设为首页收藏本站
切换到窄版

 找回密码
 立即注册
搜索
xyh-moon»论坛 xyh-moon 技术板块 一键部署超级简单易用的openvpn服务器,支持多证书+多账 ...
返回列表 发新帖
查看: 113|回复: 0

一键部署超级简单易用的openvpn服务器,支持多证书+多账号...

[复制链接]
fudyou

979

主题

90

回帖

5万

积分

管理员

积分
53052
发表于 2022-6-22 10:34:02 | 显示全部楼层 |阅读模式
一. 服务器端部署项目地址:https://github.com/guoew/openvpn-install
) T; }8 |1 ^' }- Y1.1. 下载安装
) o  G$ P+ j" u/ B
  1. # git clone https://github.com/guoew/openvpn-install.git: P$ m% O5 a) q: U5 [8 t- V4 ?" J( J
  2. # cd openvpn-install &&  bash openvpn-install.sh* }, R" ^, E. W* X5 o
  3. Welcome to this OpenVPN "road warrior" installer!  _% r5 B1 q1 F

  4. , G7 A" T# f! g: Z$ w8 N9 f+ g
  5. I need to ask you a few questions before starting the setup.
    8 r& V: O# V) _
  6. You can leave the default options and just press enter if you are ok with them., y0 j( Y' a4 P' E/ @+ q4 _6 ~

  7. & e# E- A: N4 q5 n, w' {* d9 R7 y
  8. First, provide the IPv4 address of the network interface you want OpenVPN
    ; a& j* O' {4 T! [% P
  9. listening to.; l& ^2 J4 q: Z0 d6 v1 ]& i
  10. IP address: 172.27.0.2 #默认获取本机ip,直接回车' r! N& Y+ v# R: m

  11. " ?/ C9 M9 ]' ?, w5 j6 S
  12. This server is behind NAT. What is the public IPv4 address or hostname?
    6 i" E( N" s1 [. A4 B  i4 g6 K
  13. Public IP address / hostname: 18.24.64.250 #输入主机公网ip
    % M& c2 \$ `7 ]" r# `! G- K/ @" P. ^
  14. , X! B& n- `, E& I! Q
  15. Which protocol do you want for OpenVPN connections?$ u8 }( y/ |$ K' i- y
  16.    1) UDP (recommended)
    % V# R; J2 I- L0 ]1 m
  17.    2) TCP) A0 P1 J% \0 Y7 d/ a/ a( b% x
  18. Protocol [1-2]: 1 #选择连接协议% c- y! T( O( a4 _( S8 \2 H
  19.   O6 f3 C7 U9 `  [5 f. X0 ~7 k
  20. What port do you want OpenVPN listening to?
      I: S; T6 |& H6 V* Q
  21. Port: 1194 #设置openvpn监听端口
    , m1 i& I9 w: }" K7 C

  22. 2 ?# l! @6 J- T) f
  23. Which DNS do you want to use with the VPN?
    / }1 X6 U! J5 I* z3 J, Y
  24.    1) Current system resolvers5 |6 l/ o, f) t9 V' R
  25.    2) 1.1.1.1% U& o$ D. [8 X& E5 b3 n
  26.    3) Google
    & C6 W5 M( s) {  l. J, s+ M- z# Q1 H' ]6 y
  27.    4) OpenDNS
    $ B7 {0 q& O0 n5 U. ?! V: ]+ R: Y: M& s& f
  28.    5) Verisign
    # K) t3 Q! o" E, l8 q
  29. DNS [1-5]: 1 #选择DNS, F( z8 G0 `; p! l7 _

  30. ) X+ S. Z4 v( s: W  _: T. g
  31. Finally, tell me your name for the client certificate.8 p! Z- g: w2 z  `" G# h
  32. Please, use one word only, no special characters.
    $ z+ Z2 f2 x" |
  33. Client name: client #设置客户端名称
      a/ @! K+ v" a! _  J* C, B
  34. . v- w) H6 t7 m% N! u6 r1 X6 a# s
  35. Okay, that was all I needed. We are ready to set up your OpenVPN server now.
    ( }! S7 z( |, U/ w8 u. a# R3 k
  36. Press any key to continue... #任意键继续2 b+ {$ s% \* P7 j8 e: q) e8 g( }! L
  37. ...
    % L$ w" T7 _: z9 o8 L
  38. An updated CRL has been created.
    5 m" g; ~8 T( I3 q: e9 [; k) S
  39. CRL file: /etc/openvpn/server/easy-rsa/pki/crl.pem
    % e9 a6 V- O1 ~) h
  40. 5 l* \" V) T5 f! t: ~) y
  41. Created symlink /etc/systemd/system/multi-user.target.wants/openvpn-iptables.service → /etc/systemd/system/openvpn-iptables.service.
    2 e6 s6 |1 o- I% F2 R
  42. Created symlink /etc/systemd/system/multi-user.target.wants/openvpn-server@server.service → /lib/systemd/system/openvpn-server@.service.
    8 j( i+ M, O( |& G! g* H6 B1 c5 g0 e$ V
  43. 7 d  [$ a. o& p6 I! b" g" ?
  44. Finished!  #最终看到Finished时表示安装完毕
    1 E5 e' n1 @' h  W& P; {

  45. ' `( z3 W  k/ m$ z# a3 {, N
  46. Your client configuration is available at: /root/client.ovpn #客户端配置文件路径  U5 l* }1 X- d4 p' X
  47. If you want to add more clients, you simply need to run this script again!
    , o1 Q! y' D+ }3 D8 i# h0 \* Z
复制代码
将客户端配置文件 /root/client.ovpn,下载到本地以备客户端使用
' N% D& ?- _; I( O7 O; |  R4 |; `1.2. 添加账号在openvpn目录下的userfile.sh中添加用户和密码,以空格隔开
9 j- m) r2 z; g7 e, d6 y3 l0 F, {+ ^
  1. # cat /etc/openvpn/userfile.sh8 i; S$ s9 d, b! R7 h/ I
  2. guoew guoew123. s% K% x! O- u# E
  3. yakexi yakexi123
    4 C- Z7 O4 f; V# k  E& E3 _
复制代码
截止现在一个超级简单的openvpn服务就已经搭建好了,接下来将使用客户端连接openvpn服务器(以win10为例)$ ~2 g3 z8 v9 _6 B- R
二. 客户端部署使用2.1. 安装openvpn客户端2.2. 配置客户端将安装好的客户端打开,点击Import file 把准备好的客户端配置文件导入进去。8 a' F6 q& I; I; C4 Q8 _$ ~# J
2.3. 连接openvpn服务器打开客户端,点击Connect,使用服务器端已添加的账号登录1 `. O( M) Y) s( B/ A- _5 b
END
: n( h% [# b: Y3 g! z5 o1 m3 H附:安装完毕后,再次执行脚本openvpn-install.sh 会有四个菜单选项(添加、撤销、卸载、退出),可根据自身实际情况应用,如下:- e$ V7 h4 ~: _0 [
  1. Looks like OpenVPN is already installed.
    2 _, h& z0 h) f8 I+ @4 y
  2. & b4 e  n% J) I( c, i7 e* U! e2 q
  3. What do you want to do?1 ~8 n1 F( ~; A* h6 m5 e  k$ ^/ C5 `
  4.    1) Add a new user1 a* Y: R7 Y$ l6 o
  5.    2) Revoke an existing user
    ; E$ C. s9 B# k+ O6 v' X- K
  6.    3) Remove OpenVPN
    ( h8 n- b2 h; x( z) g$ D( _( Z
  7.    4) Exit
    ( O. j- y7 j  c  R# _8 c
  8. Select an option [1-4]:+ @/ T% V$ m  @( {' X& \
复制代码
+ N( T9 q1 o6 l/ f- [9 q
这里有个不足之处是,当使用多证书时,账号是通用的。即同一个账号,可以应用于不同的证书。" Y( x6 X4 v, y8 w; x
如果想要不同用户使用不同的证书进行登录[无账号],欢迎访问原项目地址:
4 e! X3 D# o9 }0 K% hhttps://github.com/Nyr/openvpn-install" O( q+ x$ T) n& t5 B3 N

+ y: b0 P( V$ Z5 N
回复

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

Archiver|手机版|小黑屋|

GMT+8, 2025-2-25 00:05 , Processed in 0.136756 second(s), 22 queries .

Powered by Discuz! X3.5

© 2001-2025 Discuz! Team.

快速回复 返回顶部 返回列表