Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
Ubuntu Setup.sh
#!/bin/bash
# Ubuntu & Debian
#apt-get update
#apt-get -y install strongswan xl2tpd
# CentOS & RHEL
#yum -y install epel-release
#yum --enablerepo=epel -y install strongswan xl2tpd
# Fedora
#yum -y install strongswan xl2tpd
VPN_HOSTNAME="gateway.something.com"
VPN_USERNAME="username"
VPN_PASSWORD="password"
VPN_KEY="imasupersecret"
cat >/etc/ipsec.conf <<EOF
config setup
conn %default
ikelifetime=60m
keylife=20m
rekeymargin=3m
keyingtries=1
keyexchange=ikev1
authby=secret
ike=aes128-sha1-modp1024,3des-sha1-modp1024!
esp=aes128-sha1-modp1024,3des-sha1-modp1024!
conn vpnname
keyexchange=ikev1
left=%defaultroute
auto=add
authby=secret
type=transport
leftprotoport=17/1701
rightprotoport=17/1701
right=$VPN_HOSTNAME
EOF
cat >/etc/ipsec.secrets <<EOF
: PSK $VPN_KEY
EOF
cat >/etc/xl2tpd/xl2tpd.conf <<EOF
[lac vpnname]
lns = $VPN_HOSTNAME
ppp debug = yes
pppoptfile = /etc/ppp/options.l2tpd.client
length bit = yes
bps = 1000000
EOF
cat >/etc/ppp/options.l2tpd.client <<EOF
ipcp-accept-local
ipcp-accept-remote
refuse-eap
require-pap
noccp
noauth
idle 1800
mtu 1410
mru 1410
defaultroute
usepeerdns
debug
connect-delay 5000
EOF
echo "name $VPN_USERNAME" >>/etc/ppp/options.l2tpd.client
echo "password $VPN_PASSWORD" >>/etc/ppp/options.l2tpd.client
mkdir -p /var/run/xl2tpd
touch /var/run/xl2tpd/l2tp-control
for i in strongswan.service xl2tpd.service; do systemctl start $i; done
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment