* OpenVZ nf_tables workaround
nf_tables is not available in old OpenVZ kernels, so we need to use
iptables-legacy instead.
This issue only affects Debian 10 as it is the only distribution using iptables
with a nf_tables backend by default.
This is supposedly resolved in the newest kernels: https://bit.ly/3fgNZCh
Additionally, a bugfix for the ip6tables path is also included.
* Improve nf_tables test for OVZ
This test is more reliable and flexible.
* Improved easy-rsa setup
No need to write the tarball to disk.
* Improve TUN device check
While it looks hackish, I don't think there's a better way (in Bash) to open
the /dev/net/tun character device.
Checking for presence of /dev/net/tun like were doing is not good enough.
* Fix TUN device check
Fix for the mistaken stderr redirection, sorry about that. Also, run in a
subshell so we don't need to manually close the file descriptor.
* Small improvements
* Grammar improvements
* Small style changes
* Add Quad9 DNS servers
* egrep IP regex optimizations
* Fix#762
Variables which can be empty, shouldn't be quoted in this situation.
* Fix#764
* resolv.conf parsing optimizations
* Update README.md
* Update README.md
* Bugfix
-N is an illegal option for read in sh, so check if the user is using sh first.
* Update to easy-rsa v3.0.8
* Update AdGuard DNS IP
AdGuard changed their DNS IP recently:
https://adguard.com/en/blog/adguard-dns-new-addresses.html
Thanks @trantuanminh1754 for noticing.
Co-authored-by: Nyr <me@nyr.be>
Co-authored-by: Orcun <59258329+sorcun@users.noreply.github.com>
- Fix#694: added sanitization during the public IP address configuration and
switch to AWS checkip since the Akamai service doesn't support HTTPS.
- Add validation to cover an unlikely case where: server is behind NAT,
checkip service is unreachable and user doesn't provide input when asked for
the public IP address or hostname.
- Other small improvements not worth describing in detail.
