shadowsocks impl

2021-01-15 23:36:35 +03:00 · 2021-01-15 23:36:35 +03:00 · ec9ae0ef4f
commit ec9ae0ef4f
parent 95cbb07cbb
20 changed files with 380 additions and 117 deletions
--- a/client/server_scripts/remove_container.sh
+++ b/client/server_scripts/remove_container.sh
@ -0,0 +1,2 @@
+docker stop $CONTAINER_NAME
+docker rm -f $CONTAINER_NAME
--- a/client/server_scripts/remove_openvpn_server.sh
+++ b/client/server_scripts/remove_openvpn_server.sh
@ -1,2 +0,0 @@
-sudo docker stop amneziavpn
-sudo docker rm -f amneziavpn
--- a/client/server_scripts/setup_openvpn_server.sh
+++ b/client/server_scripts/setup_openvpn_server.sh
@ -1,24 +1,21 @@
-#DOCKER_IMAGE="amneziavpn/openvpn:latest"
-#CONTAINER_NAME="amneziavpn"
+#CONTAINER_NAME=... this var will be set in ServerController

-#sudo apt update
-sudo apt install -y docker.io curl
-sudo systemctl start docker
+#apt update
+apt install -y docker.io curl
+systemctl start docker

-sudo docker stop amneziavpn
-sudo docker rm -f amneziavpn
-sudo docker pull amneziavpn/openvpn:latest
-sudo docker run -d --restart always --cap-add=NET_ADMIN -p 1194:1194/udp --name amneziavpn amneziavpn/openvpn:latest
+docker stop $CONTAINER_NAME
+docker rm -f $CONTAINER_NAME
+docker pull amneziavpn/openvpn:latest
+docker run -d --restart always --cap-add=NET_ADMIN -p 1194:1194/udp --name $CONTAINER_NAME amneziavpn/openvpn:latest


-docker exec -i amneziavpn sh -c "mkdir -p /opt/amneziavpn_data/clients"
+docker exec -i $CONTAINER_NAME sh -c "mkdir -p /opt/amneziavpn_data/clients"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && easyrsa init-pki"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && easyrsa gen-dh"

-#docker exec -i amneziavpn sh -c "cat /proc/sys/kernel/random/entropy_avail"
-docker exec -i amneziavpn sh -c "cd /opt/amneziavpn_data && easyrsa init-pki"
-docker exec -i amneziavpn sh -c "cd /opt/amneziavpn_data && easyrsa gen-dh"
-
-docker exec -i amneziavpn sh -c "cd /opt/amneziavpn_data && cp pki/dh.pem /etc/openvpn && easyrsa build-ca nopass << EOF yes EOF && easyrsa gen-req MyReq nopass << EOF2 yes EOF2"
-docker exec -i amneziavpn sh -c "cd /opt/amneziavpn_data && easyrsa sign-req server MyReq << EOF3 yes EOF3"
-docker exec -i amneziavpn sh -c "cd /opt/amneziavpn_data && openvpn --genkey --secret ta.key << EOF4"
-docker exec -i amneziavpn sh -c "cd /opt/amneziavpn_data && cp pki/ca.crt pki/issued/MyReq.crt pki/private/MyReq.key ta.key /etc/openvpn"
-docker exec -i amneziavpn sh -c "openvpn --config /etc/openvpn/server.conf &"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && cp pki/dh.pem /etc/openvpn && easyrsa build-ca nopass << EOF yes EOF && easyrsa gen-req MyReq nopass << EOF2 yes EOF2"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && easyrsa sign-req server MyReq << EOF3 yes EOF3"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && openvpn --genkey --secret ta.key << EOF4"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && cp pki/ca.crt pki/issued/MyReq.crt pki/private/MyReq.key ta.key /etc/openvpn"
+docker exec -i $CONTAINER_NAME sh -c "openvpn --config /etc/openvpn/server.conf &"
--- a/client/server_scripts/setup_shadowsocks_server.sh
+++ b/client/server_scripts/setup_shadowsocks_server.sh
@ -1,13 +1,21 @@
-#DOCKER_IMAGE="amneziavpn/shadow-vpn:latest"
-#CONTAINER_NAME="shadow-vpn"
+#CONTAINER_NAME=... this var will be set in ServerController

-#sudo apt update
-sudo apt install -y docker.io curl
-sudo systemctl start docker
+#apt update
+apt install -y docker.io curl
+systemctl start docker

-sudo docker stop shadow-vpn
-sudo docker rm -f shadow-vpn
-sudo docker pull amneziavpn/shadow-vpn:latest
-sudo docker run -d --restart always --cap-add=NET_ADMIN -p 1194:1194/tcp -p 6789:6789/tcp --name shadow-vpn amneziavpn/shadow-vpn:latest
+docker stop $CONTAINER_NAME
+docker rm -f $CONTAINER_NAME
+docker pull amneziavpn/shadowsocks:latest
+docker run -d --restart always --cap-add=NET_ADMIN -p 1194:1194/tcp -p 6789:6789/tcp --name $CONTAINER_NAME amneziavpn/shadowsocks:latest


+docker exec -i $CONTAINER_NAME sh -c "mkdir -p /opt/amneziavpn_data/clients"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && easyrsa init-pki"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && easyrsa gen-dh"
+
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && cp pki/dh.pem /etc/openvpn && easyrsa build-ca nopass << EOF yes EOF && easyrsa gen-req MyReq nopass << EOF2 yes EOF2"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && easyrsa sign-req server MyReq << EOF3 yes EOF3"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && openvpn --genkey --secret ta.key << EOF4"
+docker exec -i $CONTAINER_NAME sh -c "cd /opt/amneziavpn_data && cp pki/ca.crt pki/issued/MyReq.crt pki/private/MyReq.key ta.key /etc/openvpn"
+docker exec -i $CONTAINER_NAME sh -c "openvpn --config /etc/openvpn/server.conf &"
--- a/client/server_scripts/template_openvpn.ovpn
+++ b/client/server_scripts/template_openvpn.ovpn
@ -14,6 +14,7 @@ key-direction 1
 remote-cert-tls server

 remote $REMOTE_HOST $REMOTE_PORT
+
 <ca>
 $CA_CERT
 </ca>
--- a/client/server_scripts/template_shadowsocks.ovpn
+++ b/client/server_scripts/template_shadowsocks.ovpn
@ -0,0 +1,31 @@
+client
+dev tun
+proto $PROTO
+resolv-retry infinite
+nobind
+persist-key
+persist-tun
+cipher AES-256-GCM
+auth SHA512
+verb 3
+tls-client
+tls-version-min 1.2
+key-direction 1
+remote-cert-tls server
+
+socks-proxy 127.0.0.1 $LOCAL_PROXY_PORT
+route $REMOTE_HOST 255.255.255.255 net_gateway
+remote $REMOTE_HOST $REMOTE_PORT
+
+<ca>
+$CA_CERT
+</ca>
+<cert>
+$CLIENT_CERT
+</cert>
+<key>
+$PRIV_KEY
+</key>
+<tls-auth>
+$TA_KEY
+</tls-auth>