mirror of
https://github.com/outbackdingo/firezone.git
synced 2026-01-27 18:18:55 +00:00
5a998f7373
Split from #2104 This adds logging string configuration, unifies behavior between gateway and headless clients and some cli improvements for those. --------- Signed-off-by: Gabi <gabrielalejandro7@gmail.com> Co-authored-by: Jamil <jamilbk@users.noreply.github.com>
33 lines
1.2 KiB
Bash
Executable File
33 lines
1.2 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
if [[ "${ENABLE_MASQUERADE}" == "1" ]]; then
|
|
IFACE="tun-firezone"
|
|
iptables -A FORWARD -i $IFACE -j ACCEPT
|
|
iptables -A FORWARD -o $IFACE -j ACCEPT
|
|
iptables -t nat -A POSTROUTING -o eth+ -j MASQUERADE
|
|
ip6tables -A FORWARD -i $IFACE -j ACCEPT
|
|
ip6tables -A FORWARD -o $IFACE -j ACCEPT
|
|
ip6tables -t nat -A POSTROUTING -o eth+ -j MASQUERADE
|
|
fi
|
|
|
|
if [[ "${LISTEN_ADDRESS_DISCOVERY_METHOD}" == "gce_metadata" ]]; then
|
|
echo "Using GCE metadata to discover listen address"
|
|
|
|
if [[ "${PUBLIC_IP4_ADDR:-}" == "" ]]; then
|
|
export PUBLIC_IP4_ADDR=$(curl "http://metadata.google.internal/computeMetadata/v1/instance/network-interfaces/0/access-configs/0/external-ip" -H "Metadata-Flavor: Google" -s)
|
|
echo "Discovered PUBLIC_IP4_ADDR: ${PUBLIC_IP4_ADDR}"
|
|
fi;
|
|
|
|
if [[ "${PUBLIC_IP6_ADDR:-}" == "" ]]; then
|
|
export PUBLIC_IP6_ADDR=$(curl "http://metadata.google.internal/computeMetadata/v1/instance/network-interfaces/0/ipv6s" -H "Metadata-Flavor: Google" -s)
|
|
echo "Discovered PUBLIC_IP6_ADDR: ${PUBLIC_IP6_ADDR}"
|
|
fi;
|
|
fi
|
|
|
|
# if first arg looks like a flag, assume we want to run postgres server
|
|
if [ "${1:0:1}" = '-' ]; then
|
|
set -- ${PACKAGE_NAME} "$@"
|
|
fi
|
|
|
|
exec "$@"
|