Roadmap#

This document roughly describes the plans for the development of the VPN project.

If you work in Research & Education, and you’d like to have something added, removed, changed, or change the priority, please contact us on eduvpn-support@lists.geant.org and make your case.

Server#

We currently have no timeline for a 4.x release, nor for the EOL of 3.x.

4.x#

Our plans for a 4.x release involve major (breaking) changes that are impossible or very difficult to deploy in the current 3.x release.

These are some ideas only, not yet set in stone:

• Consider dropping the OpenVPN protocol
• Store all server/profile configuration in the database
• Allow Administrators to configure VPN profiles via Web
• Allow “User Defined” VPNs

3.x#

See the eduVPN Projects.

Planned#

The following items are planned:

• APIv4
  • Exclusively use of Accept header to negotiate VPN protocol/transport
  • Remove prefer_tcp

See also our issue trackers for smaller items we will work on:

• vpn-user-portal
• vpn-server-node

Done#

• WireGuard over TCP support
  • Client Support
• “Real Time” Authorization for SAML/OIDC with LDAP

Clients#

• Allow VPN clients to override “Split Tunnel” / “Full Tunnel” / “Block LAN”
• Allow VPN clients to override Tunnelcrack/Tunnelvision mitigation
• Better support for Managed Devices
• WireGuard over TCP
  • macOS
  • iOS
  • Android ✅
  • Windows ✅
  • Linux ✅