portforward.sh

#!/bin/sh

exitOnError(){
  # $1 must be set to $?
  status=$1
  message=$2
  [ "$message" != "" ] || message="Undefined error"
  if [ $status != 0 ]; then
    printf "[ERROR] $message, with status $status)\n"
    exit $status
  fi
}

printf "[INFO] Reading forwarded port\n"
client_id=`head -n 100 /dev/urandom | sha256sum | tr -d " -"`
exitOnError $? "Unable to generate Client ID"
json=`wget -qO- "http://209.222.18.222:2000/?client_id=$client_id"`
if [ "$json" == "" ]; then
  printf " * Port forwarding is already activated on this connection, has expired, or you are not connected to a PIA region that supports port forwarding\n"
  exit 1
fi
port=`echo $json | jq .port`
port_status_folder=`dirname "${PORT_FORWARDING_STATUS_FILE}"`
if [ ! -d "${port_status_folder}" ]; then
  mkdir -p "${port_status_folder}"
fi
echo "$port" > "${PORT_FORWARDING_STATUS_FILE}"
printf " * Written forwarded port to ${PORT_FORWARDING_STATUS_FILE}\n"
ip=`wget -qO- https://duckduckgo.com/?q=ip | grep -oE "\b([0-9]{1,3}\.){3}[0-9]{1,3}\b"`
exitOnError $? "Unable to read remote VPN IP"
printf " * Forwarded port is $port on remote VPN IP $ip\n"
printf " * Detecting target VPN interface..."
TARGET_PATH="/openvpn/target"
vpn_device=$(cat $TARGET_PATH/config.ovpn | grep 'dev ' | cut -d" " -f 2)0
exitOnError $? "Unable to find VPN interface"
printf "$vpn_device\n"
printf " * Accepting input traffic through $vpn_device to port $port..."
iptables -A INPUT -i $vpn_device -p tcp --dport $port -j ACCEPT
exitOnError $? "Unable to allow the forwarded port in TCP"
iptables -A INPUT -i $vpn_device -p udp --dport $port -j ACCEPT
exitOnError $? "Unable to allow the forwarded port in UDP"
printf "DONE\n"
Added port forwarding, fixes #14 2019-06-26 17:24:10 +02:00			`#!/bin/sh`

Large refactoring: proxy+firewall+readme - Cleaner logs - HTTP proxy is working... finally - Firewall was adjusted - Firewall cannot be turned off anymore - portforward script changes the firewall - readme reworked - Possibility to pass commands to Openvpn with Docker command 2019-06-29 13:42:44 +02:00			`exitOnError(){`
			`# $1 must be set to $?`
			`status=$1`
			`message=$2`
			`[ "$message" != "" ] \|\| message="Undefined error"`
			`if [ $status != 0 ]; then`
			`printf "[ERROR] $message, with status $status)\n"`
			`exit $status`
			`fi`
			`}`

Fix/improve port forwarding handling 2019-07-15 22:02:40 +02:00			`printf "[INFO] Reading forwarded port\n"`
Added port forwarding, fixes #14 2019-06-26 17:24:10 +02:00			client_id=`head -n 100 /dev/urandom \| sha256sum \| tr -d " -"`
Fix/improve port forwarding handling 2019-07-16 20:44:12 +02:00			`exitOnError $? "Unable to generate Client ID"`
			json=`wget -qO- "http://209.222.18.222:2000/?client_id=$client_id"`
Added port forwarding, fixes #14 2019-06-26 17:24:10 +02:00			`if [ "$json" == "" ]; then`
Fix/improve port forwarding handling 2019-07-16 20:44:12 +02:00			`printf " * Port forwarding is already activated on this connection, has expired, or you are not connected to a PIA region that supports port forwarding\n"`
			`exit 1`
Added port forwarding, fixes #14 2019-06-26 17:24:10 +02:00			`fi`
Fix/improve port forwarding handling 2019-07-15 22:02:40 +02:00			port=`echo $json \| jq .port`
Make forwarded_port file location configurable (#43) * Make port forwarding status file dynamic * Readme updates 2019-09-02 16:38:41 +02:00			port_status_folder=`dirname "${PORT_FORWARDING_STATUS_FILE}"`
Fix portforward script syntax error (#44) 2019-09-02 20:54:02 +02:00			`if [ ! -d "${port_status_folder}" ]; then`
Make forwarded_port file location configurable (#43) * Make port forwarding status file dynamic * Readme updates 2019-09-02 16:38:41 +02:00			`mkdir -p "${port_status_folder}"`
			`fi`
			`echo "$port" > "${PORT_FORWARDING_STATUS_FILE}"`
			`printf " * Written forwarded port to ${PORT_FORWARDING_STATUS_FILE}\n"`
Fixes #42 2019-09-02 11:32:28 -04:00			ip=`wget -qO- https://duckduckgo.com/?q=ip \| grep -oE "\b([0-9]{1,3}\.){3}[0-9]{1,3}\b"`
Fix/improve port forwarding handling 2019-07-16 20:48:24 +02:00			`exitOnError $? "Unable to read remote VPN IP"`
			`printf " * Forwarded port is $port on remote VPN IP $ip\n"`
Fix/improve port forwarding handling 2019-07-15 22:02:40 +02:00			`printf " * Detecting target VPN interface..."`
Large refactoring: proxy+firewall+readme - Cleaner logs - HTTP proxy is working... finally - Firewall was adjusted - Firewall cannot be turned off anymore - portforward script changes the firewall - readme reworked - Possibility to pass commands to Openvpn with Docker command 2019-06-29 13:42:44 +02:00			`TARGET_PATH="/openvpn/target"`
			`vpn_device=$(cat $TARGET_PATH/config.ovpn \| grep 'dev ' \| cut -d" " -f 2)0`
Fix/improve port forwarding handling 2019-07-16 20:48:24 +02:00			`exitOnError $? "Unable to find VPN interface"`
Large refactoring: proxy+firewall+readme - Cleaner logs - HTTP proxy is working... finally - Firewall was adjusted - Firewall cannot be turned off anymore - portforward script changes the firewall - readme reworked - Possibility to pass commands to Openvpn with Docker command 2019-06-29 13:42:44 +02:00			`printf "$vpn_device\n"`
Fix/improve port forwarding handling 2019-07-15 22:02:40 +02:00			`printf " * Accepting input traffic through $vpn_device to port $port..."`
			`iptables -A INPUT -i $vpn_device -p tcp --dport $port -j ACCEPT`
Fix/improve port forwarding handling 2019-07-16 20:48:24 +02:00			`exitOnError $? "Unable to allow the forwarded port in TCP"`
Fix/improve port forwarding handling 2019-07-15 22:02:40 +02:00			`iptables -A INPUT -i $vpn_device -p udp --dport $port -j ACCEPT`
Fix/improve port forwarding handling 2019-07-16 20:48:24 +02:00			`exitOnError $? "Unable to allow the forwarded port in UDP"`
Large refactoring: proxy+firewall+readme - Cleaner logs - HTTP proxy is working... finally - Firewall was adjusted - Firewall cannot be turned off anymore - portforward script changes the firewall - readme reworked - Possibility to pass commands to Openvpn with Docker command 2019-06-29 13:42:44 +02:00			`printf "DONE\n"`