sysctl fix, again.

2024-11-17 17:55:12 +00:00 · 2016-11-24 19:37:45 +01:00 · 2016-11-24 19:37:45 +01:00 · 358e80b5a6
commit 358e80b5a6
parent cc657fa459
1 changed files with 29 additions and 22 deletions
--- a/openvpn-install.sh
+++ b/openvpn-install.sh
@ -24,6 +24,7 @@ if [[ -e /etc/debian_version ]]; then
 	# Getting the version number, to verify that a recent version of OpenVPN is available
 	VERSION_ID=$(cat /etc/os-release | grep "VERSION_ID")
 	RCLOCAL='/etc/rc.local'
+	SYSCTL='/etc/sysctl.conf'
 	if [[ "$VERSION_ID" != 'VERSION_ID="7"' ]] && [[ "$VERSION_ID" != 'VERSION_ID="8"' ]] && [[ "$VERSION_ID" != 'VERSION_ID="12.04"' ]] && [[ "$VERSION_ID" != 'VERSION_ID="14.04"' ]] && [[ "$VERSION_ID" != 'VERSION_ID="16.04"' ]] && [[ "$VERSION_ID" != 'VERSION_ID="16.10"' ]]; then
 		echo "Your version of Debian/Ubuntu is not supported."
 		echo "I can't install a recent version of OpenVPN on your system."
@ -42,35 +43,18 @@ if [[ -e /etc/debian_version ]]; then
 elif [[ -e /etc/centos-release || -e /etc/redhat-release ]]; then
 	OS=centos
 	RCLOCAL='/etc/rc.d/rc.local'
+	SYSCTL='/etc/sysctl.conf'
 	# Needed for CentOS 7
 	chmod +x /etc/rc.d/rc.local
 elif [[ -e /etc/arch-release ]]; then
 	OS=arch
 	RCLOCAL='/etc/rc.local'
-	# Needed for rc.local support on ArchLinux
-	echo "[Unit]
-Description=/etc/rc.local compatibility
-
-[Service]
-Type=oneshot
-ExecStart=/etc/rc.local
-RemainAfterExit=yes
-
-[Install]
-WantedBy=multi-user.target" > /etc/systemd/system/rc-local.service
-	systemctl enable rc-local.service
-	if ! grep '#!' $RCLOCAL; then
-		echo "#!/bin/bash" > $RCLOCAL
-	fi
+	SYSCTL='/etc/sysctl.d/openvpn.conf'
 else
 	echo "Looks like you aren't running this installer on a Debian, Ubuntu, CentOS or ArchLinux system"
 	exit 4
 fi

-if [[ ! -e /etc/sysctl.conf ]]; then
-	touch /etc/sysctl.conf
-fi
-
 newclient () {
 	# Generates the custom client.ovpn
 	cp /etc/openvpn/client-common.txt ~/$1.ovpn
@ -258,6 +242,29 @@ else
 	echo ""
 	echo "Okay, that was all I needed. We are ready to setup your OpenVPN server now"
 	read -n1 -r -p "Press any key to continue..."
+
+	if [[ "$OS" = 'arch' ]]; then
+		# Needed for rc.local support on ArchLinux
+		echo "[Unit]
+	Description=/etc/rc.local compatibility
+
+	[Service]
+	Type=oneshot
+	ExecStart=/etc/rc.local
+	RemainAfterExit=yes
+
+	[Install]
+	WantedBy=multi-user.target" > /etc/systemd/system/rc-local.service
+		systemctl enable rc-local.service
+		if ! grep '#!' $RCLOCAL; then
+			echo "#!/bin/bash" > $RCLOCAL
+		fi
+	fi
+
+	if [[ ! -e $SYSCTL ]]; then
+		touch $SYSCTL
+	fi
+
 	if [[ "$OS" = 'debian' ]]; then
 		apt-get install ca-certificates -y
 		# We add the OpenVPN repo to get the latest version.
@ -415,9 +422,9 @@ crl-verify crl.pem
 tls-server
 tls-auth tls-auth.key 0" >> /etc/openvpn/server.conf
 	# Enable net.ipv4.ip_forward for the system
-	sed -i '/\<net.ipv4.ip_forward\>/c\net.ipv4.ip_forward=1' /etc/sysctl.conf
-	if ! grep -q "\<net.ipv4.ip_forward\>" /etc/sysctl.conf; then
-		echo 'net.ipv4.ip_forward=1' >> /etc/sysctl.conf
+	sed -i '/\<net.ipv4.ip_forward\>/c\net.ipv4.ip_forward=1' $SYSCTL
+	if ! grep -q "\<net.ipv4.ip_forward\>" $SYSCTL; then
+		echo 'net.ipv4.ip_forward=1' >> $SYSCTL
 	fi
 	# Avoid an unneeded reboot
 	echo 1 > /proc/sys/net/ipv4/ip_forward