From 8434e38c9ef25afc9a3c7844bba7c7147249d788 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Tue, 26 Sep 2017 12:19:06 +0100
Subject: [PATCH] Don't remove user certs

---
 src/freedombone-app-vpn        | 3 ++-
 src/freedombone-utils-firewall | 2 --
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/src/freedombone-app-vpn b/src/freedombone-app-vpn
index d48de147..69866a17 100755
--- a/src/freedombone-app-vpn
+++ b/src/freedombone-app-vpn
@@ -218,7 +218,8 @@ function create_user_vpn_key {
 
     chown $username:$username $user_vpn_cert_file
 
-    rm /etc/openvpn/easy-rsa/keys/$username.crt
+    #rm /etc/openvpn/easy-rsa/keys/$username.crt
+    #rm /etc/openvpn/easy-rsa/keys/$username.csr
     shred -zu /etc/openvpn/easy-rsa/keys/$username.key
 
     echo $"VPN key created at $user_vpn_cert_file"
diff --git a/src/freedombone-utils-firewall b/src/freedombone-utils-firewall
index 6da00a26..75869cc2 100755
--- a/src/freedombone-utils-firewall
+++ b/src/freedombone-utils-firewall
@@ -111,7 +111,6 @@ function enable_ipv6 {
 }
 
 function firewall_disable_vpn {
-    iptables -D INPUT -p tcp --dport 1194 -j ACCEPT
     iptables -D INPUT -p udp --dport 1194 -j ACCEPT
     iptables -D INPUT -i tun+ -j ACCEPT
     iptables -D FORWARD -i tun+ -j ACCEPT
@@ -125,7 +124,6 @@ function firewall_disable_vpn {
 }
 
 function firewall_enable_vpn {
-    iptables -A INPUT -p tcp --dport 1194 -j ACCEPT
     iptables -A INPUT -p udp --dport 1194 -j ACCEPT
     iptables -A INPUT -i tun+ -j ACCEPT
     iptables -A FORWARD -i tun+ -j ACCEPT