From 4f631dab200a81eeadab50182301de1e6114b230 Mon Sep 17 00:00:00 2001
From: Nyr <me@nyr.be>
Date: Tue, 14 May 2013 20:59:03 +0200
Subject: [PATCH] Bugfix: iptables were incorrectly positioned on /etc/rc.local

---
 openvpn-install.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/openvpn-install.sh b/openvpn-install.sh
index bbf1711..1065d17 100644
--- a/openvpn-install.sh
+++ b/openvpn-install.sh
@@ -161,7 +161,7 @@ else
 	# Listen at port 53 too if user wants that
 	if [ $ALTPORT = 'y' ]; then
 		iptables -t nat -A PREROUTING -p udp -d $IP --dport 53 -j REDIRECT --to-port 1194
-		echo "iptables -t nat -A PREROUTING -p udp -d $IP --dport 53 -j REDIRECT --to-port 1194" >> /etc/rc.local
+		sed -i "/# By default this script does nothing./a\iptables -t nat -A PREROUTING -p udp -d $IP --dport 53 -j REDIRECT --to-port 1194" /etc/rc.local
 	fi
 	# Enable net.ipv4.ip_forward for the system
 	sed -i 's|#net.ipv4.ip_forward=1|net.ipv4.ip_forward=1|' /etc/sysctl.conf
@@ -169,7 +169,7 @@ else
 	echo 1 > /proc/sys/net/ipv4/ip_forward
 	# Set iptables
 	iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -j SNAT --to $IP
-	echo "iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -j SNAT --to $IP" >> /etc/rc.local
+	sed -i "/# By default this script does nothing./a\iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -j SNAT --to $IP" /etc/rc.local
 	# And finally, restart OpenVPN
 	/etc/init.d/openvpn restart
 	# Let's generate the client config