Skip to content

Releases: vedetta-com/vedetta

Puffy-in-the-Middle (PITM)

11 Apr 21:36
f6feb1c
Compare
Choose a tag to compare
  • Add hotplugd
  • Add include configuration statements
  • Load pf anchors from files
  • Update martians pf table
  • Modernize LICENSE
  • Add syspatch to crontab
  • Fix NTP redirect
  • Append advertised recursive DNS server to resolv.conf
  • Update ifstated ping test
  • Update unbound crontab
  • Add slaacd and slaactl usage examples
  • Update autoinstall answers
  • Autodetect LetsEncrypt agreement URL
  • Add smtpd.conf
  • Reset IPv6 tunnel with hostname.gif0
  • Enable pf syncookie adaptive mode
  • Connect to switch0 on reboot, thank you @bentley
  • Add TLS inspection (MITM) with relayd

Relay Sensei

05 Jan 01:17
0b8ddbe
Compare
Choose a tag to compare

Additions:

  • Add ssh-keyscan
  • Add autoinstall with tftpd
  • Add tftp-proxy
  • Move DNS through relayd
  • Add relayd transparent HTTP proxy
  • Add relayd SSH gateway
  • Add scheduled access for pf.schedule table
  • Add vlan7

Updates:

  • Select the wlan mode automatically (-mode)
  • Update /usr/local/bin scripts
  • Fix ftpproxy6
  • Use default dhclient dhcp-lease-time
  • Update unbound to stop IPv4-mapped IPv6 addresses from bypassing the filter
  • Update unbound to use CNAME for "freedns.afraid.org"
  • Update unbound access-control for localhost
  • Update unbound to refuse trustanchor.unbound queries
  • Update unbound to use system UDP buffer space
  • Use default log-queries: no to speed up unbound
  • Update unwanted-reply-threshold to match the unbound man recommendation
  • Update symbolic links for relayd TLS acceleration
  • Update version in motd
  • Add IPv6 to httpd server "boot.vedetta.lan"
  • Use default lladdr for gif0
  • Add relay and fallback records to nsd zones
  • Allow devices with hardcoded ntp servers to get local time
  • Several pf configuration improvements and fixes
  • Remove default options from configurations
  • Update comments for configurations
  • Update README

Puffy Cloud

09 Dec 06:57
e82f046
Compare
Choose a tag to compare

Additions:

  • unbound can force IPv4 on Netflix, since TunnelBroker.net is banned
  • sensorsd monitors hardware sensors, alerts and performs custom actions based on changes
  • vlan interface for Virtual Local Area Networks using the IEEE 802.1Q protocol
  • switchd controller for software-defined networking (SDN) compatible with the OpenFlow protocol

Updates:

  • Use Disklabel Unique Identifiers (DUIDs) for swap in fstab
  • Add random MAC address to the wireless and virtual interface (not tested with switchd)

OpenBSD 6.2

01 Dec 06:22
285562e
Compare
Choose a tag to compare
Merge pull request #41 from vedetta-com/wip

Fix typo

Initial release

15 Jun 05:03
Compare
Choose a tag to compare
Merge pull request #8 from vedetta-com/wip

Clean pf.conf; Change README.md