ProHoster > Motuhēhēnga-rua i OpenVPN me Telegram bot

Motuhēhēnga-rua i OpenVPN me Telegram bot

Ko te tuhinga e whakaatu ana i te whakatuu i tetahi tūmau OpenVPN kia taea ai te whakamotuhēhēnga-rua me te karetao Telegram ka tukuna he tono whakapumau ina hono ana.

Ko OpenVPN he tūmau VPN rongonui, kore utu, tuwhera-puna e whakamahia whānuitia ana hei whakarite i te urunga haumaru o nga kaimahi ki nga rauemi whakahaere o roto.

Hei motuhēhēnga mo te hono ki te tūmau VPN, ka whakamahia te whakakotahitanga o te kī me te takiuru kaiwhakamahi/kupuhipa. I te wa ano, ko te kupuhipa e rongoa ana i runga i te kiritaki ka huri i te huinga katoa ki te mea kotahi kaore e whakarato i te taumata haumarutanga tika. Ko te kaiwhaiwhai, kua uru ki te rorohiko kiritaki, ka uru ano ki te tūmau VPN. He tino tika tenei mo nga hononga mai i nga miihini whakahaere Windows.

Ma te whakamahi i te take tuarua ka whakaitihia te tupono o te urunga kore e 99%, kaore hoki e whakararu i te tukanga hononga mo nga kaiwhakamahi katoa.

Tukua ahau kia rahui i tenei wa tonu: mo te whakatinanatanga ka hiahia koe ki te hono atu i tetahi tūmau motuhēhēnga tuatoru multifactor.ru, ka taea e koe te whakamahi i te utu kore utu mo o hiahia.

Kia pehea te mahi i te reira

  1. Ka whakamahi a OpenVPN i te mono monovpn-plugin-auth-pam mo te motuhēhēnga
  2. Ka tirohia e te mono te kupuhipa a te kaiwhakamahi i runga i te tūmau me te tono i te take tuarua ma te kawa RADIUS i te ratonga Multifactor
  3. Ka tuku karere a Multifactor ki te kaiwhakamahi ma te karetao Telegram e whakamana ana i te uru
  4. Ka whakamanahia e te kaiwhakamahi te tono uru ki te korerorero Telegram ka hono atu ki te VPN

Tāuta ana i tētahi tūmau OpenVPN

He maha nga tuhinga kei runga i te Ipurangi e whakaatu ana i te tukanga o te whakauru me te whirihora i a OpenVPN, na reira e kore matou e tukurua. Mena ka hiahia awhina koe, he maha nga hononga ki nga akoranga kei te mutunga o te tuhinga.

Te whakatu i te Multifactor

Haere ki Pūnaha mana whakahaere maha, haere ki te waahanga "Rauemi" ka hanga he VPN hou.
Ina oti te hanga, ka rua nga whiringa e waatea ana ki a koe: NAS-Tautuutu и Mea muna, ka hiahiatia mo te whirihoranga o muri.

Motuhēhēnga-rua i OpenVPN me Telegram bot

I roto i te waahanga "Rōpū", haere ki nga tautuhinga roopu "Katoa Kaiwhakamahi" ka tango i te haki "Rauemi Katoa" kia taea ai e nga kaiwhakamahi o tetahi roopu anake te hono atu ki te tūmau VPN.

Waihangahia he roopu hou "kaiwhakamahi VPN", whakakorehia nga tikanga motuhēhēnga katoa engari ko Telegram me te tohu kei te uru nga kaiwhakamahi ki te rauemi VPN i hangaia.

Motuhēhēnga-rua i OpenVPN me Telegram bot

I roto i te waahanga "Kaiwhakamahi", hangaia nga kaiwhakamahi ka uru ki te VPN, taapiri atu ki te roopu "kaiwhakamahi VPN" ka tukuna he hononga ki a raatau hei whirihora i te take tuarua o te motuhēhēnga. Me taurite te takiurunga kaiwhakamahi ki te takiuru i runga i te tūmau VPN.

Motuhēhēnga-rua i OpenVPN me Telegram bot

Te whakatu i tetahi tūmau OpenVPN

Whakatuwheratia te kōnae /etc/openvpn/server.conf me te taapiri i tetahi mono mo te motuhēhēnga mā te whakamahi i te kōwae PAM

plugin /usr/lib64/openvpn/plugins/openvpn-plugin-auth-pam.so openvpn

Ka taea te whakauru i te mono i roto i te whaiaronga /usr/lib/openvpn/plugins/ ranei /usr/lib64/openvpn/plugins/ i runga i to punaha.

Whai muri me whakauru koe i te kōwae pam_radius_auth

$ sudo yum install pam_radius

Whakatuwheratia te konae hei whakatika /etc/pam_radius.conf ka whakapūtā te wāhitau o te tūmau RADIUS o te Multifactor

radius.multifactor.ru   shared_secret   40

kei hea:

  • radius.multifactor.ru — wāhitau tūmau
  • shared_secret - kape mai i te tawhā tautuhinga VPN e hāngai ana
  • 40 hēkona - te wā mo te tatari mo te tono me te tawhē nui

Ko nga toenga o nga tūmau me mukua, me korero ranei (whakatakotoria he tohu tohu i te timatanga)

Muri iho, hanga he konae mo te momo ratonga openvpn

$ sudo vi /etc/pam.d/openvpn

ka tuhia ki roto

auth    required pam_radius_auth.so skip_passwd client_id=[NAS-IDentifier]
auth    substack     password-auth
account substack     password-auth

Ko te raina tuatahi e hono ana i te waahanga PAM pam_radius_auth me nga tawhā:

  • skip_passwd - ka whakakorehia te tuku o te kupuhipa a te kaiwhakamahi ki te RADIUS Multifactor server (kaore e tika kia mohio ia).
  • client_id — whakakapia [NAS-Identifier] ki te tawhā rite mai i nga tautuhinga rauemi VPN.
    Ko nga tawhā taea katoa e whakaahuatia ana i roto tuhinga mo te kōwae.

Kei roto i nga rarangi tuarua me te tuatoru ko te manatoko punaha o te takiuru, te kupuhipa me nga motika kaiwhakamahi i runga i to tuumau me tetahi take motuhēhēnga tuarua.

Tīmata anō OpenVPN

$ sudo systemctl restart openvpn@server

Tatūnga Kiritaki

Whakauruhia he tono mo te takiuru kaiwhakamahi me te kupuhipa i roto i te konae whirihoranga kiritaki

auth-user-pass

tirohanga

Whakarewahia te kiritaki OpenVPN, hono atu ki te tūmau, whakauruhia to ingoa kaiwhakamahi me to kupuhipa. Ka tukuna e te karetao Telegram he tono uru me nga paatene e rua

Motuhēhēnga-rua i OpenVPN me Telegram bot

Kotahi te paatene ka taea te uru, ka aukati te tuarua.

Inaianei ka taea e koe te tiaki i to kupuhipa ki runga i te kaihoko; ko te take tuarua ka tiakina to kaimau OpenVPN mai i te urunga kore.

Ki te kore tetahi mea e mahi

Takina raupapa kaore koe i ngaro tetahi mea:

  • He kaiwhakamahi kei runga i te tūmau me OpenVPN me te huinga kupuhipa
  • Ka whai waahi te tūmau ma te tauranga UDP 1812 ki te wāhitau radius.multifactor.ru
  • Ko nga tawhā NAS-Identifier me te Tirihi Nga tawhā ngaro kua tohua tika
  • Kua hangahia he kaiwhakamahi me te whakaurunga kotahi i roto i te punaha Multifactor, kua tukuna he uru ki te roopu kaiwhakamahi VPN
  • Kua whirihora e te kaiwhakamahi te tikanga motuhēhēnga mā Telegram

Mena kaore koe i whakarite OpenVPN i mua, panui tuhinga taipitopito.

Ka mahia nga tohutohu me nga tauira i runga i te CentOS 7.

Source: will.com

Tāpiri i te kōrero