Created
May 23, 2017 05:53
-
-
Save josellausas/cabc92eb96c332aef88a4cfb7ce88870 to your computer and use it in GitHub Desktop.
Install VPN on raspberry pi
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| sudo apt-get install openvpn | |
| # Copy over the .tar.gz with the config files | |
| sudo mv $$$$_linux.tar.gz /etc/openvpn | |
| cd /etc/openvpn | |
| sudo tar -xf $$$$_linux.tar.gz | |
| # Enable up/down | |
| sudo chmod +x /etc/openvpn/update-resolv-conf | |
| # Use this to start: | |
| sudo openvpn --daemon --cd /etc/openvpn --config ibVPN-UK-Gosport.ovpn | |
| # Check status: | |
| curl ipinfo.io/ip | |
| # To disconnect: | |
| killall -9 openvpn | |
| # Enable at boot: | |
| sudo systemctl enable openvpn@ibVPN-UK-Gosport | |
| # Block outbound traffic from Raspberry Pi | |
| sudo iptables -A OUTPUT -o tun0 -m comment --comment “vpn” -j ACCEPT | |
| sudo iptables -A OUTPUT -o eth0 -p icmp -m comment --comment “icmp” -j ACCEPT | |
| sudo iptables -A OUTPUT -d 192.168.1.0/24 -o eth0 -m comment --comment “lan” -j ACCEPT | |
| sudo iptables -A OUTPUT -o eth0 -p udp -m udp –dport 53 -m comment --comment “openvpn” -j ACCEPT | |
| sudo iptables -A OUTPUT -o eth0 -p tcp -m tcp –sport 22 -m comment --comment “ssh” -j ACCEPT | |
| sudo iptables -A OUTPUT -o eth0 -p udp -m udp –dport 123 -m comment --comment “ntp” -j ACCEPT | |
| sudo iptables -A OUTPUT -o eth0 -p udp -m udp –dport 53 -m comment --comment “dns” -j ACCEPT | |
| sudo iptables -A OUTPUT -o eth0 -p tcp -m tcp –dport 53 -m comment --comment “dns” -j ACCEPT | |
| sudo iptables -A OUTPUT -o eth0 -j DROP | |
| # Save and then Apply the settings after reboot: | |
| sudo netfilter-persistent save | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment