]>
Commit | Line | Data |
---|---|---|
ecbf6676 MT |
1 | #!/bin/bash |
2 | ############################################################################### | |
3 | # # | |
4 | # IPFire.org - A Linux-based firewall # | |
5 | # Copyright (C) 2020 IPFire Team <info@ipfire.org> # | |
6 | # # | |
7 | # This program is free software: you can redistribute it and/or modify # | |
8 | # it under the terms of the GNU General Public License as published by # | |
9 | # the Free Software Foundation, either version 3 of the License, or # | |
10 | # (at your option) any later version. # | |
11 | # # | |
12 | # This program is distributed in the hope that it will be useful, # | |
13 | # but WITHOUT ANY WARRANTY; without even the implied warranty of # | |
14 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # | |
15 | # GNU General Public License for more details. # | |
16 | # # | |
17 | # You should have received a copy of the GNU General Public License # | |
18 | # along with this program. If not, see <http://www.gnu.org/licenses/>. # | |
19 | # # | |
20 | ############################################################################### | |
21 | ||
22 | main() { | |
23 | # Do not convert anything if we already have some servers set | |
24 | if [ ! -s "/var/ipfire/dns/servers" ]; then | |
25 | local DNS0 DNS1 DNS2 | |
26 | eval $(/usr/local/bin/readhash /var/ipfire/ethernet/settings) | |
27 | ||
28 | if [ -s "/var/ipfire/ppp/settings" ]; then | |
29 | eval $(/usr/local/bin/readhash /var/ipfire/ppp/settings) | |
1434fa0d MT |
30 | |
31 | # Remove DNS, DNS1 and DNS2 | |
32 | sed -i "/^DNS[12]?=/d" /var/ipfire/ppp/settings | |
ecbf6676 MT |
33 | elif [ -s "/var/ipfire/dns/settings" ]; then |
34 | eval $(/usr/local/bin/readhash /var/ipfire/dns/settings) | |
35 | fi | |
36 | ||
37 | local var | |
38 | local i=3 | |
39 | for var in DNS0 DNS1 DNS2; do | |
40 | if [ -n "${!var}" ]; then | |
41 | echo "${i},${!var},,enabled," | |
42 | (( i++ )) | |
43 | fi | |
44 | done > /var/ipfire/dns/servers | |
45 | ||
46 | # Empty the old settings file | |
47 | : > /var/ipfire/dns/settings | |
48 | ||
49 | # Disable using ISP name servers when we already have some configured | |
50 | if [ ${i} -gt 3 ]; then | |
51 | echo "USE_ISP_NAMESERVERS=off" \ | |
52 | >> /var/ipfire/dns/settings | |
53 | fi | |
54 | fi | |
55 | ||
c73baee1 SS |
56 | # Set correct ownership. |
57 | chown nobody:nobody /var/ipfire/dns/settings | |
58 | ||
ecbf6676 MT |
59 | # Convert old unbound settings file |
60 | if [ -e "/etc/sysconfig/unbound" ]; then | |
61 | local USE_FORWARDERS | |
62 | local ENABLE_SAFE_SEARCH | |
63 | local FORCE_TCP | |
64 | ||
65 | # Read settings | |
66 | eval $(/usr/local/bin/readhash /etc/sysconfig/unbound) | |
67 | ||
68 | # Safe Search | |
69 | if [ "${ENABLE_SAFE_SEARCH}" = "on" ]; then | |
70 | echo "ENABLE_SAFE_SEARCH=${ENABLE_SAFE_SEARCH}" \ | |
71 | >> /var/ipfire/dns/settings | |
72 | fi | |
73 | ||
74 | # Force TCP | |
75 | if [ "${FORCE_TCP}" = "on" ]; then | |
76 | echo "PROTO=TCP" >> /var/ipfire/dns/settings | |
77 | fi | |
78 | ||
79 | # Run in recursor mode | |
80 | if [ "${USE_FORWARDERS}" = "0" ]; then | |
81 | # Remove all servers | |
82 | : > /var/ipfire/dns/servers | |
83 | fi | |
84 | ||
85 | rm -f "/etc/sysconfig/unbound" | |
86 | fi | |
c73baee1 SS |
87 | |
88 | # Set correct ownership. | |
89 | chown nobody:nobody /var/ipfire/dns/servers | |
7be4822f MT |
90 | |
91 | # Make DHCP leases readable for nobody | |
92 | chown 644 /etc/unbound/dhcp-leases.conf | |
ecbf6676 MT |
93 | } |
94 | ||
95 | main "$@" || exit $? |