-
-
Save amanjuman/ce8343db13a510aab1ac6fa1ea5bf359 to your computer and use it in GitHub Desktop.
Install softether vpn server on ubuntu 16.04+
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/local/env bash | |
| # Register digitalocean with free credit https://m.do.co/c/4879bb02d178 | |
| # Create vps with 5usd price | |
| if [ "$(whoami)" != "root" ]; then | |
| SUDO=sudo | |
| fi | |
| # Update system | |
| ${SUDO} apt-get update && ${SUDO} apt-get -y upgrade | |
| # Get build tools | |
| ${SUDO} apt-get -y install build-essential wget curl gcc make wget tzdata git libreadline-dev libncurses-dev libssl-dev zlib1g-dev | |
| # Define softether version | |
| RTM=$(curl http://www.softether-download.com/files/softether/ | grep -o 'v[^"]*e' | grep rtm | tail -1) | |
| IFS='-' read -ra RTMS <<< "${RTM}" | |
| # Get softether source | |
| wget "http://www.softether-download.com/files/softether/${RTMS[0]}-${RTMS[1]}-${RTMS[2]}-${RTMS[3]}-${RTMS[4]}/Linux/SoftEther_VPN_Server/64bit_-_Intel_x64_or_AMD64/softether-vpnserver-${RTMS[0]}-${RTMS[1]}-${RTMS[2]}-${RTMS[3]}-linux-x64-64bit.tar.gz" -O /tmp/softether-vpnserver.tar.gz | |
| # Extract softether source | |
| ${SUDO} tar -xzvf /tmp/softether-vpnserver.tar.gz -C /usr/local/ | |
| # Remove unused file | |
| ${SUDO} rm /tmp/softether-vpnserver.tar.gz | |
| # Move to source directory | |
| cd /usr/local/vpnserver | |
| # Workaround for 18.04 | |
| ${SUDO} sed -i 's|OPTIONS=-O2|OPTIONS=-no-pie -O2|' Makefile | |
| # Build softether | |
| make i_read_and_agree_the_license_agreement | |
| # Change file permission | |
| ${SUDO} chmod 0600 * && ${SUDO} chmod +x vpnserver && ${SUDO} chmod +x vpncmd | |
| # Link binary files | |
| ${SUDO} ln -s /usr/local/vpnserver/vpnserver /usr/local/bin/vpnserver | |
| ${SUDO} ln -s /usr/local/vpnserver/vpncmd /usr/local/bin/vpncmd | |
| # Add systemd service | |
| cat <<EOF >/lib/systemd/system/vpnserver.service | |
| [Unit] | |
| Description=SoftEther VPN Server | |
| After=network.target | |
| ConditionPathExists=!/usr/local/vpnserver/do_not_run | |
| [Service] | |
| Type=forking | |
| ExecStart=/usr/local/vpnserver/vpnserver start | |
| ExecStop=/usr/local/vpnserver/vpnserver stop | |
| KillMode=process | |
| Restart=on-failure | |
| WorkingDirectory=/usr/local/vpnserver | |
| # Hardening | |
| PrivateTmp=yes | |
| ProtectHome=yes | |
| ProtectSystem=full | |
| ReadOnlyDirectories=/ | |
| ReadWriteDirectories=-/usr/local/vpnserver | |
| CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SYS_NICE CAP_SYS_ADMIN CAP_SETUID | |
| [Install] | |
| WantedBy=multi-user.target | |
| EOF | |
| # Act as router | |
| echo net.ipv4.ip_forward = 1 | ${SUDO} tee -a /etc/sysctl.conf | |
| ${SUDO} sysctl -p | |
| # Reload service | |
| ${SUDO} systemctl daemon-reload | |
| # Enable service | |
| ${SUDO} systemctl enable vpnserver | |
| # Start service | |
| ${SUDO} systemctl restart vpnserver | |
| # Init config vpnserver | |
| # > cd /usr/local/vpnserver | |
| # > ./vpncmd | |
| # > ServerPasswordSet yourPassword | |
| # Then use SoftEther VPN Server Manager to mange your server | |
| exit 0 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1. Use this link to Sign Up.
2. Activate your account by credit card or PayPal.
3. Done! Now you have free $200 credit.