Installer openVPN<\/p>\n
apt-get install openvpn<\/pre>\nCreer un fichier de connexion\u00a0<MyHouse.conf><\/p>\n
dev tun\r\ntls-client\r\nremote MYHOME.FQDN.NET 1194\r\n#float\r\nredirect-gateway def1\r\npull\r\nproto udp\r\nscript-security 2\r\ncomp-lzo \r\nreneg-sec 0 \r\nauth-user-pass \r\nauth-nocache \r\nscript-security 2 \r\nup \/root\/MyHouse.script\r\n <ca> -----BEGIN CERTIFICATE----- ... -----END CERTIFICATE----- <\/ca><\/pre>\nCr\u00e9er un fichier avec le user et mot de passe <MyHouse.pass><\/p>\n
MyUsername\r\nMySecurePassword<\/pre>\nEt pour se connecter ??? openvpn –config MyHouse.conf\u00a0 –auth-user-pass MyHouse.pass<\/p>\n
MyHouse.script ::<\/div>\nsysctl -w net.ipv4.ip_forward=1\r\nsysctl -p \/etc\/sysctl.conf\r\n\/sbin\/iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE<\/pre>\n<\/div>\nMais avec ca, je n’ai pas acc\u00e8s a mon r\u00e9seau local… a creuser.<\/div>\nJ’ai acc\u00e8s \u00e0 tout le reste sauf mon r\u00e9seau local…<\/div>\n<\/div>\n\nroot@chip:~# cat check_internet.sh\r\n #!\/bin\/bash\r\n echo This script will check if an internet connection is available. if Yes : Bring OpenVPN up\r\n echo if NOT, check if openvpn is UP. if yes, kill it.\r\n\r\nlet google=0\r\n for i in { 0..5 }\r\n do\r\n ping -c 4 8.8.8.8 > \/dev\/null 2>&1\r\n if [ $? -eq 0 ] ; then\r\n let google++\r\n fi\r\n\r\ndone\r\n\r\nif [ $google -gt 2 ] ; then\r\n echo Google is available... at least 2\/5\r\n openvpn=` ps -ef | grep -i openvpn |grep -v grep| wc -l`\r\n if [ $openvpn -eq 0 ] ; then\r\n \/usr\/sbin\/openvpn --config \/root\/maison.openvpn.conf\u00a0 --auth-user-pass \/root\/maison.openvpn.pass\u00a0 2>&1 &\r\n else\r\n echo OpenVPN is allready UP. Do not touch it\r\n fi\r\n else\r\n echo Google is not available. Kill tunnel\r\n killall openvpn\r\n fi<\/pre>\n<\/div>\n\ncrontab<\/p>\n
* * * * * \/root\/check_internet.sh > \/root\/check_internet.log<\/pre>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"Installer openVPN apt-get install openvpn Creer un fichier de connexion\u00a0<MyHouse.conf> dev tun tls-client remote MYHOME.FQDN.NET 1194 #float redirect-gateway def1 pull proto udp script-security 2 comp-lzo reneg-sec 0 auth-user-pass auth-nocache script-security 2 up \/root\/MyHouse.script <ca> —–BEGIN CERTIFICATE—– … —–END CERTIFICATE—– <\/ca> Cr\u00e9er un fichier avec le user et mot de passe <MyHouse.pass> MyUsername MySecurePassword Et pour […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-539","post","type-post","status-publish","format-standard","hentry","category-non-classe"],"_links":{"self":[{"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/posts\/539","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/comments?post=539"}],"version-history":[{"count":8,"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/posts\/539\/revisions"}],"predecessor-version":[{"id":548,"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/posts\/539\/revisions\/548"}],"wp:attachment":[{"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/media?parent=539"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/categories?post=539"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/snakenet.eu\/blog\/wp-json\/wp\/v2\/tags?post=539"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}