OpenVPN on managed boxes

From Bytesized Wiki

(Difference between revisions)
Jump to: navigation, search
(Windows)
(Fixed up new installations instructions using website.)
 
(21 intermediate revisions not shown)
Line 3: Line 3:
To achieve this, you need to setup openvpn on your local machine to connect to your seedbox.
To achieve this, you need to setup openvpn on your local machine to connect to your seedbox.
-
== Common Setup ==
+
If you only want to browse the net anonymously, you might want to try [http://wiki.bytesized-hosting.com/wiki/index.php/HTTP_Tunnel HTTP tunneling]
-
 
+
== OpenVPN setup per platform ==
-
Some general notes that apply to all operating Systems:
+
=== Windows ===
-
 
+
-
For openvpn setup, you need two files, you need the CA certificate and a configuration file,  
+
-
these are pretty much the same, no matter what operation system you use.
+
-
 
+
-
You should place both of these files in the same directory.
+
-
 
+
-
The general template for the configuration file is:
+
-
<pre>client
+
-
dev tun
+
-
proto tcp
+
-
remote yourservernamegoeshere.bytesized-hosting.com 1194
+
-
nobind
+
-
persist-key
+
-
persist-tun
+
-
ca ca.crt
+
-
auth-user-pass
+
-
verb 3
+
-
ping 10
+
-
ping-restart 60
+
-
comp-lzo
+
-
</pre>
+
-
You have to replace "yourservernamegoeshere" with the name of your sever, like "aphrodite"
+
-
if you know your way around openvpn, there are other options you can add to the configuration file,
+
-
consult the openvpn documentation for more information. Usually this shouldn't be necessary though
+
-
Options you may consider include: daemon, log or log-append
+
-
 
+
-
 
+
-
The other file you need is a text file called ca.crt, which contains the following lines:
+
-
<pre>
+
-
-----BEGIN CERTIFICATE-----
+
-
MIIDTDCCArWgAwIBAgIJAI4XnE9++QF8MA0GCSqGSIb3DQEBBQUAMHgxCzAJBgNV
+
-
BAYTAkxVMQswCQYDVQQIEwJMVTETMBEGA1UEBxMKTHV4ZW1ib3VyZzEMMAoGA1UE
+
-
ChMDdnBuMQ8wDQYDVQQDEwZ2cG4gQ0ExKDAmBgkqhkiG9w0BCQEWGXZwbkBieXRl
+
-
c2l6ZWQtaG9zdGluZy5jb20wHhcNMTAwODI5MDgwNjMzWhcNMjAwODI2MDgwNjMz
+
-
WjB4MQswCQYDVQQGEwJMVTELMAkGA1UECBMCTFUxEzARBgNVBAcTCkx1eGVtYm91
+
-
cmcxDDAKBgNVBAoTA3ZwbjEPMA0GA1UEAxMGdnBuIENBMSgwJgYJKoZIhvcNAQkB
+
-
Fhl2cG5AYnl0ZXNpemVkLWhvc3RpbmcuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GN
+
-
ADCBiQKBgQDPwLbi2zq8qa+zJNSyk26VfUXf6/T1mCWVetFCErd8jS6bSG2I+sC4
+
-
M5GLebFmYw/DRJO2eNJhbzYE+xQKFMyuZBAAZAs4C8+sOrk4P/Gza9hPV+uvnN2M
+
-
d35z7fhGwjRL2QRsb66ZcnKVkq0w4Hyvi21w9M0C8CKs7k3wmOTh0QIDAQABo4Hd
+
-
MIHaMB0GA1UdDgQWBBRGyr7sZAo5qxVPFhrsa4s3vJUqjDCBqgYDVR0jBIGiMIGf
+
-
gBRGyr7sZAo5qxVPFhrsa4s3vJUqjKF8pHoweDELMAkGA1UEBhMCTFUxCzAJBgNV
+
-
BAgTAkxVMRMwEQYDVQQHEwpMdXhlbWJvdXJnMQwwCgYDVQQKEwN2cG4xDzANBgNV
+
-
BAMTBnZwbiBDQTEoMCYGCSqGSIb3DQEJARYZdnBuQGJ5dGVzaXplZC1ob3N0aW5n
+
-
LmNvbYIJAI4XnE9++QF8MAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQEFBQADgYEA
+
-
aPPM/WibmznY45XXKEw+wODhgUkVYA6Z/v+zQb0AaBRlwEfTN6wXr3aMmuC44U/4
+
-
k4ZQ2MG9rfA82bBASOROtcWmlQCYtfeyAgEdICxpnLaIixv/qhU/r67AsHheICEs
+
-
ygA7Q//+qM3uKB89hsjPjzPffkM+T2zlKOI6LZlksFM=
+
-
-----END CERTIFICATE-----
+
-
</pre>
+
-
Note that if you change the name of this file, you need to adjust the config file accordingly (the part referencing the "ca.crt" file)
+
-
 
+
-
'''Please note that whenever you need to supply a username/password use the details from your box page on our website.'''
+
-
== Windows ==
+
* Download OpenVPN Gui from:
* Download OpenVPN Gui from:
-
** http://openvpn.se/download.html or
+
** http://openvpn.net/index.php/open-source/downloads.html (this one might work differently setup-wise but apparently fixes issues on Windows 7 64)
-
** http://openvpn.net/index.php/openvpn-client/downloads.html (this one might work differently setup-wise)
+
* Go to the details page for the box you want to setup OpenVPN for on the Bytesized website.
-
* Create C:\Program Files\OpenVPN\config\bytesized.ovpn (or the folder you installed it in) with your favorite editor.
+
* Press the "Generate OpenVPN config" button to download your config.
-
* Create the file "ca.crt" in the same folder and paste the contents given above.
+
* Extract the contents of the zipfile and navigate to the folder where you extracted the files, right click it and select "Start OpenVPN with this config file".
-
* Navigate to the config folder where you added the bytesized.ovpn file, right click it and select "Start OpenVPN with this config file".
+
* Enter your username and password.
* Enter your username and password.
* Make sure to run 'OpenVPN GUI' as admin so you can use the VPN through your browser!
* Make sure to run 'OpenVPN GUI' as admin so you can use the VPN through your browser!
-
== OS X ==
+
=== OS X ===
-
We are gonna use Tunneblick to setup OpenVPN on OSX
+
We are gonna use Viscosity to setup OpenVPN on OSX
-
* Download Tunennelblick from the [http://code.google.com/p/tunnelblick/ homepage]
+
* Download Viscosity from their [http://www.sparklabs.com/viscosity/download/ website].
-
* You will be welcomed by this screen
+
* Drag it to your Applications folder and start it.
-
[[File:Screen_shot_2010-08-29_at_11.47.06_PM.png|450px|]]
+
* Go to the details page for the box you want to setup OpenVPN for on the Bytesized website.
-
* Press the left button which says "Install and edit sample configuration file"
+
* Press the "Generate Viscosity config" button to download your config.
-
* Fill in the details from the general area, don't forget to replace your servername in there.
+
* Unzip the contents if your finder did not do so yet.
-
* Open up a text-editor of your chose (It's best to use VIM/Nano TextEdit might want to try and safe the file as RTF) and copy/paste the contents of the ca.crt file given above save the file in  /Users/yourusername/Library/Application Support/Tunnelblick/Configurations.
+
* Double click the Bytesized.visc file to import it to Viscosity.  
-
* Click the icon in the sysbar and press Connect "openvpn", if everything went well you will be prompted for your username and password. Be sure to use all lowercase characters for your username.  
+
* Press the Viscosity icon in your toolbar and press connect to config.  
-
* You should now be connected over VPN :)
+
== Linux ==
== Linux ==
Line 95: Line 39:
Protip2: Your SSH is the password needed to use this. Please make a not of this, as your Dashboard password will not work if you have changed your SSH password.
Protip2: Your SSH is the password needed to use this. Please make a not of this, as your Dashboard password will not work if you have changed your SSH password.
 +
 +
==== Graphical solution ====
 +
<pre>sudo apt-get install network-manager-openvpn</pre>
 +
 +
Left click the network manager icon.
 +
 +
Go to "VPN-Connections" -> "Configure VPN..."
 +
 +
Click "Add" and select "OpenVPN"
 +
<pre>
 +
"Connection name":  myseedbox (or what ever)
 +
 +
"General"
 +
  "Gateway":        "yourserver".bytesized-hosting.com
 +
 +
"Authentication"
 +
  "Type":          "Password"
 +
  "User name":      your_username
 +
  "Password":      your_password
 +
  "CA Certificate": "Browse to the downloaded ca file"
 +
</pre>
 +
 +
Then click "Advanced..." and check (leave the rest):
 +
 +
<pre>
 +
"General"
 +
  [x] "Use LZO data compression"
 +
  [x] "Use TCP connection"
 +
</pre>
 +
 +
== Possible problems and fixes ==
 +
=== No internet access after connection to VPN ===
 +
 +
'''Some people do not get internet access after connecting you can try adding the following nameservers this resolves the issues in most cases: 195.24.72.6 and 83.243.8.6'''
 +
 +
 +
====== Windows ======
 +
To do this, click on Control Panel and navigate to Network Connections, or you can click on the internet icon on the lower right. Once you connect to the VPN, it should have created a new connection.
 +
 +
[[File:New_connection_vpn.png]]
 +
 +
My new connection was labeled as unidentified but it doesn't matter. Click as indicated in the above to get
 +
 +
[[File:IPv4_Properties.png]]
 +
 +
Select "Internet Protocol Version 4" and click on Properties. Fill in the DNS servers like so:
 +
 +
[[File:Dns_servers.png]]

Current revision as of 15:43, 7 February 2013

You can use your account on our shared servers to tunnel your internet connection through your seedbox via VPN.

To achieve this, you need to setup openvpn on your local machine to connect to your seedbox.

If you only want to browse the net anonymously, you might want to try HTTP tunneling

Contents

OpenVPN setup per platform

Windows

  • Download OpenVPN Gui from:
  • Go to the details page for the box you want to setup OpenVPN for on the Bytesized website.
  • Press the "Generate OpenVPN config" button to download your config.
  • Extract the contents of the zipfile and navigate to the folder where you extracted the files, right click it and select "Start OpenVPN with this config file".
  • Enter your username and password.
  • Make sure to run 'OpenVPN GUI' as admin so you can use the VPN through your browser!

OS X

We are gonna use Viscosity to setup OpenVPN on OSX

  • Download Viscosity from their website.
  • Drag it to your Applications folder and start it.
  • Go to the details page for the box you want to setup OpenVPN for on the Bytesized website.
  • Press the "Generate Viscosity config" button to download your config.
  • Unzip the contents if your finder did not do so yet.
  • Double click the Bytesized.visc file to import it to Viscosity.
  • Press the Viscosity icon in your toolbar and press connect to config.

Linux

For linux, install openvpn (either with your distribuions package manager or from source if not available). For example, for ubuntu or debian do:

apt-get install openvpn

you probably want to save the configuration fila as /etc/openvpn/seedbox-vpn.conf and the certificate as /etc/openvpn/ca.crt

Now, if you want to connect through the vpn, simply run

sudo openvpn --config /etc/openvpn/seedbox-vpn.conf

(or omit the sudo and run as root if your not using sudo) This should route all traffic through your box!

Protip: You need to either be in the directory of your ca.crt when you run this command, or set an absolute location in your config file.

Protip2: Your SSH is the password needed to use this. Please make a not of this, as your Dashboard password will not work if you have changed your SSH password.

Graphical solution

sudo apt-get install network-manager-openvpn

Left click the network manager icon.

Go to "VPN-Connections" -> "Configure VPN..."

Click "Add" and select "OpenVPN"

"Connection name":  myseedbox (or what ever)

"General"
  "Gateway":        "yourserver".bytesized-hosting.com

"Authentication"
  "Type":           "Password"
  "User name":      your_username
  "Password":       your_password
  "CA Certificate": "Browse to the downloaded ca file"

Then click "Advanced..." and check (leave the rest):

"General"
  [x] "Use LZO data compression"
  [x] "Use TCP connection"

Possible problems and fixes

No internet access after connection to VPN

Some people do not get internet access after connecting you can try adding the following nameservers this resolves the issues in most cases: 195.24.72.6 and 83.243.8.6


Windows

To do this, click on Control Panel and navigate to Network Connections, or you can click on the internet icon on the lower right. Once you connect to the VPN, it should have created a new connection.

File:New_connection_vpn.png

My new connection was labeled as unidentified but it doesn't matter. Click as indicated in the above to get

File:IPv4_Properties.png

Select "Internet Protocol Version 4" and click on Properties. Fill in the DNS servers like so:

File:Dns_servers.png

Personal tools