Added interface name parameter

SloCompTech · SloCompTech · commit ec6ed9aa93d3 · 2019-07-30T15:46:46.000+02:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,10 @@
 # Changelog
 
+### 2.0.2 - Added multi-instance support
+
+- Added `TUNNEL_INTERFACE` to set interface name (in case of multiple containers)
+- Some fixes for general user
+
 ### 2.0.1 - Fix service start
 
 - Fixed command for starting service
diff --git a/Dockerfile b/Dockerfile
@@ -43,7 +43,8 @@ ENV EASYRSA=/usr/share/easy-rsa \
     EASYRSA_VARS_FILE=/config/ssl/vars \
     #EASYRSA_SSL_CONF=/config/ssl/openssl-easyrsa.cnf \
     EASYRSA_SAFE_CONF=/config/ssl/safessl-easyrsa.cnf \
-    EASYRSA_TEMP_FILE=/config/tmp/temp
+    EASYRSA_TEMP_FILE=/config/tmp/temp \
+    TUNNEL_INTERFACE="tun0"
 
 # Install packages
 RUN apk add --no-cache \
diff --git a/Dockerfile.armhf b/Dockerfile.armhf
@@ -43,7 +43,8 @@ ENV EASYRSA=/usr/share/easy-rsa \
     EASYRSA_VARS_FILE=/config/ssl/vars \
     #EASYRSA_SSL_CONF=/config/ssl/openssl-easyrsa.cnf \
     EASYRSA_SAFE_CONF=/config/ssl/safessl-easyrsa.cnf \
-    EASYRSA_TEMP_FILE=/config/tmp/temp
+    EASYRSA_TEMP_FILE=/config/tmp/temp \
+    TUNNEL_INTERFACE="tun0"
 
 # Install packages
 RUN apk add --no-cache \
diff --git a/README.md b/README.md
@@ -70,6 +70,7 @@ services:
 |`-e PUID=1000`|for UserID - see below for explanation|
 |`-e PGID=1000`|for GroupID - see below for explanation|
 |`-e PERSISTENT_INTERFACE=true`|Enable persistent TUN interface|
+|`-e TUNNEL_INTERFACE="tun0"`|Tunnel interface name (default: tun0)|
 |`-e USE_FIREWALL=false`|Disable any firewall related rules to be created, modified ... (must be implemented in example)|
 |`-v /config`|All the config files including OpenVPNs reside here|
 |`-v /log`|Log files reside here|
diff --git a/root/etc/cont-finish.d/60-network.sh b/root/etc/cont-finish.d/60-network.sh
@@ -5,7 +5,7 @@
 #
 
 # Delete tunnel interface (if not persistant)
-if [ -n "$(cat /proc/net/dev | grep tun0)" ] && { [ -z "$PERSISTENT_INTERFACE" ] || [ "$PERSISTENT_INTERFACE" != "true" ]; }; then
-  echo "Removing tun0 interface"
-	openvpn --rmtun --dev tun0
+if [ -n "$(cat /proc/net/dev | grep $TUNNEL_INTERFACE)" ] && { [ -z "$PERSISTENT_INTERFACE" ] || [ "$PERSISTENT_INTERFACE" != "true" ]; }; then
+  echo "Removing $TUNNEL_INTERFACE interface"
+	openvpn --rmtun --dev $TUNNEL_INTERFACE
 fi
diff --git a/root/etc/cont-init.d/60-network.sh b/root/etc/cont-init.d/60-network.sh
@@ -19,13 +19,13 @@ if [ ! -c "/dev/net/tun" ]; then
 fi
 
 # Remove existing interface if not persistent interface selected
-if [ -n "$(cat /proc/net/dev | grep tun0)" ] && { [ -z "$PERSISTENT_INTERFACE" ]  ||  [ "$PERSISTENT_INTERFACE" != "true" ]; }; then
-  echo "Removing tun0 interface"
-	openvpn --rmtun --dev tun0
+if [ -n "$(cat /proc/net/dev | grep $TUNNEL_INTERFACE)" ] && { [ -z "$PERSISTENT_INTERFACE" ]  ||  [ "$PERSISTENT_INTERFACE" != "true" ]; }; then
+  echo "Removing $TUNNEL_INTERFACE interface"
+	openvpn --rmtun --dev $TUNNEL_INTERFACE
 fi
 
 # Create tunnel interface
-if [ -z "$(cat /proc/net/dev | grep tun0)" ]; then
-	echo "Creating tun0 interface"
-	openvpn --mktun --dev tun0 --dev-type tun --user abc --group abc
+if [ -z "$(cat /proc/net/dev | grep $TUNNEL_INTERFACE)" ]; then
+	echo "Creating $TUNNEL_INTERFACE interface"
+	openvpn --mktun --dev $TUNNEL_INTERFACE --dev-type tun --user $CONTAINER_USER --group $CONTAINER_USER
 fi
