N6XRE DokuWiki

Differences

This shows you the differences between two versions of the page.

--- firewalls [2019/10/18 18:49] – [7. Linux Server Build: OpenVPN From Scratch - Hak5 2019] garyrust
+++ firewalls [2019/12/03 23:41] (current) – [14. I2P on Raspbian] garyrust
@@ Line 36: / Line 36: @@
 src="http://icons.iconarchive.com/icons/papirus-team/papirus-apps/72/google-icon.png">Google Search</a></html> \\
 **[[firewalls#quick_and_dirty_vpn_server_with_pptpd|VPN]] - [[firewalls#squid_proxy_documentation|SQUID]] - [[firewalls#tor_on_raspbian|Tor]] - [[firewalls#i2p_on_raspbian|I2P]]** \\
+**[[http://192.168.11.115:8080|qBittorrent-nox]] - 115** \\
 ===== - Webmin Documentation =====
 **[[firewalls#top|Top]]** \\
@@ Line 81: / Line 82: @@
 <html>
 <iframe width="60%" height="800" src="https://www.frozentux.net/documents/iptables-tutorial/" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+</html> \\
+===== - Firewalls with iptables and ipchains-tutorial =====
+**[[firewalls#top|Top]]** \\
+http://etutorials.org/Linux+systems/linux+security/Chapter+2.+Firewalls+with+iptables+and+ipchains/ \\
+<html>
+<iframe width="60%" height="800" src="http://etutorials.org/Linux+systems/linux+security/Chapter+2.+Firewalls+with+iptables+and+ipchains/" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
+</html> \\
+===== - How To Set Up a Firewall with GUFW on Linux =====
+**[[firewalls#top|Top]]** \\
+https://www.linuxadminqa.com/how-to-set-up-a-firewall-with-gufw-on-linux/ \\
+<html>
+<iframe width="60%" height="800" src="https://www.linuxadminqa.com/how-to-set-up-a-firewall-with-gufw-on-linux/" frameborder="0" allow="autoplay; encrypted-media" allowfullscreen></iframe>
 </html> \\
-===== - Linux Server Build: OpenVPN From Scratch - Hak5 2019 =====
+===== - Fast and Easy Free VPN from Google - The Open Source OUTLINE - Hak5 2403 =====
 **[[firewalls#top|Top]]** \\
 **Also see other Youtubes HERE - [[linux#fast_free_and_easy_vpn_build_in_minutes_-_hak5_2022|Fast, Free, and Easy VPN Build in Minutes - Hak5 2022]]** \\
 [[https://github.com/Nyr/openvpn-install|Setting up an OpenVPN Server on Debian, Ubuntu and CentOS]] \\
 [[https://github.com/StarshipEngineer/OpenVPN-Setup|Setting up an OpenVPN Server on Raspberry P]] \\
-https://youtu.be/XcsQdtsCS1U \\
+https://youtu.be/04EmeXSZo_0 \\
 <html>
-<iframe width="800" height="450" src="https://www.youtube.com/embed/XcsQdtsCS1U" frameborder="0" allow="accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
+<iframe width="800" height="450" src="https://www.youtube.com/embed/04EmeXSZo_0" frameborder="0" allow="accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
 </html> \\
+<code>
+Install and setup OpenVPN
+apt-get update; apt-get install openvpn easy-rsa
+gunzip -c /usr/share/doc/openvpn/examples/sample-config-files/server.conf.gz  /etc/openvpn/server.conf
+nano /etc/openvpn/server.conf
+replace dh1024.pem with dh2048.pem
+#uncomment push "redirect-gateway def1 bypass-dhcp"
+#uncomment push "dhcp-option DNS" and replace IP addresses with your fav DNS
+#uncomment user nobody
+#uncomment group nogroup
+#save and exit
+Setup Firewall
+#Enable IP forwarding
+echo 1  /proc/sys/net/ipv4/ip_forward
+nano /etc/sysctl.conf
+#uncomment net.ipv4.ip_forward=1
+#save and exit
+#Configure firewall.
+ufw status
+ufw allow ssh
+ufw allow 1194/udp
+#Let packets forward through the VPS by changing for forward policy to accept
+nano /etc/default/ufw
+#replace DROP with ACCEPT in DEFAULT_FORWARD_POLICY="DROP"
+#save and exit
+#Enable NAT and IP masquerading for clients
+nano /etc/ufw/before.rules
+#Add the following near the top
+*nat
+:POSTROUTING ACCEPT [0:0]
+-A POSTROUTING -s 10.8.0.0/8 -o eth0 -j MASQUERADE
+COMMIT
+ufw status
+Setup Keys and Start the Server
+cp -r /usr/share/easy-rsa/ /etc/openvpn
+mkdir /etc/openvpn/easy-rsa/keys
+nano /etc/openvpn/easy-rsa/vars
+#change export KEY_* values
+#set KEY_NAME to "server"
+#save and exit
+#Generate the 2048 bit Diffie-Hellman pem file we pointed to in the openvpn config
+openssl dhparam -out /etc/openvpn/dh2048.pem 2048
+#move to the easy-rsa directory
+cd /etc/openvpn/easy-rsa
+#Set the variables we configured
+. ./vars
+./clean-all
+./build-ca #Accept all defaults
+./build-key-server server #Accept all defaults
+#Move the newly generated certificates to /etc/openvpn
+cp /etc/openvpn/easy-rsa/keys/server.crt,server.key,ca.crt /etc/openvpn
+#In /etc/openvpn we should have a server.conf, server.crt, server.key, ca.crt and dh2048.pem
+#start the OpenVPN service
+service openvpn start
+service openvpn status
+Setup keys for the first client
+./build-key client
+ls keys
+#Make a new directory to merge the client configuration and keys
+mkdir ~/client
+#Copy the example client configuration renaming the file extension from conf to ovpn
+cp /usr/share/doc/openvpn/examples/sample-config-files/client.conf ~/client/pineapple.ovpn
+cd /etc/openvpn/easy-rsa/keys
+cp client.crt client.key client.ovpn ~/client
+cp /etc/openvpn/ca.crt ~/client
+Securely copy client.crt, client.key, ca.crt and client.ovpn to your client device
+cd ~/client
+#determine public IP address
+ifconfig
+nano pineapple.ovpn
+# find remote and replace my-server-1 with IP address of VPN server
+# uncomment group nogroup
+# uncomment user nobody
+# comment out the ca, cert and key directives
+# save and exit
+echo "ca" to pineapple.ovpn
+cat ca.crt to pineapple.ovpn
+echo "/ca" to pineapple.ovpn
+echo "cert" to pineapple.ovpn
+cat client.crt to pineapple.ovpn
+echo "/cert" to pineapple.ovpn
+echo "key" to pineapple.ovpn
+cat client.key to pineapple.ovpn
+echo "/key" to pineapple.ovpn
+</code>
+**[[firewalls#top|Top]]** \\
+http://n6xre.duckdns.org:8000/wikipedia_en_all_novid_2017-08/A/OpenVPN.html \\
+<html>
+<iframe width="800" height="800" src="http://n6xre.duckdns.org:8000/wikipedia_en_all_novid_2017-08/A/OpenVPN.html" allowfullscreen></iframe>
+</html> \\
+**[[firewalls#top|Top]]** \\
+http://www.pivpn.io/ \\
+<html>
+<iframe width="800" height="800" src="http://www.pivpn.io/" allowfullscreen></iframe>
+</html> \\
+**[[firewalls#top|Top]]** \\
+https://www.bing.com/search?q=OpenVPN+Documentation \\
+<html>
+<iframe width="800" height="400" src="https://www.bing.com/search?q=OpenVPN+Documentation" allowfullscreen></iframe>
+</html> \\
 ===== - Quick and Dirty VPN Server with pptpd =====
 **[[firewalls#top|Top]]** \\
-**Also see Youtubes - [[firewalls#linux_server_buildopenvpn_from_scratch_-_hak5_2019|Linux Server Build: OpenVPN From Scratch - Hak5 2019]]** \\
+**Also see Youtubes - [[firewalls#fast_and_easy_free_vpn_from_google_-_the_open_source_outline_-_hak5_2403|Fast, Free, and Easy VPN Build in Minutes - Hak5 2022]]** \\
 https://redfern.me/quick-and-dirty-vpn-server-with-pptpd/ \\
 Quick_and_Dirty_VPN_Server_with_pptpd.pdf \\
@@ Line 104: / Line 253: @@
 </html> \\
 **[[firewalls#top|Top]]** \\
-https://www.ecosia.org/search?q=Point-to-Point_Tunneling_Protocol+Documentation \\
+https://www.bing.com/search?q=Point-to-Point_Tunneling_Protocol+Documentation \\
 <html>
-<iframe width="800" height="400" src="https://www.ecosia.org/search?q=Point-to-Point_Tunneling_Protocol+Documentation" allowfullscreen></iframe>
+<iframe width="800" height="400" src="https://www.bing.com/search?q=Point-to-Point_Tunneling_Protocol+Documentation" allowfullscreen></iframe>
 </html> \\
+===== - Squid Proxy Documentation =====
 **[[firewalls#top|Top]]** \\
-http://n6xre.duckdns.org:8000/wikipedia_en_all_novid_2017-08/A/OpenVPN.html \\
+https://doxfer.webmin.com/Webmin/Squid_Proxy_Server \\
 <html>
-<iframe width="800" height="800" src="http://n6xre.duckdns.org:8000/wikipedia_en_all_novid_2017-08/A/OpenVPN.html" allowfullscreen></iframe>
+<iframe width="60%" height="800" src="https://doxfer.webmin.com/Webmin/Squid_Proxy_Server" allowfullscreen></iframe>
 </html> \\
 **[[firewalls#top|Top]]** \\
-https://www.ecosia.org/search?q=OpenVPN+Documentation \\
+https://www.bing.com/search?q=Squid+Proxy+Documentation \\
 <html>
-<iframe width="800" height="400" src="https://www.ecosia.org/search?q=OpenVPN+Documentation" allowfullscreen></iframe>
+<iframe width="800" height="400" src="https://www.bing.com/search?q=Squid+Proxy+Documentation" allowfullscreen></iframe>
-</html> \\
-===== - Squid Proxy Documentation =====
-**[[firewalls#top|Top]]** \\
-https://www.ecosia.org/search?q=Squid+Proxy+Documentation \\
-<html>
-<iframe width="800" height="400" src="https://www.ecosia.org/search?q=Squid+Proxy+Documentation" allowfullscreen></iframe>
 </html> \\
 **[[firewalls#top|Top]]** \\
@@ Line 132: / Line 276: @@
 ===== - Privoxy Documentation =====
 **[[firewalls#top|Top]]** \\
-https://www.ecosia.org/search?q=Privoxy+Documentation \\
+https://www.bing.com/search?q=Privoxy+Documentation \\
 <html>
-<iframe width="800" height="400" src="https://www.ecosia.org/search?q=Privoxy+Documentation" allowfullscreen></iframe>
+<iframe width="800" height="400" src="https://www.bing.com/search?q=Privoxy+Documentation" allowfullscreen></iframe>
 </html> \\
 **[[firewalls#top|Top]]** \\
@@ Line 140: / Line 284: @@
 <html>
 <iframe width="800" height="800" src="http://n6xre.duckdns.org:8000/wikipedia_en_all_novid_2017-08/A/Privoxy.html" allowfullscreen></iframe>
+</html> \\
+**[[firewalls#top|Top]]** \\
+http://www.privoxy.org/ \\
+<html>
+<iframe width="800" height="800" src="http://www.privoxy.org/" allowfullscreen></iframe>
 </html> \\
 ===== - Tor on Raspbian =====
 **[[firewalls#top|Top]]** \\
-https://www.ecosia.org/search?q=Tor+on+Raspbian \\
+**[[http://192.168.11.115:8080|qBittorrent-nox]] - 115** \\
+https://www.bing.com/search?q=Tor+on+Raspbian \\
 <html>
-<iframe width="800" height="400" src="https://www.ecosia.org/search?q=Tor+on+Raspbian" allowfullscreen></iframe>
+<iframe width="800" height="400" src="https://www.bing.com/search?q=Tor+on+Raspbian" allowfullscreen></iframe>
 </html> \\
 **[[firewalls#top|Top]]** \\
@@ Line 152: / Line 302: @@
 <iframe width="800" height="800" src="http://n6xre.duckdns.org:8000/wikipedia_en_all_novid_2017-08/A/Tor_(anonymity_network).html" allowfullscreen></iframe>
 </html> \\
+**[[firewalls#top|Top]]** \\
+https://tektab.com/2015/11/19/setting-up-tor-socks-proxy-on-raspberry-pi/ \\
+<html>
+<iframe width="600" height="800" src="https://tektab.com/2015/11/19/setting-up-tor-socks-proxy-on-raspberry-pi/" allowfullscreen></iframe>
+</html> \\
 ===== - I2P on Raspbian =====
 **[[firewalls#top|Top]]** \\
-https://www.ecosia.org/search?q=I2P+on+Raspbian \\
+https://www.bing.com/search?q=I2P+on+Raspbian \\
 <html>
-<iframe width="800" height="400" src="https://www.ecosia.org/search?q=I2P+on+Raspbian" allowfullscreen></iframe>
+<iframe width="800" height="400" src="https://www.bing.com/search?q=I2P+on+Raspbian" allowfullscreen></iframe>
 </html> \\
 **[[firewalls#top|Top]]** \\
@@ Line 162: / Line 318: @@
 <html>
 <iframe width="800" height="800" src="http://n6xre.duckdns.org:8000/wikipedia_en_all_novid_2017-08/A/I2P.html" allowfullscreen></iframe>
+</html> \\
+**[[firewalls#top|Top]]** \\
+https://linuxconfig.org/i2p-anonymity-for-the-masses?amp;catid=83&jsn_setmobile=yes \\
+<html>
+<iframe width="800" height="800" src="https://linuxconfig.org/i2p-anonymity-for-the-masses?amp;catid=83&jsn_setmobile=yes" allowfullscreen></iframe>
 </html> \\
 ===== - Proxy Checker Genius =====
 **[[firewalls#top|Top]]** \\
+https://www.ipchicken.com/ \\
 http://www.proxychecker.ge/ \\
 <html>

Trace:

N6XRE DokuWiki

Differences

Search

Navigation

Print/export

Tools

QR Code