snapshot remaining files

2024-12-19 15:13:29 +01:00
parent d9f760ab2a
commit efac98f87c
28 changed files with 1818 additions and 0 deletions
--- a/openvpn-server/openvpn.conf
+++ b/openvpn-server/openvpn.conf
@@ -0,0 +1,31 @@
+server 192.168.255.0 255.255.255.0
+verb 3
+key /etc/openvpn/pki/private/herderin.veenboer.xyz.key
+ca /etc/openvpn/pki/ca.crt
+cert /etc/openvpn/pki/issued/herderin.veenboer.xyz.crt
+dh /etc/openvpn/pki/dh.pem
+tls-auth /etc/openvpn/pki/ta.key
+key-direction 0
+keepalive 10 60
+persist-key
+persist-tun
+
+proto tcp
+# Rely on Docker to do port mapping, internally always 1194
+port 443
+dev tun0
+status /tmp/openvpn-status.log
+
+user nobody
+group nogroup
+comp-lzo no
+
+### Route Configurations Below
+route 192.168.254.0 255.255.255.0
+
+### Push Configurations Below
+push "block-outside-dns"
+push "dhcp-option DNS 192.168.2.150"
+push "comp-lzo no"
+
+port-share host 444
--- a/openvpn-server/ovpn_env.sh
+++ b/openvpn-server/ovpn_env.sh
@@ -0,0 +1,25 @@
+declare -x OVPN_AUTH=
+declare -x OVPN_CIPHER=
+declare -x OVPN_CLIENT_TO_CLIENT=
+declare -x OVPN_CN=herderin.veenboer.xyz
+declare -x OVPN_COMP_LZO=0
+declare -x OVPN_DEFROUTE=1
+declare -x OVPN_DEVICE=tun
+declare -x OVPN_DEVICEN=0
+declare -x OVPN_DISABLE_PUSH_BLOCK_DNS=0
+declare -x OVPN_DNS=1
+declare -x OVPN_DNS_SERVERS=([0]="8.8.8.8" [1]="8.8.4.4")
+declare -x OVPN_ENV=/etc/openvpn/ovpn_env.sh
+declare -x OVPN_EXTRA_CLIENT_CONFIG=()
+declare -x OVPN_EXTRA_SERVER_CONFIG=()
+declare -x OVPN_FRAGMENT=
+declare -x OVPN_KEEPALIVE='10 60'
+declare -x OVPN_MTU=
+declare -x OVPN_NAT=0
+declare -x OVPN_PORT=1194
+declare -x OVPN_PROTO=tcp
+declare -x OVPN_PUSH=()
+declare -x OVPN_ROUTES=([0]="192.168.254.0/24")
+declare -x OVPN_SERVER=192.168.255.0/24
+declare -x OVPN_SERVER_URL=tcp://herderin.veenboer.xyz
+declare -x OVPN_TLS_CIPHER=
--- a/openvpn-server/setup.sh
+++ b/openvpn-server/setup.sh
@@ -0,0 +1,9 @@
+#!/usr/bin/bash
+OVPN_DATA=/opt/openvpn-server
+VERSION=2.4
+CLIENTNAME=herderin
+docker run -v /$OVPN_DATA:/etc/openvpn --rm kylemanna/openvpn:$VERSION ovpn_genconfig -u tcp://$CLIENTNAME.veenboer.xyz
+docker run -v /$OVPN_DATA:/etc/openvpn --rm -it kylemanna/openvpn:$VERSION ovpn_initpki
+docker run -v /$OVPN_DATA:/etc/openvpn -d -p 443:443/tcp --cap-add=NET_ADMIN kylemanna/openvpn:$VERSION
+docker run -v /$OVPN_DATA:/etc/openvpn --rm -it kylemanna/openvpn easyrsa build-client-full $CLIENTNAME nopass
+docker run -v /$OVPN_DATA:/etc/openvpn --rm kylemanna/openvpn:$VERSION ovpn_getclient $CLIENTNAME > $CLIENTNAME.ovpn