From 973f3f74902182f3799f69432fb8a8f90dee8885 Mon Sep 17 00:00:00 2001 From: Jesse Luehrs Date: Mon, 31 Dec 2018 18:49:19 -0500 Subject: update algo config patch --- bin/helpers/algo-config.diff | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) (limited to 'bin') diff --git a/bin/helpers/algo-config.diff b/bin/helpers/algo-config.diff index 46cd2ee..66708ea 100644 --- a/bin/helpers/algo-config.diff +++ b/bin/helpers/algo-config.diff @@ -1,10 +1,10 @@ diff --git i/config.cfg w/config.cfg -index 03f439e..ff29497 100644 +index b0c7756..2c0cd98 100644 --- i/config.cfg +++ w/config.cfg -@@ -3,8 +3,11 @@ - # Add as many users as you want for your VPN server here. - # Credentials will be generated for each one. +@@ -6,8 +6,11 @@ + # IPsec configuration but WireGuard clients must each use a unique + # WireGuard configuration. users: - - dan - - jack @@ -16,16 +16,16 @@ index 03f439e..ff29497 100644 # NOTE: If your usernames have leading 0's, like "000dan", you have to escape them -@@ -26,7 +29,7 @@ wireguard_port: 51820 - # - https://github.com/trailofbits/algo/issues/216 - # - https://github.com/trailofbits/algo/issues?utf8=%E2%9C%93&q=is%3Aissue%20mtu - # - https://serverfault.com/questions/601143/ssh-not-working-over-ipsec-tunnel-strongswan --#max_mss: 1316 -+max_mss: 1316 +@@ -31,7 +34,7 @@ wireguard_port: 51820 + # automatically based on your server, but if connections hang you might need to + # adjust this yourself. + # See: https://github.com/trailofbits/algo/blob/master/docs/troubleshooting.md#various-websites-appear-to-be-offline-through-the-vpn +-reduce_mtu: 0 ++reduce_mtu: 184 # StrongSwan log level # https://wiki.strongswan.org/projects/strongswan/wiki/LoggerConfiguration -@@ -82,7 +85,7 @@ VPN_PayloadIdentifier: "{{ 800000 | random | to_uuid | upper }}" +@@ -92,7 +95,7 @@ VPN_PayloadIdentifier: "{{ 800000 | random | to_uuid | upper }}" CA_PayloadIdentifier: "{{ 700000 | random | to_uuid | upper }}" # Block traffic between connected clients -- cgit v1.2.3-54-g00ecf