ysaotome · December 20, 2015 03:59
diff --git a/PPTP_vpn_setup_for_centos64.sh b/PPTP_vpn_setup_for_centos64.sh
 #!/bin/bash -x
 # Description:PPTP for CentOS 6.4 64bit
 # 2013/07/28 @ysaotome
 
 (
 ### setting
 /bin/cat << _SECRETS_ > /tmp/SECRETS_TMP.txt
 #==============================================\n
 # username auth_server password auth_ipaddress\n
 "hoge001" "pptpd" "hoge##123" *\n
 "hoge002" "pptpd" "hoge##456" *\n
 #==============================================\n
 _SECRETS_

 COLOR_LIGHT_GREEN='\033[1;32m'
 COLOR_LIGHT_BLUE='\033[1;34m'
 COLOR_YELLOW='\033[1;33m'
 COLOR_RED='\033[0;31m'
 COLOR_WHITE='\033[1;37m'
 COLOR_DEFAULT='\033[0m'

 IPADDR_GLOBAL=$(/sbin/ip addr show eth0 2>/dev/null | /bin/grep 'inet ' | /bin/sed -e 's/.*inet \([^ ]*\)\/.*/\1/')

 VPN_LOCAL_IPADDRESS='192.168.0.1'
 VPN_REMOTE_IPADDRESS='192.168.0.151-200'

 ARC=$(/bin/uname -m)

 ### setup

 ## SELINUX 無効化
 ## (石川さんごめんなさい
 /usr/sbin/setenforce 0
 /bin/sed -i.org -e 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config

 ## IP_FORWARD 設定
 /bin/echo '1' > /proc/sys/net/ipv4/ip_forward
 /bin/sed -i.org -e 's/net.ipv4.ip_forward = 0/net.ipv4.ip_forward = 1/g' /etc/sysctl.conf
 /sbin/sysctl -p /etc/sysctl.conf

 ## リポジトリ追加：PPTP
 /bin/rpm -Uvh http://poptop.sourceforge.net/yum/stable/rhel6/pptp-release-current.noarch.rpm

 ## パッケージ追加
 /usr/bin/yum -y install policycoreutils policycoreutils ppp pptpd
 /usr/bin/yum -y update

 ## PPTP セットアップ
 /bin/echo -e 'localip '${VPN_LOCAL_IPADDRESS}'\nremoteip '${VPN_REMOTE_IPADDRESS}
 /bin/echo -e 'ms-dns 8.8.8.8\nms-dns 209.244.0.3\nms-dns 208.67.222.222' >> /etc/ppp/options.pptpd
 /bin/cat /tmp/SECRETS_TMP.txt >> /etc/ppp/chap-secrets
 /bin/rm /tmp/SECRETS_TMP.txt

 ## IPTABLES セットアップ
 /bin/echo -e '/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE' >> /etc/rc.local
 /sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
 /sbin/iptables -A INPUT -i eth0 -p tcp --dport 1723 -j ACCEPT
 /sbin/iptables -A INPUT -i eth0 -p gre -j ACCEPT
 /sbin/iptables -D FORWARD -j DROP
 /sbin/iptables -A FORWARD -i ppp+ -o eth0 -j ACCEPT
 /sbin/iptables -A FORWARD -i eth0 -o ppp+ -j ACCEPT
 /sbin/iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT

 ## プロセス起動
 /sbin/service iptables save
 /sbin/service iptables restart
 /sbin/chkconfig iptables on
 /sbin/service pptpd restart
 /sbin/chkconfig pptpd on


 ### Finish
 /bin/echo -e "${COLOR_WHITE}PPTP SERVER IP     : ${COLOR_LIGHT_GREEN}${IPADDR_GLOBAL}${COLOR_DEFAULT}"
 /bin/echo -e "${COLOR_WHITE}PPTP USER/PASSWORD : \n${COLOR_LIGHT_GREEN}$(/bin/cat /etc/ppp/chap-secrets)${COLOR_DEFAULT}"
 /bin/echo -e "${COLOR_WHITE}Install log        : ${COLOR_LIGHT_GREEN}/var/log/vpn-installer.log${COLOR_DEFAULT}"
 ) 2>&1 | /usr/bin/tee /var/log/pptp-installer.log
	#!/bin/bash -x
	# Description:PPTP for CentOS 6.4 64bit
	# 2013/07/28 @ysaotome

	(
	### setting
	/bin/cat << _SECRETS_ > /tmp/SECRETS_TMP.txt
	#==============================================\n
	# username auth_server password auth_ipaddress\n
	"hoge001" "pptpd" "hoge##123" *\n
	"hoge002" "pptpd" "hoge##456" *\n
	#==============================================\n
	_SECRETS_

	COLOR_LIGHT_GREEN='\033[1;32m'
	COLOR_LIGHT_BLUE='\033[1;34m'
	COLOR_YELLOW='\033[1;33m'
	COLOR_RED='\033[0;31m'
	COLOR_WHITE='\033[1;37m'
	COLOR_DEFAULT='\033[0m'

	IPADDR_GLOBAL=$(/sbin/ip addr show eth0 2>/dev/null \| /bin/grep 'inet ' \| /bin/sed -e 's/.inet \([^ ]\)\/.*/\1/')

	VPN_LOCAL_IPADDRESS='192.168.0.1'
	VPN_REMOTE_IPADDRESS='192.168.0.151-200'

	ARC=$(/bin/uname -m)

	### setup

	## SELINUX 無効化
	## (石川さんごめんなさい
	/usr/sbin/setenforce 0
	/bin/sed -i.org -e 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config

	## IP_FORWARD 設定
	/bin/echo '1' > /proc/sys/net/ipv4/ip_forward
	/bin/sed -i.org -e 's/net.ipv4.ip_forward = 0/net.ipv4.ip_forward = 1/g' /etc/sysctl.conf
	/sbin/sysctl -p /etc/sysctl.conf

	## リポジトリ追加：PPTP
	/bin/rpm -Uvh http://poptop.sourceforge.net/yum/stable/rhel6/pptp-release-current.noarch.rpm

	## パッケージ追加
	/usr/bin/yum -y install policycoreutils policycoreutils ppp pptpd
	/usr/bin/yum -y update

	## PPTP セットアップ
	/bin/echo -e 'localip '${VPN_LOCAL_IPADDRESS}'\nremoteip '${VPN_REMOTE_IPADDRESS}
	/bin/echo -e 'ms-dns 8.8.8.8\nms-dns 209.244.0.3\nms-dns 208.67.222.222' >> /etc/ppp/options.pptpd
	/bin/cat /tmp/SECRETS_TMP.txt >> /etc/ppp/chap-secrets
	/bin/rm /tmp/SECRETS_TMP.txt

	## IPTABLES セットアップ
	/bin/echo -e '/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE' >> /etc/rc.local
	/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
	/sbin/iptables -A INPUT -i eth0 -p tcp --dport 1723 -j ACCEPT
	/sbin/iptables -A INPUT -i eth0 -p gre -j ACCEPT
	/sbin/iptables -D FORWARD -j DROP
	/sbin/iptables -A FORWARD -i ppp+ -o eth0 -j ACCEPT
	/sbin/iptables -A FORWARD -i eth0 -o ppp+ -j ACCEPT
	/sbin/iptables -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT

	## プロセス起動
	/sbin/service iptables save
	/sbin/service iptables restart
	/sbin/chkconfig iptables on
	/sbin/service pptpd restart
	/sbin/chkconfig pptpd on


	### Finish
	/bin/echo -e "${COLOR_WHITE}PPTP SERVER IP : ${COLOR_LIGHT_GREEN}${IPADDR_GLOBAL}${COLOR_DEFAULT}"
	/bin/echo -e "${COLOR_WHITE}PPTP USER/PASSWORD : \n${COLOR_LIGHT_GREEN}$(/bin/cat /etc/ppp/chap-secrets)${COLOR_DEFAULT}"
	/bin/echo -e "${COLOR_WHITE}Install log : ${COLOR_LIGHT_GREEN}/var/log/vpn-installer.log${COLOR_DEFAULT}"
	) 2>&1 \| /usr/bin/tee /var/log/pptp-installer.log