Kia ora, e ngā Habrites! Kua tūtaki koe ki tētahi āhuatanga e hiahia ana koe ki te kawe mariko atu ki tētahi atu tāone, whenua, whenua rānei? He maha ngā wā ka pā mai tēnei hiahia ki ahau, nō reira he mea tino nui te āheinga ki te whai i taku ake tūmau VPN ka taea e au te whakarewa i hea noa i roto i ngā hēkona ruarua. I roto i tēnei tuhinga, e hiahia ana ahau ki te whakapuaki i tētahi kaupapa i whakaarohia e au i a au e rapu ana i tētahi otinga kua oti te hanga—i tēnei wā, he ahua Docker hei āwhina i ahau ki te whakarite wawe. OpenVPN tūmau me ngā tautuhinga iti me te taumata haumarutanga e whakaaetia ana.
prehistory
He mea nui te kaha ki te whakahaere i tētahi ratonga i runga i tētahi mīhini—ahakoa he tūmau tūturu, he tūmau tūmataiti mariko, he wāhi ipu rānei i roto i tētahi atu pūnaha whakahaere ipu. I tau tonu ōku kanohi ki a Docker. Tuatahi, kei te piki haere te rongonui, ko te tikanga he maha atu ngā kaiwhakarato e tuku ana i ngā otinga kua oti te hanga me te tāuta i mua; tuarua, kei te tuku i tētahi putunga whakaahua pokapū ka taea e koe te tango me te whakahaere i te ratonga mā te whakahau kotahi i roto i te pūwhakamutunga. I puta te whakaaro me noho kē tētahi kaupapa pēnei i roto i tōku hinengaro, ā, i rapu tonu ahau. Engari ko te nuinga o ngā kaupapa i kitea e au he tino uaua (me hanga he ipu mō te rokiroki raraunga pumau me te whakarewa i te ipu tono i ngā wā maha me ngā tawhā rerekē), he kore tuhinga tika rānei, he whakarērea rawatia rānei. Kāore i kitea he mea e tika ana, ka tīmata ahau ki te mahi i taku ake kaupapa. He pō moe kore o te tirotiro i ngā tuhinga, te tuhi waehere, me te patuiro kei mua, engari i te mutunga ka kite taku ratonga i te māramatanga o te ao, ā, ka tīmata te kanapa me ngā tae katoa o te papa LED monochrome o te pouara. Nō reira, tēnā koa aroha mai, nau mai haere mai— I hoahoa ahau i tētahi tohu (i runga ake nei, i mua i te tapahi), engari kaua e tino whakahēngia, nā te mea ehara ahau i te kaihoahoa (i ēnei rā). I te whakatinanatanga o tēnei kaupapa, i aro nui ahau ki te tere whakatinanatanga, te whirihoranga iti, me te taumata haumarutanga e whakaaetia ana. Mā te whakamātautau me te hapa, i kitea e au te taurite pai i waenga i ēnei paearu. Heoi, i ētahi wāhi, i tukua e au te tere whakatinanatanga mō te haumarutanga, ā, ko te whirihoranga iti i puta mai i te utu o te kawe: i roto i te whirihoranga o nāianei, ina hangaia he ipu ki tētahi tūmau, kāore e taea te neke me te whakahaere i tētahi atu. Hei tauira, ka hangaia ngā tiwhikete kiritaki me te tūmau katoa ina tīmata te ratonga, e rua hēkona te roa. Heoi, me neke te whakaputanga o te kōnae Defi Hellman ki te wā hanga: ka hangaia i te wā e hangaia ana te ahua Docker, ā, ka roa pea ki te 10 meneti. E tino hiahia ana ahau ki te whiwhi arotake haumarutanga o tētahi otinga pēnei mai i te hapori whakaute.
Te whakatairanga
Hei whakarewa i te ratonga, e hiahia ana mātou ki ētahi mea:
- Tūmau: tūturu, mariko rānei. I roto i te ariā, ka taea te whakahaere i roto i te aratau Docker-i roto i te Docker, engari kāore anō kia whakamatauria e au tēnei kōwhiringa;
- Docker tonu. He maha ngā kaiwhakarato manaaki e tuku ana i ngā otinga kua oti te hanga me te Docker kua whakauruhia ki roto;
- Wāhitau IP tūmatanui.
Mena kua rite katoa ngā taipitopito, ko tā mātou anake he whakahaere i te whakahau e whai ake nei i roto i tō papatohu tūmau:
docker run --cap-add=NET_ADMIN
-it -p 1194:1194/udp -p 80:8080/tcp
-e HOST_ADDR=$(curl -s https://api.ipify.org)
alekslitvinenk/openvpnTērā pea kua kite tētahi kaipānui aro nui ka whakatauhia aunoatia te wāhitau IP o te tūmau mā te whakamahi i ipify.orgKi te kore e mahi, ka taea e koe te whakauru ā-ringa i te wāhitau. Mena i whai tika i ngā mahi o mua, me kite koe i tētahi mea rite i roto i te papatohu:
Sun Jun 9 08:56:11 2019 Initialization Sequence Completed
Sun Jun 9 08:56:12 2019 Client.ovpn file has been generated
Sun Jun 9 08:56:12 2019 Config server started, download your client.ovpn config at http://example.com/
Sun Jun 9 08:56:12 2019 NOTE: After you download you client config, http server will be shut down!Kua tata tātou ki te whāinga: me tārua tātou ināianei (mō tōu take, koinei te wāhitau o tō tūmau) ka whakapiri ki te pae wāhitau o te pūtirotiro. Whai muri i te pēhi i te Enter, ka tikiakehia te kōnae client.ovpn, ā, ka ngaro te tūmau HTTP. Mena he ruarua āu mō tēnei otinga, ka taea e koe te whakamahi i te mahi tinihanga e whai ake nei: whakahaere i te whakahau o mua ka tāpiri i ngā haki. zp me te kupuhipa. Inaianei, ki te whakapirihia e koe te hononga i hangaia ki roto i te matapihi tirotiro, ka whiwhi koe i tētahi pūranga zip me te kupuhipa. Kia whiwhi koe i te kōnae whirihoranga kiritaki, ka taea e koe te whakamahi i tētahi kiritaki e tika ana. Ka whakamahia e au a Tunnelblick mō Mac.
Akoranga ataata
Kei roto i tēnei akoranga ataata ngā tohutohu taipitopito mō te whakatinanatanga o te ratonga ki DigitalOcean.
EDIT1:
- Ngā hapa i whakatikahia i roto i te whakaputanga,
- Hei whakautu i ngā kōrero, i whakatau ahau ki te tuku i ēnei kōrero ki konei: e hiahiatia ana te haki --privileged hei mahi tahi me iptables
EDIT2:
- Kua whakapaitia te whakahau whakarewa whakaahua: kāore e hiahiatia te haki --privileged.
- Kua tāpirihia he hononga ki tētahi aratohu ataata reo Rūhia:
Source: will.com
