Skip to content

Instantly share code, notes, and snippets.

@larsch

larsch/vpnexec.sh

Last active November 8, 2020 17:49
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save larsch/9fe268026ef55796c182e7c67de91fc4 to your computer and use it in GitHub Desktop.
Save larsch/9fe268026ef55796c182e7c67de91fc4 to your computer and use it in GitHub Desktop.
Download ZIP
Run firefox with Wireguard VPN using network namespaces
Raw
vpnexec.sh
#!/bin/sh
exec ip netns exec vpn su user -c "$*"
Raw
vpnfirefox.sh
#!/bin/sh
firefox -CreateProfile private
exec sudo /usr/local/bin/vpnexec firefox -P private -private -new-session
Raw
vpnsetup.sh
#!/bin/sh
set -exu
ip link del dev wg-vpn ||:
ip -n vpn link del dev wg-vpn ||:
ip link add dev wg-vpn type wireguard
ip netns add vpn ||:
ip link set dev wg-vpn netns vpn
ip -n vpn addr add 10.9.7.2/32 peer 10.9.7.1/32 dev wg-vpn
ip -n vpn addr add fc01::2/64 peer fc01::1/64 dev wg-vpn
ip -n vpn link set dev wg-vpn up
ip -n vpn route add default via 10.9.7.2
ip -n vpn route add default via fc01::1
ip netns exec vpn wg set wg-vpn private-key $LOCALPRIVATEKEYFILE peer $PEERPUBLICKEY endpoint $ENDPOINT allowed-ips 0.0.0.0/0,::/0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment