Uyenza njani eyakho iseva yeVPN ku-Ubuntu, kwi-Debian nakwi-CentOS

Luigys Toro

Imizuzu ye5

Ngotshintsho oluqhubekayo lwesixeko kunye nelizwe ebendinalo mva nje, kuye kwafuneka ndisebenzise uninzi lweenethiwekhi ze-Wi-Fi zasimahla (nangoku ndixhume kwi-wifi endinombulelo ongundoqo kuyo I-Aircrack-ng, iAirmon-ng, i-airdump-ng, i-aireplay-ng ezazisele zifakiwe kwiKali Linux)Ingxaki kukuba olu nxibelelwano lunokubeka emngciphekweni ulwazi lwam kwaye asazi ukuba ngubani onokuthi aqhagamshelwe kwaye andazise kwinethiwekhi. Isisombululo kule ngxaki sesiphakanyiswe kwakudala ngu Masisebenzise i-linux en Indlela yokujonga ngokukhuselekileyo kwiinethiwekhi ezivulekileyo zeWi-Fi, kodwa kukwakho nethuba lokuyisombulula usebenzisa iVPN, apho zininzi simahla kwaye zihlawulwe ezilula ukuzisebenzisa kunye nokuzifaka, nganye inezinto zayo eziluncedo kunye nezibi, kodwa nathi sinako yenza eyethu iseva yeVPN ku-Ubuntu, Debian nakwiCentos.

Ukujonga isisombululo sale ngxaki kunye nokubeka phambili ukusebenzisa i-VPN eya kundinika ezinye izibonelelo, ndakwazi ukufumana iskripthi esivumela ukuba sakhe iseva yeVPN ngokuzenzekelayo ngaphandle kokunxibelelana nomsebenzisi.

cta nordvpn

Yintoni iskripthi sokumiselwa kweseva?

Yiyo Iskripthi seShell evumelayo qwalasela ngokuzenzekelayo iseva ye-VPN ngaphezulu kwe-IPsec ku-Ubuntu, kwi-Debian nakwi-CentOS ngokukhawuleza nangokulula, kunye ixhasa IPsec / L2TP kunye neCisco IPsec protocols. Umsebenzisi ufuna nje ukubonelela ngeenkcukacha zakhe zeVPN kwaye uvumele iskripthi senze okunye.

Umncedisi VPN ngaphezulu kwe-IPsec Iyabhala ukugcwala kwenethiwekhi, ukuze idatha ingabanjiswa ngelixa kukho unxibelelwano phakathi komsebenzisi kunye neseva yeVPN. Oku kuluncedo ngakumbi xa usebenzisa iinethiwekhi ezingakhuselekanga, umzekelo kwiivenkile zekofu, kwizikhululo zeenqwelo moya, okanye kumagumbi ehotele.

Iskripthi sisebenzisa freewan okuphumeza IPsec yeLinux xl2tpd yintoni Umboneleli we-L2TP.

Iskripthi sinokusetyenziswa nakweyiphi na iseva ezinikezelweyo okanye kwi-Virtual Private Server (VPS). Ngapha koko, inokusetyenziswa ngokuthe ngqo njenge "datha yomsebenzisi" ye Amazon EC2 Ukuphehlelelwa kwimeko entsha, eli nqaku liyenza ilunge kuba indivumela ukuba ndibe neVPN kwaye ndisebenze nangaliphi na ixesha kwaye indinceda ukuba ndisebenzise ithuba lokubonelelwa nguAmazon unyaka omnye simahla kwiVPS yabo.

Iimpawu ze-VPN ngaphezulu kweskripthi sokumiselwa kweseva ye-IPsec

  • Ukucwangciswa kweVPN ezenzekelayo ngokupheleleyo kwiseva ye-IPsec, ngaphandle kongenelelo lomsebenzisi
  • Ixhasa inkqubo ekhawulezayo IPsec/XAuth ("Cisco IPsec")
  • Iyafumaneka Umfanekiso weDocker ukusuka kwiseva yeVPN
  • Idibanisa yonke i-VPN traffic kwi-UDP-ESP protocol ayifuneki
  • Ingasetyenziselwa ngokuthe ngqo njenge "datha yomsebenzisi" yeemeko ezintsha ze-Amazon EC2
  • Ukumisela ngokuzenzekelayo i-IP yoLuntu kunye ne-IP yabucala yeseva
  • Kubandakanya imigaqo esisiseko ye-IPTables kwaye ikuvumela ukuba uhlengahlengise sysctl.conf
  • Uvavanywe ku-Ubuntu 16.04 / 14.04 / 12.04, Debian 8 kunye neCentOS 6 & 7

VPN ngaphezulu kweemfuno zeskripthi somncedisi we-IPsec

Iseva ezinikezelweyo okanye iServer yangasese yangasese (iVPS) iyafuneka, nangona kuyacetyiswa ukuba kusetyenziswe umzekelo Amazon EC2, usebenzisa enye yezi AMIs:

Ukufaka i-VPN ngaphezulu kweskripthi sokumiselwa kweseva ye-IPsec

Ukufaka iVPN kwiskripthi sokumiselwa kweseva ye-IPsec ku-Ubuntu nakwi-Debian

Into yokuqala ekufuneka uyenzile kukuhlaziya inkqubo yakho, ukulungiselela le miyalelo ilandelayo apt-get update && apt-get dist-upgrade kwaye uqalise kwakhona.

 Eli nyathelo alinyanzelekanga, kodwa kuyacetyiswa ukuba lenziwe.

Ukufaka iVPN, nceda ukhethe enye yezi ndlela zilandelayo:

Inketho 1: Yenza iziqinisekiso zeVPN ngokungacwangciswanga, ezinokujongwa xa ukufakela kugqityiwe

wget https://git.io/vpnsetup -O vpnsetup.sh && Isudo sh vpnsetup.sh

Ukhetho 2: Hlela iskripthi kwaye unikezele ngeempawu zakho zeVPN

wget https://git.io/vpnsetup -O vpnsetup.sh nano -w vpnsetup.sh [Faka amaxabiso akho endaweni yakho: YAKHO_IPSEC_PSK, YAKHO_USERNAME KUNYE NE-PASSWORD] Sudo sh vpnsetup.sh

Option 3: Chaza iinkcukacha zeVPN njengezinto eziguquguqukayo kwimeko-bume

# Onke amaxabiso kufuneka afakwe 'kuchaphulo olunye'
# Sukusebenzisa aba bantu ngaphakathi kwamaxabiso: \ "'
wget https://git.io/vpnsetup -O vpnsetup.sh && Isudo \ VPN_IPSEC_PSK ='eyakho_ipsec_pre_shared_key' \ VPN_USER ='igama lakho_vpn_igama' \ VPN_PASSWORD ='lakho_vpn_ igama eligqithisiweyo' sh vpnsetup.sh

Ukufaka iVPN kwiskripthi sokumiselwa kweseva ye-IPsec kwiCentos

Into yokuqala ekufuneka uyenzile kukuhlaziya inkqubo yakho, ukulungiselela le miyalelo ilandelayo yum update  kwaye uqalise kwakhona.

 Eli nyathelo alinyanzelekanga, kodwa kuyacetyiswa ukuba lenziwe.

Landela amanyathelo afanayo naku-Ubuntu nakwi-Debian, kodwa endaweni yoko https://git.io/vpnsetup yi https://git.io/vpnsetup-centos.

Iziphelo kwi-VPN ngaphezulu kweskripthi sokumiselwa kweseva ye-IPsec

cta nordvpn

Ewe, nje ukuba iVPN yethu ifakiwe, kufuneka sinxibelelane nayo ngomthengi weVPN.Ndicebisa ukuba sisebenzise i-OpenVPN, esinokuyifaka nomphathi wephakheji kulwabiwo lwethu. Kwimeko ye-Debian kunye nezinye ezivela kuyo sinokuyenza ngale ndlela ilandelayo:

Sudo apt-fumana ukufaka i-openvpn

Esi sisisombululo esihle kakhulu ukunxibelelana ne-intanethi ngendlela ekhuselekileyo kwaye sinayo eyethu iVPN enokusetyenziselwa yona

  • Fikelela kumsebenzi womnatha okanye wasekhaya xa useluhambeni.
  • Fihla idatha yokukhangela.
  • Ukungena kwiindawo ezivaliweyo ze-geo.
  • Kwaye ezinye izinto ezininzi ezisetyenziswayo

Kwaye yiyo yonke loo nto bafo, ndiyathemba ukuba niyonwabela kwaye niqhubeke. Ukuba konke oku kubonakala kunzima kuwe kwaye ukhetha ukuyigcina ilula, unokuhlala uqesha i-VPN efana ne-Hidemyass, eyongezelela ekuphononongweni okuhle, inika izibonelelo ezintle kakhulu kubasebenzisi abatsha.


Shiya uluvo lwakho

Idilesi yakho ye email aziyi kupapashwa. ezidingekayo ziphawulwe *

*

*

  1. Uxanduva lwedatha: UMiguel Ángel Gatón
  2. Injongo yedatha: Ulawulo lwe-SPAM, ulawulo lwezimvo.
  3. Umthetho: Imvume yakho
  4. Unxibelelwano lwedatha: Idatha ayizukuhanjiswa kubantu besithathu ngaphandle koxanduva lomthetho.
  5. Ukugcinwa kweenkcukacha
  6. Amalungelo: Ngalo naliphi na ixesha unganciphisa, uphinde uphinde ucime ulwazi lwakho.

  1.   Rodrigo sitsho
    yenzayo 8 iminyaka

    Kutheni le nto bewele indawo avuma kuyo ukuba wenza ulwaphulo-mthetho? jajajjajajajjaja

    Phendula uRodrigo
  2.   Iimpawu sitsho
    yenzayo 8 iminyaka

    Molo mhlobo, ndikwazile ukufaka iVPN kwimeko yeAmazon noBuntu, kodwa ngoku into endingenakuyenza ukunxibelelana neVPN efakiweyo, ndicinga ukuba kunyanzelekile ukongeza amazibuko ngokomzekelo ngelixesha ndikwazileyo zezi: vula i-TCP port 1723 kwaye uvule umthetho olandelwayo nge-ID 47 (GRE).
    Kwi-L2TP kuya kufuneka uvule i-TCP port 1701; Ukuba uza kusebenzisa i-IPSec, kuya kufuneka uvule i-UDP port 500 kunye neeprotokholi ze-ID 50 (IPSec ESP) kunye ne-51 (IPSec AH), nje ukuba ndizongezile ndiyaqinisekisa nge-nettat -ntpl kwimeko kodwa hayi Yiza ube uyasebenza, ungandinika isandla nceda?

    Phendula uHemnys
    1.    Luigys toro sitsho
      yenzayo 8 iminyaka

      Iiseva ezine-firewall yangaphandle (umzekelo i-EC2), kuya kufuneka uvule amazibuko e-UDP 500 kunye no-4500, kunye ne-TCP port 22 (ye-SSH).

      Ukuvula amazibuko ongezelelweyo kwiseva, hlela / njl / iiptip.rulesy / okanye /etc/iptables/rules.v4 (Ubuntu / Debian), okanye / njl / sysconfig / iptables (CentOS). Kwaye uqalise kwakhona iServer, nangona i-EC2, eyona nto ikulungeleyo ine-firewall yangaphandle.

      Phendula uLuigys Toro
  3.   zintle sitsho
    yenzayo 7 iminyaka

    "Inkululeko yeKhowudi ilingane ngokuthe ngqo nokukhula kombutho", ingxelo ebalaseleyo.

    Phendula u-athatriel
  4.   Jose Luis sitsho
    yenzayo 7 iminyaka

    Enkosi ngeskripthi esikhulu.
    Ndikwazile ukuyifaka kwaye isebenza nge-Iphone kunye ne-Android, kodwa andazi ukuba ndiyisebenzisa kanjani iVulekileVPN kwi-linux njengomthengi.

    Iseva ndiyifakile kwisiphelo sendlela ye-Ubuntu 16.04.

    Nceda nceda

    Phendula kuJose Luis
  5.   iliwa-668 sitsho
    yenzayo 7 iminyaka

    Molo, ndenza njani ukuba usebenze nge-ip enamandla?

    Phendula iliwa-668
    1.    I-Beavis sitsho
      yenzayo 6 iminyaka

      Rhuma kwi-noip.com ngohlobo lwasimahla.

      Phendula kwiBeavis
  6.   UOscar sitsho
    yenzayo 7 iminyaka

    Molo, igama lam ndinguOscar, ndiyifakile le seva yeVPN kwiseva yeLinux kwiVPS, kwaye isifundo sam sokhuseleko emva kweeyure ezingama-24, kukuba yenza uhlaselo, iSmurf, yenza iskena sonxibelelwano kwaye izama ukuthintela idatha, kubonakala ngathi iyakwazi ukungenelela. Zonke izitshixo ezisebenzisa iinkqubo ezingakhuselekanga, oko kukuthi, naluphi na uqhagamshelo olungasebenzisi ukubethela, kwangoko emva kokuba ndiqaphele, ndivale uqhagamshelo lwam lweVPN kwaye ndibeka kwakhona iVPS, kuba ndenze indawo yokubuyisela ngaphambi kokuqala le nkqubo.
    Ndikubhengeza konke oku ukuze umbhali kunye / okanye umfundi weli nqaku ofunda la magqabantshintshi abe semngciphekweni xa ufaka le seva yeVPN, nditsho konke ngokuthembeka, kwaye ndiyabulela umbhali ngokuthatha ixesha lakhe ukubhala eli nqaku.

    Umbuliso.

    Phendula uOscar
  7.   nguGraham sitsho
    yenzayo 7 iminyaka

    xa ndenza ifconfig tun0 indinika le mpazamo
    Impazamo yokulanda ulwazi lojongano: Isixhobo asifumanekanga

    Phendula gerardo
  8.   pedro sitsho
    yenzayo 6 iminyaka

    Ngoku ndiyazi ukuba kutheni ndingasebenzisi iVPN…. kuba akukho lula kwaye kuyadinisa ukuyilungiselela. Ngaba akukho ndlela ilula kunye necacileyo yokwenza?

    Phendula u-pedro