Scribd Logo
Upload

Welcome to Scribd!

  • Fixed Install VPN

    Uploaded by

    Indra Kamuflase
    9 views7 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    9 views7 pages

    Fixed Install VPN

    Uploaded by

    Indra Kamuflase

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 7

    FIXED -- CARA INSTALL OPEN VPN PADA CENTOS 5 DAN 6 32Bit atau 64Bit

    Karena Banyak request yang minta TUTORIAL ini maka saya buatkan mudah mudah an bermanfaat : ==================== 1. masuk via bitvise buka terminal (xterm), atau via putty 2. harus dengan root access --pastikan TUN TAP sudah aktif masukkan : cat /dev/net/tun pastikan balasannya : file descriptor in bad state --------------------------------3. masukan perintah berikut : CENTOS 5 32bit
    wget http://pkgs.repoforge.org/rpmforge-release/rpmforge-release0.5.2-2.el5.rf.i386.rpm

    CENTOS 5 64bit
    wget http://packages.sw.be/rpmforge-release/rpmforge-release-0.5.22.el5.rf.x86_64.rpm

    CENTOS 6 32 bit
    wget http://pkgs.repoforge.org/rpmforge-release/rpmforge-release0.5.3-1.el6.rf.i686.rpm

    CENTOS 6 64bit
    wget http://pkgs.repoforge.org/rpmforge-release/rpmforge-release0.5.3-1.el6.rf.x86_64.rpm

    ALL CENTOS 5

    rpm --import http://apt.sw.be/RPM-GPG-KEY.dag.txt rpm -K rpmforge-release-0.5.2-2.el5.rf.*.rpm rpm -i rpmforge-release-0.5.2-2.el5.rf.*.rpm

    ALL CENTOS 6 rpm --import http://apt.sw.be/RPM-GPG-KEY.dag.txt (abaikan jika gagal) rpm -K rpmforge-release-0.5.3-1.el6.rf.*.rpm rpm -i rpmforge-release-0.5.3-1.el6.rf.*.rpm yum install openvpn -y cp -r /usr/share/doc/openvpn-2.2.2/easy-rsa/ /etc/openvpn/

    PERHATIKAN CENTOS 6 butuh sedikit perubahan yum -y install nano nano /etc/openvpn/easy-rsa/2.0/vars kemudian EDIT baris berikut : export KEY_CONFIG=`$EASY_RSA/whichopensslcnf $EASY_RSA` MENJADI : export KEY_CONFIG=/etc/openvpn/easy-rsa/2.0/openssl-1.0.0.cnf kemudian SAVE (Ctrl+x) (Y) (ENTER)

    cd /etc/openvpn/easy-rsa/2.0/ chmod +x * source ./vars ./vars ./clean-all ./build-ca

    cukup Enter Semua KECUALI COMMON NAME (isi sesuai keinginan) kemudian :
    ./build-key-server server

    Perhatikan dan Ikuti Langkahnya Baik-baik saat muncul notifikasi (ada dua kali) pilih Y (y) ---------------------------------------./build-dh

    tunggu hingga proses selesai jika sudah masukkan berikut :

    cp -r /etc/openvpn/easy-rsa/2.0/keys/ /etc/openvpn/keys/ cp /etc/openvpn/keys/ca.crt /etc/openvpn/

    cd /etc/openvpn/

    Membuat Response ke TUN driver


    cat > server.conf <<END dev tun* END

    MembuatConfigurasi server :

    cat > groundworld.conf <<END port 443 proto tcp dev tun ca /etc/openvpn/keys/ca.crt cert /etc/openvpn/keys/server.crt key /etc/openvpn/keys/server.key dh /etc/openvpn/keys/dh1024.pem plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login client-cert-not-required username-as-common-name server 10.9.8.0 255.255.255.0 ifconfig-pool-persist ipp.txt push "redirect-gateway def1" push "dhcp-option DNS 8.8.8.8" push "dhcp-option DNS 8.8.4.4" keepalive 5 30 comp-lzo persist-key persist-tun status server-tcp.log verb 3 END

    Forwarding Port
    echo 1 > /proc/sys/net/ipv4/ip_forward

    Iptables Route rules

    iptables -t nat -A POSTROUTING -s 10.9.8.0/24 -o venet0 -j SNAT --to xxx.xxx.xxx.xxx

    xxx.xxx.xxx.xxx diatas ganti dengan IP VPS anda Jalankan VPN di server :


    service openvpn start

    Buat Client Config :


    cat > groundworld.ovpn <<END client dev tun proto tcp remote xxx.xxx.xxx.xxx 443 resolv-retry infinite route-method exe resolv-retry infinite nobind persist-key persist-tun ca ca.crt auth-user-pass comp-lzo verb 3 END

    INGAT, ganti xxx.xxx dengan IP VPS anda ============================== sekarang kita bungkus makanan kita :
    tar -czvf config.tar.gz ca.crt groundworld.ovpn

    cp config.tar.gz /root config.tar.gz di download via sftp windows di directory /root, jika kesulitan, kalo sudah ada httpd bisa dicopy ke sini : cp config.tar.gz /var/www/html/ silahkan file di download di http://IpVPSkamu/ ex : http://212.112.11.123/

    ========================= sekarang di terminal (masih) bikin user untuk ngetest

    adduser -m -s /bin/false trial passwd trial

    masukkan 2x autentikasi pass nya cmiww, DONE !!! -----------------------Tinggal Pindahkan Downloadan Config tadi, ekstrak menggunakan 7-Zip dan pindahkan ke C > program files > openvpn > config ============= CARA MUDAH ============= download openvpn portable disini : ---------------------http://sourceforge.net/projects/ovpnp/files/latest/download ----------------------kemudian install di folder yang kamu suka ---------------------setelah itu masuk ke folder OpenVPNPortable > data > config -----------------ekstrak file config.tar.gz disini, pastikan setelah ter-ekstrak terdapat 2 FILE : ------------------1. groundworld.ovpn dan 2. ca.crt ================ DONE !! silahkan jalankan openVPNPortable, di Icon Tray Kanan Bawah PC anda klik kanan Connect groundworld dan masukan user dan pass yang telah dibuat diatas ---------------------------------jika masih belum mau, gunakan Contoh Config dibawah : copykan ke groundworld.ovpn atau buka notepad dan save as type ALLFILES dan PADA file name di isi ekstensi .ovpn ex : hostingindo.ovpn ------------------------client dev tun proto tcp remote xxx.xxx.xxx.xxx 443 route 0.0.0.0 0.0.0.0 resolv-retry infinite

    route-method exe resolv-retry infinite nobind persist-key persist-tun auth-user-pass pass.txt comp-lzo verb 3 ca ca.crt --------------------------PERHATIAN !! UNTUK MENGGUNAKAN CONFIG DIATAS BUAT FILE PASS.TXT GUNAKAN NOTEPAD FORMAT : username password ==>contoh trial trial simpan di folder OpenVPNPortabel > data > config =================================== UNTUK OPENVPN listen INJEK gunakan config : -----------------------------------client dev tun proto tcp remote xxx.xxx.xxx.xxx 443 http-proxy 127.0.0.1 xxxx route 0.0.0.0 0.0.0.0 resolv-retry infinite route-method exe resolv-retry infinite nobind persist-key persist-tun auth-user-pass pass.txt comp-lzo verb 3 ca ca.crt ================================================== http-proxy 127.0.0.1 xxxx (xxxx diisi dengan PORT INJECT !) ================================================== untuk yang bermasalah dengan route dan terbiasa menggunakan route manual masukan config : ------------------------client

    dev tun proto tcp remote xxx.xxx.xxx.xxx 443 http-proxy 127.0.0.1 xxxx route 0.0.0.0 0.0.0.0 resolv-retry infinite route-method adaptive resolv-retry infinite nobind persist-key persist-tun auth-user-pass pass.txt comp-lzo verb 3 ca ca.crt ------------DONE !! silahkan jalankan openVPNPortable, di Icon Tray Kanan Bawah PC anda klik kanan Connect groundworld dan masukan user dan pass yang telah dibuat diatas --------DONE, silahkan ditanyakan jika ada yang kurang Mohon Maaf jika ada kekurangan, silahkan Komeng :)

    You might also like