Context Navigation

post.openvpn @ 7b3e813

gcc484perl-5.22

Last change on this file since 7b3e813 was 7b3e813, checked in by Edwin Eefting <edwin@datux.nl>, 7 years ago
fix installer errors
Property mode set to `100755`
File size: 943 bytes

Line
1	#!/bin/bash
2
3	set -e
4
5	#needed
6	/sbin/postinst.sh post.openldap
7	svcstart /service/slapd/
8
9
10	cd /etc/openvpn
11
12
13	#basic setup
14	if ! [ -e pki ]; then
15	./easyrsa init-pki
16	fi
17
18	#create ca cert
19	if ! [ -e pki/ca.crt ]; then
20	echo syn3 \| ./easyrsa build-ca nopass
21	fi
22
23	#create server cert
24	if ! [ -e pki/issued/server.crt ]; then
25	./easyrsa build-server-full server nopass
26	fi
27
28	#create dh parameters
29	if ! [ -e pki/dh.pem ]; then
30	./easyrsa gen-dh
31	fi
32
33	#create CRL list
34	if ! [ -e pki/crl.pem ]; then
35	./easyrsa gen-crl
36	fi
37
38	#openvpn group
39	if ! ( getent group \| grep "OpenVPN access" &> /dev/null ) ; then
40	smbldap-groupadd -g 521 "OpenVPN access" \|\| exit 1;
41	fi
42
43	#openvpn ipblock
44	NAME="OpenVPN clients"
45	if ! grep "$NAME" /etc/firewall/ipblocks; then
46	echo "$NAME='10.8.0.0/24'" >> /etc/firewall/ipblocks
47	fi
48
49
50
51
52	#create tlsauth key
53	if ! [ -e pki/ta.key ]; then
54	openvpn --genkey --secret pki/ta.key
55	fi
56
57
58
59	#example
60	#./syn3-client bla.linuxsysteem.nl gerard
61

Note: See TracBrowser for help on using the repository browser.