1
|
<?xml version="1.0" encoding="utf-8" ?>
|
2
|
<packagegui>
|
3
|
<name>sasyncd</name>
|
4
|
<version>0.1.0</version>
|
5
|
<title>Services: VPN Failover</title>
|
6
|
<!-- configpath gets expanded out automatically and config items will be
|
7
|
stored in that location -->
|
8
|
<configpath>['ipsec']['failover']</configpath>
|
9
|
<aftersaveredirect>pkg_edit.php?xml=sasyncd.xml&id=0</aftersaveredirect>
|
10
|
<!-- Menu is where this packages menu will appear -->
|
11
|
<menu>
|
12
|
<name>VPN failover</name>
|
13
|
<tooltiptext>The sasyncd daemon synchronizes IPSec SA and SPD information between a number of failover IPsec gateways. The most typical scenario is to run sasyncd on hosts also running isakmpd and sharing a common IP-address using carp.</tooltiptext>
|
14
|
<section>Services</section>
|
15
|
<configfile>sasyncd.xml</configfile>
|
16
|
</menu>
|
17
|
<adddeleteeditpagefields>
|
18
|
<columnitem>
|
19
|
<fielddescr>Interface</fielddescr>
|
20
|
<fieldname>interface</fieldname>
|
21
|
</columnitem>
|
22
|
<columnitem>
|
23
|
<fielddescr>Peer IP</fielddescr>
|
24
|
<fieldname>peerip</fieldname>
|
25
|
</columnitem>
|
26
|
</adddeleteeditpagefields>
|
27
|
<tabs>
|
28
|
<tab>
|
29
|
<text>Tunnels</text>
|
30
|
<url>vpn_ipsec.php</url>
|
31
|
</tab>
|
32
|
<tab>
|
33
|
<text>Mobile clients</text>
|
34
|
<url>vpn_ipsec_mobile.php</url>
|
35
|
</tab>
|
36
|
<tab>
|
37
|
<text>Pre-Shared Keys</text>
|
38
|
<url>vpn_ipsec_keys.php</url>
|
39
|
</tab>
|
40
|
<tab>
|
41
|
<text>CAs</text>
|
42
|
<url>vpn_ipsec_ca.php</url>
|
43
|
</tab>
|
44
|
<tab>
|
45
|
<text>Failover IPsec</text>
|
46
|
<url>/pkg_edit.php?xml=sasyncd.xml&id=0</url>
|
47
|
<active/>
|
48
|
</tab>
|
49
|
</tabs>
|
50
|
<!-- fields gets invoked when the user adds or edits a item. the following items
|
51
|
will be parsed and rendered for the user as a gui with input, and selectboxes. -->
|
52
|
<fields>
|
53
|
<field>
|
54
|
<fielddescr>Failover IP</fielddescr>
|
55
|
<fieldname>ip</fieldname>
|
56
|
<description>Enter the IP address you would like to use for failover. HINT: You normally want to use a public CARP ip.</description>
|
57
|
<type>input</type>
|
58
|
</field>
|
59
|
</fields>
|
60
|
<custom_add_php_command>
|
61
|
/* automatically turn on prefer old sa's until sasyncd is finished being ported */
|
62
|
if($_POST['ip'] != "")
|
63
|
$config['ipsec']['preferoldsa'] = true;
|
64
|
</custom_add_php_command>
|
65
|
<custom_add_php_command_late>
|
66
|
/* resync vpn settings */
|
67
|
mwexec("/usr/bin/killall racoon");
|
68
|
vpn_ipsec_configure();
|
69
|
</custom_add_php_command_late>
|
70
|
</packagegui>
|