|
|
@@ -1,9 +1,5 @@
|
|
|
#!/bin/bash
|
|
|
|
|
|
-has_nativeip6() {
|
|
|
- ip -6 route | grep -q "default via"
|
|
|
-}
|
|
|
-
|
|
|
is_serverip6route_set() {
|
|
|
local server_ip6s=${1}
|
|
|
|
|
|
@@ -28,61 +24,27 @@ set_serverip6route() {
|
|
|
done
|
|
|
}
|
|
|
|
|
|
-unset_serverip6route() {
|
|
|
- local server_ip6s=${1}
|
|
|
- local ip6_gw=${2}
|
|
|
- local wired_device=${3}
|
|
|
-
|
|
|
- for server_ip6 in ${server_ip6s}; do
|
|
|
- ip route delete "${server_ip6}/128" via "${ip6_gw}" dev "${wired_device}"
|
|
|
- done
|
|
|
-}
|
|
|
-
|
|
|
-old_ip6_gw=$(yunohost app setting vpnclient ip6_gw)
|
|
|
-old_wired_device=$(yunohost app setting vpnclient wired_device)
|
|
|
-old_server_ip6=$(yunohost app setting vpnclient server_ip6)
|
|
|
+wired_device=$(ip route | awk '/default via/ { print $5; }')
|
|
|
|
|
|
-new_ip6_gw=$(ip -6 route | awk '/default via/ { print $3 }')
|
|
|
-new_wired_device=$(ip route | awk '/default via/ { print $5; }')
|
|
|
-ynh_server_names=$(grep -o -P '^\s*remote\s+\K([^\s]+)' /etc/openvpn/client.conf | sort | uniq)
|
|
|
-
|
|
|
-# In case an ip has been provided in ovpn conf
|
|
|
-new_server_ip6=""
|
|
|
-new_server_ip4=""
|
|
|
-for i in $ynh_server_names; do
|
|
|
- if [[ "${i}" =~ : ]]; then
|
|
|
- new_server_ip6+=" ${i}"
|
|
|
- elif [[ "${i}" =~ ^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$ ]]; then
|
|
|
- new_server_ip4+=" ${i}"
|
|
|
- fi
|
|
|
-done
|
|
|
-
|
|
|
-if [[ -z "${new_server_ip6}" && -z "${new_server_ip4}" ]]; then
|
|
|
- new_server_ip6=$(dig AAAA +short $ynh_server_names @127.0.0.1 | grep -v '\.$' | grep -v "timed out" | sort | uniq)
|
|
|
-fi
|
|
|
-
|
|
|
-echo "[INFO] Autodetected internet interface: ${new_wired_device} (last start: ${old_wired_device})"
|
|
|
-echo "[INFO] Autodetected IPv6 address for the VPN server: ${new_server_ip6} (last start: ${old_server_ip6})"
|
|
|
-
|
|
|
-# Check old state of the server ipv6 route
|
|
|
-if [[ -n "${old_server_ip6}" && -n "${old_ip6_gw}" && -n "${old_wired_device}" ]]; then
|
|
|
- if [[ "${new_server_ip6}" != "${old_server_ip6}" || "${new_ip6_gw}" != "${old_ip6_gw}" || "${new_wired_device}" != "${old_wired_device}" ]]; then
|
|
|
- if is_serverip6route_set "${old_server_ip6}"; then
|
|
|
- unset_serverip6route "${old_server_ip6}" "${old_ip6_gw}" "${old_wired_device}"
|
|
|
- fi
|
|
|
- fi
|
|
|
+echo "[INFO] Autodetected internet interface: ${wired_device}"
|
|
|
+if [[ -n "${ifconfig_ipv6_remote}" ]]; then
|
|
|
+ echo "[INFO] Autodetected IPv6 address for the VPN server: ${ifconfig_ipv6_remote}"
|
|
|
+else
|
|
|
+ echo "[INFO] No IPv6 address for the VPN server detected"
|
|
|
+ echo "[INFO] No IPv6 route set"
|
|
|
+ exit 0
|
|
|
fi
|
|
|
|
|
|
# Set the new server ipv6 route
|
|
|
-if has_nativeip6; then
|
|
|
- if ! is_serverip6route_set "${new_server_ip6}"; then
|
|
|
- set_serverip6route "${new_server_ip6}" "${new_ip6_gw}" "${new_wired_device}"
|
|
|
+if [[ -n "${net_gateway_ipv6}" ]]; then
|
|
|
+ if ! is_serverip6route_set "${ifconfig_ipv6_remote}"; then
|
|
|
+ set_serverip6route "${ifconfig_ipv6_remote}" "${net_gateway_ipv6}" "${wired_device}"
|
|
|
fi
|
|
|
|
|
|
echo "[INFO] Native IPv6 detected"
|
|
|
- echo "[INFO] Autodetected native IPv6 gateway: ${new_ip6_gw} (last start: ${old_ip6_gw})"
|
|
|
+ echo "[INFO] Autodetected native IPv6 gateway: ${net_gateway_ipv6}"
|
|
|
|
|
|
- if is_serverip6route_set "${new_server_ip6}"; then
|
|
|
+ if is_serverip6route_set "${ifconfig_ipv6_remote}"; then
|
|
|
echo "[ OK ] IPv6 server route correctly set"
|
|
|
else
|
|
|
echo "[FAIL] No IPv6 server route set" >&2
|
|
|
@@ -92,7 +54,3 @@ else
|
|
|
echo "[INFO] No native IPv6 detected"
|
|
|
echo "[INFO] No IPv6 server route to set"
|
|
|
fi
|
|
|
-
|
|
|
-yunohost app setting vpnclient server_ip6 --value "${new_server_ip6}"
|
|
|
-yunohost app setting vpnclient ip6_gw --value "${new_ip6_gw}"
|
|
|
-yunohost app setting vpnclient wired_device --value "${new_wired_device}"
|
HgO