webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-09 18:45:54 +02:00
Code Issues Packages Projects Releases Wiki Activity

DNS: Add converter to migrate settings

Browse Source 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
This commit is contained in:
Michael Tremer
2020-01-07 10:43:19 +00:00
parent 2946d562f1
commit ecbf66761f
5 changed files with 89 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
config/backup/backup.pl
View File

@@ -143,6 +143,9 @@ restore_backup() {
rm -rf "/var/ipfire/snort"
fi
# Convert DNS settings
convert-dns-settings
return 0
}

1
config/rootfiles/common/aarch64/stage2
View File

@@ -91,6 +91,7 @@ usr/lib64
usr/local/bin/backupiso
usr/local/bin/connscheduler
usr/local/bin/consort.sh
usr/local/bin/convert-dns-settings
usr/local/bin/convert-ovpn
usr/local/bin/hddshutdown
usr/local/bin/ipsec-interfaces

1
config/rootfiles/common/stage2
View File

@@ -90,6 +90,7 @@ usr/lib/libstdc++.so.6
usr/local/bin/backupiso
usr/local/bin/connscheduler
usr/local/bin/consort.sh
usr/local/bin/convert-dns-settings
usr/local/bin/convert-ovpn
usr/local/bin/hddshutdown
usr/local/bin/ipsec-interfaces

1
config/rootfiles/common/x86_64/stage2
View File

@@ -92,6 +92,7 @@ usr/lib64
usr/local/bin/backupiso
usr/local/bin/connscheduler
usr/local/bin/consort.sh
usr/local/bin/convert-dns-settings
usr/local/bin/convert-ovpn
usr/local/bin/hddshutdown
usr/local/bin/ipsec-interfaces

83
src/scripts/convert-dns-settings Normal file
View File

@@ -0,0 +1,83 @@
#!/bin/bash
###############################################################################
# #
# IPFire.org - A Linux-based firewall #
# Copyright (C) 2020 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
# the Free Software Foundation, either version 3 of the License, or #
# (at your option) any later version. #
# #
# This program is distributed in the hope that it will be useful, #
# but WITHOUT ANY WARRANTY; without even the implied warranty of #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
# GNU General Public License for more details. #
# #
# You should have received a copy of the GNU General Public License #
# along with this program. If not, see <http://www.gnu.org/licenses/>. #
# #
###############################################################################
main() {
# Do not convert anything if we already have some servers set
if [ ! -s "/var/ipfire/dns/servers" ]; then
local DNS0 DNS1 DNS2
eval $(/usr/local/bin/readhash /var/ipfire/ethernet/settings)
if [ -s "/var/ipfire/ppp/settings" ]; then
eval $(/usr/local/bin/readhash /var/ipfire/ppp/settings)
elif [ -s "/var/ipfire/dns/settings" ]; then
eval $(/usr/local/bin/readhash /var/ipfire/dns/settings)
fi
local var
local i=3
for var in DNS0 DNS1 DNS2; do
if [ -n "${!var}" ]; then
echo "${i},${!var},,enabled,"
(( i++ ))
fi
done > /var/ipfire/dns/servers
# Empty the old settings file
: > /var/ipfire/dns/settings
# Disable using ISP name servers when we already have some configured
if [ ${i} -gt 3 ]; then
echo "USE_ISP_NAMESERVERS=off" \
>> /var/ipfire/dns/settings
fi
fi
# Convert old unbound settings file
if [ -e "/etc/sysconfig/unbound" ]; then
local USE_FORWARDERS
local ENABLE_SAFE_SEARCH
local FORCE_TCP
# Read settings
eval $(/usr/local/bin/readhash /etc/sysconfig/unbound)
# Safe Search
if [ "${ENABLE_SAFE_SEARCH}" = "on" ]; then
echo "ENABLE_SAFE_SEARCH=${ENABLE_SAFE_SEARCH}" \
>> /var/ipfire/dns/settings
fi
# Force TCP
if [ "${FORCE_TCP}" = "on" ]; then
echo "PROTO=TCP" >> /var/ipfire/dns/settings
fi
# Run in recursor mode
if [ "${USE_FORWARDERS}" = "0" ]; then
# Remove all servers
: > /var/ipfire/dns/servers
fi
rm -f "/etc/sysconfig/unbound"
fi
}
main "$@" || exit $?