43 lines
1.6 KiB
Bash
43 lines
1.6 KiB
Bash
#!/bin/sh
|
|
|
|
exitOnError(){
|
|
# $1 must be set to $?
|
|
status=$1
|
|
message=$2
|
|
[ "$message" != "" ] || message="Undefined error"
|
|
if [ $status != 0 ]; then
|
|
printf "[ERROR] $message, with status $status)\n"
|
|
exit $status
|
|
fi
|
|
}
|
|
|
|
printf "[INFO] Reading forwarded port\n"
|
|
client_id=`head -n 100 /dev/urandom | sha256sum | tr -d " -"`
|
|
exitOnError $? "Unable to generate Client ID"
|
|
json=`wget -qO- "http://209.222.18.222:2000/?client_id=$client_id"`
|
|
if [ "$json" == "" ]; then
|
|
printf " * Port forwarding is already activated on this connection, has expired, or you are not connected to a PIA region that supports port forwarding\n"
|
|
exit 1
|
|
fi
|
|
port=`echo $json | jq .port`
|
|
port_status_folder=`dirname "${PORT_FORWARDING_STATUS_FILE}"`
|
|
if [ ! -d "${port_status_folder}" ]; then
|
|
mkdir -p "${port_status_folder}"
|
|
fi
|
|
echo "$port" > "${PORT_FORWARDING_STATUS_FILE}"
|
|
printf " * Written forwarded port to ${PORT_FORWARDING_STATUS_FILE}\n"
|
|
ip=`wget -qO- https://duckduckgo.com/?q=ip | grep -oE "\b([0-9]{1,3}\.){3}[0-9]{1,3}\b"`
|
|
exitOnError $? "Unable to read remote VPN IP"
|
|
printf " * Forwarded port is $port on remote VPN IP $ip\n"
|
|
printf " * Detecting target VPN interface..."
|
|
TARGET_PATH="/openvpn/target"
|
|
vpn_device=$(cat $TARGET_PATH/config.ovpn | grep 'dev ' | cut -d" " -f 2)0
|
|
exitOnError $? "Unable to find VPN interface"
|
|
printf "$vpn_device\n"
|
|
printf " * Accepting input traffic through $vpn_device to port $port..."
|
|
iptables -A INPUT -i $vpn_device -p tcp --dport $port -j ACCEPT
|
|
exitOnError $? "Unable to allow the forwarded port in TCP"
|
|
iptables -A INPUT -i $vpn_device -p udp --dport $port -j ACCEPT
|
|
exitOnError $? "Unable to allow the forwarded port in UDP"
|
|
printf "DONE\n"
|