41 lines
1.0 KiB
Bash
Executable File
41 lines
1.0 KiB
Bash
Executable File
#!/bin/bash
|
|
#
|
|
# wireguard-stack
|
|
# A set of bash scripts for installing and managing a WireGuard VPN server.
|
|
# https://git.stack-source.com/msb/wireguard-stack
|
|
# MIT License Copyright (c) 2021 Matthew Saunders Brown
|
|
#
|
|
# wg-peer-audit.sh
|
|
# check that peer config file exists for all currently active peers
|
|
# this is basis of a "cleanup" script to remove configs for invalid
|
|
# old or deleted clients
|
|
|
|
# require root
|
|
if [ "${EUID}" -ne 0 ]; then
|
|
echo "This script must be run as root"
|
|
exit 1
|
|
fi
|
|
|
|
# get all peers in running wireguard server
|
|
peers=($(wg|grep peer|cut -d ' ' -f 2))
|
|
|
|
# get number of peers found above
|
|
peersCount=${#peers[@]}
|
|
|
|
# if any peers found cycle through them
|
|
if [ $peersCount -gt 0 ]; then
|
|
|
|
for (( i=0; i<${peersCount}; i++ ));
|
|
do
|
|
grep -q ${peers[$i]} /etc/wireguard/peers/*.conf
|
|
match=$?
|
|
if [[ $match != 0 ]]; then
|
|
echo "did not find peer config for: ${peers[$i]}"
|
|
echo "consider removing peer now"
|
|
#wg set wg0 peer ${peers[$i]} remove
|
|
#wg-quick save wg0
|
|
fi
|
|
done
|
|
|
|
fi
|