├── README.md
├── cpihole
    └── Dockerfile
├── docker-compose.yml
├── example.env
├── sniproxyvpn
    ├── Dockerfile
    └── start.sh
└── webui
    ├── Dockerfile
    └── code
        ├── add-domain.php
        ├── assets
            ├── app.css
            └── loading.gif
        ├── domains.php
        ├── footer.php
        ├── header.php
        ├── index.php
        ├── init.php
        └── vpnconnection.php


/README.md:
--------------------------------------------------------------------------------
 1 | # SmartGW
 2 | 
 3 | SmartGW is a VPN Gateway/Proxy that allows you to route HTTP/HTTPS traffic for specific internet domains to go through VPN tunnel while keeping the other traffic goes through your ISP gateway.
 4 | 
 5 | **Example:**
 6 | - HTTP/HTTPS for **netflix.com** (from all devices in your network) --> Will go through your **VPN tunnel**.
 7 | - HTTP/HTTPS for **youtube.com** (from all devices in your network) --> Will go through your **ISP gateway**.
 8 | 
 9 | **This can help you to:**
10 | - Access Geo-restricted content.
11 | - Access any blocked domains.
12 | - Use it with all your devices (Laptop, Mobiles, SmartTV...etc).
13 | - Utilize your full ISP network speed to access any site that you don't want it to go through the VPN tunnel.
14 | - Work with <a href="https://pi-hole.net/">Pi-Hole</a> for Network-wide Ad Blocking
15 | - More browsing privacy?.
16 | 
17 | ## Features
18 | * Works with all devices in local network (PC, Laptop, Mobiles, SmartTV...etc).
19 | * No need to change any settings in your devices, install SmartGW and configure the DNS in your internet router.
20 | * Simple GUI to check SmartGW status and to add/remove any domain.
21 | * Automatically connect to the fastest low latency VPN servers in a given country.
22 | * Auto retry and auto-failover to next best VPN server if the connection dies.
23 | 
24 | ## How difficult it's?
25 | The setup is straightforward, you need a Linux server, and a <a href="http://nordvpn.com">NordVPN</a> VPN subscription.
26 | 
27 | ## What Do I need to start?
28 | 1. Linux server (any old laptop or <a href="https://en.wikipedia.org/wiki/Single-board_computer">single-board</a> such us <a href="https://www.raspberrypi.org/">Raspberry Pi</a> will work).
29 | 2. <a href="http://nordvpn.com">NordVPN</a> VPN subscription.
30 | 3. Static IP in your local network.
31 | 4. <a href="https://docker.com/">Docker engine</a> with basic know how.
32 | 
33 | ## Instructions
34 | 1. Install Linux.
35 | 2. Set a static IP in your server.
36 | 3. Install Docker.
37 | 4. Download SmartGW source code.
38 | 5. Rename example.env to .env and change the variables
39 | ```
40 | #Your NordVPN Username
41 | VPN_USERNAME=yourUsername@nordvpn.com
42 | #Your NordVPN Password
43 | VPN_PASSWORD=yourNordvpnPassword
44 | #VPN country
45 | VPN_OPTIONS=us
46 | #Local network CIDR network
47 | CIDR_NETWORK=192.168.1.0/24
48 | #No need to change this
49 | VPN_DNS1=103.86.96.100
50 | #No need to change this
51 | VPN_DNS2=103.86.99.100
52 | #Pi-Hole web admin password
53 | PIHOLE_PASSWORD=pihole
54 | ```
55 | 6. Run SmartGW docker-compose
56 | ``` bash
57 | docker-compose up
58 | ```
59 | 7. Open your browser and type your SmartGW IP (port 8080) (http://Your-Server-IP:8080/) and start adding your domains (e.g., yahoo.com).
60 | 8. Define SmartGW IP address as the only DNS entry in the router.
61 | ```
62 | Login to your router’s configuration page and find the DHCP/DNS settings. 
63 | Note: make sure you adjust this setting under your LAN settings and not the WAN.
64 | ```
65 | ![6e475c318358d8266052015e28841a72b3cc3b84](https://user-images.githubusercontent.com/957921/44320410-9cccc200-a44a-11e8-88fe-570d01eb2e93.png)
66 | 
67 | Enjoy!.
68 | 
69 | ## Screenshots
70 | ![Screen Shot 2019-04-27 at 3 57 54 AM](https://user-images.githubusercontent.com/957921/56842702-fc645280-68a0-11e9-83df-0a9c4089a87e.png)
71 | ![Screen Shot 2019-04-27 at 3 58 13 AM](https://user-images.githubusercontent.com/957921/56842707-fff7d980-68a0-11e9-975b-1e81e1bc6133.png)
72 | .
73 | 


--------------------------------------------------------------------------------
/cpihole/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM pihole/pihole:latest
 2 | 
 3 | 
 4 | RUN apt-get update && apt-get install -y \
 5 | inotify-tools \
 6 | && mkdir -p /etc/dnsmasq.d \
 7 | && touch /etc/dnsmasq.d/smartgw.conf \
 8 | && mkdir -p /etc/services.d/inotifywait \
 9 | && echo -e '#!/usr/bin/with-contenv bash' "\nwhile true\n\
10 | do\n\
11 |     inotifywait -e create -e modify  /etc/dnsmasq.d/smartgw.conf\n\
12 |     pkill pihole-FTL\n\
13 | done\n" > /inotifywait.sh \
14 | && chmod 755 /inotifywait.sh \
15 | && echo -e '#!/usr/bin/with-contenv bash' "\ns6-echo 'Starting inotifywait'\n/inotifywait.sh" > /etc/services.d/inotifywait/run \
16 | && echo -e '#!/usr/bin/with-contenv bash' "\ns6-echo 'Stopping inotifywait'\nkillall -9 inotifywait.sh inotifywait " > /etc/services.d/inotifywait/finish \
17 | && chmod 755 /etc/services.d/inotifywait/run \
18 | && chmod 755 /etc/services.d/inotifywait/finish
19 | 


--------------------------------------------------------------------------------
/docker-compose.yml:
--------------------------------------------------------------------------------
 1 | version: "3"
 2 | 
 3 | # More info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
 4 | services:
 5 |   # pihole:
 6 |   #   container_name: pihole
 7 |   #   image: pihole/pihole:latest
 8 |   #   ports:
 9 |   #     - "53:53/tcp"
10 |   #     - "53:53/udp"
11 |   #     - "67:67/udp"
12 |   #     - "800:80/tcp"
13 |   #     - "4430:443/tcp"
14 |   #   environment:
15 |   #     TZ: 'America/Chicago'
16 |   #     WEBPASSWORD: ${PIHOLE_PASSWORD}
17 |   #   # Volumes store your data between container upgrades
18 |   #   volumes:
19 |   #      - etcpihole:/etc/pihole/
20 |   #      - etcdnsmasqd:/etc/dnsmasq.d/
21 |   #   dns:
22 |   #     - 127.0.0.1
23 |   #     - 1.1.1.1
24 |   #   # Recommended but not required (DHCP needs NET_ADMIN)
25 |   #   #   https://github.com/pi-hole/docker-pi-hole#note-on-capabilities
26 |   #   cap_add:
27 |   #     - NET_ADMIN
28 |   #   restart: unless-stopped
29 |   cpihole:
30 |     build:
31 |        context: ./cpihole
32 |     container_name: cpihole
33 |     ports:
34 |       - "53:53/tcp"
35 |       - "53:53/udp"
36 |       - "67:67/udp"
37 |       - "8081:80/tcp"
38 |       - "4431:443/tcp"
39 |     environment:
40 |       TZ: 'America/Chicago'
41 |       WEBPASSWORD: ${PIHOLE_PASSWORD}
42 |     # Volumes store your data between container upgrades
43 |     volumes:
44 |        - etcpihole:/etc/pihole/
45 |        - etcdnsmasqd:/etc/dnsmasq.d/
46 |     dns:
47 |       - 127.0.0.1
48 |       - 1.1.1.1
49 |     cap_add:
50 |       - NET_ADMIN
51 |     restart: unless-stopped
52 |   webui:
53 |     build:
54 |       context: ./webui
55 |     container_name: webui
56 |     privileged: true
57 |     ports:
58 |       - "8080:8080/tcp"
59 |     environment:
60 |       SERVER_IP: ${SERVER_IP}
61 |     volumes:
62 |        - etcdnsmasqd:/etc/dnsmasq.d/
63 |     restart: unless-stopped
64 |   sniproxyvpn:
65 |     build:
66 |       context: ./sniproxyvpn
67 |     container_name: sniproxyvpn
68 |     privileged: true
69 |     ports:
70 |       - "80:80/tcp"
71 |       - "443:443/tcp"
72 |     environment:
73 |       VPN_USERNAME: ${VPN_USERNAME}
74 |       VPN_PASSWORD: ${VPN_PASSWORD}
75 |       VPN_OPTIONS: ${VPN_OPTIONS}
76 |       CIDR_NETWORK: ${CIDR_NETWORK}
77 |       VPN_DNS1: ${VPN_DNS1}
78 |       VPN_DNS2: ${VPN_DNS2}
79 |     restart: unless-stopped
80 | volumes:
81 |   etcpihole:
82 |     driver: local
83 |   etcdnsmasqd:
84 |     driver: local


--------------------------------------------------------------------------------
/example.env:
--------------------------------------------------------------------------------
1 | #Rename this file to .env and change the below variables
2 | VPN_USERNAME=sdasdas@example.com
3 | VPN_PASSWORD=sadasdas
4 | VPN_OPTIONS=us
5 | CIDR_NETWORK=192.168.1.0/24
6 | VPN_DNS1=103.86.96.100
7 | VPN_DNS2=103.86.99.100
8 | PIHOLE_PASSWORD=pihole
9 | 


--------------------------------------------------------------------------------
/sniproxyvpn/Dockerfile:
--------------------------------------------------------------------------------
  1 | FROM alpine:edge
  2 | MAINTAINER Ahmad <ahmadt@gmail.com> https://github.com/mrahmadt/
  3 | 
  4 | EXPOSE 80
  5 | EXPOSE 443
  6 | 
  7 | ENV VPN_USERNAME="username"
  8 | ENV VPN_PASSWORD="password"
  9 | ENV VPN_OPTIONS="options"
 10 | ENV CIDR_NETWORK="192.168.1.0/24"
 11 | ENV VPN_DNS1="103.86.96.100"
 12 | ENV VPN_DNS2="103.86.99.100"
 13 | 
 14 | 
 15 | RUN apk --update upgrade &&\
 16 |     apk add runit &&\
 17 |     rm -rf /var/cache/apk/* &&\
 18 |     mkdir -p /etc/service &&\
 19 |     mkdir /initser
 20 | 
 21 | WORKDIR  /initser
 22 | 
 23 | 
 24 | #################
 25 | #### dnsmasq ####
 26 | #################
 27 | RUN apk add --update dnsmasq &&\
 28 |     rm -rf /var/cache/apk/* &&\
 29 |     echo -e "localise-queries\n\
 30 | no-resolv\n\
 31 | cache-size=10000\n\
 32 | local-ttl=2\n\
 33 | server=${VPN_DNS1}\n\
 34 | server=${VPN_DNS2}\n\
 35 | domain-needed\n\
 36 | bogus-priv\n\
 37 | local-service\n\
 38 | bind-interfaces\n\
 39 | user=root\n\
 40 | conf-dir=/etc/dnsmasq.d/,*.conf\n\
 41 | " > /etc/dnsmasq.conf && \
 42 |     mkdir /etc/service/dnsmasq &&\
 43 |     echo -e '#!/bin/sh' "\nexec dnsmasq -C /etc/dnsmasq.conf --keep-in-foreground" > /etc/service/dnsmasq/run &&\
 44 |     chmod 755 /etc/service/dnsmasq/run
 45 | 
 46 | COPY start.sh /initser
 47 | RUN chmod 755 /initser/start.sh
 48 | 
 49 | 
 50 | ####################
 51 | ##### SNIPROXY #####
 52 | ####################
 53 | RUN apk add --update sniproxy && \
 54 | 	rm -rf /var/cache/apk/* && \
 55 |     echo -e "user daemon\n\
 56 | pidfile /var/run/sniproxy.pid\n\
 57 | listen 80 {\n\
 58 | proto http\n\
 59 | }\n\
 60 | listen 443 {\n\
 61 | proto tls\n\
 62 | }\n\
 63 | table {\n\
 64 | .* *\n\
 65 | }\n\
 66 | error_log {\n\
 67 | filename /var/log/sniproxy-errors.log\n\
 68 | priority debug\n\
 69 | }\n\
 70 | access_log {\n\
 71 | filename /var/log/sniproxy-access.log\n\
 72 | }\n\
 73 | resolver {\n\
 74 | nameserver 127.0.0.1\n\
 75 | mode ipv4_only\n\
 76 | }\n\
 77 | " > /etc/sniproxy/sniproxy.conf &&\
 78 | mkdir /etc/service/sniproxy &&\
 79 | touch /var/log/sniproxy-errors.log &&\
 80 | touch /var/log/sniproxy-access.log &&\
 81 | chmod 777 /var/log/sniproxy-errors.log &&\
 82 | chmod 777 /var/log/sniproxy-access.log &&\
 83 | echo -e '#!/bin/sh' "\nexec sniproxy -f -c /etc/sniproxy/sniproxy.conf" > /etc/service/sniproxy/run &&\
 84 | chmod 755 /etc/service/sniproxy/run
 85 | 
 86 | ####################
 87 | ##### PYTHON3 ######
 88 | ####################
 89 | RUN set -x && apk add --no-cache python3 && \
 90 |     python3 -m ensurepip && \
 91 |     rm -r /usr/lib/python*/ensurepip && \
 92 |     pip3 install --upgrade pip setuptools && \
 93 |     if [ ! -e /usr/bin/pip ]; then ln -s pip3 /usr/bin/pip ; fi && \
 94 |     if [[ ! -e /usr/bin/python ]]; then ln -sf /usr/bin/python3 /usr/bin/python; fi && \
 95 | 	rm -r /root/.cache
 96 | 
 97 | 
 98 | ####################
 99 | ##### openpyn ######
100 | ####################
101 | 
102 | RUN apk add --update openvpn unzip wget sudo iputils expect && \
103 |     rm -rf /var/cache/apk/* && \
104 | 	python3 -m pip install --upgrade openpyn && \
105 |     echo -e '#!/usr/bin/expect -f' > /initser/setup_openpyn.sh &&\
106 |     echo -e "\n\n\
107 | set username [lindex \$argv 0]\n\
108 | set password [lindex \$argv 1]\n\
109 | \n\
110 | set timeout -1\n\
111 | spawn openpyn --init\n\
112 | match_max 100000\n\
113 | expect \"*\"\n\
114 | expect \"Enter your username\"\n" >> /initser/setup_openpyn.sh &&\
115 | echo -e 'send -- "$username\\r"' "\n" >> /initser/setup_openpyn.sh &&\
116 | echo -e 'expect "Enter the password"' "\n" >> /initser/setup_openpyn.sh &&\
117 | echo -e 'send -- "$password\\r"' "\n" >> /initser/setup_openpyn.sh &&\
118 | echo -e 'expect "*"' "\n" >> /initser/setup_openpyn.sh &&\
119 | echo -e 'send -- "\\r"' "\n" >> /initser/setup_openpyn.sh &&\
120 | echo -e "expect eof\n\
121 | #OK\n\
122 | "  >> /initser/setup_openpyn.sh &&\
123 |     chmod 755 /initser/setup_openpyn.sh &&\
124 |     mkdir /etc/service/openpyn &&\
125 |     echo -e '#!/bin/sh' "\nexec openpyn \$VPN_OPTIONS" > /etc/service/openpyn/run &&\
126 |     chmod 755 /etc/service/openpyn/run
127 | 
128 | # Final cleanup
129 | RUN rm -rf /var/cache/apk/* /tmp/* /var/tmp/*
130 | 
131 | CMD ["/initser/start.sh"]
132 | 


--------------------------------------------------------------------------------
/sniproxyvpn/start.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/sh
 2 | 
 3 | 
 4 | #copied from https://github.com/dperson/openvpn-client/blob/master/openvpn.sh
 5 | ### vpnportforward: setup vpn port forwarding
 6 | # Arguments:
 7 | #   port) forwarded port
 8 | # Return: configured NAT rule
 9 | vpnportforward() { local port="$1" protocol="${2:-tcp}"
10 | 	ip6tables -t nat -A OUTPUT -p $protocol --dport $port -j DNAT \
11 | 		                    --to-destination ::11:$port 2>/dev/null
12 | 	iptables -t nat -A OUTPUT -p $protocol --dport $port -j DNAT \
13 | 			                --to-destination 127.0.0.11:$port
14 | 	echo "Setup forwarded port: $port $protocol"
15 | }
16 | 
17 | ### return_route: add a route back to your network, so that return traffic works
18 | # Arguments:
19 | #   network) a CIDR specified network range
20 | # Return: configured return route
21 | add_route6() { 
22 |     local network="$1" gw="$(ip -6 route | awk '/default/{print $3}')"
23 |     ip -6 route | grep -q "$network" ||  ip -6 route add to $network via $gw dev eth0
24 |     ip6tables -A OUTPUT --destination $network -j ACCEPT 2>/dev/null
25 | }
26 | 
27 | ### return_route: add a route back to your network, so that return traffic works
28 | # Arguments:
29 | #   network) a CIDR specified network range
30 | # Return: configured return route
31 | add_route() { 
32 |     local network="$1" gw="$(ip route |awk '/default/ {print $3}')"
33 |     ip route | grep -q "$network" || ip route add to $network via $gw dev eth0
34 |     iptables -A OUTPUT --destination $network -j ACCEPT
35 | }
36 | 
37 | 
38 | [[ -z "$VPN_USERNAME" ]] && { echo "nordvpn username is empty" ; exit 1; }
39 | [[ -z "$VPN_PASSWORD" ]] && { echo "nordvpn password is empty" ; exit 1; }
40 | [[ -z "$VPN_OPTIONS" ]] && { echo "openpyn options is empty" ; exit 1; }
41 | [[ -z "$CIDR_NETWORK" ]] && { echo "my_network is empty CIDR network (IE 192.168.1.0/24) to allow replies once the VPN is up" ; exit 1; }
42 | 
43 | [[ "${CIDR6_NETWORK:-""}" ]] && add_route6 "$CIDR6_NETWORK"
44 | [[ "${CIDR_NETWORK:-""}" ]] && add_route "$CIDR_NETWORK"
45 | 
46 | 
47 | 
48 | CONTAINER_ALREADY_STARTED="CONTAINER_ALREADY_STARTED"
49 | if [ ! -e $CONTAINER_ALREADY_STARTED ]; then
50 |     touch $CONTAINER_ALREADY_STARTED
51 |     echo "-- First container startup --"
52 |     /initser/setup_openpyn.sh "$VPN_USERNAME" "$VPN_PASSWORD"
53 | else
54 |     echo "-- Not first container startup --"
55 | fi
56 | 
57 | exec /sbin/runsvdir -P /etc/service
58 | 
59 | # --skip-dns-patch Skips DNS patching, leaves /etc/resolv.conf untouched.
60 | # -f, --force-fw-rules  Enforce firewall rules to drop traffic when tunnel breaks , force disable DNS traffic going to any other interface
61 | # --allow INTERNALLY_ALLOWED [INTERNALLY_ALLOWED ...] To be used with "f" to allow ports but ONLY to INTERNAL IP RANGE. for example: you can use your PC as SSH, HTTP server for local devices (i.e. 192.168.1.* range) by "openpyn us --allow 22 80"
62 | 


--------------------------------------------------------------------------------
/webui/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM php:7.3-alpine
 2 | MAINTAINER Ahmad <ahmadt@gmail.com> https://github.com/mrahmadt/
 3 | 
 4 | ENV SERVER_IP="192.168.1.100"
 5 | 
 6 | STOPSIGNAL SIGINT
 7 | 
 8 | RUN	mkdir -p /var/www/html \
 9 | #&& mkdir -p /etc/dnsmasq.d \
10 | #&& touch /etc/dnsmasq.d/smartgw.conf \
11 | #&&	chown -R www-data:www-data /etc/dnsmasq.d \ 
12 | &&	chown -R www-data:www-data /var/www/html
13 | 
14 | WORKDIR /var/www/html
15 | 
16 | RUN	set -x \
17 | &&	apk add --no-cache --virtual .build-deps \
18 | 	sqlite-dev \
19 | &&	docker-php-ext-install pdo_sqlite \
20 | &&	apk del .build-deps
21 | 
22 | COPY code /var/www/html/
23 | #USER	www-data
24 | 
25 | EXPOSE 8080
26 | 
27 | CMD	[ "php", "-S", "[::]:8080", "-t", "/var/www/html" ]


--------------------------------------------------------------------------------
/webui/code/add-domain.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | require_once 'init.php';
 3 | if(isset($_POST['domains']) && $_SERVER['REQUEST_METHOD']  == 'POST'){
 4 | 	$domainsPost = explode("\n",$_POST['domains']);
 5 | 
 6 | 	$domains = [];
 7 | 	foreach($domainsPost as $domain){
 8 | 		$ipaddr = null;
 9 | 		$domain = str_replace(['http://','https://'],'',$domain);
10 | 		if(substr($domain,-1) == '/'){
11 | 			$domain = substr($domain,0,-1);
12 | 		}
13 | 
14 | 		if (strpos($domain, '/') !== false) {
15 | 			$pos =  strpos($domain, '/');
16 | 			$domainOnly = substr($domain,0,$pos);
17 | 			$ipOnly = substr($domain,$pos+1);
18 | 			$domain = trim($domainOnly);
19 | 			$ipaddr = trim($ipOnly);
20 | 		}else{
21 | 			$domain = trim($domain);
22 | 		}
23 | 
24 | 		if($ipaddr == ''){
25 | 			$ipaddr = getenv('SERVER_IP');
26 | 		}
27 | 
28 | 		if($domain!=''){
29 | 			$domains[] = [$domain,$ipaddr];
30 | 		}
31 | 	}
32 | 	
33 | 	$db = new SQLite3(DATABASE_FILE);
34 | 	if(!$db) {
35 | 	   echo $db->lastErrorMsg();
36 | 	   exit;
37 | 	}
38 | 	
39 | 	
40 | 	$stmt = $db->prepare('INSERT INTO domains (domain,ipaddress) VALUES(:domain,:ipaddress)');
41 | 
42 | 	foreach($domains as $domain){
43 | 		$stmt->bindValue(':domain', $domain[0]);
44 | 		$stmt->bindValue(':ipaddress', $domain[1]);
45 | 		$stmt->execute();
46 | 	}
47 |     $db->close();	
48 | 	UpdateDNSMasqDomains();
49 | 	header('Location: domains.php');
50 | 	exit;
51 | }
52 | 
53 | 
54 | 
55 | if(isset($_GET['bulk']) && $_GET['bulk']=='1'){
56 | 	addbulkForm();	
57 | }
58 | addSimpleForm();
59 | 
60 | 
61 | function addSimpleForm(){
62 | require_once 'header.php'
63 | ?>
64 | <h2>Add Domain <span class="float-right"> <a href="add-domain.php?bulk=1" class=" btn btn-primary btn-sm">Bulk</a></span></h2> 
65 | <form action="add-domain.php" method="post">
66 |   <div class="form-group">
67 |     <label for="InputDomain">Domain</label>
68 |     <input type="text" class="form-control" id="DomainFormControlInput" name="domains"  placeholder="youtube.com">
69 |   </div> 
70 | 	<button type="submit" class="btn btn-primary mb-2">Submit</button>
71 | </form>
72 | <?php
73 | require_once 'footer.php';
74 | exit;
75 | }
76 | 
77 | 
78 | 
79 | function addbulkForm(){
80 | require_once 'header.php'
81 | ?>
82 | <h2>Add Domains <span class="float-right"><a href="add-domain.php" class=" btn btn-primary btn-sm">Simple</a></span></h2> 
83 | <form action="add-domain.php" method="post">
84 |   <div class="form-group">
85 |     <label for="FormControlTextarea">Domain(s)</label>
86 |     <textarea class="form-control" id="DomainFormControlTextarea" name="domains" rows="6"></textarea>
87 |   </div>
88 |     <button type="submit" class="btn btn-primary mb-2">Submit</button>
89 | </form>
90 | <?php
91 | require_once 'footer.php';
92 | exit;
93 | }
94 | 
95 | 


--------------------------------------------------------------------------------
/webui/code/assets/app.css:
--------------------------------------------------------------------------------
 1 | body {
 2 |   font-size: .875rem;
 3 | }
 4 | 
 5 | .feather {
 6 |   width: 16px;
 7 |   height: 16px;
 8 |   vertical-align: text-bottom;
 9 | }
10 | .navbar-brand {
11 |   padding-top: .75rem;
12 |   padding-bottom: .75rem;
13 |   font-size: 1rem;
14 | }
15 | 
16 | .smallicon{
17 |   width: 16px;
18 |   height: 16px;
19 | }
20 | .servicestatus{
21 | 	text-width: bold;
22 | }


--------------------------------------------------------------------------------
/webui/code/assets/loading.gif:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/mrahmadt/SmartGW/0a8aa31df5b35cb731c95699aaac5e3d35305640/webui/code/assets/loading.gif


--------------------------------------------------------------------------------
/webui/code/domains.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | require_once 'init.php';
 3 | if(isset($_GET['delete']) && is_numeric($_GET['delete']) ){
 4 | 	$db = new SQLite3(DATABASE_FILE);
 5 | 	$ret =  $db->exec('DELETE FROM domains WHERE id=' . addslashes($_GET['delete']));
 6 |     $db->close();
 7 | 	exit;
 8 | }
 9 | 
10 | if(isset($_GET['action']) && ($_GET['action']=='UpdateDNSMasqDomains') ){
11 | 	UpdateDNSMasqDomains();
12 | 	header('Location: domains.php');
13 | 	exit;
14 | }
15 | 
16 | 
17 | $limit      = ( isset( $_GET['limit'] ) && is_numeric($_GET['limit']) ) ? $_GET['limit'] : 100;
18 | $page       = ( isset( $_GET['page'] ) && is_numeric($_GET['page'])) ? $_GET['page'] : 1;
19 | $links      = ( isset( $_GET['links'] ) && is_numeric($_GET['links'])) ? $_GET['links'] : 7;
20 | 
21 | $Paginator = new Paginator(DATABASE_FILE,'SELECT COUNT(id) AS total FROM domains');
22 | $result = $Paginator->getData('SELECT * FROM domains ORDER BY id DESC',$limit,$page);
23 | 
24 | require_once 'header.php';
25 | ?>
26 | <h2>Domains <span class="float-right"><a href="add-domain.php" class=" btn btn-primary btn-sm">Add</a> <a href="add-domain.php?bulk=1" class=" btn btn-primary btn-sm">Bulk</a></span></h2> 
27 | <div class="table-responsive">
28 |   <table class="table table-striped table-sm">
29 |     <thead>
30 |       <tr>
31 |         <th>Domain</th>
32 | 				<th>IP</th>
33 |         <th>Action</th>
34 |       </tr>
35 |     </thead>
36 |     <tbody>
37 | 	<?php 
38 | 	foreach($result->data as $row){
39 | 	$domain = strip_tags($row['domain']);
40 | 	$ipaddress = strip_tags($row['ipaddress']);
41 | 	$id = $row['id'];
42 | 	?>
43 |       <tr id="trDomain<?php echo $id;?>">
44 |         <td><a href="http://<?php echo $domain;?>" target=_blank><?php echo $domain;?></a></td>
45 | 				<td><?php echo $ipaddress;?></td>
46 |         <td><a href="#" data-id="<?php echo $id;?>" class="btn btn-danger btn-sm deleteDomain">Delete</a></td>
47 |       </tr>
48 | 	<?php }?>
49 |     </tbody>
50 |   </table>
51 | </div>
52 | <?php echo $Paginator->createLinks( $links, 'pagination justify-content-center' ); ?>
53 | <b>Important note:</b> To avoid restarting the DNS service too often, domains are not automatically removed from DNS service. Click on below button once you finish to remove the domains from your DNS service.
54 | <a href="domains.php?action=UpdateDNSMasqDomains" class="btn btn-info btn-block">Restart my DNS</a>
55 | <?php require_once 'footer.php';?>
56 | <script>
57 | $( document ).ready(function() {
58 | 	$('a.deleteDomain').click(function(event) {
59 | 		event.preventDefault();
60 | 		id = $(this).attr('data-id');
61 | 		$('#trDomain'+id).remove();
62 | 		var jqxhr = $.getJSON('domains.php?delete=' + id, function(data) {});
63 | 	});
64 | });
65 | </script>


--------------------------------------------------------------------------------
/webui/code/footer.php:
--------------------------------------------------------------------------------
1 | </main>
2 | </div>
3 | </div>
4 | <script src="https://code.jquery.com/jquery-3.3.1.min.js" integrity="sha256-FgpCb/KJQlLNfOu91ta32o/NMZxltwRo8QtmkMRdAu8=" crossorigin="anonymous"></script><script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.3/umd/popper.min.js" integrity="sha384-ZMP7rVo3mIykV+2+9J3UJ46jBk0WLaUAdn689aCwoqbBJiSnjAK/l8WvCWPIPm49" crossorigin="anonymous"></script>
5 | <script src="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js" integrity="sha384-ChfqqxuZUCnJSK3+MXmPNIyE6ZbWh2IMqE241rYiqJxyMiZ6OW/JmZQ5stwEULTy" crossorigin="anonymous"></script>
6 | </body>
7 | </html>
8 | 


--------------------------------------------------------------------------------
/webui/code/header.php:
--------------------------------------------------------------------------------
 1 | <!doctype html>
 2 | <html lang="en">
 3 | <head>
 4 | <meta charset="utf-8">
 5 | <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
 6 | <title>Smart Gateway</title>
 7 | <link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css" integrity="sha384-MCw98/SFnGE8fJT3GXwEOngsV7Zt27NXFoaoApmYm81iuXoPkFOJwJ8ERdknLPMO" crossorigin="anonymous">
 8 | <link href="assets/app.css" rel="stylesheet">
 9 | </head>
10 | <body>
11 | <nav class="navbar navbar-expand-lg navbar-dark bg-dark p-0 pl-2">
12 |   <a class="navbar-brand" href="https://github.com/mrahmadt/SmartGW">Smart Gateway</a>
13 |   <button class="navbar-toggler" type="button" data-toggle="collapse" data-target="#navbarSupportedContent" aria-controls="navbarSupportedContent" aria-expanded="false" aria-label="Toggle navigation">
14 |     <span class="navbar-toggler-icon"></span>
15 |   </button>
16 |   <div class="collapse navbar-collapse" id="navbarSupportedContent">
17 |       <ul class="navbar-nav mr-auto">
18 |           <li class="nav-item"><a class="nav-link" href="add-domain.php">Add Domain</a></li>
19 |           <li class="nav-item"><a class="nav-link" href="domains.php">Domains</a></li>
20 |           <li class="nav-item"><a class="nav-link" href="index.php">Status</a></li>
21 | 		  
22 |       </ul>
23 |   </div>
24 | </nav>
25 | 
26 | <div class="container-fluid">
27 | <main role="main">
28 | <?php if(isset($alert['success'])){?><br><div class="alert alert-success"><?php echo $alert['success']; ?></div><?php } ?>
29 | 
30 | <?php if(isset($alert['info'])){?><br><div class="alert alert-info"><?php echo $alert['info']; ?></div><?php } ?>
31 | 
32 | <?php if(isset($alert['warning'])){?><br><div class="alert alert-warning"><?php echo $alert['warning']; ?></div><?php } ?>
33 | 
34 | <?php if(isset($alert['danger'])){?><br><div class="alert alert-danger"><?php echo $alert['danger']; ?></div><?php } ?>
35 | 


--------------------------------------------------------------------------------
/webui/code/index.php:
--------------------------------------------------------------------------------
 1 | <?php
 2 | require_once 'init.php';
 3 | require_once 'header.php';
 4 | ?>
 5 | <h2>Status</h2>
 6 | <div class="table-responsive">
 7 |   <table class="table table-striped table-sm">
 8 |     <thead>
 9 |       <tr>
10 |         <th>Service</th>
11 |         <th>Status</th>
12 |       </tr>
13 |     </thead>
14 |     <tbody>
15 |     <tr>
16 |         <td>DNS IP</td>
17 |         <td><?echo getenv('SERVER_IP');?></td>
18 |       </tr>
19 |       <tr>
20 |         <td>Pi-Hole</td>
21 |         <td><a href="http://<?echo getenv('SERVER_IP');?>:8081/admin"><?echo getenv('SERVER_IP');?>:8081/admin</a></td>
22 |       </tr>
23 |       <tr>
24 |         <td>VPN Connection</td>
25 |         <td id="vpnconnection"><img src="assets/loading.gif" class="smallicon"></td>
26 |       </tr>
27 |     </tbody>
28 |   </table>
29 | </div>
30 | <?php require_once 'footer.php';?>
31 | <script>
32 | $( document ).ready(function() {
33 |   var jqxhr = $.getJSON('vpnconnection.php', function(data) {
34 | 	  if(data.status){
35 | 	  	$('#vpnconnection').html('<font color=green>Connected</font><br/><small>'+data.location+' - '+ data.isp + ' ' + data.ip+'</small>');
36 | 	  }else{
37 | 	  	$('#vpnconnection').html('<font color=red>Not Connected</font>');
38 | 	  }
39 |   }).fail(function() {
40 |       $('#vpnconnection').html('<font color=red>Error (add domain <b><i>nordvpn.com</i></b> to your dns in order for the status to work)</font>');
41 |   });
42 | });
43 | </script>


--------------------------------------------------------------------------------
/webui/code/init.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | 
  3 | define('WEBDIR',dirname(__FILE__));
  4 | define('DATABASE_FILE',WEBDIR . '/database.db');
  5 | 
  6 | if(!file_exists(DATABASE_FILE)) {
  7 | 	createDATABASEFile();
  8 | }
  9 | 
 10 | function createDATABASEFile(){
 11 | 	$sqls = [];
 12 | 	$sqls[] = 'CREATE TABLE `domains` ( `id` INTEGER PRIMARY KEY AUTOINCREMENT, `domain` TEXT UNIQUE, `ipaddress` TEXT  )';
 13 | 	
 14 | 	$db = new SQLite3(DATABASE_FILE);
 15 | 	if(!$db) {
 16 | 	   echo $db->lastErrorMsg();
 17 | 	   exit;
 18 | 	}
 19 | 	foreach($sqls as $sql){
 20 | 	$ret =  $db->exec($sql);
 21 | 		if(!$ret) {
 22 | 			echo $db->lastErrorMsg();
 23 | 			exit;
 24 | 		}
 25 | 	}
 26 | 	$db->close();
 27 | 	exit;
 28 | }
 29 | function UpdateDNSMasqDomains($restartDNS = true){
 30 | 	$db = new SQLite3(DATABASE_FILE);
 31 | 	if(!$db) {
 32 | 	   echo $db->lastErrorMsg();
 33 | 	   exit;
 34 | 	}
 35 | 	$dnsmasqconf = '';
 36 | 	$ret = $db->query( 'SELECT * FROM domains' );
 37 | 	while ( $row = $ret->fetchArray() ) {
 38 | 		$dnsmasqconf .= "address=/".$row['domain']."/".$row['ipaddress']."\n";
 39 | 	}
 40 | 	$db->close();
 41 | 	file_put_contents('/etc/dnsmasq.d/smartgw.conf',$dnsmasqconf);
 42 | 	if($restartDNS) {restartDNS();}
 43 | }
 44 | 
 45 | function restartDNS(){
 46 | 	/*exec('ps -ef|grep pihole-FTL|grep -v grep', $exeout, $return);
 47 | 	if ($return == 0) {
 48 | 		exec('/usr/bin/sudo /usr/sbin/service pihole-FTL restart', $exeout, $return);	
 49 | 	}else{
 50 | 		exec('ps -ef|grep dnsmasq| grep -v local-dnsmasq.conf | grep -v grep', $exeout, $return);
 51 | 		if ($return == 0) {
 52 | 			exec('/usr/bin/sudo /usr/sbin/service dnsmasq restart', $exeout, $return);	
 53 | 		}
 54 | 	}*/
 55 | }
 56 | 
 57 | 
 58 | class Paginator {
 59 |  
 60 |      private $_conn;
 61 |      private $_limit;
 62 |      private $_page;
 63 |      private $_query;
 64 |      private $_total;
 65 | 	 private $_databasefile;
 66 | 
 67 | 	public function __construct($database_file, $count_query ) {
 68 | 		$this->_databasefile = $database_file;
 69 | 		
 70 | 		$this->_conn = new SQLite3($this->_databasefile);
 71 | 		if(!$this->_conn) {
 72 | 		   echo $this->_conn->lastErrorMsg();
 73 | 		   exit;
 74 | 		}
 75 | 	    $ret = $this->_conn->querySingle( $count_query );
 76 | 	    $this->_total = $ret;
 77 | 		$this->_conn->close();
 78 | 	}
 79 | 	
 80 | 	public function getData($query, $limit = 100, $page = 1 ) {
 81 | 
 82 | 
 83 | 	    $this->_query 	= $query;
 84 | 	    $this->_limit   = $limit;
 85 | 	    $this->_page    = $page;
 86 |  
 87 | 	    if ( $this->_limit == 'all' ) {
 88 | 	        $query      = $this->_query;
 89 | 	    } else {
 90 | 	        $query      = $this->_query . " LIMIT " . ( ( $this->_page - 1 ) * $this->_limit ) . ", $this->_limit";
 91 | 	    }
 92 | 		
 93 | 		$this->_conn = new SQLite3($this->_databasefile);
 94 | 		if(!$this->_conn) {
 95 | 		   echo $this->_conn->lastErrorMsg();
 96 | 		   exit;
 97 | 		}
 98 | 		
 99 | 	    $ret             = $this->_conn->query( $query );
100 |  	    $results = [];
101 | 	    while ( $row = $ret->fetchArray() ) {
102 | 	        $results[]  = $row;
103 | 	    }
104 |  	    $this->_conn->close();
105 | 		
106 | 	    $result         = new stdClass();
107 | 	    $result->page   = $this->_page;
108 | 	    $result->limit  = $this->_limit;
109 | 	    $result->total  = $this->_total;
110 | 	    $result->data   = $results;
111 |  	   
112 | 	    return $result;
113 | 	}
114 | 	
115 | 	public function createLinks( $links, $list_class ) {
116 | 	    if ( $this->_limit == 'all' ) {
117 | 	        return '';
118 | 	    }
119 |  
120 | 	    $last       = ceil( $this->_total / $this->_limit );
121 |  
122 | 	    $start      = ( ( $this->_page - $links ) > 0 ) ? $this->_page - $links : 1;
123 | 	    $end        = ( ( $this->_page + $links ) < $last ) ? $this->_page + $links : $last;
124 |  
125 | 	    $html       = '<ul class="' . $list_class . '">';
126 |  
127 | 	    $class      = ( $this->_page == 1 ) ? "disabled" : "";
128 | 	    $html       .= '<li class="' . $class . ' page-item"><a class="page-link" href="?limit=' . $this->_limit . '&page=' . ( $this->_page - 1 ) . '">&laquo;</a></li>';
129 |  
130 | 	    if ( $start > 1 ) {
131 | 	        $html   .= '<li class="page-item"><a class="page-link" href="?limit=' . $this->_limit . '&page=1">1</a></li>';
132 | 	        $html   .= '<li class="disabled"><span>...</span></li>';
133 | 	    }
134 |  
135 | 	    for ( $i = $start ; $i <= $end; $i++ ) {
136 | 	        $class  = ( $this->_page == $i ) ? "active" : "";
137 | 	        $html   .= '<li class="' . $class . ' page-item"><a class="page-link" href="?limit=' . $this->_limit . '&page=' . $i . '">' . $i . '</a></li>';
138 | 	    }
139 |  
140 | 	    if ( $end < $last ) {
141 | 	        $html   .= '<li class="disabled page-item"><span>...</span></li>';
142 | 	        $html   .= '<li class="page-item"><a class="page-link" href="?limit=' . $this->_limit . '&page=' . $last . '">' . $last . '</a></li>';
143 | 	    }
144 |  
145 | 	    $class      = ( $this->_page == $last ) ? "disabled" : "";
146 | 	    $html       .= '<li class="' . $class . ' page-item"><a class="page-link" href="?limit=' . $this->_limit . '&page=' . ( $this->_page + 1 ) . '">&raquo;</a></li>';
147 |  
148 | 	    $html       .= '</ul>';
149 |  
150 | 	    return $html;
151 | 	}
152 | }


--------------------------------------------------------------------------------
/webui/code/vpnconnection.php:
--------------------------------------------------------------------------------
1 | <?php
2 | header('Content-Type: application/json');
3 | echo file_get_contents("https://nordvpn.com/wp-admin/admin-ajax.php?action=get_user_info_data");
4 | 


--------------------------------------------------------------------------------