mirrors/docker-surfshark
2
0
Fork 0
mirror of https://github.com/ilteoood/docker-surfshark.git synced 2025-12-21 13:23:02 +01:00
Code Issues Projects Releases Wiki Activity
Files
4b1a3f2d5ef3de6b985bc8ccb97d126f02d540e1
docker-surfshark/startup.sh
Matteo Pietro Dazzi a5dda7671a feat: kill switch
2023-03-13 23:57:33 +01:00

43 lines
1.3 KiB
Bash
Raw Blame History

#!/bin/sh
rm -rf ovpn_configs*
if [ -z "${OVPN_CONFIGS}" ]; then
wget -O ovpn_configs.zip https://my.surfshark.com/vpn/api/v1/server/configurations
OVPN_CONFIGS=ovpn_configs.zip
fi
unzip "${OVPN_CONFIGS}" -d ovpn_configs
cd ovpn_configs
VPN_FILE=$(ls "${SURFSHARK_COUNTRY}"* | grep "${SURFSHARK_CITY}" | grep "${CONNECTION_TYPE}" | shuf | head -n 1)
echo Chose: ${VPN_FILE}
printf "${SURFSHARK_USER}\n${SURFSHARK_PASSWORD}" > vpn-auth.txt
if [ -n ${LAN_NETWORK} ]
then
DEFAULT_GATEWAY=$(ip -4 route list 0/0 | cut -d ' ' -f 3)
splitSubnets=$(echo ${LAN_NETWORK} | tr "," "\n")
for subnet in $splitSubnets
do
ip route add "$subnet" via "${DEFAULT_GATEWAY}" dev eth0
echo Adding ip route add "$subnet" via "${DEFAULT_GATEWAY}" dev eth0 for attached container web ui access
done
echo Do not forget to expose the ports for attached container web ui access
fi
if [ "${CREATE_TUN_DEVICE}" = "true" ]; then
echo "Creating TUN device /dev/net/tun"
mkdir -p /dev/net
mknod /dev/net/tun c 10 200
chmod 0666 /dev/net/tun
fi
openvpn --config $VPN_FILE --auth-user-pass vpn-auth.txt --mute-replay-warnings $OPENVPN_OPTS
if [ "${ENABLE_KILL_SWITCH}" = "true" ]; then
ufw reset
ufw default deny incoming
ufw default deny outgoing
ufw allow out on tun0 from any to any
ufw enable
fi
Reference in New Issue View Git Blame Copy Permalink