azmenak/bash

## bash
#!/bin/sh
#    Setup Simple PPTP VPN server and Shadowsocks server

printhelp() {

echo "
Usage: sh setup.sh [OPTION]
If you are using custom password , Make sure its more than 8 characters. Otherwise it will generate random password for you.
If you trying set password only. It will generate Default user with Random password.
example: sudo bash setup.sh -u vpn -p mypass
Use without parameter [ sudo bash setup.sh ] to use default username and Random password
  -u,    --username             Enter the Username
  -p,    --password             Enter the Password
"
}

while [ "$1" != "" ]; do
  case "$1" in
    -u    | --username )             NAME=$2; shift 2 ;;
    -p    | --password )             PASS=$2; shift 2 ;;
    -h    | --help )            echo "$(printhelp)"; exit; shift; break ;;
  esac
done

if [ `id -u` -ne 0 ]
then
  echo "Need root, try with sudo"
  exit 0
fi

apt-get update

apt-get -y install pptpd || {
  echo "Could not install pptpd"
  exit 1
}

#ubuntu has exit 0 at the end of the file.
sed -i '/^exit 0/d' /etc/rc.local

cat >> /etc/rc.local << END
echo 1 > /proc/sys/net/ipv4/ip_forward
#control channel
iptables -I INPUT -p tcp --dport 1723 -j ACCEPT
#gre tunnel protocol
iptables -I INPUT  --protocol 47 -j ACCEPT

iptables -t nat -A POSTROUTING -s 192.168.2.0/24 -d 0.0.0.0/0 -o eth0 -j MASQUERADE

#supposedly makes the vpn work better
iptables -I FORWARD -s 192.168.2.0/24 -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j TCPMSS --set-mss 1356

END
sh /etc/rc.local

#no liI10oO chars in password

LEN=$(echo ${#PASS})

if [ -z "$PASS" ] || [ $LEN -lt 8 ] || [ -z "$NAME"]
then
   P1=`cat /dev/urandom | tr -cd abcdefghjkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789 | head -c 3`
   P2=`cat /dev/urandom | tr -cd abcdefghjkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789 | head -c 3`
   P3=`cat /dev/urandom | tr -cd abcdefghjkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789 | head -c 3`
   PASS="$P1-$P2-$P3"
fi

if [ -z "$NAME" ]
then
   NAME="vpn"
fi

cat >/etc/ppp/chap-secrets <<END
# Secrets for authentication using CHAP
# client server secret IP addresses
$NAME pptpd $PASS *
END
cat >/etc/pptpd.conf <<END
option /etc/ppp/options.pptpd
logwtmp
localip 192.168.2.1
remoteip 192.168.2.10-100
END
cat >/etc/ppp/options.pptpd <<END
name pptpd
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe-128
ms-dns 8.8.8.8
ms-dns 8.8.4.4
proxyarp
lock
nobsdcomp
novj
novjccomp
nologfd
END

apt-get -y install wget || {
  echo "Could not install wget, required to retrieve your IP address."
  exit 1
}

#find out external ip
IP=`wget -q -O - http://api.ipify.org`

if [ "x$IP" = "x" ]
then
  echo "============================================================"
  echo "  !!!  COULD NOT DETECT SERVER EXTERNAL IP ADDRESS  !!!"
else
  echo "============================================================"
  echo "Detected your server external ip address: $IP"
fi
echo   ""
echo   "VPN username = $NAME   password = $PASS"
echo   "============================================================"
sleep 2

service pptpd restart

#add GPG public key for shadowsocks
wget -O- http://shadowsocks.org/debian/1D27208A.gpg | sudo apt-key add -

#add service to sources list
echo "deb http://shadowsocks.org/ubuntu trusty main" >> /etc/apt/sources.list
apt-get update

apt-get -y install shadowsocks-libev || {
  echo "Could not install shadowsocks-libev."
  exit 1
}

rm /etc/shadowsocks-libev/config.json
touch /etc/shadowsocks-libev/config.json
cat >/etc/shadowsocks-libev/config.json <<END
{
  "server": "0.0.0.0",
  "server_port": 1984,
  "password": "$PASS",
  "method": "aes-256-cfb"
}
END

echo   ""
echo   "Shadowsocks password = $PASS    port = 1984"
echo   "============================================================"

#start the server and keep it running forever
/etc/init.d/shadowsocks-libev start

exit 0
	#!/bin/sh
	# Setup Simple PPTP VPN server and Shadowsocks server

	printhelp() {

	echo "
	Usage: sh setup.sh [OPTION]
	If you are using custom password , Make sure its more than 8 characters. Otherwise it will generate random password for you.
	If you trying set password only. It will generate Default user with Random password.
	example: sudo bash setup.sh -u vpn -p mypass
	Use without parameter [ sudo bash setup.sh ] to use default username and Random password
	-u, --username Enter the Username
	-p, --password Enter the Password
	"
	}

	while [ "$1" != "" ]; do
	case "$1" in
	-u \| --username ) NAME=$2; shift 2 ;;
	-p \| --password ) PASS=$2; shift 2 ;;
	-h \| --help ) echo "$(printhelp)"; exit; shift; break ;;
	esac
	done

	if [ `id -u` -ne 0 ]
	then
	echo "Need root, try with sudo"
	exit 0
	fi

	apt-get update

	apt-get -y install pptpd \|\| {
	echo "Could not install pptpd"
	exit 1
	}

	#ubuntu has exit 0 at the end of the file.
	sed -i '/^exit 0/d' /etc/rc.local

	cat >> /etc/rc.local << END
	echo 1 > /proc/sys/net/ipv4/ip_forward
	#control channel
	iptables -I INPUT -p tcp --dport 1723 -j ACCEPT
	#gre tunnel protocol
	iptables -I INPUT --protocol 47 -j ACCEPT

	iptables -t nat -A POSTROUTING -s 192.168.2.0/24 -d 0.0.0.0/0 -o eth0 -j MASQUERADE

	#supposedly makes the vpn work better
	iptables -I FORWARD -s 192.168.2.0/24 -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j TCPMSS --set-mss 1356

	END
	sh /etc/rc.local

	#no liI10oO chars in password

	LEN=$(echo ${#PASS})

	if [ -z "$PASS" ] \|\| [ $LEN -lt 8 ] \|\| [ -z "$NAME"]
	then
	P1=`cat /dev/urandom \| tr -cd abcdefghjkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789 \| head -c 3`
	P2=`cat /dev/urandom \| tr -cd abcdefghjkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789 \| head -c 3`
	P3=`cat /dev/urandom \| tr -cd abcdefghjkmnpqrstuvwxyzABCDEFGHJKLMNPQRSTUVWXYZ23456789 \| head -c 3`
	PASS="$P1-$P2-$P3"
	fi

	if [ -z "$NAME" ]
	then
	NAME="vpn"
	fi

	cat >/etc/ppp/chap-secrets <<END
	# Secrets for authentication using CHAP
	# client server secret IP addresses
	$NAME pptpd $PASS *
	END
	cat >/etc/pptpd.conf <<END
	option /etc/ppp/options.pptpd
	logwtmp
	localip 192.168.2.1
	remoteip 192.168.2.10-100
	END
	cat >/etc/ppp/options.pptpd <<END
	name pptpd
	refuse-pap
	refuse-chap
	refuse-mschap
	require-mschap-v2
	require-mppe-128
	ms-dns 8.8.8.8
	ms-dns 8.8.4.4
	proxyarp
	lock
	nobsdcomp
	novj
	novjccomp
	nologfd
	END

	apt-get -y install wget \|\| {
	echo "Could not install wget, required to retrieve your IP address."
	exit 1
	}

	#find out external ip
	IP=`wget -q -O - http://api.ipify.org`

	if [ "x$IP" = "x" ]
	then
	echo "============================================================"
	echo " !!! COULD NOT DETECT SERVER EXTERNAL IP ADDRESS !!!"
	else
	echo "============================================================"
	echo "Detected your server external ip address: $IP"
	fi
	echo ""
	echo "VPN username = $NAME password = $PASS"
	echo "============================================================"
	sleep 2

	service pptpd restart

	#add GPG public key for shadowsocks
	wget -O- http://shadowsocks.org/debian/1D27208A.gpg \| sudo apt-key add -

	#add service to sources list
	echo "deb http://shadowsocks.org/ubuntu trusty main" >> /etc/apt/sources.list
	apt-get update

	apt-get -y install shadowsocks-libev \|\| {
	echo "Could not install shadowsocks-libev."
	exit 1
	}

	rm /etc/shadowsocks-libev/config.json
	touch /etc/shadowsocks-libev/config.json
	cat >/etc/shadowsocks-libev/config.json <<END
	{
	"server": "0.0.0.0",
	"server_port": 1984,
	"password": "$PASS",
	"method": "aes-256-cfb"
	}
	END

	echo ""
	echo "Shadowsocks password = $PASS port = 1984"
	echo "============================================================"

	#start the server and keep it running forever
	/etc/init.d/shadowsocks-libev start

	exit 0