container-openvpn/bin/ovpn_run

#!/bin/bash

#
# Run the OpenVPN server normally
#

set -ex

source "$OPENVPN/ovpn_env.sh"

mkdir -p /dev/net
if [ ! -c /dev/net/tun ]; then
    mknod /dev/net/tun c 10 200
fi

if [ ! -d "$OPENVPN/ccd" ]; then
    mkdir -p /etc/openvpn/ccd
fi

# Setup NAT forwarding if requested
if [ "$OVPN_DEFROUTE" != "0" ];then
    iptables -t nat -A POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE

    for i in "${OVPN_ROUTES[@]}"; do
        iptables -t nat -A POSTROUTING -s "$i" -o eth0 -j MASQUERADE
    done
fi

conf="$OPENVPN/openvpn.conf"

openvpn --config "$conf"
run: Handle NAT routes dynamically * Handle the NAT routes dynamically * Stop caring about backwards compatibility for now 2014-07-06 04:39:50 +00:00			`#!/bin/bash`
openvpn.sh: Split in to smaller scripts * Split soon to be massive wrapper into smaller managable scripts. * Re-organized Dockerfile to exploit cache when rebuilding 2014-06-04 18:13:59 +00:00
			`#`
			`# Run the OpenVPN server normally`
			`#`

			`set -ex`

run: Handle NAT routes dynamically * Handle the NAT routes dynamically * Stop caring about backwards compatibility for now 2014-07-06 04:39:50 +00:00			`source "$OPENVPN/ovpn_env.sh"`

openvpn.sh: Split in to smaller scripts * Split soon to be massive wrapper into smaller managable scripts. * Re-organized Dockerfile to exploit cache when rebuilding 2014-06-04 18:13:59 +00:00			`mkdir -p /dev/net`
			`if [ ! -c /dev/net/tun ]; then`
			`mknod /dev/net/tun c 10 200`
			`fi`

run: Always ensure client dir exists * OpenVPN will fail to start if this directory doesn't exist. 2014-06-30 06:22:03 +00:00			`if [ ! -d "$OPENVPN/ccd" ]; then`
			`mkdir -p /etc/openvpn/ccd`
			`fi`

run: Handle NAT routes dynamically * Handle the NAT routes dynamically * Stop caring about backwards compatibility for now 2014-07-06 04:39:50 +00:00			`# Setup NAT forwarding if requested`
			`if [ "$OVPN_DEFROUTE" != "0" ];then`
			`iptables -t nat -A POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE`
openvpn.sh: Split in to smaller scripts * Split soon to be massive wrapper into smaller managable scripts. * Re-organized Dockerfile to exploit cache when rebuilding 2014-06-04 18:13:59 +00:00
genconfig: Convert OVPN_ROUTES to array * Convert to an array to simplify the code. * This breaks running `ovpn_genconfig` multiple times with the same route argument as the array will just grow. This needs to be fixed in the future. * Recommended way to work around this is to remove ovpn_env.sh. 2014-07-09 17:34:39 +00:00			`for i in "${OVPN_ROUTES[@]}"; do`
			`iptables -t nat -A POSTROUTING -s "$i" -o eth0 -j MASQUERADE`
run: Handle NAT routes dynamically * Handle the NAT routes dynamically * Stop caring about backwards compatibility for now 2014-07-06 04:39:50 +00:00			`done`
			`fi`
ovpn: Remove reference to udp/1194 * Remove references to udp/1194. * Works better with non-standard ports and tcp. 2014-07-01 05:56:26 +00:00
run: Handle NAT routes dynamically * Handle the NAT routes dynamically * Stop caring about backwards compatibility for now 2014-07-06 04:39:50 +00:00			`conf="$OPENVPN/openvpn.conf"`
ovpn: Remove reference to udp/1194 * Remove references to udp/1194. * Works better with non-standard ports and tcp. 2014-07-01 05:56:26 +00:00
			`openvpn --config "$conf"`