#!/bin/sh

## Prevent any routing directly to outside (must go through openvpn):
iptables -t mangle -I FORWARD 1 -o eth0 -j DROP
iptables -t mangle -I FORWARD 2 -i eth0 -j DROP

## Add openvpn to systemd
cp /rw/config/openvpn-client.service /etc/systemd/system/
sleep 1; sync
systemctl --no-block enable openvpn-client.service
systemctl --no-block start openvpn-client.service