admin/gluetun
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Routing improvements (#268)

Browse Source 
- Fixes #82 
- Remove `EXTRA_SUBNETS`
- Remove no longer needed iptables rules
- Reduce routing interface arity
- Routing setup is done in main.go instead of in the firewall
- Routing setup gets reverted at shutdown
This commit is contained in:
Quentin McGaw
2020-10-24 18:05:11 -04:00
committed by GitHub
parent 716eb14da1
commit ed4fcc17b3
15 changed files with 209 additions and 251 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
cmd/gluetun/main.go
View File

@@ -150,6 +150,16 @@ func _main(background context.Context, args []string) int { //nolint:gocognit,go
firewallConf.SetNetworkInformation(defaultInterface, defaultGateway, localSubnet)
if err := routingConf.Setup(); err != nil {
logger.Error(err)
return 1
}
defer func() {
if err := routingConf.TearDown(); err != nil {
logger.Error(err)
}
}()
if err := ovpnConf.CheckTUN(); err != nil {
logger.Warn(err)
err = ovpnConf.CreateTUN()
@@ -173,12 +183,6 @@ func _main(background context.Context, args []string) int { //nolint:gocognit,go
}
}
err = firewallConf.SetAllowedSubnets(ctx, allSettings.Firewall.AllowedSubnets)
if err != nil {
logger.Error(err)
return 1
}
for _, vpnPort := range allSettings.Firewall.VPNInputPorts {
err = firewallConf.SetAllowedPort(ctx, vpnPort, string(constants.TUN))
if err != nil {
@@ -193,7 +197,7 @@ func _main(background context.Context, args []string) int { //nolint:gocognit,go
logger.Error(err)
return 1
}
}
} // TODO move inside firewall?
wg := &sync.WaitGroup{}