diff options
Diffstat (limited to 'init.d.misc/openvpn.in')
| -rw-r--r-- | init.d.misc/openvpn.in | 87 |
1 files changed, 87 insertions, 0 deletions
diff --git a/init.d.misc/openvpn.in b/init.d.misc/openvpn.in new file mode 100644 index 00000000..017dcf73 --- /dev/null +++ b/init.d.misc/openvpn.in @@ -0,0 +1,87 @@ +#!/sbin/runscript +# Copyright 2007 Roy Marples +# All rights reserved + +# Redistribution and use in source and binary forms, with or without +# modification, are permitted provided that the following conditions +# are met: +# 1. Redistributions of source code must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# 2. Redistributions in binary form must reproduce the above copyright +# notice, this list of conditions and the following disclaimer in the +# documentation and/or other materials provided with the distribution. +# +# THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND +# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE +# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE +# ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE +# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL +# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS +# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) +# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT +# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY +# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF +# SUCH DAMAGE. + +vpn=${SVCNAME#*.} +name="OpenVPN" +[ "${vpn}" != "openvpn" ] && name="${name} (${vpn})" +command=@PREFIX/sbin/openvpn + +pidfile=@VARBASE@/run/"${SVCNAME}".pid +openvpn_dir=${openvpn_dir:-@PREFIX@/etc/openvpn} +openvpn_config=${openvpn_config:-${openvpn_dir}/${vpn}.conf} +command_args="${openvpn_args} --daemon --config ${openvpn_config} --writepid ${pidfile}" +required_dirs="${openvpn_dir}" +required_files="${openvpn_config}" + +# If we're an openvpn client, then supply a nice default config +# You can find sample up/down scripts in the OpenRC support/openvpn dir +if yesno "${openvpn_client}"; then + openvpn_up=${openvpn_up:-${openvpn_dir}/up.sh} + openvpn_down=${openvpn_down:-${openvpn_dir}/down.sh} + command_args="${command_args} --nobind --up-delay --up-restart --down-pre" + command_args="${command_args} --up ${openvpn_up}" + command_args="${command_args} --down ${openvpn_down}" + required_files="${required_files} ${openvpn_up} ${openvpn_down}" + + in_background_fake="start stop" + start_inactive="YES" +fi + +depend() { + need net + use dns +} + +start_pre() { + # Linux has good dynamic tun/tap creation + if [ "${RC_UNAME}" = "Linux" ]; then + if [ ! -e /dev/net/tun ]; then + if ! modprobe tun; then + eerror "TUN/TAP support is not available in this kernel" + return 1 + fi + fi + if [ -h /dev/net/tun -a -c /dev/misc/net/tun ]; then + ebegin "Detected broken /dev/net/tun symlink, fixing..." + rm -f /dev/net/tun + ln -s /dev/misc/net/tun /dev/net/tun + eend $? + fi + else + if type kldload >/dev/null 2>&1; then + # Hammer the modules home by default + sysctl -a | grep -q '\.tun\.' || kldload if_tun + sysctl -a | grep -q '\.tap\.' || kldload if_tap + fi + fi + + # If the config file does not specify the cd option, we do + # But if we specify it, we override the config option which we do not want + if ! grep -q "^[ \t]*cd[ \t].*" "${openvpn_config}"; then + command_args="${command_args} --cd ${openvpn_dir}" + fi +} + +# vim: set ts=4 : |