Skip to content

Instantly share code, notes, and snippets.

@iworker

iworker/instruction.md

Last active Feb 1, 2021
Embed
What would you like to do?
Install & configure Kerio VPN Client for docker-machine (with xhyve driver) and TinyCoreLinux installed as virtual machine on macOS
  1. Logging into docker-machine: docker-machine ssh default
  2. Create temporary working directory and changing to: mkdir kerio && cd kerio
  3. Download latest DEB-package of Kerio VPN client: wget https://cdn.kerio.com/dwn/kerio-control-vpnclient-linux-amd64.deb
  4. Unpack the package using ar utility: ar -x kerio-control-vpnclient-linux-amd64.deb
  5. Unpack internal archives:
tar -xzvf control.tar.gz
tar -xJvf data.tar.xz
  1. Copy all the shared libraries
sudo cp usr/lib/libkvnet.so /usr/lib
sudo cp usr/lib/libktssl.so.1.0.0 /usr/lib
sudo cp usr/lib/libktcrypto.so.1.0.0 /usr/lib
sudo cp usr/lib/libktz.so.1 /usr/lib
  1. Copy the binary executable file: sudo cp usr/sbin/kvpncsvc /usr/sbin/
  2. Copy the running script: sudo cp etc/init.d/kerio-kvc /etc/init.d/
  3. (optional) Installing vim (to edit configuration): tce-load -wi vim
  4. Generate fingerprint of the VPN server (4090 is the default port, could be any):
openssl s_client -connect "vpn-server.com:4090" 2>/dev/null | openssl x509 -fingerprint -md5 -noout | sed s'/.*=//'

(it would be necessary to break the connection using CTRL+C and copy the output value, which looks like: 00:11:22:33:44:55:66:77:88:99:AA:BB:CC:DD:EE:FF)

  1. Create the Kerio VPN Client config: sudo vim /etc/kerio-kvc.conf (change server address, username and password, and fingerprint, also could be added port – using <port></port> param)
<?xml version="1.0" encoding="UTF-8"?>
<config>
  <connections>
    <connection type="persistent">
      <server>vpn-server.com</server>
      <username>login</username>
      <password>D3S:{password-hash}</password>
      <fingerprint>00:11:22:33:44:55:66:77:88:99:AA:BB:CC:DD:EE:FF</fingerprint>		       
      <active>1</active>
    </connection>
  </connections>
</config>

(the easiest way to configure is to copy params from macOS Kerio VPN client config, it's located here: ~/.kerio/vpnclient/user.cfg)

  1. Change mode of the config: sudo chmod 0600 /etc/kerio-kvc.conf
  2. Run the VPN Client: sudo /etc/init.d/kerio-kvc start
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment