v1.0.6

Software Updates

• Bumped jumpbox-boshrelease to v4.6.4
• Bumped toolbelt-boshrelease to v3.4.5

v1.0.5

Software updates

• jumpbox-boshrelease is now at v4.6.3
• openvpn-boshrelease is now at v5.4.0

v1.0.4

Software updates

• jumpbox-boshrelease is now at v4.6.2
• toolbelt-boshrelease is now at v3.4.4

Improvements

• OpenVPN server-side configuration is now more configurable.
  For example, you can now choose UDP (vs. TCP), enable
  compression, and pass in arbitrary openvpn server and client
  configuration flags / options.

• The OpenVPN configuration created by the generate-vpn-config
  no longer includes the (deprecated) keysize configuration
  value, which makes Tunnelblick happier and less annoying.

v1.0.3

Bug Fixes

• Properly handles jumpboxes with more than one IP, defaulting to the internal
  IP for ssh and who addon.

Updates

• Updated to use Xenial Stemcells (170.x and later)
• Bump to Jumpbox-Release 4.5.2
• Updated OpenVPN addon and configs to improve QoL and compatibility
• Updated bosh and shield CLIs

Important Information for openvpn feature users

This release adds a generate-vpn-config addon that is run through the do command, which creates a configuration that can be used in OpenVPN clients, such as Tunnelblick. However, if you require accessing the VPN with an IP address that is not the Jumpbox's default IP, you need to specify an external IP address using params.vpn_external_ip.

Furthermore, this configuration uses the remote-cert-tls server configuration that requires the server certificate to support digital-signature, key-encipherment, and server-auth key usage. Versions of this kit prior to this release did not create the server certs with these usages enabled. This can be fixed by running the following command:

safe --quiet x509 issue --signed-by $prefix/openvpn/certs/ca \
     --name server.openvpn \
     --ttl 180d \
     -u server_auth \
     -u digital_signature \
     -u key_encipherment \
     $prefix/openvpn/certs/server

with $prefix set to whatever the prefix for your environment is.

v1.0.2

Updates

• Bump to Jumpbox-Release 4.4.6

v1.0.1

Software Updates

• Bumped jumpbox boshrelease to v4.4.5

v1.0.0

Improvements

The Jumpbox Genesis Kit now makes use of the substantial improvements
introduced in Genesis v2.6.0+, notably kit hooks that provide better environment
creation, deployment and checks, as well as info and add-ons that allow you to
manage your environments after deployment.

Existing environments should be able to update to this version without any
undue stress of churn, but a few "refreshes" are desirable.

The `shield` subkit is gone; it is now recommended that you use BOSH
runtime configuration add-ons to add the Shield agent to your deployments.

The `proxy` subkit is now gone. If you specify proxy parameters, they will
be honored. If you don't they default to "no proxy in effect".

The `azure` subkit is now gone, as it only provided changes to availability
zones and set, which don't make any impact to single-instance environments.

v0.3.4

New Features

• Jumpbox now comes with Toolbelt, loading all the commands.

• This kit now supportsstemcell_os and stemcell_version
  parameters, which is a de facto standard for handling version
  pinning and stemcell selection.

• Bumped toolbelt release version to 3.4.2

v0.3.3

Improvements

• Bumped jumpbox-boshrelease to 4.4.2

v0.3.2

Improvements

• Upgrade to Jumpbox v4.4.1

• Co-locate the inventory errand on all jumpbox instances,
  so you can see what versions of what are installed everywhere.