rjmacarthy · November 21, 2018 10:06
diff --git a/l2tp Debian Stretch.sh b/l2tp Debian Stretch.sh
 #!/bin/bash

 # Ubuntu & Debian
 #apt-get update
 #apt-get -y install strongswan xl2tpd

 # CentOS & RHEL
 #yum -y install epel-release
 #yum --enablerepo=epel -y install strongswan xl2tpd

 # Fedora
 #yum -y install strongswan xl2tpd

 VPN_HOSTNAME="gateway.something.com"
 VPN_USERNAME="username"
 VPN_PASSWORD="password"
 VPN_KEY="imasupersecret"

 cat >/etc/ipsec.conf <<EOF

    config setup

    conn %default
        ikelifetime=60m
        keylife=20m
        rekeymargin=3m
        keyingtries=1
        keyexchange=ikev1
        authby=secret
        ike=aes128-sha1-modp1024,3des-sha1-modp1024!
        esp=aes128-sha1-modp1024,3des-sha1-modp1024!

    conn vpnname
        keyexchange=ikev1
        left=%defaultroute
        auto=add
        authby=secret
        type=transport
        leftprotoport=17/1701
        rightprotoport=17/1701
        right=$VPN_HOSTNAME
 EOF

 cat >/etc/ipsec.secrets <<EOF
    : PSK $VPN_KEY
 EOF

 cat >/etc/xl2tpd/xl2tpd.conf <<EOF
    [lac vpnname]
    lns = $VPN_HOSTNAME
    ppp debug = yes
    pppoptfile = /etc/ppp/options.l2tpd.client
    length bit = yes
    bps = 1000000
 EOF

 cat >/etc/ppp/options.l2tpd.client <<EOF
    ipcp-accept-local
    ipcp-accept-remote
    refuse-eap
    require-pap
    noccp
    noauth
    idle 1800
    mtu 1410
    mru 1410
    defaultroute
    usepeerdns
    debug
    connect-delay 5000
 EOF

 echo "name  $VPN_USERNAME" >>/etc/ppp/options.l2tpd.client
 echo "password $VPN_PASSWORD" >>/etc/ppp/options.l2tpd.client

 mkdir -p /var/run/xl2tpd
 touch /var/run/xl2tpd/l2tp-control
 for i in strongswan.service xl2tpd.service; do systemctl start $i; done
	#!/bin/bash

	# Ubuntu & Debian
	#apt-get update
	#apt-get -y install strongswan xl2tpd

	# CentOS & RHEL
	#yum -y install epel-release
	#yum --enablerepo=epel -y install strongswan xl2tpd

	# Fedora
	#yum -y install strongswan xl2tpd

	VPN_HOSTNAME="gateway.something.com"
	VPN_USERNAME="username"
	VPN_PASSWORD="password"
	VPN_KEY="imasupersecret"

	cat >/etc/ipsec.conf <<EOF

	config setup

	conn %default
	ikelifetime=60m
	keylife=20m
	rekeymargin=3m
	keyingtries=1
	keyexchange=ikev1
	authby=secret
	ike=aes128-sha1-modp1024,3des-sha1-modp1024!
	esp=aes128-sha1-modp1024,3des-sha1-modp1024!

	conn vpnname
	keyexchange=ikev1
	left=%defaultroute
	auto=add
	authby=secret
	type=transport
	leftprotoport=17/1701
	rightprotoport=17/1701
	right=$VPN_HOSTNAME
	EOF

	cat >/etc/ipsec.secrets <<EOF
	: PSK $VPN_KEY
	EOF

	cat >/etc/xl2tpd/xl2tpd.conf <<EOF
	[lac vpnname]
	lns = $VPN_HOSTNAME
	ppp debug = yes
	pppoptfile = /etc/ppp/options.l2tpd.client
	length bit = yes
	bps = 1000000
	EOF

	cat >/etc/ppp/options.l2tpd.client <<EOF
	ipcp-accept-local
	ipcp-accept-remote
	refuse-eap
	require-pap
	noccp
	noauth
	idle 1800
	mtu 1410
	mru 1410
	defaultroute
	usepeerdns
	debug
	connect-delay 5000
	EOF

	echo "name $VPN_USERNAME" >>/etc/ppp/options.l2tpd.client
	echo "password $VPN_PASSWORD" >>/etc/ppp/options.l2tpd.client

	mkdir -p /var/run/xl2tpd
	touch /var/run/xl2tpd/l2tp-control
	for i in strongswan.service xl2tpd.service; do systemctl start $i; done