shenanigansf

VM_CONFIG.sh

@@ -1,18 +1,25 @@
 #!/bin/bash
 
-# NOTA(vasco): vamos ter q fazer isto mil vezes 
-sudo yum install -y epel-release
-sudo yum install -y openvpn iptables-services
-sudo systemctl stop firewalld
-sudo systemctl disable firewalld
-sudo systemctl mask firewalld
-sudo systemctl enable iptables
-sudo iptables -F
+# NOTA(vasco): feito para correr como root
+if [[ "$USER" != "root" ]]; then
+    echo "corre o script como root"
+    exit 1
+fi
+
+yum install -y epel-release
+yum install -y openvpn iptables-services
+systemctl stop firewalld
+systemctl disable firewalld
+systemctl mask firewalld
+systemctl enable iptables
+iptables -F
 
 CA_DIR="/etc/pki/CA"
-sudo mkdir -p "${CA_DIR}/newcerts"
-sudo touch "${CA_DIR}/serial"
-sudo cp ca.crt $CA_DIR
+mkdir -p "${CA_DIR}/newcerts"
+mkdir -p "${CA_DIR}/private"
+touch "${CA_DIR}/index.txt"
+echo 01 > "${CA_DIR}/serial"
+cp ca.crt $CA_DIR
 
-sudo mkdir -p /etc/openvpn/server
-sudo mkdir -p /etc/openvpn/client
+mkdir -p /etc/openvpn/server
+mkdir -p /etc/openvpn/client