Dockerfile

ARG OS_RELEASE=trusty
FROM ubuntu:${OS_RELEASE}
ARG OS_RELEASE

# override to udp at runtime if desired
ENV PROTO tcp
EXPOSE 1194/udp 1194/tcp

ENV CONSUL_TEMPLATE_VERSION 0.18.2
ENV CONSUL_TEMPLATE_URL https://releases.hashicorp.com/consul-template/${CONSUL_TEMPLATE_VERSION}/consul-template_${CONSUL_TEMPLATE_VERSION}_linux_amd64.zip

ENV CIPHER AES-256-CBC
ENV DNS_1 208.67.222.222
ENV DNS_2 208.67.220.220
ENV LOG_VERBOSITY 4
ENV MAX_CLIENTS 256
ENV PING_SECONDS 10
ENV PING_RESTART_SECONDS 60
ENV PUSH_DNS true
ENV RENEG_SECONDS 3600
ENV ROUTE_ALL_TRAFFIC true

ENV ROUTE_SUBNET "10.1.0.0 255.255.0.0"
ENV VPN_NET "10.10.250.0"

ENV BINDER_NAME openvpn
ENV TLD com
# require these to set by the user or error out
# since nothing will work otherwise
#ENV DOMAIN mydomain
#ENV BIND_PASSWORD mydomain

ENV OPENVPN_BRANCH "release/2.4"

RUN apt-get -qy update && apt-get -qy install curl software-properties-common
RUN add-apt-repository ppa:foxpass/openvpn-auth-ldap
RUN sh -c 'curl -fsSL https://swupdate.openvpn.net/repos/repo-public.gpg | sudo apt-key add -'
RUN sh -c 'echo "deb http://build.openvpn.net/debian/openvpn/${OPENVPN_BRANCH} ${OS_RELEASE} main" > /etc/apt/sources.list.d/openvpn-aptrepo.list'
RUN apt-get update && apt-get install -y --force-yes iptables openvpn openvpn-auth-ldap unzip && rm -rf /var/lib/apt/lists/*

RUN curl -o /tmp/consul-template.zip -L $CONSUL_TEMPLATE_URL && ( cd /usr/bin && unzip /tmp/consul-template.zip )

ADD etc/openvpn/ /etc/openvpn/
ADD docker-entrypoint.sh /usr/bin/docker-entrypoint.sh

WORKDIR /etc/openvpn
ENTRYPOINT docker-entrypoint.sh