ProHoster > ΠΠ»ΠΎΠ³ > Maamulka > Tunnel toos ah oo VPN ah oo u dhexeeya kombuyuutarrada iyada oo loo marayo bixiyayaasha NATs (la'aanteed VPS, iyada oo la adeegsanayo server-ka STUN iyo Yandex.disk)
Tunnel toos ah oo VPN ah oo u dhexeeya kombuyuutarrada iyada oo loo marayo bixiyayaasha NATs (la'aanteed VPS, iyada oo la adeegsanayo server-ka STUN iyo Yandex.disk)
Sii wadista qodobbada ku saabsan sida aan ugu suurtagashay in aan abaabulo tunnel toos ah oo VPN ah oo u dhexeeya laba kombuyuutar oo ka dambeeya bixiyeyaasha NAT. Maqaalkii hore wuxuu qeexay habka abaabulka xiriirka iyadoo la kaashanayo dhinac saddexaad - dhexdhexaadiye (VPS kirada ah oo u dhaqma sida shay sida STUN server iyo gudbiyaha xogta noodhka ee isku xirka). Maqaalkan waxaan kuu sheegi doonaa sida aan u maareeyay VPS la'aanteed, laakiin dhexdhexaadiyeyaasha ayaa hadhay oo waxay ahaayeen server-ka STUN iyo Yandex.Disk ...
Horudhac
Ka dib markii aan akhriyay faallooyinka qoraalkii hore, waxaan ogaaday in cilladda ugu weyn ee hirgelinta ay tahay isticmaalka dhexdhexaadiyaha - dhinac saddexaad (VPS) oo tilmaamaya xuduudaha hadda jira ee noodhka, meesha iyo sida loo xiro. Iyadoo la tixgelinayo talooyinka la isticmaalayo STUN (kuwaas oo ay ku badan yihiin) si loo go'aamiyo xuduudaha isku xirka hadda. Ugu horreyntii, waxaan go'aansaday inaan isticmaalo TCPDump si aan u eego waxa ku jira baakadaha markii STUN server uu la shaqeynayey macaamiisha oo uu helay nuxur aan la akhrin karin. Googling borotokoolka ayaan la kulmay maqaal qeexaya borotokoolka. Waxaan xaqiiqsaday inaanan fulin karin codsi ku socda server-ka STUN oo keligiis ah oo fikradda ku riday "sanduuq fog".
Aragtida
Dhawaan waxaan lahaa in aan ku rakibo server-ka STUN Debian ka xirmada
# apt install stun-server
iyo ku-tiirsanaanta waxaan ku arkay xirmada stun-macmiilka, laakiin si uun uma aan fiirsan. Laakiin markii dambe waxaan xusuustay xirmada-macmiilka oo waxaan go'aansaday inaan ogaado sida ay u shaqeyso, ka dib markaan googgooyo oo ka raadiyo Yandex, waxaan helay:
Nooca macmiilka ee STUN 0.97
Deked la furay 21234 oo leh fd 3
Deked la furay 21235 oo leh fd 4
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 0
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Farriinta naxdinta leh ee la helay: 92 bytes
MappedAddress = : 2885
Ciwaanka Ciwaanka = 216.93.246.18:3478
ChangedAdresse = 216.93.246.17:3479
Sifada aan la garanayn: 32800
Magaca Server = Vovida.org 0.98-CPC
Fariinta la helay oo ah nooca 257 id=1
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 0
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.17:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 0
Ku saabsan in loo diro fariinta len 28 :2885
Farriinta naxdinta leh ee la helay: 28 bytes
Isbeddelka Codsiga = 0
Fariinta la helay oo ah nooca 1 id=11
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 0
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.17:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Farriinta naxdinta leh ee la helay: 92 bytes
MappedAddress = : 2885
Ciwaanka Ciwaanka = 216.93.246.17:3479
ChangedAdresse = 216.93.246.18:3478
Sifada aan la garanayn: 32800
Magaca Server = Vovida.org 0.98-CPC
Fariinta la helay oo ah nooca 257 id=10
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 4
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
Codaynta fariinta naxdinta leh:
Codsiga beddelka codeynta: 2
Ku saabsan in la soo diro mg of len 28 ilaa 216.93.246.18:3478
imtixaanka I = 1
imtixaanka II = 0
imtixaanka III = 0
imtixaanka I (2) = 1
waa nat = 1
Khariidad IP isku mid ah = 1
timaha timaha = 1
dekedda kaydiyaha = 0
Aasaasiga ah: Khariidad madax-bannaan, Shaandheeyaha Ku-tiirsanaanta Dekedda, deked random, ayaa timo-jari doona
Qiimaha soo celinta waa 0x000006
Xarig qiimo leh
MappedAddress = : 2885
kaliya waxaad u baahan tahay! Waxay soo bandhigtay heerka hadda jira ee isku xirka dekedda gudaha ee UDP 21234. Laakiin tani waa kala bar dagaalka; su'aashu waxay soo baxday sida xogtan loogu wareejiyo martigeliyaha fog iyo abaabulo isku xirka VPN. Isticmaalka borotokoolka boostada, ama laga yaabee Telegram?! Waxaa jira fursado badan oo waxaan go'aansaday inaan isticmaalo Yandex.disk, tan iyo markii aan la kulmay maqaal ku saabsan ka shaqaynta Curl iyada oo loo marayo WebDav oo leh Yandex.disk. Ka dib markaan ka fekeray hirgelinta, waxaan la imid qorshahan:
Calaamadaha in noodhadhku ay diyaar u yihiin inay abuuraan isku xirka joogitaanka fayl gaar ah oo leh shaambad waqtiyeedka Yandex.disk;
Haddii noodhadhku ay diyaar yihiin, ka dibna ka hel xuduudaha hadda jira server-ka STUN;
U soo rar dejinta hadda Yandex.disk;
Hubi joogitaanka oo akhri xuduudaha noode fog ee faylka Yandex.disk;
Samaynta xidhiidhka martigeliyaha fog iyadoo la isticmaalayo OpenVPN.
Tababarka
Ka dib markii aan wax yar ka fikiray, anigoo tixgelinaya waayo-aragnimadii maqaalkii ugu dambeeyay, waxaan si degdeg ah u qoray qoraal. Waxaan u baahan doonaa:
sheeg ciwaanka IP-ga gudaha ee tunnelka (khadka 4aad).
samee qoraalka la fulin karo:
# chmod +x vpn10.sh
socodsii qoraalka:
# ./vpn10.sh nZbVGBuX5dtturD
halka nZbVGBuX5dtturD uu yahay aqoonsiga xidhiidhka ee la sameeyay halkan
Dhinaca noodhka fog, sidaas oo kale samee, sheeg cinwaanka IP-ga gudaha ee u dhigma ee tunnelka iyo aqoonsiga xidhiidhka.
Si loo maamulo qoraalka marka la shido, waxaan isticmaalaa amarka "nohup //vpn10.sh nZbVGBuX5dtturD> /var/log/vpn10.log 2>/dev/null &" ee ku jira faylka /etc/ rc.maxali ah
gunaanad
Qoraalku wuxuu shaqeeyaa, lagu tijaabiyay Ubuntu (18.04, 19.10, 20.04) iyo Debian 9. Waxaad isticmaali kartaa adeeg kasta oo kale sida gudbiyaha, laakiin waayo-aragnimada waxaan isticmaalay Yandex.disk.
Intii lagu guda jiray tijaabooyinka, waxaa la ogaaday in qaar ka mid ah bixiyeyaasha NAT aysan ogolayn in la sameeyo xiriir. Inta badan ka timaadda hawl-wadeennada mobaylada ee durduryadu xidhmaan.
Waxaan qorsheynayaa inaan horumariyo xagga:
Jiilka tooska ah ee sirta.key markasta oo aad bilowdo, sir oo koobiyayso Yandex.disk si aad ugu wareejiso noodhka fog (Adiga oo ku xisaabtamaya nooca la cusboonaysiiyay)
Meelaynta tooska ah ee ciwaannada IP-yada ee is-dhexgalka
Sirin xogta ka hor inta aan la gelin Yandex.disk
Hagaajinta koodka
Guri kasta ha ahaado IPv6!
La cusbooneysiiyay! Faylasha ugu dambeeyay iyo xirmada DEB halkan - yandex.disk