#!/bin/sh

# this version of dante comes without preloading support
# and without librwap support

# go to http://www.inet.no/dante/ and download verison 1.1.8
# to get the documentation, examples and man pages.

# there is also a sample sockd.conf.sample if you prefer
# that. Then uncomment everything except the
# last 2 lines, which call sockd itself

# First of all : dante needs libcrypt !
# There is a dante package that has one included.

if [ ! -f /lib/libcrypt.so ] ; then
  echo 'You first have to get libcrypt or you have to install the dantecrypt package'
  exit 1
fi

. /etc/config

cat > /etc/sockd.conf << EOF
logoutput: syslog
internal: $INSIDE_DEV port = 1080
external: $OUTSIDE_DEV
method: none
extension: bind
connecttimeout: 30
iotimeout: 0
client pass {
        from: $INSIDE_NETWORK/$INSIDE_NETMASK port 1-65535 to: $INSIDE_IP/32
}
client block {
        from: 0.0.0.0/0 to: 0.0.0.0/0
        log: connect error
}
block {
        from: 0.0.0.0/0 to: 127.0.0.0/8
        log: connect error
}
pass {
        from: $INSIDE_NETWORK/$INSIDE_NETMASK to: 0.0.0.0/0
        command: bind
        log: connect error
}
pass {
        from: 0.0.0.0/0 to: $INSIDE_NETWORK/$INSIDE_NETMASK
        command: bindreply udpreply
        log: connect error
}
pass {
        from: $INSIDE_NETWORK/$INSIDE_NETMASK to: 0.0.0.0/0
        protocol: tcp udp
}
EOF

/bin/sockd -D
cat /licenses/dante