Bypassing ISP Blocked Ports

778 days ago 2 views Tanner's Site (t0.vc) - feed t0.vc

$ sudo apt update $ sudo apt install openvpn easy-rsa ufw $ sudo ufw allow ssh $ sudo ufw allow 1194 # openvpn's port

$ cd /etc/openvpn $ sudo openvpn --genkey secret static.key $ sudo make-cadir easy-rsa/ $ sudo chown -R tanner:tanner /etc/openvpn

$ cd easy-rsa/ $ export EASYRSA_CERT_EXPIRE=36500 $ export EASYRSA_CA_EXPIRE=36500 $ ./easyrsa init-pki $ ./easyrsa build-ca

$ ./easyrsa gen-dh

$ ./easyrsa build-server-full server nopass

$ ./easyrsa build-client-full mediaserver nopass $ ./easyrsa build-client-full anotherserver nopass ... etc

$ ./easyrsa build-client-full client nopass # optional

port 1194 proto udp dev tun topology subnet ca /etc/openvpn/easy-rsa/pki/ca.crt cert /etc/openvpn/easy-rsa/pki/issued/server.crt key /etc/openvpn/easy-rsa/pki/private/server.key dh /etc/openvpn/easy-rsa/pki/dh.pem tls-auth /etc/openvpn/static.key 0 client-config-dir /etc/openvpn/ccd server 10.8.0.0 255.255.255.0 client-to-client duplicate-cn keepalive 10 120 cipher AES-256-GCM auth SHA256 comp-lzo max-clients 10 user nobody group nogroup persist-key persist-tun

$ cd /etc/openvpn $ mkdir ccd $ echo "ifconfig-push 10.8.0.100 255.255.255.0" > mediaserver $ echo "ifconfig-push 10.8.0.101 255.255.255.0"