15eeb86f42
THe "null" and "null@l2tp" methods are considered equivalent and always added and removed together when the method list is "configurable". "null@l2tp" is added before "null", so it is preferred when the peer supports both.
24 lines
786 B
Lua
24 lines
786 B
Lua
local fastd_methods = {'salsa2012+umac', 'null+salsa2012+umac', 'null@l2tp', 'null'}
|
|
need_array_of({'mesh_vpn', 'fastd', 'methods'}, fastd_methods)
|
|
need_boolean(in_site({'mesh_vpn', 'fastd', 'configurable'}), false)
|
|
|
|
need_one_of(in_site({'mesh_vpn', 'fastd', 'syslog_level'}),
|
|
{'error', 'warn', 'info', 'verbose', 'debug', 'debug2'}, false)
|
|
|
|
local function check_peer(k)
|
|
need_alphanumeric_key(k)
|
|
|
|
need_string_match(in_domain(extend(k, {'key'})), '^%x+$')
|
|
need_string_array(in_domain(extend(k, {'remotes'})))
|
|
end
|
|
|
|
local function check_group(k)
|
|
need_alphanumeric_key(k)
|
|
|
|
need_number(extend(k, {'limit'}), false)
|
|
need_table(extend(k, {'peers'}), check_peer, false)
|
|
need_table(extend(k, {'groups'}), check_group, false)
|
|
end
|
|
|
|
need_table({'mesh_vpn', 'fastd', 'groups'}, check_group)
|