Na te piki haere o te aukati i te Ipurangi e nga mana whakahaere, kei te aukatihia te maha o nga rauemi Ipurangi whaihua me nga waahi. Tae atu ki nga korero hangarau.
No reira, kua kore e taea te whakamahi katoa i te Ipurangi me te takahi i te mana taketake ki te herekore korero, kua mau ki roto Whakaputanga o te Ao mo nga Tika Tangata.
Tuhinga 19
Ko ia tangata e whai mana ana ki te herekoretanga o te whakaaro me te whakaputa korero; kei roto i tenei tika te herekore ki te pupuri whakaaro me te kore e pokanoa, ki te rapu, ki te whiwhi me te tuku korero me nga whakaaro ma roto i nga momo panui ahakoa he aha nga rohe.
I roto i tenei aratohu, ka horahia e matou a maatau ake taputapu koreutu * i roto i nga waahanga e 6. Ratonga VPN i runga i te hangarau Kaitiaki Waea, i roto i nga hanganga kapua Ratonga Tukutuku Amazon (AWS), te whakamahi i te kaute kore utu (mo nga marama 12), i runga i tetahi tauira (miihini mariko) e whakahaerehia ana e Tūmau Ubuntu 18.04 LTS.
I ngana ahau ki te whakahoa i tenei hikoi ki te hunga ehara i te IT. Ko te mea anake e hiahiatia ana ko te manawanui ki te whakahoki ano i nga waahanga kua whakaahuahia i raro nei.
parau
Ka whakaratohia e AWS taumata whakamahi kore utu mo te 12 marama, me te tepe o te 15 kikipaita o te waka i ia marama.
Ko te haina mo te putea AWS kore utu me whai nama waea me te kaari nama Visa, Mastercard ranei. Ka tūtohu ahau ki te whakamahi i nga kaari mariko e whakaratohia ana mo te kore utu Yandex.Money ranei putea kiwi. Hei tirotiro i te mana o te kaari, ka tangohia te $1 i te wa o te rehitatanga, ka whakahokia mai.
1.1. Te whakatuwhera i te Papatohu Whakahaere AWS
Me whakatuwhera koe i tetahi kaitirotiro ka haere ki: https://aws.amazon.com/ru/
Patohia te paatene "Rehita".
1.2. Te whakakii i nga raraunga whaiaro
Whakakiia nga raraunga ka paato i te paatene "Haere tonu".
1.3. Te whakakī i nga taipitopito whakapā
Whakakiia nga korero whakapā.
1.4. Te tautuhi i nga korero utu.
Te nama kaari, te ra paunga me te ingoa o te kaipupuri kaari.
1.5. Manatoko Pūkete
I tenei wa, ka whakapumautia te nama waea me te $ 1 ka tukuna tika mai i te kaari utu. Ka whakaatuhia he waehere 4-mati i runga i te mata rorohiko, a ka whiwhi te waea kua tohua he waea mai i a Amazon. I te wa e waea ana, me waea koe i te waehere kua whakaatuhia ki te mata.
1.6. Te kowhiringa o te mahere utu.
Kōwhiri - Mahere Taketake (kore utu)
1.7. Takiuru ki te papatohu whakahaere
1.8. Te whiriwhiri i te waahi o te pokapū raraunga
1.8.1. Te whakamatautau tere
I mua i te kowhiri i tetahi pokapū raraunga, ka tūtohu kia whakamatauhia https://speedtest.net te tere o te uru ki nga pokapū raraunga tata, i taku waahi ko nga hua e whai ake nei:
Сингапур
Paris
Frankfurt
Stockholm
London
Ko te pokapū raraunga i Raanana e whakaatu ana i nga hua pai mo te tere. Na i whiriwhiria e ahau mo etahi atu whakaritenga.
2. Waihangahia he tauira AWS
2.1 Hangaia he miihini mariko
2.1.1. Te whiriwhiri momo tauira
Ma te taunoa, ka tohua te tauira t2.micro, koinei te mea e hiahiatia ana e matou, pehia noa te paatene Tō muri mai: Whirihorahia nga Taipitopito Tauira
2.1.2. Tautuhi Kōwhiringa Tauira
I te wa kei te heke mai, ka honoa e matou he IP tūmatanui tuturu ki to maatau tauira, na i tenei wa ka whakawetohia e matou te taumahi-aunoa o tetahi IP whanui, ka pehi i te paatene Tō muri mai: Tāpiri Rokiroki
2.1.3. Hononga rokiroki
Tauwhāitihia te rahi o te "kōpae mārō". Mo a maatau kaupapa, 16 gigabytes ka nui, ka pehia e matou te paatene Tō muri mai: Tāpiri Tūtohu
2.1.4. Te whakarite tohu
Mena he maha nga wa i hangaia e matou, katahi ka whakarōpūhia e nga tohu kia pai ai te whakahaere. I tenei keehi, he nui noa atu tenei mahi, pehia tonu te paatene Tō muri mai: Whirihorahia te Rōpū Haumarutanga
2.1.5. Whakatuwhera tauranga
I tenei taahiraa, ka whirihorahia e matou te papangaahi ma te whakatuwhera i nga tauranga e hiahiatia ana. Ko te huinga o nga tauranga tuwhera ka kiia ko te Roopu Haumaru. Me hanga he roopu haumarutanga hou, hoatu he ingoa, whakaahuatanga, taapirihia he tauranga UDP (Ture UDP Ritenga), ki te mara Rort Range, me tautapa he nama tauranga mai i te awhe. tauranga hihiri 49152-65535. I tenei keehi, i tohua e au te nama tauranga 54321.
I muri i te whakakii i nga raraunga e hiahiatia ana, paatohia te paatene Arotake me te Whakarewa
2.1.6. Tirohanga o nga tautuhinga katoa
Kei runga i tenei wharangi he tirohanga whanui mo nga tautuhinga katoa o ta maatau tauira, ka tirohia mena kei te pai nga tautuhinga katoa, ka pehi i te paatene Whakarewa
2.1.7. Te Waihanga Patuhi Uru
Ka puta mai he pouaka korero e tuku ana ki te hanga, ki te taapiri ranei i tetahi taviri SSH o mua, ka hono atu maatau ki to maatau tauira. Ka tohua e matou te "Waihangahia he takirua matua hou" hei hanga i tetahi taviri hou. Hoatu he ingoa ka paato i te paatene Tikiake Takirua Kīki te tango i nga taviri i hangaia. Tiakina ki tetahi waahi haumaru i runga i to rorohiko o to rohe. Kia tikiakehia, pawhiria te paatene. Whakarewa Tauira
2.1.7.1. Tiaki Kī Uru
Ka whakaatuhia i konei te taahiraa o te tiaki i nga taviri i hangaia mai i te taahiraa o mua. I muri i to pehi i te paatene Tikiake Takirua Kī, ka tiakina te matua hei konae tiwhikete me te *.pem toronga. I tenei take, i hoatu e ahau he ingoa wireguard-awskey.pem
2.1.8. Tirohanga o nga Hua Waihanga Tauira
I muri mai, ka kite matou i tetahi panui mo te whakarewatanga angitu o te tauira i hanga e matou. Ka taea e tatou te haere ki te rarangi o a maatau tauira ma te paatene i te paatene tirohia nga tauira
2.2. Te hanga wāhitau IP waho
2.2.1. Ka timata te hanga i tetahi IP o waho
I muri mai, me hanga e matou he wahitau IP o waho pumau e hono atu ai matou ki to maatau VPN. Ki te mahi i tenei, i roto i te papa whakatere kei te taha maui o te mata, tohua te mea IP maeneene mai i te kāwai Whatunga me te WANANGA ka pehi i te paatene Toha wāhitau hōu
2.2.2. Te whirihora i te hanganga o te IP waho
I te taahiraa e whai ake nei, me whakaahei tatou i te whiringa puna Amazon (whakahohea ma te taunoa), ka paato i te paatene Tohaina
2.2.3. Tirohanga o nga hua o te hanga i tetahi wahitau IP waho
Ko te mata e whai ake nei ka whakaatu i te wahitau IP o waho i whakawhiwhia e matou. E taunaki ana kia maumahara, he pai ake te tuhi. ka whai hua nui atu i te kotahi i roto i te mahi whakarite me te whakamahi i te tūmau VPN. I roto i tenei aratohu, ka whakamahia e ahau te wahitau IP hei tauira. 4.3.2.1. Kia uru koe ki te wahitau, pehia te paatene Katia
2.2.4. Rarangi o nga wahitau IP waho
I muri mai, ka tukuna mai he rarangi o o matou wahitau IP tūmatanui (elastics IP).
2.2.5. Te tautapa i tetahi IP o waho ki tetahi Tauira
I roto i tenei rarangi, ka tohua e matou te wahitau IP i whakawhiwhia ki a matou, ka pehi i te paatene kiore matau ki te whakaputa i te tahua taka-iho. I roto, tohua te mea wāhitau hoaki te tautapa ki te tauira i hanga e matou i mua.
2.2.6. Tautuhinga taumahi IP waho
I te taahiraa e whai ake nei, tohua to maatau tauira mai i te rarangi taka-iho, ka pehi i te paatene Tuarua
2.2.7. Tirohanga o nga Hua Taumahi IP o waho
Whai muri i tera, ka kite tatou kua herea to tatou tauira me tana wahitau IP tūmataiti ki to tatou wahitau IP tūmatanui tuturu.
Inaianei ka taea e taatau te hono atu ki ta maatau tauira hou i hangaia mai i waho, mai i ta maatau rorohiko ma te SSH.
3. Hono atu ki tetahi tauira AWS
SSH he kawa haumaru mo te mana mamao o nga taputapu rorohiko.
3.1. Te hono ma te SSH mai i te rorohiko Windows
Hei hono atu ki te rorohiko Windows, me tango tuatahi me te whakauru i te papatono Putty.
3.1.1. Kawemai te kī tūmataiti mo Putty
3.1.1.1. I muri i te whakauru i a Putty, me whakahaere e koe te taputapu PuTTYgen e haere mai ana ki te kawemai i te kii tiwhikete ki te whakatakotoranga PEM ki te whakatakotoranga e tika ana mo te whakamahi i te Putty. Ki te mahi i tenei, tohua te mea kei te tahua runga Huringa-> Kī Kawemai
3.1.1.2. Te whiriwhiri i te Kī AWS i te Hōputu PEM
Muri iho, tohua te taviri i tiakina e matou i mua i te taahiraa 2.1.7.1, i roto i to maatau ingoa wireguard-awskey.pem
3.1.1.3. Te tautuhi i nga whiringa kawemai matua
I tenei taahiraa, me tohu he korero mo tenei matua (whakaahuatanga) me te tautuhi i te kupuhipa me te whakau mo te haumarutanga. Ka tonohia ia wa ka hono koe. No reira, ka tiakina e matou te ki me te kupuhipa mai i te whakamahi tika. Karekau koe e whakatakoto kupuhipa, engari he iti ake te haumaru mena ka taka te ki ki nga ringa he. I muri i ta maatau pehi i te paatene Tiakina te kī muna
3.1.1.4. Tiaki ana i tetahi kī kawemai
Ka tuwhera he korero penapena kōnae ka tiakina e matou ta matou kii motuhake hei konae me te toronga .ppkpai mo te whakamahi i roto i te kaupapa Putty.
Tauwhāitihia te ingoa o te kī (i roto i ta maatau take wireguard-awskey.ppk) ka pehi i te paatene pupuri.
3.1.2. Te hanga me te whirihora hononga ki Putty
3.1.2.1. Waihanga hononga
Whakatuwherahia te kaupapa Putty, tohua he waahanga Session (he tuwhera ma te taunoa) me te mara Ingoa Kaihautū tomo te wāhitau IP tūmatanui o to tatou tūmau, i riro ia matou i roto i te taahiraa 2.2.3. I te mara Wahanga Tiaki whakauruhia he ingoa noa mo to maatau hononga (i taku keehi wireguard-aws-london), ka pehi i te paatene Tiaki hei tiaki i nga huringa i mahia e matou.
3.1.2.2. Te whakarite i te autologin kaiwhakamahi
Ētahi atu kāwai hononga, whiriwhiria he waahanga iti Raraunga i te mara hoki Takiuru-aunoa ingoa kaiwhakamahi tomo ingoa kaiwhakamahi Ubuntu Ko te kaiwhakamahi paerewa o te tauira i runga i te AWS me Ubuntu.
3.1.2.3. Te kōwhiri i tētahi kī tūmataiti mō te tūhono mā te SSH
Na ka haere ki te waahanga iti Hononga/SSH/Auth me te taha o te mara Kōnae matua motuhake mo te motuhēhēnga pehia te paatene Tirotiro ... ki te whiriwhiri i tetahi konae whai tiwhikete matua.
3.1.2.4. Te whakatuwhera i tetahi kī kawemai
Tauwhāitihia te kī i kawemai i mua i te taahiraa 3.1.1.4, i roto i to maatau he konae wireguard-awskey.ppk, ka pehi i te paatene Whakatūwheratia te.
3.1.2.5. Te tiaki i nga tautuhinga me te timata hononga
Kei te hoki ki te wharangi waahanga Session pehia ano te paatene Tiaki, ki te tiaki i nga huringa i mahia e matou i mua i nga waahanga o mua (3.1.2.2 - 3.1.2.4). Na ka pehi tatou i te paatene tuwhera ki te whakatuwhera i te hononga SSH mamao i hanga e matou me te whirihora.
3.1.2.7. Te whakatu i te whakawhirinaki ki waenga i nga kaihautu
I te taahiraa e whai ake nei, i te wa tuatahi e ngana ana matou ki te hono, ka tukuna he whakatupato, kaore matou i te whakawhirinaki i waenga i nga rorohiko e rua, ka patai mena ka whakawhirinaki ki te rorohiko mamao. Ka pana tatou i te paatene Ae, na reira ka taapiri atu ki te rarangi o nga kaihautu whakawhirinaki.
3.1.2.8. Te whakauru kupuhipa ki te uru ki te kī
I muri i tera, ka tuwhera he matapihi tauranga, i reira ka tonohia koe mo te kupuhipa mo te matua, ki te whakaturia e koe i mua i te taahiraa 3.1.1.3. I te wa e whakauru ana i te kupuhipa, kaore he mahi i runga i te mata. Mena ka he koe, ka taea e koe te whakamahi i te ki Pouaka.
3.1.2.9. He karere nau mai mo te hononga angitu
Whai muri i te whakaurunga angitu i te kupuhipa, ka whakaatuhia mai he kupu powhiri i roto i te tauranga, e kii ana kua reri te punaha mamao ki te whakahaere i a maatau whakahau.
4. Te whirihora i te Wireguard Server
Ko nga tohutohu hou mo te whakauru me te whakamahi i te Wireguard ma te whakamahi i nga tuhinga e whakaahuatia ana i raro nei ka kitea i roto i te putunga: https://github.com/isystem-io/wireguard-aws
4.1. Tāuta WaeaGuard
I roto i te tauranga, whakauruhia nga whakahau e whai ake nei (ka taea e koe te kape ki te papatopenga, ka whakapiri ki te tauranga ma te pehi i te paatene kiore matau):
4.1.1. Te whakakao i tetahi putunga
Korohia te putunga me nga tuhinga whakauru Wireguard
Whakahaerehia hei kaiwhakahaere (kaiwhakamahi pakiaka) te tuhinga whakauru Wireguard
sudo ./initial.sh
Ka tono te tukanga whakauru mo etahi raraunga e hiahiatia ana hei whirihora Wireguard
4.1.3.1. Whakauru ira hononga
Whakauruhia te wahitau IP o waho me te tauranga tuwhera o te tūmau Wireguard. I whiwhi matou i te wahitau IP waho o te tūmau i te taahiraa 2.2.3, ka whakatuwheratia te tauranga i te taahiraa 2.1.5. Ka tohuhia e matou, ka wehea ki te koroni, hei tauira 4.3.2.1:54321kātahi ka pēhi i te kī E tomo Putanga tauira:
Enter the endpoint (external ip and port) in format [ipv4:port] (e.g. 4.3.2.1:54321): 4.3.2.1:54321
4.1.3.2. Te whakauru i te wahitau IP o roto
Whakauruhia te wahitau IP o te Wireguard tūmau i runga i te ipurangiroto VPN haumaru, ki te kore koe e mohio he aha tena, pehia noa te taviri Whakauru hei tautuhi i te uara taunoa (10.50.0.1) Putanga tauira:
Enter the server address in the VPN subnet (CIDR format) ([ENTER] set to default: 10.50.0.1):
4.1.3.3. Te tautuhi i tetahi Tūmau DNS
Whakauruhia te wahitau IP o te tūmau DNS, pehi noa ranei i te taviri Whakauru hei tautuhi i te uara taunoa 1.1.1.1 (Cloudflare DNS tūmatanui) Putanga tauira:
Enter the ip address of the server DNS (CIDR format) ([ENTER] set to default: 1.1.1.1):
4.1.3.4. Te tautuhi i te atanga WAN
I muri mai, me whakauru koe i te ingoa o te atanga whatunga o waho ka whakarongo ki te atanga whatunga o roto VPN. Patohia noa te Enter hei tautuhi i te uara taunoa mo AWS (eth0) Putanga tauira:
Enter the name of the WAN network interface ([ENTER] set to default: eth0):
4.1.3.5. Te tautuhi i te ingoa o te kiritaki
Whakauruhia te ingoa o te kaiwhakamahi VPN. Ko te meka kaore e taea e te Wireguard VPN te tiimata kia tae ra ano te taapiri kia kotahi te kaihoko. I tenei take, i whakauru ahau i te ingoa Alex@mobile Putanga tauira:
Enter VPN user name: Alex@mobile
I muri i tera, me whakaatu he waehere QR me te whirihoranga o te kiritaki hou kua whakauruhia ki runga i te mata, me panui ma te whakamahi i te Wireguard waea pūkoro i runga i te Android, i te iOS ranei hei whirihora. I raro ano hoki i te waehere QR, ka whakaatuhia nga tuhinga o te konae whirihoranga mena he whirihoranga a-ringa a nga kaihoko. Me pehea te mahi ka korerohia i raro nei.
4.2. Te taapiri i tetahi kaiwhakamahi VPN hou
Hei taapiri i tetahi kaiwhakamahi hou, me mahi koe i te tuhinga ki te tauranga add-client.sh
sudo ./add-client.sh
Ka tono te tuhinga mo tetahi ingoa ingoa: Putanga tauira:
Enter VPN user name:
Ano, ko te ingoa o nga kaiwhakamahi ka taea te tuku hei tawhā tuhinga (i tenei keehi Alex@mobile):
sudo ./add-client.sh Alex@mobile
Ko te hua o te mahinga tuhinga, i roto i te raarangi me te ingoa o te kiritaki i te huarahi /etc/wireguard/clients/{ИмяКлиента} ka hangaia te kōnae whirihoranga kiritaki /etc/wireguard/clients/{ИмяКлиента}/{ИмяКлиента}.conf, a ka whakaatuhia e te mata tauranga he waehere QR mo te whakarite i nga kiritaki pūkoro me nga ihirangi o te konae whirihoranga.
4.2.1. Kōnae whirihoranga kaiwhakamahi
Ka taea e koe te whakaatu i nga ihirangi o te konae .conf i runga i te mata, mo te whirihoranga a-ringa o te kiritaki, ma te whakamahi i te whakahau cat
[Interface]
PrivateKey = Приватный ключ клиента
Address = IP адрес клиента
DNS = ДНС используемый клиентом
[Peer]
PublicKey = Публичный ключ сервера
PresharedKey = Общи ключ сервера и клиента
AllowedIPs = Разрешенные адреса для подключения (все - 0.0.0.0/0, ::/0)
Endpoint = IP адрес и порт для подключения
4.2.2. QR code mo te whirihoranga kiritaki
Ka taea e koe te whakaatu i te waehere QR whirihoranga mo te kiritaki i hanga i mua i runga i te mata tauranga ma te whakamahi i te whakahau qrencode -t ansiutf8 (i tenei tauira, ka whakamahia te kaihoko ko Alex@mobile):
I muri i tera, me kawemai koe i te whirihoranga ma te panui i te waehere QR me te whirihoranga o te kiritaki (tirohia te pararangi 4.2.2) ka hoatu he ingoa:
I muri i te pai o te kawemai i te whirihoranga, ka taea e koe te urunga VPN. Ko te hononga angitu ka tohuhia e tetahi putunga matua i roto i te paepae punaha Android
5.2. Tatūnga kiritaki Windows
Tuatahi me tango me te whakauru i te papatono TunSafe mo Windows Ko te kiritaki Wireguard mo Windows.
5.2.1. Kei te hanga i tetahi konae whirihoranga kawemai
Pāwhiri-matau ki te hanga i tetahi konae tuhinga ki te papamahi.
5.2.2. Tāruatia ngā ihirangi o te kōnae whirihoranga mai i te tūmau
Na ka hoki matou ki te tauranga Putty me te whakaatu i nga ihirangi o te konae whirihoranga o te kaiwhakamahi e hiahiatia ana, pera me te korero i te taahiraa 4.2.1.
Muri iho, pawhiri-matau i te kupu whirihoranga i te tauranga Putty, ka oti te kowhiringa, ka kape aunoatia ki te papatopenga.
5.2.3. Te tārua i te whirihoranga ki te kōnae whirihoranga paetata
I tenei mara, ka hoki ano matou ki te konae tuhinga i hangaia e matou i mua i runga i te papamahi, ka whakapiri i te tuhinga whirihoranga ki roto mai i te papatopenga.
5.2.4. Te tiaki i te konae whirihoranga paetata
Tiakina te kōnae me te toronga .conf (i roto i tenei take ko te ingoa london.conf)
5.2.5. Te kawemai i te konae whirihoranga paetata
I muri mai, me kawemai koe i te konae whirihoranga ki te kaupapa TunSafe.
5.2.6. Te whakarite hononga VPN
Tīpakohia tēnei kōnae whirihoranga ka hono mā te pāwhiri i te pātene Tūhono.
6. Te tirotiro mehemea i angitu te hononga
Hei tirotiro i te angitu o te hononga na roto i te tunnel VPN, me whakatuwhera koe i tetahi kaitirotiro ka haere ki te waahi https://2ip.ua/ru/
Ko te wahitau IP kua whakaatuhia me rite ki te wahitau kua riro mai i te taahiraa 2.2.3.
Ki te pera, katahi ka pai te mahi a te kauhanga VPN.
Mai i te tauranga Linux, ka taea e koe te tirotiro i to wahitau IP ma te pato:
curl http://zx2c4.com/ip
Ka taea ranei e koe te haere ki te pornhub mena kei Kazakhstan koe.