||
|
||||
// Cyberghost specific
|
||||
"ping 10",
|
||||
|
||||
// Added constant values
|
||||
"auth-nocache",
|
||||
|
||||
@@ -25,12 +25,10 @@ func (f *Fastestvpn) BuildConf(connection models.Connection,
|
||||
"client",
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"ping 15",
|
||||
"ping-exit 60",
|
||||
"tls-exit",
|
||||
|
||||
// Fastestvpn specific
|
||||
"ping-restart 0",
|
||||
"ping 15",
|
||||
"tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-CAMELLIA-256-CBC-SHA:TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-RSA-WITH-CAMELLIA-256-CBC-SHA:TLS-RSA-WITH-AES-256-CBC-SHA", //nolint:lll
|
||||
"key-direction 1",
|
||||
"tun-mtu-extra 32",
|
||||
|
||||
@@ -19,11 +19,10 @@ func (h *HideMyAss) BuildConf(connection models.Connection,
|
||||
"client",
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"ping 5",
|
||||
"ping-exit 30",
|
||||
"tls-exit",
|
||||
|
||||
// HideMyAss specific
|
||||
"ping 5",
|
||||
"remote-cert-tls server", // updated name of ns-cert-type
|
||||
// "route-metric 1",
|
||||
|
||||
|
||||
@@ -22,11 +22,10 @@ func (i *Ivpn) BuildConf(connection models.Connection,
|
||||
"client",
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"ping 5",
|
||||
"ping-exit 30",
|
||||
"tls-exit",
|
||||
|
||||
// IVPN specific
|
||||
"ping 5",
|
||||
"remote-cert-tls server", // updated name of ns-cert-type
|
||||
"key-direction 1",
|
||||
"tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-DSS-WITH-AES-256-CBC-SHA:TLS-RSA-WITH-AES-256-CBC-SHA",
|
||||
|
||||
@@ -20,11 +20,10 @@ func (m *Mullvad) BuildConf(connection models.Connection,
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"remote-cert-tls server",
|
||||
"ping 10",
|
||||
"ping-exit 60",
|
||||
"tls-exit",
|
||||
|
||||
// Mullvad specific
|
||||
"ping 10",
|
||||
"sndbuf 524288",
|
||||
"rcvbuf 524288",
|
||||
"tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA",
|
||||
|
||||
@@ -36,7 +36,6 @@ func (n *Nordvpn) BuildConf(connection models.Connection,
|
||||
"reneg-sec 0",
|
||||
"key-direction 1",
|
||||
"ping 15",
|
||||
"ping-restart 0",
|
||||
|
||||
// Added constant values
|
||||
"auth-nocache",
|
||||
|
||||
@@ -23,11 +23,10 @@ func (p *Privado) BuildConf(connection models.Connection,
|
||||
"client",
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"ping 10",
|
||||
"ping-exit 60",
|
||||
"tls-exit",
|
||||
|
||||
// Privado specific
|
||||
"ping 10",
|
||||
"tls-cipher TLS-DHE-RSA-WITH-AES-256-CBC-SHA:TLS-DHE-DSS-WITH-AES-256-CBC-SHA:TLS-RSA-WITH-AES-256-CBC-SHA",
|
||||
"verify-x509-name " + connection.Hostname + " name",
|
||||
|
||||
|
||||
@@ -20,11 +20,10 @@ func (p *Purevpn) BuildConf(connection models.Connection,
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"remote-cert-tls server",
|
||||
"ping 10",
|
||||
"ping-exit 60",
|
||||
"tls-exit",
|
||||
|
||||
// Purevpn specific
|
||||
"ping 10",
|
||||
"key-direction 1",
|
||||
"remote-cert-tls server",
|
||||
"cipher AES-256-CBC",
|
||||
|
||||
@@ -29,15 +29,14 @@ func (s *Surfshark) BuildConf(connection models.Connection,
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"remote-cert-tls server",
|
||||
"ping 15",
|
||||
"tls-exit",
|
||||
|
||||
// Surfshark specific
|
||||
"ping 15",
|
||||
"tun-mtu-extra 32",
|
||||
"mssfix " + strconv.Itoa(int(settings.MSSFix)),
|
||||
"reneg-sec 0",
|
||||
"key-direction 1",
|
||||
"ping-restart 0",
|
||||
|
||||
// Added constant values
|
||||
"auth-nocache",
|
||||
|
||||
@@ -29,11 +29,10 @@ func (t *Torguard) BuildConf(connection models.Connection,
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"remote-cert-tls server",
|
||||
"ping 5",
|
||||
"ping-restart 30",
|
||||
"tls-exit",
|
||||
|
||||
// Torguard specific
|
||||
"ping 5",
|
||||
"tun-mtu-extra 32",
|
||||
"mssfix " + strconv.Itoa(int(settings.MSSFix)),
|
||||
"reneg-sec 0",
|
||||
|
||||
@@ -21,7 +21,6 @@ func (p *Provider) BuildConf(connection models.Connection,
|
||||
// VPNUnlimited specific
|
||||
"reneg-sec 0",
|
||||
"ping 5",
|
||||
"ping-exit 30",
|
||||
"route-metric 1",
|
||||
|
||||
// Added constant values
|
||||
|
||||
@@ -24,11 +24,10 @@ func (v *Vyprvpn) BuildConf(connection models.Connection,
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"remote-cert-tls server",
|
||||
"ping 10",
|
||||
"ping-exit 60",
|
||||
"tls-exit",
|
||||
|
||||
// Vyprvpn specific
|
||||
"ping 10",
|
||||
// "verify-x509-name lu1.vyprvpn.com name",
|
||||
"tls-cipher TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA256:TLS-DHE-RSA-WITH-AES-256-CBC-SHA", //nolint:lll
|
||||
|
||||
|
||||
@@ -25,11 +25,10 @@ func (w *Windscribe) BuildConf(connection models.Connection,
|
||||
"dev " + settings.Interface,
|
||||
"nobind",
|
||||
"remote-cert-tls server",
|
||||
"ping 10",
|
||||
"ping-exit 60",
|
||||
"tls-exit",
|
||||
|
||||
// Windscribe specific
|
||||
"ping 10",
|
||||
"key-direction 1",
|
||||
"reneg-sec 0",
|
||||
|
||||
|
||||
Reference in New Issue
Block a user