Как сделать так, чтобы скрипт запускался автоматически при событиях up / down интерфейса tun0?

Question 1

Я использую VPN-клиент для подключения к своим корпоративным серверам. Создает интерфейс tun0 после запуска клиента. Я написал скрипт, который устанавливает конкретные маршруты, указывающие на интерфейс tun0, а остальное использует обычное соединение Wi-Fi. Таким образом, только трафик, связанный с моим офисом, идет через VPN, а остальное - через домашнее интернет-соединение. Как сделать так, чтобы скрипт автоматически запускался при событиях up / down интерфейса tun0?

Question 2

Я не уверен в tun0, но я думаю сценарий в /etc/network/if-up.d/ и /etc/network/if-down.d/ вызываются, когда интерфейс повышается или вниз, соответственно.

В сценарии можно определить, какому интерфейсу интересно от содержания переменной IFACE.

Безусловно, добавьте простой сценарий к /etc/network/if-up.d/ который содержание

#!/bin/sh
# filename: tun-up

if [ "$IFACE" = tun0 ]; then
  echo "tun0 up" >> /var/log/tun-up.log
fi

сделайте это исполняемым файлом

sudo chmod +x /etc/network/if-up.d/tun-up

затем посмотрите, зарегистрированы ли события в /var/log/tun-up.log

Question 3

Question 4

gksudo gedit /etc/network/interfaces

Добавить:

auto tun0
iface tun0 inet manual
    up COMMAND

COMMAND может быть командой, например ip route add something... или путем сценария с разрешениями исполняемого файла (chmod +x), в конечном итоге сохраненными в /etc/network/if-up.d/. [ 1113]

Вместо up вы можете использовать post-up, down, post-down.

Документация :

ОПЦИИ IFACE

   The  following  "command"  options  are  available for every family and
   method.  Each of these options can be given multiple times in a  single
   stanza,  in  which case the commands are executed in the order in which
   they appear in the stanza.  (You can ensure a command  never  fails  by
   suffixing them with "|| true".)

   pre-up command
          Run  command  before bringing the interface up.  If this command
          fails then ifup aborts, refraining from marking the interface as
          configured,  prints  an  error message, and exits with status 0.
          This behavior may change in the future.

   up command

   post-up command
          Run command after bringing the interface up.   If  this  command
          fails then ifup aborts, refraining from marking the interface as
          configured (even though it has really been  configured),  prints
          an  error  message,  and exits with status 0.  This behavior may
          change in the future.

   down command

   pre-down command
          Run command before taking the interface down.  If  this  command
          fails  then  ifdown  aborts, marks the interface as deconfigured
          (even though it has not really  been  deconfigured),  and  exits
          with status 0.  This behavior may change in the future.

   post-down command
          Run  command  after  taking the interface down.  If this command
          fails then ifdown aborts, marks the interface  as  deconfigured,
          and  exits  with  status  0.   This  behavior  may change in the
          future.

   There exists for each  of  the  above  mentioned  options  a  directory
   /etc/network/if-<option>.d/  the  scripts  in  which  are  run (with no
   arguments)  using  run-parts(8)  after  the  option  itself  has   been
   processed.  Please  note  that  as post-up and pre-down are aliases, no
   files in the corresponding directories are processed.  Please  use  if-
   up.d and if-down.d directories instead.

   All  of  these  commands  have  access  to  the  following  environment
   variables.

   IFACE  physical name of the interface being processed

   LOGICAL
          logical name of the interface being processed

   ADDRFAM
          address family of the interface

   METHOD method of the interface (e.g., static)

   MODE   start if run from ifup, stop if run from ifdown

   PHASE  as per MODE, but with finer granularity, distinguishing the pre-
          up, post-up, pre-down and post-down phases.

   VERBOSITY
          indicates whether --verbose was used; set to 1 if so, 0 if not.

   PATH   the   command   search   path:  /usr/local/sbin:/usr/local/bin:���
          /usr/sbin:/usr/bin:/sbin:/bin

   Additionally, all options given in an interface definition  stanza  are
   exported to the environment in upper case with "IF_" prepended and with
   hyphens  converted  to  underscores  and  non-alphanumeric   characters
   discarded.

   When  ifupdown  is  being  called  with  the --all option, before doing
   anything to interfaces, if calls all the hook scripts (pre-up or  down)
   with  IFACE set to "--all", LOGICAL set to the current value of --allow
   parameter  (or  "auto"   if   it's   not   set),   ADDRFAM="meta"   and
   METHOD="none".   After all the interfaces have been brought up or taken
   down, the appropriate scripts (up or post-down) are executed.

Question 5

Я использовал ] systemd для запуска сценария после network-online.target . Мой сценарий <путь> /script.sh.

1.) sudo systemctl edit --force --full my-script.service :

[Unit]
Description=My script after network available
Wants=network-online.target
After=network-online.target

[Service]
Type=simple
User=root
ExecStart=<path>/script.sh

[Install]
WantedBy=multi-user.target

2.) sudo systemctl enable my-script.service

3.) sudo systemctl start my-script.service

enzotib · Accepted Answer · 7 July 2013 в 03:10