1 files changed, 289 insertions, 0 deletions

diff --git a/scripts/dns-forwarding/vyatta-dns-forwarding.pl b/scripts/dns-forwarding/vyatta-dns-forwarding.pl
new file mode 100644
index 00000000..73a4bbe4
--- /dev/null
+++ b/scripts/dns-forwarding/vyatta-dns-forwarding.pl
@@ -0,0 +1,289 @@
+#!/usr/bin/perl
+#
+# Module: vyatta-dns-forwarding.pl
+#
+# **** License ****
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2 as
+# published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful, but
+# WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+# General Public License for more details.
+#
+# This code was originally developed by Vyatta, Inc.
+# Portions created by Vyatta are Copyright (C) 2008 Vyatta, Inc.
+# All Rights Reserved.
+#
+# Author: Mohit Mehta
+# Date: August 2008
+# Description: Script to glue Vyatta CLI to dnsmasq daemon
+#
+# **** End License ****
+#
+
+use lib "/opt/vyatta/share/perl5/";
+use VyattaConfig;
+use VyattaMisc;
+use Getopt::Long;
+
+use strict;
+use warnings;
+
+my $dnsforwarding_init = '/etc/init.d/dnsmasq';
+my $dnsforwarding_conf = '/etc/dnsmasq.conf';
+
+
+sub dnsforwarding_restart {
+    system("$dnsforwarding_init restart >&/dev/null");
+    print "Setting up DNS forwarding.\n";
+}
+
+sub dnsforwarding_stop {
+    system("$dnsforwarding_init stop >&/dev/null");
+    print "Stopping DNS forwarding.\n";
+}
+
+sub dnsforwarding_get_constants {
+    my $output;
+
+    my $date = `date`;
+    chomp $date;
+    $output  = "#\n# autogenerated by vyatta-dns-forwarding.pl on $date\n#\n";
+    $output .= "log-facility=/var/log/dnsmasq.log\n";
+    system("rm -f /var/log/dnsmasq.log; touch /var/log/dnsmasq.log");
+    return $output;
+}
+
+sub dnsforwarding_get_values {
+
+    my $dhclient_script = shift;
+
+    my $output = '';
+    my $config = new VyattaConfig;
+    my $use_dnsmasq_conf = 0;
+    my (@ignore_interfaces, $cache_size, @use_nameservers, $use_system_nameservers, @use_dhcp_nameservers);
+
+    $config->setLevel("service dns forwarding");
+
+    if ($dhclient_script == 1){
+           $config->{_active_dir_base} = "/opt/vyatta/config/active/";
+           @ignore_interfaces = $config->returnOrigValues("ignore-interface");
+           $cache_size = $config->returnOrigValue("cache-size");
+           @use_nameservers = $config->returnOrigValues("name-server");
+           $use_system_nameservers = $config->existsOrig("system");
+           @use_dhcp_nameservers = $config->returnOrigValues("dhcp");
+
+    } else {
+           @ignore_interfaces = $config->returnValues("ignore-interface");
+           $cache_size = $config->returnValue("cache-size");
+           @use_nameservers = $config->returnValues("name-server");
+           $use_system_nameservers = $config->exists("system");
+	   @use_dhcp_nameservers = $config->returnValues("dhcp");
+    }
+
+    if (@ignore_interfaces != 0) {
+       foreach my $interface (@ignore_interfaces) {
+          $output .= "except-interface=$interface\n";
+       }
+    }
+
+    if (defined $cache_size) {
+        $output .= "cache-size=$cache_size\n";
+    }
+
+    if (@use_nameservers != 0){
+        $use_dnsmasq_conf = 1;
+        foreach my $cli_nameserver (@use_nameservers) {
+                   $output .= "server=$cli_nameserver\t# statically configured\n";
+           }
+    }
+
+    if (defined($use_system_nameservers)) {
+	$use_dnsmasq_conf = 1;
+        my $sys_config = new VyattaConfig;
+        $sys_config->setLevel("system");
+        my @system_nameservers;
+        if ($dhclient_script == 1){
+            $sys_config->{_active_dir_base} = "/opt/vyatta/config/active/";
+            @system_nameservers = $sys_config->returnOrigValues("name-server");
+        } else {
+            @system_nameservers = $sys_config->returnValues("name-server");
+        }
+        if (@system_nameservers > 0) {
+           foreach my $system_nameserver (@system_nameservers) {
+                   $output .= "server=$system_nameserver\t# system\n";
+           }     
+        }
+    }
+
+    if (@use_dhcp_nameservers != 0) {
+	$use_dnsmasq_conf = 1;
+        foreach my $interface (@use_dhcp_nameservers) {
+           my $dhcp_nameserver_count=`grep nameserver /etc/resolv.conf.dhclient-new-$interface | wc -l`;
+           if ($dhcp_nameserver_count > 0) {
+	       my @dhcp_nameservers = `grep nameserver /etc/resolv.conf.dhclient-new-$interface`;
+	       for my $each_nameserver (@dhcp_nameservers) {
+	          my @nameserver = split(/ /, $each_nameserver, 2);
+                  my $ns = $nameserver[1];
+                  chomp $ns;
+                  $output .= "server=$ns\t# dhcp $interface\n";
+               }
+           } 
+        }
+    }
+
+    if ($use_dnsmasq_conf == 1) {
+        $output .= "resolv-file=/etc/dnsmasq.conf\n";
+    }
+
+    return $output;
+}
+
+sub dnsforwarding_write_file {
+    my ($config) = @_;
+
+    open(my $fh, '>', $dnsforwarding_conf) || die "Couldn't open $dnsforwarding_conf - $!";
+    print $fh $config;
+    close $fh;
+}
+
+sub check_nameserver {
+
+    my $cmd = `grep nameserver /etc/resolv.conf|wc -l`;
+    return $cmd;
+}
+
+sub check_system_nameserver {
+
+    my $config = new VyattaConfig;
+    $config->setLevel("system");
+    my @system_nameservers = $config->returnValues("name-server");
+    return(@system_nameservers);
+
+}
+
+sub check_dhcp_nameserver {
+
+    my $intf = shift;
+    my $cmd = `grep nameserver /etc/resolv.conf.dhclient-new-$intf|wc -l`;
+    return $cmd;
+}
+
+sub is_dhcp_enabled {
+    my $intf = shift;
+
+    my $config = new VyattaConfig;
+
+    if ($intf =~ m/^eth/) {
+        if ($intf =~ m/(\w+)\.(\d+)/) {
+            $config->setLevel("interfaces ethernet $1 vif $2");
+        } else {
+            $config->setLevel("interfaces ethernet $intf");
+        }
+    } elsif ($intf =~ m/^br/) {
+        $config->setLevel("interfaces bridge $intf");
+    } else {
+        #
+        # currently we only support dhcp on ethernet
+        # and bridge interfaces.
+        #
+        return 0;
+    }
+    my @addrs = $config->returnOrigValues("address");
+    foreach my $addr (@addrs) {
+        if (defined $addr && $addr eq "dhcp") {
+            return 1;
+        }
+    }
+    return 0;
+}
+
+sub check_dhcp_interface {
+
+    my $interface = shift;
+
+    if (!is_dhcp_enabled($interface)) {
+       print "$interface is not using DHCP to get an IP address\n";
+       return 0;
+    }
+
+    if (-e "/var/run/vyatta/dhclient/dhclient_release_$interface") {
+       # dhcp released for the interface
+       print "DHCP lease for $interface has been released.\n";
+       print "Renew lease for $interface before setting this parameter.\n";
+       return 0;
+    }
+
+    return 1;
+}
+
+
+#
+# main
+#
+
+my ($update_dnsforwarding, $stop_dnsforwarding, $system_nameserver, $dhcp_interface, $dhcp_interface_nameserver, $dhclient_script);
+
+GetOptions("update-dnsforwarding!"         => \$update_dnsforwarding,
+           "stop-dnsforwarding!"           => \$stop_dnsforwarding,
+           "system-nameserver!"            => \$system_nameserver,
+           "dhcp-interface-nameserver=s"   => \$dhcp_interface_nameserver,
+	   "dhclient-script!"              => \$dhclient_script,
+           "dhcp-interface=s"              => \$dhcp_interface);
+
+if (defined $system_nameserver) {
+    my $system_nameserver_exists = check_system_nameserver();
+    if ($system_nameserver_exists < 1){
+       print "Warning: No DNS servers set in system to forward queries.\n";
+    }
+}
+
+if (defined $dhcp_interface_nameserver) {
+    my $dhcp_interface_nameserver_exists = check_dhcp_nameserver($dhcp_interface_nameserver);
+    if ($dhcp_interface_nameserver_exists < 1){
+	print "Warning: No DNS servers received from DHCP server for $dhcp_interface_nameserver.\n";
+    }
+}
+
+if (defined $dhcp_interface) {
+    if (!check_dhcp_interface($dhcp_interface)){
+        exit 1;
+    }
+}
+
+if (defined $update_dnsforwarding) {
+    my $config;
+    my $vyatta_config = new VyattaConfig;
+
+    $vyatta_config->setLevel("service dns forwarding");
+    my $use_system_nameservers = $vyatta_config->exists("system");
+    my @use_dhcp_nameservers = $vyatta_config->returnValues("dhcp");
+    my @use_nameservers = $vyatta_config->returnValues("name-server");
+
+    if (!(defined $use_system_nameservers) && (@use_dhcp_nameservers == 0) && (@use_nameservers == 0)) {
+       my $nameserver_exists = check_nameserver();
+       if ($nameserver_exists < 1){
+           print "Warning: No DNS servers ('system set' or 'dhcp received') to forward queries.\n";
+       }
+    }    
+
+    my $called_from_dhclient_script = 0;
+    if (defined $dhclient_script){
+	$called_from_dhclient_script = 1;
+    }
+    $config  = dnsforwarding_get_constants();
+    $config .= dnsforwarding_get_values($called_from_dhclient_script);
+    dnsforwarding_write_file($config);
+    dnsforwarding_restart();
+}
+
+if (defined $stop_dnsforwarding) {
+    dnsforwarding_stop();
+}
+
+exit 0;
+
+# end of file
+