admin/gluetun
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
9202d6c15f00001fcb3b9171da9a9a50a3695904
gluetun/internal/mullvad/conf.go

74 lines
2.2 KiB
Go
Raw Normal View History

Added Mullvad configuration builder
2020-02-16 19:51:08 +00:00
package mullvad
import (
"fmt"
"github.com/qdm12/golibs/files"
"github.com/qdm12/private-internet-access-docker/internal/constants"
"github.com/qdm12/private-internet-access-docker/internal/models"
)
func (c *configurator) GetOpenVPNConnections(country models.MullvadCountry, city models.MullvadCity, provider models.MullvadProvider, protocol models.NetworkProtocol, customPort uint16) (connections []models.OpenVPNConnection, err error) {
servers := constants.MullvadServerFilter(country, city, provider)
if len(servers) == 0 {
return nil, fmt.Errorf("no server found for country %q, city %q and ISP %q", country, city, provider)
}
for _, server := range servers {
port := server.DefaultPort
if customPort > 0 {
port = customPort
}
for _, IP := range server.IPs {
connections = append(connections, models.OpenVPNConnection{IP: IP, Port: port, Protocol: protocol})
}
}
return connections, nil
}
Added OPENVPN_VERBOSITY environment variable
2020-02-22 15:48:09 +00:00
func (c *configurator) BuildConf(connections []models.OpenVPNConnection, verbosity, uid, gid int) (err error) {
Added Mullvad configuration builder
2020-02-16 19:51:08 +00:00
if len(connections) == 0 {
return fmt.Errorf("at least one connection string is expected")
}
lines := []string{
"client",
"dev tun",
"nobind",
"persist-key",
"persist-tun",
"remote-cert-tls server",
"ping 300",
// Mullvad specific
// "sndbuf 524288"
// "rcvbuf 524288"
"cipher AES-256-CBC",
"tls-cipher TLS-DHE-RSA-WITH-AES-256-GCM-SHA384:TLS-DHE-RSA-WITH-AES-256-CBC-SHA",
Tunnels IPv6
2020-02-22 16:32:59 +00:00
"tun-ipv6",
Added Mullvad configuration builder
2020-02-16 19:51:08 +00:00
// Added constant values
"mute-replay-warnings",
Do not keep auth in memory, only on disk
2020-02-22 16:33:37 +00:00
"auth-nocache",
Added Mullvad configuration builder
2020-02-16 19:51:08 +00:00
"user nonrootuser",
"pull-filter ignore \"auth-token\"", // prevent auth failed loops
"auth-retry nointeract",
"remote-random",
// Modified variables
Added OPENVPN_VERBOSITY environment variable
2020-02-22 15:48:09 +00:00
fmt.Sprintf("verb %d", verbosity),
Added Mullvad configuration builder
2020-02-16 19:51:08 +00:00
fmt.Sprintf("auth-user-pass %s", constants.OpenVPNAuthConf),
fmt.Sprintf("proto %s", string(connections[0].Protocol)),
}
for _, connection := range connections {
lines = append(lines, fmt.Sprintf("remote %s %d", connection.IP.String(), connection.Port))
}
lines = append(lines, []string{
"<ca>",
"-----BEGIN CERTIFICATE-----",
constants.MullvadCertificate,
"-----END CERTIFICATE-----",
"</ca>",
"",
}...)
return c.fileManager.WriteLinesToFile(string(constants.OpenVPNConf), lines, files.Ownership(uid, gid), files.Permissions(0400))
}
Reference in New Issue Copy Permalink