File: openvpn3-service-devposture.8.rst.in

package info (click to toggle)
openvpn3-client 24.1%2Bdfsg-1
  • links: PTS, VCS
  • area: main
  • in suites: trixie
  • size: 19,384 kB
  • sloc: cpp: 180,128; python: 11,591; ansic: 1,878; sh: 1,767; java: 402; lisp: 81; makefile: 44
file content (79 lines) | stat: -rw-r--r-- 2,910 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
 
===========================
openvpn3-service-devposture
===========================

---------------------------------------------
OpenVPN 3 Linux VPN Client devposture service
---------------------------------------------

:Manual section: 8
:Manual group: OpenVPN 3 Linux

SYNOPSIS
========
| ``openvpn3-service-devposture`` ``[OPTIONS]``
| ``openvpn3-service-devposture`` ``-h`` | ``--help``


DESCRIPTION
===========
The ``openvpn3-service-devposture`` process is a backend service for OpenVPN 3
Linux, reponsible for retrieving client environment information, such as OS
details (distro, version, etc.) and presenting it to ``openvpn3-service-client``
upon request.

``openvpn3-service-client`` then forwards this to the peer during connection
attempts. The peer can then veto the client based on the received information.

Beware that running this with another user account than *@OPENVPN_USERNAME@* also requires
updating the D-Bus policy as well.


OPTIONS
=======

-h, --help      Print  usage and help details to the terminal

--version       Prints the version of the program and exists

--log-level LEVEL
                Sets the default log verbosity for log events generated by
                this service.  The default is :code:`3`.  Valid values are
                :code:`0` to :code:`6`.  Higher log levels results in more
                verbose logs and log level :code:`6` will contain all debug
                log events.

                This setting will be overridden if the configuration file
                used contains the ``--verb`` option (see the ``openvpn``\(8)
                man page for details) or the ``log-level`` configuration profile
                override has been set (see ``openvpn3-config-manage``\(1)).

--log-file LOG_DESTINATION
                By default, logging will go via the ``openvpn3-service-log``
                service.  By providing this argument, logging will also be sent
                to *LOG_DESTINATION*, which can be either a filename or
                :code:`stdout:` where the latter one sends log data to the
                console.

--colour
                This will add colours to log events when logging to file
                or terminal.  Log events will be coloured based on the log
                level of the event.

--idle-exit MINUTES
                The ``openvpn3-service-devposture`` service will exit
                automatically if it is being idle for *MINUTES* minutes.

--profile-dir DIRECTORY
                Directory containing the Device Posture Protocol profile
                definitions.  These files instructs the device posture service
                how to respond to various device posture check requests by
                the VPN server.  The default directory is
                ``@DEVPOSTURE_PROFILEDIR@``.

SEE ALSO
========

``openvpn3``\(1)
``openvpn3-service-client``\(8)
``openvpn``\(8)