bea/docker-deluge-openvpn
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added UFW_EXTRA_PORTS, Updated start script shell, Added python2.7

Browse Source 
UFW_EXTRA_PORTS Allows for exposing of ports when binding to the image for the vpn functionality. Accepts comma seperated list.

Changed from /bin/sh to /bin/bash. If you got bash, why use busybox? Plus busybox doesn't allow for advanced string manipulations.

Added python2.7 and pysqlite2. torrentToMedia from the nzbToMedia package needs python2.7.
This commit is contained in:
Dean Bailey
2018-01-24 22:01:49 -08:00
parent 165c187525
commit 970c9c576f
4 changed files with 17 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
DockerEnv
View File

@@ -5,6 +5,7 @@
#OPENVPN_PASSWORD= #OPENVPN_PASSWORD=
#LOCAL_NETWORK= #LOCAL_NETWORK=
#ENABLE_UFW=false #ENABLE_UFW=false
#UFW_EXTRA_PORTS=
#TRANSMISSION_ALT_SPEED_DOWN=50 #TRANSMISSION_ALT_SPEED_DOWN=50
#TRANSMISSION_ALT_SPEED_ENABLED=false #TRANSMISSION_ALT_SPEED_ENABLED=false
#TRANSMISSION_ALT_SPEED_TIME_BEGIN=540 #TRANSMISSION_ALT_SPEED_TIME_BEGIN=540

2
Dockerfile
View File

@@ -13,6 +13,7 @@ RUN apt-get update \
&& echo "deb http://build.openvpn.net/debian/openvpn/stable xenial main" > /etc/apt/sources.list.d/openvpn-aptrepo.list \ && echo "deb http://build.openvpn.net/debian/openvpn/stable xenial main" > /etc/apt/sources.list.d/openvpn-aptrepo.list \
&& apt-get update \ && apt-get update \
&& apt-get install -y sudo transmission-cli transmission-common transmission-daemon curl rar unrar zip unzip ufw iputils-ping openvpn \ && apt-get install -y sudo transmission-cli transmission-common transmission-daemon curl rar unrar zip unzip ufw iputils-ping openvpn \
python2.7 python2.7-pysqlite2 && ln -sf /usr/bin/python2.7 /usr/bin/python2 \
&& wget https://github.com/Secretmapper/combustion/archive/release.zip \ && wget https://github.com/Secretmapper/combustion/archive/release.zip \
&& unzip release.zip -d /opt/transmission-ui/ \ && unzip release.zip -d /opt/transmission-ui/ \
&& rm release.zip \ && rm release.zip \
@@ -105,6 +106,7 @@ ENV OPENVPN_USERNAME=**None** \
TRANSMISSION_WATCH_DIR_ENABLED=true \ TRANSMISSION_WATCH_DIR_ENABLED=true \
TRANSMISSION_HOME=/data/transmission-home \ TRANSMISSION_HOME=/data/transmission-home \
ENABLE_UFW=false \ ENABLE_UFW=false \
UFW_EXTRA_PORTS= \
TRANSMISSION_WEB_UI= \ TRANSMISSION_WEB_UI= \
PUID= \ PUID= \
PGID= \ PGID= \

1
Dockerfile.armhf
View File

@@ -102,6 +102,7 @@ ENV OPENVPN_USERNAME=**None** \
TRANSMISSION_WATCH_DIR_ENABLED=true \ TRANSMISSION_WATCH_DIR_ENABLED=true \
TRANSMISSION_HOME=/data/transmission-home \ TRANSMISSION_HOME=/data/transmission-home \
ENABLE_UFW=false \ ENABLE_UFW=false \
UFW_EXTRA_PORTS= \
TRANSMISSION_WEB_UI=\ TRANSMISSION_WEB_UI=\
PUID=\ PUID=\
PGID=\ PGID=\

14
openvpn/start.sh
View File

@@ -1,4 +1,4 @@
#!/bin/sh #!/bin/bash
vpn_provider="$(echo $OPENVPN_PROVIDER | tr '[A-Z]' '[a-z]')" vpn_provider="$(echo $OPENVPN_PROVIDER | tr '[A-Z]' '[a-z]')"
vpn_provider_configs="/etc/openvpn/$vpn_provider" vpn_provider_configs="/etc/openvpn/$vpn_provider"
if [ ! -d "$vpn_provider_configs" ]; then if [ ! -d "$vpn_provider_configs" ]; then
@@ -67,6 +67,12 @@ if [ "true" = "$ENABLE_UFW" ]; then
eval $(/sbin/ip r l m 0.0.0.0 | awk '{if($5!="tun0"){print "GW="$3"\nINT="$5; exit}}') eval $(/sbin/ip r l m 0.0.0.0 | awk '{if($5!="tun0"){print "GW="$3"\nINT="$5; exit}}')
echo "allowing access to $TRANSMISSION_RPC_PORT from $GW" echo "allowing access to $TRANSMISSION_RPC_PORT from $GW"
ufw allow proto tcp from $GW to any port $TRANSMISSION_RPC_PORT ufw allow proto tcp from $GW to any port $TRANSMISSION_RPC_PORT
if [ ! -z "${UFW_EXTRA_PORTS}" ]; then
for port in ${UFW_EXTRA_PORTS//,/ }; do
echo "allowing access to ${port} from $GW"
ufw allow proto tcp from $GW to any port ${port}
done
fi
fi fi
if [ -n "${LOCAL_NETWORK-}" ]; then if [ -n "${LOCAL_NETWORK-}" ]; then
@@ -77,6 +83,12 @@ if [ -n "${LOCAL_NETWORK-}" ]; then
if [ "true" = "$ENABLE_UFW" ]; then if [ "true" = "$ENABLE_UFW" ]; then
echo "allowing access to $TRANSMISSION_RPC_PORT from $LOCAL_NETWORK" echo "allowing access to $TRANSMISSION_RPC_PORT from $LOCAL_NETWORK"
ufw allow proto tcp from $LOCAL_NETWORK to any port $TRANSMISSION_RPC_PORT ufw allow proto tcp from $LOCAL_NETWORK to any port $TRANSMISSION_RPC_PORT
if [ ! -z "${UFW_EXTRA_PORTS}" ]; then
for port in ${UFW_EXTRA_PORTS//,/ }; do
echo "allowing access to ${port} from $LOCAL_NETWORK"
ufw allow proto tcp from $LOCAL_NETWORK to any port ${port}
done
fi
fi fi
fi fi
fi fi