added support for "limited" service levels (although vpn is not yet actually rate limited).

author: elijah <elijah@riseup.net> 2013-03-17 13:15:51 -0700
committer: elijah <elijah@riseup.net> 2013-03-17 13:15:51 -0700
commit: ad62cfdad04c8f8ed9d6454f716c92e850ac53ba (patch)
tree: c4321297d2b60edc37ca10501340cb865d95bfa5 /puppet/modules/site_openvpn/templates/add_gateway_ips.sh.erb
parent: 4ec32a1f773918b2c7a42c117fbad110c07df458 (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/puppet/modules/site_openvpn/templates/add_gateway_ips.sh.erb b/puppet/modules/site_openvpn/templates/add_gateway_ips.sh.erb
new file mode 100644
index 00000000..ed06a95e
--- /dev/null
+++ b/puppet/modules/site_openvpn/templates/add_gateway_ips.sh.erb
@@ -0,0 +1,11 @@
+#!/bin/sh
+
+ip addr show dev <%= @interface %> | grep -q <%= @openvpn_gateway_address %>/24 ||
+  ip addr add <%= @openvpn_gateway_address %>/24 dev <%= @interface %>
+
+<% if @openvpn_second_gateway_address %>
+ip addr show dev <%= @interface %> | grep -q <%= @openvpn_second_gateway_address %>/24 ||
+  ip addr add <%= @openvpn_second_gateway_address %>/24 dev <%= @interface %>
+<% end %>
+
+/bin/echo 1 > /proc/sys/net/ipv4/ip_forward
author	elijah <elijah@riseup.net>	2013-03-17 13:15:51 -0700
committer	elijah <elijah@riseup.net>	2013-03-17 13:15:51 -0700
commit	ad62cfdad04c8f8ed9d6454f716c92e850ac53ba (patch)
tree	c4321297d2b60edc37ca10501340cb865d95bfa5 /puppet/modules/site_openvpn/templates/add_gateway_ips.sh.erb
parent	4ec32a1f773918b2c7a42c117fbad110c07df458 (diff)