aprt5pr.ocserv
Ansible Role: Ocserv
This role sets up OpenConnect SSL VPN Server (ocserv).
What is Ocserv?
Ocserv is a free SSL VPN server. For more information, visit https://gitlab.com/ocserv/ocserv.
Requirements
- You need Ansible version 2.0 or higher.
Usage
NOTE: This role is designed to work with default settings, so you don’t need to change anything to get started.
If you want to run Ansible on the same machine where you’re installing Ocserv, and you’re using a RHEL-like operating system, follow these steps:
- Install Ansible
$ sudo dnf install ansible # or use yum install ansible
- Install the role from Ansible Galaxy
$ sudo ansible-galaxy install aprt5pr.ocserv
- Update your Ansible inventory
$ echo "127.0.0.1" | sudo tee -a /etc/ansible/hosts
- Create a playbook
$ mkdir my-playbook
$ cd my-playbook
$ echo -e "---\n\n- hosts: all\n roles:\n - aprt5pr.ocserv" > site.yml
- Run the playbook!
$ ansible-playbook site.yml --become --ask-sudo-pass
If everything works well, Ocserv will be set up with a basic user named alice.
Important Notes
- This role does not:
- Set up source NAT. You need to do this manually (e.g.,
firewall-cmd --zone=public --add-masquerade). - Manage the firewall.
- Clients may not be able to connect to the VPN. To allow connections, run:
firewall-cmd --zone=public --add-port=443/tcpfirewall-cmd --zone=public --add-port=443/udp
- Once connected, clients can access services listening on all addresses.
- Clients may not be able to connect to the VPN. To allow connections, run:
- Set up source NAT. You need to do this manually (e.g.,
How can I contribute to this project?
- Fork this project.
- Make your changes.
- Open a Merge Request.
Installa
ansible-galaxy install aprt5pr.ocservLicenza
other
Download
116
Proprietario