Adds in the ability to set rcvbuf and sndbuf parameters.

manifests/client.pp

@@ -101,6 +101,14 @@
 # [*down*]
 #   String,  Script which we want to run when openvpn client is disconneting
 #
+# [*sndbuf*]
+#   Integer, Set the TCP/UDP socket send buffer size.
+#   Default: undef
+#
+# [*rcvbuf*]
+#   Integer, Set the TCP/UDP socket receive buffer size.
+#   Default: undef
+#
 # === Examples
 #
 #   openvpn::client {
@@ -157,6 +165,8 @@
   $setenv_safe = {},
   $up = '',
   $down = '',
+  $sndbuf = undef,
+  $rcvbuf = undef,
 ) {
 
   if $pam {

manifests/server.pp

@@ -273,6 +273,14 @@
 #   Boolean. Do not start clocking timeouts until a remote peer connects.
 #   Default: false
 #
+# [*sndbuf*]
+#   Integer, Set the TCP/UDP socket send buffer size.
+#   Default: undef
+#
+# [*rcvbuf*]
+#   Integer, Set the TCP/UDP socket receive buffer size.
+#   Default: undef
+#
 # === Examples
 #
 #   openvpn::client {
@@ -372,6 +380,8 @@
   $persist_tun = false,
   $server_poll_timeout = undef,
   $ping_timer_rem = false,
+  $sndbuf = undef,
+  $rcvbuf = undef,
 ) {
 
   include openvpn

spec/defines/openvpn_client_spec.rb

@@ -105,4 +105,16 @@
     it { should contain_file('/etc/openvpn/test_server/download-configs/test_client/test_client.conf').with_content(/^cipher\s+BF-CBC$/)}
   end
 
+  context "setting all of the parameters" do
+    let(:params) { {
+      'server' => 'test_server',
+      'sndbuf' => 393216,
+      'rcvbuf' => 393215,
+    } }
+
+    it { should contain_file('/etc/openvpn/test_server/download-configs/test_client/test_client.conf').with_content(/^sndbuf\s+393216$/)}
+    it { should contain_file('/etc/openvpn/test_server/download-configs/test_client/test_client.conf').with_content(/^rcvbuf\s+393215$/)}
+
+  end
+
 end

spec/defines/openvpn_server_spec.rb

@@ -192,6 +192,8 @@
 
     it { should_not contain_file('/etc/openvpn/test_server.conf').with_content(/^server-poll-timeout/) }
     it { should_not contain_file('/etc/openvpn/test_server.conf').with_content(/^ping-timer-rem/) }
+    it { should_not contain_file('/etc/openvpn/test_server.conf').with_content(/^sndbuf/) }
+    it { should_not contain_file('/etc/openvpn/test_server.conf').with_content(/^rcvbuf/) }
 
     # OpenVPN easy-rsa CA
     it { should contain_openvpn__ca('test_server').
@@ -243,6 +245,22 @@
     it { should_not contain_openvpn__ca('test_server') }
   end
 
+  context "when altering send and receive buffers" do
+    let(:params) { {
+      'country'       => 'CO',
+      'province'      => 'ST',
+      'city'          => 'Some City',
+      'organization'  => 'example.org',
+      'email'         => '[email protected]',
+      'sndbuf'        => 393216,
+      'rcvbuf'        => 393215,
+    } }
+
+    it { should contain_file('/etc/openvpn/test_server.conf').with_content(/^sndbuf\s+393216$/) }
+    it { should contain_file('/etc/openvpn/test_server.conf').with_content(/^rcvbuf\s+393215$/) }
+  end
+
+
   context "when RedHat based machine" do
     let(:params) { {
       'country'       => 'CO',

templates/client.erb

@@ -26,6 +26,12 @@ cipher <%= @cipher %>
 mute-replay-warnings
 <% end -%>
 ns-cert-type server
+<% if @sndbuf -%>
+sndbuf <%= @sndbuf %>
+<% end -%>
+<% if @rcvbuf -%>
+rcvbuf <%= @rcvbuf %>
+<% end -%>
 verb <%= @verb %>
 mute <%= @mute %>
 <% if @pam || @authuserpass -%>

templates/server.erb

@@ -63,6 +63,12 @@ push "<%= item %>"
 <% @route.each do |item| -%>
 route <%= item %>
 <% end -%>
+<% if @sndbuf -%>
+sndbuf <%= @sndbuf %>
+<% end -%>
+<% if @rcvbuf -%>
+rcvbuf <%= @rcvbuf %>
+<% end -%>
 <% if @keepalive != '' -%>
 keepalive <%= @keepalive %>
 <% end -%>