From 243510e74a6d1315f0925d3a71cc09d425511ad8 Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Tue, 9 Feb 2021 07:14:31 -0600
Subject: [PATCH] roles/protonvpn: Fix swanctl syntax

I believe the reason the VPN was not auto-restarting was because I had
incorrectly specified the `keyingtries` and `dpd_delay` configuration options.
These are properties of the top-level connection, not the child. I must
have placed them in the `children` block by accident.
---
 roles/protonvpn/templates/protonvpn.conf.j2 | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/roles/protonvpn/templates/protonvpn.conf.j2 b/roles/protonvpn/templates/protonvpn.conf.j2
index 8ba5f41..8704770 100644
--- a/roles/protonvpn/templates/protonvpn.conf.j2
+++ b/roles/protonvpn/templates/protonvpn.conf.j2
@@ -3,6 +3,8 @@ connections {
         local_addrs = %defaultroute
         remote_addrs = {{ protonvpn_server }}
         vips = 0.0.0.0,::
+        keyingtries = 0
+        dpd_delay = 30s
         local {
             auth = eap-mschapv2
             eap_id = {{ protonvpn_username }}
@@ -11,8 +13,6 @@ connections {
             auth = pubkey
         }
         children {
-	    keyingtries = 0
-            dpd_delay = 30s
             protonvpn {
                 remote_ts = {{ protonvpn_tunnel }}
                 start_action = start