add msca-openvpn role

[awsible] / roles / msca-openvpn / files / event-log.sh

diff --git a/roles/msca-openvpn/files/event-log.sh b/roles/msca-openvpn/files/event-log.sh
new file mode 100644 (file)
index 0000000..d959710
--- /dev/null
+++ b/roles/msca-openvpn/files/event-log.sh
@@ -0,0 +1,21 @@
+#!/bin/bash
+
+LOGPATH=/var/log/openvpn
+NOW=$(date --iso-8601=sec)
+#NOW=$(date '+%Y-%m-%dT%T%z')
+
+case "${script_type}" in
+       client-connect)
+               extra=""
+               dst="connect.log"
+       ;;
+       client-disconnect)
+               extra=" bytes sent/recv: ${bytes_sent}/${bytes_received} seconds: ${time_duration}"
+               dst="disconnect.log"
+       ;;
+       up|down|ipchange|route-up|tls-verify|auth-user-pass-verify|learn-address|*)
+               exit 1
+       ;;
+esac
+
+echo "${NOW} [${script_type}] ${common_name} from ${trusted_ip} assigned ${ifconfig_pool_remote_ip}${extra}" > "${LOGPATH}/${dst}"