taylorwin · October 15, 2016 05:08
diff --git a/openvpn-on-openwrt.sh b/openvpn-on-openwrt.sh
 cat >> /etc/firewall << END
 iptables -t filter -A input_wan -p udp --dport 1194 -j ACCEPT
 iptables -I INPUT 1 -i tun+ -j ACCEPT
 iptables -I FORWARD 1 -i tun+ -j ACCEPT
 iptables -I OUTPUT 1 -o tun+ -j ACCEPT
 iptables -I FORWARD 1 -o tun+ -j ACCEPT
 END
 
 /etc/init.d/firewall restart
 
 opkg install openvpn
 # I don't wanna convert my OpenVPN config to UCI-like format so I just replace the default init script.
 mv /etc/init.d/openvpn /etc/init.d/openvpn.orig
 
 cat >/etc/init.d/openvpn < <END
 #!/bin/sh /etc/rc.common
 
 START=99
 
 start() {
    openvpn --daemon --config /etc/openvpn/server.conf
 }
 
 restart() {
    stop
    sleep 3
    start
 }
 
 reload() {
    killall -SIGHUP openvpn
 }
 
 stop() {
    killall openvpn
 }
 END
 
 chmod 755 /etc/init.d/openvpn
 /etc/init.d/openvpn start
	cat >> /etc/firewall << END
	iptables -t filter -A input_wan -p udp --dport 1194 -j ACCEPT
	iptables -I INPUT 1 -i tun+ -j ACCEPT
	iptables -I FORWARD 1 -i tun+ -j ACCEPT
	iptables -I OUTPUT 1 -o tun+ -j ACCEPT
	iptables -I FORWARD 1 -o tun+ -j ACCEPT
	END

	/etc/init.d/firewall restart

	opkg install openvpn
	# I don't wanna convert my OpenVPN config to UCI-like format so I just replace the default init script.
	mv /etc/init.d/openvpn /etc/init.d/openvpn.orig

	cat >/etc/init.d/openvpn < <END
	#!/bin/sh /etc/rc.common

	START=99

	start() {
	openvpn --daemon --config /etc/openvpn/server.conf
	}

	restart() {
	stop
	sleep 3
	start
	}

	reload() {
	killall -SIGHUP openvpn
	}

	stop() {
	killall openvpn
	}
	END

	chmod 755 /etc/init.d/openvpn
	/etc/init.d/openvpn start