Merge pull request #12 from compressed/dup_iptables

avoid dup iptables rules
2014-10-23 09:55:08 -07:00 · 2014-10-23 09:55:08 -07:00 · b06631099f
commit b06631099f
parent f05de3eb84 be22048a2b
1 changed files with 6 additions and 3 deletions
--- a/bin/ovpn_run
+++ b/bin/ovpn_run
@ -19,10 +19,13 @@ fi

 # Setup NAT forwarding if requested
 if [ "$OVPN_DEFROUTE" != "0" ];then
-    iptables -t nat -A POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE
-
+    iptables -t nat -C POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE || {
+      iptables -t nat -A POSTROUTING -s $OVPN_SERVER -o eth0 -j MASQUERADE
+    }
    for i in "${OVPN_ROUTES[@]}"; do
-        iptables -t nat -A POSTROUTING -s "$i" -o eth0 -j MASQUERADE
+        iptables -t nat -C POSTROUTING -s "$i" -o eth0 -j MASQUERADE || {
+          iptables -t nat -A POSTROUTING -s "$i" -o eth0 -j MASQUERADE
+        }
    done
 fi