Skip to content

Commit 1228577

Browse files
kylemannakylemanna
authored
Merge pull request #620 from kylemanna/dev
Fix /etc/openvpn/vars bug for old docker volumes
2 parents e47f86b + 6ad9310 commit 1228577

File tree

5 files changed

+5
-50
lines changed

5 files changed

+5
-50
lines changed

Dockerfile

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -15,8 +15,7 @@ RUN echo "http://dl-cdn.alpinelinux.org/alpine/edge/testing/" >> /etc/apk/reposi
1515
ENV OPENVPN=/etc/openvpn
1616
ENV EASYRSA=/usr/share/easy-rsa \
1717
EASYRSA_CRL_DAYS=3650 \
18-
EASYRSA_PKI=$OPENVPN/pki \
19-
EASYRSA_VARS_FILE=$OPENVPN/vars
18+
EASYRSA_PKI=$OPENVPN/pki
2019

2120
VOLUME ["/etc/openvpn"]
2221

Dockerfile.aarch64

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,6 @@ RUN echo "http://dl-4.alpinelinux.org/alpine/edge/community/" >> /etc/apk/reposi
1515
ENV OPENVPN /etc/openvpn
1616
ENV EASYRSA /usr/share/easy-rsa
1717
ENV EASYRSA_PKI $OPENVPN/pki
18-
ENV EASYRSA_VARS_FILE $OPENVPN/vars
1918

2019
# Prevents refused client connection because of an expired CRL
2120
ENV EASYRSA_CRL_DAYS 3650

README.md

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -31,20 +31,20 @@ a corresponding [Digital Ocean Community Tutorial](http://bit.ly/1AGUZkq).
3131
private key used by the newly generated certificate authority.
3232

3333
docker volume create --name $OVPN_DATA
34-
docker run -v $OVPN_DATA:/etc/openvpn --log-driver=none --rm kylemanna/openvpn ovpn_genconfig -u udp://VPN.SERVERNAME.COM
35-
docker run -v $OVPN_DATA:/etc/openvpn --log-driver=none --rm -it kylemanna/openvpn ovpn_initpki
34+
docker run -v $OVPN_DATA:/etc/openvpn --rm kylemanna/openvpn ovpn_genconfig -u udp://VPN.SERVERNAME.COM
35+
docker run -v $OVPN_DATA:/etc/openvpn --rm -it kylemanna/openvpn ovpn_initpki
3636

3737
* Start OpenVPN server process
3838

3939
docker run -v $OVPN_DATA:/etc/openvpn -d -p 1194:1194/udp --cap-add=NET_ADMIN kylemanna/openvpn
4040

4141
* Generate a client certificate without a passphrase
4242

43-
docker run -v $OVPN_DATA:/etc/openvpn --log-driver=none --rm -it kylemanna/openvpn easyrsa build-client-full CLIENTNAME nopass
43+
docker run -v $OVPN_DATA:/etc/openvpn --rm -it kylemanna/openvpn easyrsa build-client-full CLIENTNAME nopass
4444

4545
* Retrieve the client configuration with embedded certificates
4646

47-
docker run -v $OVPN_DATA:/etc/openvpn --log-driver=none --rm kylemanna/openvpn ovpn_getclient CLIENTNAME > CLIENTNAME.ovpn
47+
docker run -v $OVPN_DATA:/etc/openvpn --rm kylemanna/openvpn ovpn_getclient CLIENTNAME > CLIENTNAME.ovpn
4848

4949
## Next Steps
5050

bin/easyrsa_vars

Lines changed: 0 additions & 39 deletions
This file was deleted.

bin/ovpn_initpki

Lines changed: 0 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -15,10 +15,6 @@ source "$OPENVPN/ovpn_env.sh"
1515
# Specify "nopass" as arg[2] to make the CA insecure (not recommended!)
1616
nopass=$1
1717

18-
# EasyRSA 3.0.7 introduced checks for $EASYRSA_VARS_FILE existence
19-
# in the init-pki script
20-
touch $EASYRSA_VARS_FILE
21-
2218
# Provides a sufficient warning before erasing pre-existing files
2319
easyrsa init-pki
2420

0 commit comments

Comments
 (0)