Nekungogara kuchinjika kweguta nenyika zvandave nazvo nguva pfupi yadarika, ini ndaifanirwa kushandisa yakawanda yemahara maWi-Fi network (kunyangwe izvozvi ndakabatana kubva pawifi iyo ini ndakawana kiyi yekutenda aircrack-ng, airmon-ng, airdump-ng, aireplay-ng iyo yaive yatove kuiswa muKali Linux), Dambudziko nderekuti kubatana uku kunogona kukanganisa ruzivo rwangu uye hatizive kuti ndiani anogona kubatanidzwa uye kundiita kuti ndizive pane network. Mhinduro kudambudziko iri ndiyo yakamutswa kare kare na ngatishandise linux en Maitiro ekushambadzira zvisina njodzi pane akavhurika maWi-Fi network, asi pane zvakare mukana wekuigadzirisa uchishandisa VPN, yayo kune mazhinji emahara uye akabhadharwa ayo ari nyore kushandisa nekuisa, imwe neimwe iine zvayakanakira nezvayakaipira, asi isu tinogona zvakare gadzira yedu yega VPN server pane Ubuntu, Debian uye Centos.
Ndichitsvaga mhinduro yedambudziko iri uye kuisa pamberi pekushandisa VPN iyo yaizondipa zvimwe zvakanaka, ndakakwanisa kuwana script inotibvumira kuvaka server yeVPN otomatiki nekudyidzana kudiki nemushandisi.
Chii chinonzi server gadziriso script?
Ndicho Shell script iyo inobvumira otomatiki gadzirisa sevha yeVPN pamusoro peIPsec paUbuntu, Debian uye CentOS nekukurumidza uye nyore, pamwe inotsigira IPsec / L2TP uye Cisco IPsec zviga. Mushandisi anongoda kupa avo eVPN zvitupa uye rega script iite zvimwe.
Seva VPN pamusoro peIPsec Iyo inovhara neterevhizheni traffic, kuitira kuti data rirege kutsemurwa paine kutaurirana pakati pemushandisi neVPN server. Izvi zvinonyanya kubatsira kana uchishandisa zvisina kuchengetedzwa netiweki, semuenzaniso muzvitoro zvekofi, nhandare, kana makamuri ehotera.
Iyo script inoshandisa freewan kunova kuita kwe IPsec yeLinux y xl2tpd chii chiri L2TP mupi.
Iyo script inogona kushandiswa pane chero yakatsaurwa server kana Virtual Yakavanzika Server (VPS). Uyezve, inogona kushandiswa zvakananga se "mushandisi data" ye Amazon EC2 yekuvhurwa kwechiitiko chitsva, chiitiko ichi chinoita kuti chive chakanak nekuti chinondibvumidza kuve neVPN kumusoro uye kumhanya chero nguva uye zvinondibatsira kutora mukana weAmazon kupihwa kwegore rimwe mahara eVPS yavo.
Zvimiro zveVPN pamusoro peIPsec server yekumisikidza script
- Kugadziriswa kweVPN yakazara yakazara pamusoro peIPsec server, pasina mushandisi kupindira
- Inotsigira iyo inokurumidza protocol
IPsec/XAuth ("Cisco IPsec")
- Inowanikwa Docker mufananidzo kubva kuVPN server
- Inoputira ese traffic yeVPN muUDP - ESP protocol haina kudikanwa
- Inogona kushandiswa zvakananga se "mushandisi data" yezve nyowani Amazon EC2 zviitiko
- Gadzirisa otomatiki iyo Ruzhinji IP uye Yakavanzika IP ye server
- Inosanganisira yakakosha IPTables mitemo uye inokutendera iwe kugadzirisa iyo
sysctl.conf
- Kwayedzwa paUbuntu 16.04 / 14.04 / 12.04, Debian 8 uye CentOS 6 & 7
VPN pamusoro peIPsec server yekumisikidza script zvinodiwa
Iyo Dedicated Server kana Virtual Yakavanzika Server (VPS) inodikanwa, kunyange ichikurudzirwa kushandisa chiitiko che Amazon EC2, uchishandisa imwe yeaya ma AMI:
- Ubuntu 16.04 (Xenial), 14.04 (Trusty) kana 12.04 (Precise)
- Debian 8 (Jessie) EC2 Mifananidzo
- CentOS 7 (x86_64) ine Zvidzoreso
- CentOS 6 (x86_64) ine Zvidzoreso
Kuisa iyo VPN pamusoro peIPsec server yekumisikidza script
Kuisa iyo VPN pamusoro peIPsec server yekumisikidza script pane Ubuntu uye Debian
Chinhu chekutanga chaunofanirwa kuita kugadzirisa yako system, nekuti izvi mhanya unotevera mirairo apt-get update && apt-get dist-upgrade
uye reboot.
Kuisa iyo VPN, ndapota sarudza imwe yeanotevera sarudzo:
Sarudzo 1: Gadzira humbowo hweVPN chero nguva, iyo inogona kutariswa kana kuiswa kwapera
wget https://git.io/vpnsetup -O vpnsetup.sh && sudo sh vpnsetup.sh
Sarudzo 2: Rongedza script uye upe yako wega mapepa eVPN
wget https://git.io/vpnsetup -O vpnsetup.sh nano -w vpnsetup.sh [Tsiva nemitemo yako: YAKO_IPSEC_PSK, YAKO_USERNAME uye YAKO_PASSWORD]
Pfungwa 3: Tsanangura humbowo hweVPN semagadzirirwo enharaunda
# Maitiro ese anofanirwa kuvharwa mukati me 'imwechete makotesheni'
# Usashandise mavara aya mukati mehunhu: \ "'
wget https://git.io/vpnsetup -O vpnsetup.sh && sudo \ VPN_IPSEC_PSK ='yako_ipsec_pre_shared_key' \ VPN_USER ='rako_vpn_username' \ VPN_PASSWORD ='yako_vpn_password' sh vpnsetup.sh
Kuisa iyo VPN pamusoro peIPsec server yekumisikidza script kuCentos
Chinhu chekutanga chaunofanirwa kuita kugadzirisa yako system, nekuti izvi mhanya unotevera mirairo yum update
uye reboot.
Tevedza nhanho dzakafanana seUbuntu neDebian, asi uchitsiva https://git.io/vpnsetup
kubudikidza https://git.io/vpnsetup-centos
.
Mhedziso paVPN pamusoro peIPsec server yekumisikidza script
Zvakanaka kana tangoiswa VPN yedu tinofanirwa kubatana nayo kuburikidza nemutengi weVPN.Ndinokurudzira kuti tishandise OpenVPN, iyo yatinogona kuisa nemaneja wepakeji wekugovera kwedu. Kuti mune nyaya yeDebian uye zvigadzirwa tinogona kuzviita nenzira inotevera:
sudo apt-tora kuisa openvpn
Iyi ndiyo mhinduro yakanakisa yekubatanidza neinternet nenzira yakachengeteka uye kuve neyedu VPN iyo inogona zvakare kushandiswa
- Famba kubasa kana pamba network kana iwe uchifamba.
- Viga data rekuvhura.
- Pinda nzvimbo dzakavharidzirwa.
- Uye zvimwe zvakawanda zvinoshandiswa
Uye ndizvo chete vakomana, ndinovimba munonakidzwa nazvo uye muenderere mberi. Kana izvi zvose zvakaratidzika zvakaoma kwauri uye iwe unofarira kuchengetedza zvinhu zviri nyore, unogona kugara uchibhadhara VPN seHidemyass, iyo kunze kwekuve nekuongorora kwakanaka, inopa zvipo zvakanaka kune vashandisi vatsva.
Sei vakayambuka chikamu chaanobvuma kuti akapara mhosva? jajajjajajajjaja
Mhoro shamwari, ndakwanisa kuisa iyo VPN mune yeAmazon muenzaniso neUbuntu, asi izvozvi zvandisingakwanise kuita kuti ndibatanidze neiyo yakaiswa VPN, ndinofunga zvakakosha kuti uwedzere madoko mune iyo nguva panguva yandakawana kuti izvi ndeizvi: Kune PPTP unofanirwa vhura TCP chiteshi 1723 uye zvakare vhura iyo protocol ine ID 47 (GRE).
Zve L2TP iwe unofanirwa kuvhura TCP chiteshi 1701; kana iwe uchizoshandisa IPSec, iwe unofanirwa kuvhura iyo UDP chiteshi 500 uye maprotocol eID 50 (IPSec ESP) uye 51 (IPSec AH), kana ndangovawedzera ini ndinoongorora netstat -ntpl muchiitiko asi kwete Huya uve unoshanda, unogona kundipa ruoko ndapota?
Kune maseva ane ekunze firewall (semuenzaniso EC2), unofanirwa kuvhura UDP zviteshi 500 uye 4500, uye TCP chiteshi 22 (cheSSH).
Kuti uzarure mamwe madoko pane sevha, gadzirisa /etc/iptables.rulesy / kana /etc/iptables/rules.v4(Ubuntu / Debian), kana / etc / sysconfig / iptables (CentOS). Uye tangazve iyo Server, kunyangwe EC2, chinhu chiri nyore chiri neyekunze firewall.
"Rusununguko rweCode rwakanangana zvakananga nekukura kwesangano", chirevo chakanakisa.
Kutenda nehukuru script.
Ini ndakakwanisa kuiisa uye inoshanda neIphone uye Android, asi ini handizive mashandisiro evhuraVPN pane linux semutengi.
Ivhavha yandakaisa muUbuntu 16.04 terminal.
Batsira ndapota
Mhoroi, ndingaite sei kuti ishande ine simba ip?
Nyorera kuNoip.com mune yemahara vhezheni.
Mhoroi, zita rangu ndinonzi Oscar, ini ndaisa iyi server yeVPN pane yangu Linux server muVPS, uye yangu yekuchengetedza chengeto mushure memaawa makumi maviri nemana, ndeyekuti inoita kurwisa, Smurf, inoita yekubatanidza zviyero uye kuyedza kubata data, zvinongoita seku kukwanisa kupindira Makiyi ese anoshandisa zvisina kuchengetedzeka protocols, ndiko kuti, chero kubatana kusingashandise kunyorera, pakarepo mushure mekunge ndazviona, ndakavhara yangu VPN kubatana uye kumisazve iyo VPS, sezvo ini ndakagadzira yekudzorera poindi ndisati ndatanga izvi. maitiro.
Ini ndinofumura zvese izvi kuitira kuti munyori uye / kana muverengi wenyaya ino anoverenga makomendi aya ane njodzi pakuisa iyi VPN server, ndinozvitaura zvese nekutendeka, uye ndinotenda munyori nekutora nguva yake kunyora chinyorwa ichi.
Kwaziso.
pandinoita ifconfig tun0 zvinondipa iko kukanganisa
kukanganisa kutora ruzivo rwechinongedzo: Chishandiso hachiwanikwe
Iye zvino ndinoziva nei ndisingashandisi VPN…. nekuti hazvisi nyore uye zvinonetesa kuimisa. Hakuna here yakapusa uye yakajeka nzira yekuzviita?