Centos 6 PPTPD/L2TP/IPSec VPN一键安装包一、一键安装PPTPD VPN
本教程适用于Openv VPS、Xen VPS或者KVM VPS。
1.首先运行如下命令:
cat/dev/net/tun
返回的必须是:
cat: /dev/net/tun: File descriptor in bad state
运行:
cat/dev/ppp
返回的必须是:
cat: /dev/ppp: No such device or address
如果上面返回的不是这两个结果的话,请与VPS客服联系开通ppp和tun权限.
2. 下载vpn(CentOS6专用)一键安装包
wget https://www.sodocs.net/doc/e817693328.html,/shell/vpn_centos6.sh
chmod a+x vpn_centos6.sh
下载vpn_centos6.sh_.zip
代码如下
#!/bin/bash
function installVPN(){
echo"begin to install VPN services";
#check wethervpssuppotppp and tun
yum remove-y pptpdppp
iptables--flush POSTROUTING --table nat
iptables--flush FORWARD
rm-rf/etc/pptpd.conf
rm-rf/etc/ppp
arch=`uname -m`
wget https://www.sodocs.net/doc/e817693328.html,/downloads/dkms-2.0.17.5-1.noarch.rpm
wget https://www.sodocs.net/doc/e817693328.html,/linux/sources/kernel_ppp_mppe-1.0.2-3dkms.noarc h.rpm
wget https://www.sodocs.net/doc/e817693328.html,/downloads/kernel_ppp_mppe-1.0.2-3dkms.noa rch.rpm
wget https://www.sodocs.net/doc/e817693328.html,/downloads/pptpd-1.3.4-2.el6.$arch.rpm
wget https://www.sodocs.net/doc/e817693328.html,/downloads/ppp-2.4.5-17.0.rhel6.$arch.rpm
yum-y installmake libpcapiptablesgcc-c++ logrotate tarcpioperl pam tcp_ wrappers
rpm -ivh dkms-2.0.17.5-1.noarch.rpm
rpm -ivh kernel_ppp_mppe-1.0.2-3dkms.noarch.rpm
rpm -qa kernel_ppp_mppe
rpm -Uvh ppp-2.4.5-17.0.rhel6.$arch.rpm
rpm -ivh pptpd-1.3.4-2.el6.$arch.rpm
mknod/dev/ppp c 1080
echo1>/proc/sys/net/ipv4/ip_forward
echo"mknod /dev/ppp c 108 0">>/etc/rc.local
echo"echo 1 > /proc/sys/net/ipv4/ip_forward">>/etc/rc.local
echo"localip 172.16.36.1">>/etc/pptpd.conf
echo"remoteip 172.16.36.2-254">>/etc/pptpd.conf
echo"ms-dns 8.8.8.8">>/etc/ppp/options.pptpd
echo"ms-dns 8.8.4.4">>/etc/ppp/options.pptpd
pass=`openssl rand 6 -base64`
if["$1"!= ""]
then pass=$1
fi
echo"vpnpptpd${pass} *">>/etc/ppp/chap-secrets
iptables-t nat-A POSTROUTING -s 172.16.36.0/24-j SNAT --to-source`ifco nfig|grep'inetaddr:'|grep-v'127.0.0.1'|cut -d: -f2|awk'NR==1 { print $1}'` iptables-A FORWARD -p tcp--syn-s 172.16.36.0/24-j TCPMSS --set-mss1356
service iptables save
chkconfigiptables on
chkconfigpptpd on
service iptables start
service pptpd start
echo"VPN service is installed, your VPN username is vpn, VPN password is ${pass}"
}
function repaireVPN(){
echo"begin to repaire VPN";
mknod/dev/ppp c 1080
service iptables restart
service pptpd start
}
function addVPNuser(){
echo"input user name:"
read username
echo"input password:"
read userpassword
echo"${username}pptpd${userpassword} *">>/etc/ppp/chap-secrets
service iptables restart
service pptpd start
}
echo"which do you want to?input the number."
echo"1. install VPN service"
echo"2. repaire VPN service"
echo"3. add VPN user"
read num
case"$num"in
[1])(installVPN);;
[2])(repaireVPN);;
[3])(addVPNuser);;
*)echo"nothing,exit";;
esac
3. 运行一键安装包
bash vpn_centos6.sh
会有三个选择:
1. 安装VPN服务
2. 修复VPN
3. 添加VPN用户
首先输入1,回车,VPS开始安装VPN服务.
4. 添加VPN用户
bash vpn_centos6.sh
选择3,然后输入用户名和密码,OK
5. 修复VPN服务
如果VPN拨号发生错误,可以试着修复VPN,然后重启VPS
bash vpn_centos6.sh
选择2,然后reboot
二、一键安装L2TP/IPSec VPN
第一步必须先安装PPTPD VPN,然后再执行以下代码一键安装L2TP/IPSec VPN。
wget https://www.sodocs.net/doc/e817693328.html,/myvps/l2.sh
chmod +x l2.sh
./l2.sh
下载l2.sh_.zip
首先是你指定服务器的IP范围,输入:10.0.0 即可,然后还要要输入共享密钥PSK。确认自己的“服务器”设置,按任意键开始安装。
VPN用户管理:
安装完成后,执行以下命令手动编辑和管理“服务器”的账号与密码。
vim/etc/ppp/chap-secrets
按照相同格式添加用户名和密码即可。
账号的格式是这样的:用户名(协议方式:pptpd或者l2tpd)密码(IP登录限制,*表示不限制)
编辑完了,按下ESC键,输入三个字符:wq,保存退出。
修改共享密钥PSK:
编辑配置文件/etc/ipsec.secrets,可以看到
IP地址%any: PSK "你的共享密钥"
修改共享密钥后保存。
OpenVZ VPS如果通过上述方法无法安装L2TP/IPSec VPN,可以尝试执行以下代码一键安装。
wget https://www.sodocs.net/doc/e817693328.html,/shell/l2tp_centos.sh
bash l2tp_centos.sh