X-Git-Url: https://iankelling.org/git/?p=vpn-setup;a=blobdiff_plain;f=vpn-mk-client-cert;h=59ddda55cc5cc5959d2d68273d85f7ae5d81e415;hp=68f0744df680ef33bb031fe2f71a331a80ca36d9;hb=aa9be22d2798d15580907238cfdbf8f3ffd7364d;hpb=1117328662c752e70660fc76f16b045ba15228bd diff --git a/vpn-mk-client-cert b/vpn-mk-client-cert index 68f0744..59ddda5 100755 --- a/vpn-mk-client-cert +++ b/vpn-mk-client-cert @@ -39,8 +39,10 @@ usage: ${0##*/} VPN_SERVER_HOST -f Force. Proceed even if cert already exists. -n CONFIG_NAME default is client -o SERVER_CONFIG_NAME Default is CONFIG_NAME --s SCRIPT_PATH Use custom up/down script at SCRIPT_PATH. copied to same path - on client, if client is not localhost. +-s SCRIPT_PATH Use custom up/down script at SCRIPT_PATH. If client host is + not localhost, the script is copied to it. The default + script used to be /etc/openvpn/update-resolv-conf, but now + that systemd-resolved is becoming popular, there is no default. Generate a client cert and config and install it on locally or on CLIENT_HOST if given. Uses default config options, and expects be able @@ -65,8 +67,6 @@ EOF shell="bash -c" name=client -custom_script=false -script=/etc/openvpn/update-resolv-conf client_host=$CLIENT_HOST force=false @@ -79,7 +79,7 @@ while true; do -f) force=true; shift ;; -n) name="$2"; shift 2 ;; -o) server_name="$2"; shift 2 ;; - -s) custom_script=true; script="$2"; shift 2 ;; + -s) script="$2"; shift 2 ;; -h|--help) usage ;; --) shift; break ;; *) echo "$0: Internal error! unexpected args: $*" ; exit 1 ;; @@ -174,14 +174,12 @@ EOF if [[ $script ]]; then $shell "tee -a /etc/openvpn/client/$name.conf" <