Fabio/openvpn-install
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fix UFW default forwarding policy on Ubuntu

Browse source 
Fixes to #233
This commit is contained in:
Angristan 2018-07-06 23:55:53 +02:00
parent b8f0b44c55
commit c65ce53c35
1 changed files with 16 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
openvpn-install.sh
View file

@ -582,6 +582,22 @@ verb 3" >> /etc/openvpn/server.conf
fi fi
# Avoid an unneeded reboot # Avoid an unneeded reboot
echo 1 > /proc/sys/net/ipv4/ip_forward echo 1 > /proc/sys/net/ipv4/ip_forward
# Allo forward on Ubuntu with UFW
if [[ $(lsb_release -si) == "Ubuntu" ]];then
# If the DEFAULT_FORWARD_POLICY is not accept
if ! grep -qe '^DEFAULT_FORWARD_POLICY=\"ACCEPT\"' /etc/default/ufw;then
# If the there is an uncommented DEFAULT_FORWARD_POLICY line
if ! grep -qe '^DEFAULT_FORWARD_POLICY' /etc/default/ufw;then
# Set it to ACCEPT
sed -i 's|^DEFAULT_FORWARD_POLICY=\".*\"|DEFAULT_FORWARD_POLICY=\"ACCEPT\"|' /etc/default/ufw
else
# Just add the correct line
echo 'DEFAULT_FORWARD_POLICY="ACCEPT"' >> /etc/default/ufw
fi
fi
fi
# Set NAT for the VPN subnet # Set NAT for the VPN subnet
iptables -t nat -A POSTROUTING -o $NIC -s 10.8.0.0/24 -j MASQUERADE iptables -t nat -A POSTROUTING -o $NIC -s 10.8.0.0/24 -j MASQUERADE
# Save persitent iptables rules # Save persitent iptables rules