Home Explore Help
Sign In
rootless
/
dockerbunker
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 388fcd6d67
Branches Tags
dockerbunker
/
data
/
services
/
ipsecvpnserver
/
ipsecvpnserver.sh

ipsecvpnserver.sh 2.4 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394 
  1. #!/usr/bin/env bash
    2. 

  2. 

  3. while true;do ls | grep -q dockerbunker.sh;if [[ $? == 0 ]];then BASE_DIR=$PWD;break;else cd ../;fi;done
    4. 

  4. 

  5. PROPER_NAME="IPsec VPN Server"
    6. 

  6. SERVICE_NAME="$(echo -e "${PROPER_NAME,,}" | tr -d '[:space:]')"
    7. 

  7. 

  8. declare -a environment=( "data/env/dockerbunker.env" "data/include/init.sh" )
    9. 

  9. 

  10. for env in "${environment[@]}";do
    11. 

  11. 	[[ -f "${BASE_DIR}"/$env ]] && source "${BASE_DIR}"/$env
    12. 

  12. done
    13. 

  13. 

  14. declare -a containers=( "${SERVICE_NAME}-service-dockerbunker" )
    15. 

  15. declare -A IMAGES=( [service]="dockerbunker/${SERVICE_NAME}" )
    16. 

  16. declare -A volumes=( [${SERVICE_NAME}-data-vol-1]="/lib/modules" )
    17. 

  17. declare -A BUILD_IMAGES=( [dockerbunker/${SERVICE_NAME}]="${DOCKERFILES}/${SERVICE_NAME}" )
    18. 

  18. 

  19. [[ -z $1 ]] && options_menu
    20. 

  20. 

  21. configure() {
    22. 

  22. 	pre_configure_routine
    23. 

  23. 	
    24. 

  24. 	! [[ -d "${BASE_DIR}/data/Dockerfiles/ipsecvpnserver" ]] \
    25. 

  25. 	&& git submodule add -f https://github.com/hwdsl2/docker-ipsec-vpn-server.git data/Dockerfiles/ipsecvpnserver >/dev/null
    26. 

  26. 

  27. 	echo -e "\n# \e[4mIPsec VPN Server Settings\e[0m"
    28. 

  28. 	if [ -z "$VPN_USER" ]; then
    29. 

  29. 		read -p "VPN Username: " -ei "vpnuser" VPN_USER
    30. 

  30. 	else
    31. 

  31. 		read -p "VPN Username: " -ei "${VPN_USER}" VPN_USER
    32. 

  32. 	fi
    33. 

  33. 	
    34. 

  34. 	if [ -z "$VPN_PASSWORD" ]; then
    35. 

  35. 		stty_orig=`stty -g`
    36. 

  36. 		stty -echo
    37. 

  37. 	  	read -p "VPN Password: " -ei "" VPN_PASSWORD
    38. 

  38. 		stty $stty_orig
    39. 

  39. 		echo ""
    40. 

  40. 	fi
    41. 

  41. 

  42. 	prompt_confirm "OK to use Google DNS?"
    43. 

  43. 	if [[ $? == 0 ]];then
    44. 

  44. 		read -p "Enter DNS 1: " dns1
    45. 

  45. 		read -p "Enter DNS 2: " dns2
    46. 

  46. 		sed -i 's/8\.8\.8\.8/${dns1}/' "${BASE_DIR}"/data/Dockerfiles/${SERVICE_NAME}/run.sh
    47. 

  47. 		sed -i 's/8\.8\.4\.4/${dns2}/' "${BASE_DIR}"/data/Dockerfiles/${SERVICE_NAME}/run.sh
    48. 

  48. 	fi
    49. 

  49. 

  50. 	# avoid tr illegal byte sequence in macOS when generating random strings
    51. 

  51. 	if [[ $OSTYPE =~ "darwin" ]];then
    52. 

  52. 		if [[ $LC_ALL ]];then
    53. 

  53. 			oldLC_ALL=$LC_ALL
    54. 

  54. 			export LC_ALL=C
    55. 

  55. 		else
    56. 

  56. 			export LC_ALL=C
    57. 

  57. 		fi
    58. 

  58. 	fi
    59. 

  59. 	cat <<-EOF >> "${SERVICE_ENV}"
    60. 

  60. 	# Please use long, random alphanumeric strings (A-Za-z0-9)
    61. 

  61. 	VPN_IPSEC_PSK=$(tr -dc 'a-zA-Z0-9' < /dev/urandom | head -c 64)
    62. 

  62. 

  63. 	# ------------------------------
    64. 

  64. 	# User configuration
    65. 

  65. 	# ------------------------------
    66. 

  66. 	
    67. 

  67. 	VPN_USER=${VPN_USER}
    68. 

  68. 	VPN_PASSWORD="${VPN_PASSWORD}"
    69. 

  69. 	EOF
    70. 

  70. 

  71. 	if [[ $OSTYPE =~ "darwin" ]];then
    72. 

  72. 		unset LC_ALL
    73. 

  73. 	fi
    74. 

  74. 

  75. 	post_configure_routine
    76. 

  76. }
    77. 

  77. 

  78. setup() {
    79. 

  79. 	initial_setup_routine
    80. 

  80. 	
    81. 

  81. 	if ! lsmod | grep -q af_key;then
    82. 

  82. 		echo -en "\e[1mLoading the IPsec NETKEY kernel module on the Docker host\e[0m"
    83. 

  83. 		modprobe af_key
    84. 

  84. 		exit_response
    85. 

  85. 		[[ ! $(grep ^af_key$ /etc/modules) ]] && echo af_key >> /etc/modules
    86. 

  86. 	fi
    87. 

  87. 

  88. 	docker_run_all
    89. 

  89. 

  90. 	post_setup_routine
    91. 

  91. 

  92. }
    93. 

  93. 

  94. $1
    95.