admin/gluetun
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix/improve port forwarding handling

Browse Source
This commit is contained in:
Gauthier Delacroix
2019-07-16 20:48:24 +02:00
parent 86957a359e
commit 59c9f028af
1 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
portforward.sh
View File

@@ -24,15 +24,16 @@ port_file="/forwarded_port"
echo "$port" > $port_file echo "$port" > $port_file
printf " * Written forwarded port to $port_file\n" printf " * Written forwarded port to $port_file\n"
ip=`wget -qO- https://diagnostic.opendns.com/myip` ip=`wget -qO- https://diagnostic.opendns.com/myip`
exitOnError $? exitOnError $? "Unable to read remote VPN IP"
printf " * Forwarded port is $port on remote IP $ip\n" printf " * Forwarded port is $port on remote VPN IP $ip\n"
printf " * Detecting target VPN interface..." printf " * Detecting target VPN interface..."
TARGET_PATH="/openvpn/target" TARGET_PATH="/openvpn/target"
vpn_device=$(cat $TARGET_PATH/config.ovpn | grep 'dev ' | cut -d" " -f 2)0 vpn_device=$(cat $TARGET_PATH/config.ovpn | grep 'dev ' | cut -d" " -f 2)0
exitOnError $? exitOnError $? "Unable to find VPN interface"
printf "$vpn_device\n" printf "$vpn_device\n"
printf " * Accepting input traffic through $vpn_device to port $port..." printf " * Accepting input traffic through $vpn_device to port $port..."
iptables -A INPUT -i $vpn_device -p tcp --dport $port -j ACCEPT iptables -A INPUT -i $vpn_device -p tcp --dport $port -j ACCEPT
exitOnError $? "Unable to allow the forwarded port in TCP"
iptables -A INPUT -i $vpn_device -p udp --dport $port -j ACCEPT iptables -A INPUT -i $vpn_device -p udp --dport $port -j ACCEPT
exitOnError $? exitOnError $? "Unable to allow the forwarded port in UDP"
printf "DONE\n" printf "DONE\n"