Browse Source

Remove references to PIA VPN provider due to them being purchased recently by a 'shady' company

master
KemoNine 2 weeks ago
parent
commit
3c51a2a58f
Signed by: KemoNine <kemonine@lollipopcloud.solutions> GPG Key ID: 3BC2928798AE11AB
5 changed files with 2 additions and 241 deletions
  1. 0
    1
      README.md
  2. 1
    1
      advanced/namespaced-openvpn.md
  3. 0
    236
      armbian/vpn/pia.md
  4. 0
    2
      armbian/vpn/vpn_ac.md
  5. 1
    1
      armbian/vpn/vpn_autoconnect.md

+ 0
- 1
README.md View File

@@ -33,7 +33,6 @@ If you're not using the [link for beginners](for-beginners/README.md), the follo
33 33
 - [FirewallD (firewall/routing)](armbian/firewalld.md)
34 34
 - [Unbound (Non ISP DNS)](armbian/unbound.md)
35 35
 - VPN Options
36
-    - [Private Internet Access (VPN)](armbian/vpn/pia.md)
37 36
     - [vpn.ac (VPN)](armbian/vpn/vpn_ac.md)
38 37
     - [VPN Autoconnect](armbian/vpn/vpn_autoconnect.md)
39 38
 

+ 1
- 1
advanced/namespaced-openvpn.md View File

@@ -11,7 +11,7 @@ git clone https://github.com/slingamn/namespaced-openvpn.git
11 11
 cd namespaced-openvpn
12 12
 make install
13 13
 
14
-/usr/local/sbin/namespaced-openvpn --config /etc/openvpn/chicago.conf --auth-user-pass /etc/openvpn/auth_pia.txt
14
+/usr/local/sbin/namespaced-openvpn --config /etc/openvpn/chicago.conf --auth-user-pass /etc/openvpn/auth.txt
15 15
 
16 16
 ip netns list
17 17
 

+ 0
- 236
armbian/vpn/pia.md View File

@@ -1,236 +0,0 @@
1
-# Private Internet Access (PIA)
2
-
3
-This is a **VERY** advanced topic with some creative tricks to simplify getting the config added to NetworkManager. You're on your own.
4
-
5
-The author *strongly* recommends reading through this and adapting/tuning well ahead of any real need(s).
6
-
7
-## Inspiration / Sources
8
-
9
-- [http://blog.deadlypenguin.com/blog/2017/04/24/vpn-auto-connect-command-line/](http://blog.deadlypenguin.com/blog/2017/04/24/vpn-auto-connect-command-line/)
10
-- [https://forums.linuxmint.com/viewtopic.php?t=97187](https://forums.linuxmint.com/viewtopic.php?t=97187)
11
-- [https://unix.stackexchange.com/questions/301845/scripting-a-way-to-quickly-import-ovpn-files-to-networkmanager-on-ubuntu](https://unix.stackexchange.com/questions/301845/scripting-a-way-to-quickly-import-ovpn-files-to-networkmanager-on-ubuntu)
12
-- [https://www.privateinternetaccess.com/pages/client-support/](https://www.privateinternetaccess.com/pages/client-support/)
13
-
14
-## Prep Work
15
-
16
-Download PIA OpenVPN advanced configs, drop them in a good place on the filesystem and script import.
17
-
18
-All files can be found Under ```Advanced OpenVPN SSL Restrictive Configurations``` on the main PIA website.
19
-
20
-### Download PIA OpenVPN Template Files
21
-
22
-``` bash
23
-
24
-mkdir -p /etc/pia
25
-cd /etc/pia
26
-mkdir openvpn-strong
27
-cd openvpn-strong
28
-wget https://www.privateinternetaccess.com/openvpn/openvpn-strong.zip
29
-unzip openvpn-strong.zip
30
-cd ..
31
-mkdir openvpn-strong-tcp
32
-cd openvpn-strong-tcp
33
-wget https://www.privateinternetaccess.com/openvpn/openvpn-strong-tcp.zip
34
-unzip openvpn-strong-tcp.zip
35
-cd ..
36
-
37
-```
38
-
39
-### Add OpenVPN To Network Manager
40
-
41
-``` bash
42
-
43
-# NetworkManager Gnome is *required* to get a missing library on xenial
44
-# OMIT Gnome item if you can get away with it...
45
-
46
-apt update
47
-apt install network-manager-openvpn
48
-
49
-```
50
-
51
-### Cleanup Files for Import
52
-
53
-The cipher lines in the templates provided by PIA won't work 100% correctly on import. These commands will clean them up for import.
54
-
55
-``` bash
56
-
57
-cd /etc/pia
58
-cd openvpn-strong
59
-sed -i 's/aes-256-cbc/AES-256-CBC/g' *.ovpn
60
-sed -i 's/sha256/SHA256/g' *.ovpn
61
-sed -i 's_crl.rsa.4096.pem_/etc/pia/openvpn-strong/crl.rsa.4096.pem_g' *.ovpn
62
-sed -i 's_ca.rsa.4096.crt_/etc/pia/openvpn-strong/ca.rsa.4096.crt_g' *.ovpn
63
-cd ..
64
-cd openvpn-strong-tcp
65
-sed -i 's/aes-256-cbc/AES-256-CBC/g' *.ovpn
66
-sed -i 's/sha256/SHA256/g' *.ovpn
67
-sed -i 's_crl.rsa.4096.pem_/etc/pia/openvpn-strong-tcp/crl.rsa.4096.pem_g' *.ovpn
68
-sed -i 's_ca.rsa.4096.crt_/etc/pia/openvpn-strong-tcp/ca.rsa.4096.crt_g' *.ovpn
69
-cd ..
70
-
71
-```
72
-
73
-## Import / Setup
74
-
75
-### Manual Import
76
-
77
-Import the cleaned up, provided OpenVPN profiles. This will require intervention on your part after the profile is created in NetworkManager to ensure it can connect properly.
78
-
79
-*Note: this assumes UDP profiles, tweak for the ```openvpn-strong-tcp``` directory if desired or necessary*
80
-
81
-#### Initial Import / Edit
82
-
83
-``` bash
84
-
85
-nmcli connection import type openvpn file /etc/pia/openvpn-strong/[con_name].ovpn
86
-nmcli con show
87
-vim /etc/NetworkManager/system-connections/[con_name]
88
-
89
-```
90
-
91
-#### Adjustments/Necessary Verification
92
-
93
-``` bash
94
-
95
-id=PIA - [con_name]
96
-
97
-[vpn]
98
-auth=SHA256
99
-cipher=AES-256-CBC
100
-password-flags=0
101
-user-name=[your_username]
102
-
103
-[vpn-secrets]
104
-password=[your_password]
105
-
106
-```
107
-
108
-#### Update Profiles in NetworkManager
109
-
110
-``` bash
111
-
112
-# Reload For Changes
113
-nmcli connection reload [uuid_from_above]
114
-
115
-# Connect
116
-nmcli con up [uuid_from_above]
117
-
118
-```
119
-
120
-### Scripted Import
121
-
122
-Some automated imports based on how the ```ovpn``` files are normally imported via ```nmcli```
123
-
124
-*Note: this assumes UDP profiles, you'll need to tweak this as you see fit for TCP*
125
-
126
-#### Install ```uuidgen```
127
-
128
-``` bash
129
-
130
-apt update
131
-apt install uuid-runtime
132
-
133
-```
134
-
135
-#### Create List of VPN Endpoints
136
-
137
-``` bash
138
-
139
-cat > /etc/pia/server_list.txt << EOF
140
-us-west.privateinternetaccess.com=PIA - USA (West)
141
-us-east.privateinternetaccess.com=PIA - USA (East)
142
-us-midwest.privateinternetaccess.com=PIA - USA (Midwest)
143
-aus.privateinternetaccess.com=PIA - Australia (Sydney)
144
-austria.privateinternetaccess.com=PIA - Austria
145
-belgium.privateinternetaccess.com=PIA - Belgium
146
-ca-toronto.privateinternetaccess.com=PIA - Canada (Toronto) (East)
147
-ca-vancouver.privateinternetaccess.com=PIA - Canada (Vancouver) (West)
148
-fi.privateinternetaccess.com=PIA - Finland
149
-france.privateinternetaccess.com=PIA - France
150
-germany.privateinternetaccess.com=PIA - Germany
151
-hk.privateinternetaccess.com=PIA - Hong Kong
152
-in.privateinternetaccess.com=PIA - India
153
-japan.privateinternetaccess.com=PIA - Japan
154
-mexico.privateinternetaccess.com=PIA - Mexico
155
-nl.privateinternetaccess.com=PIA - Netherlands
156
-no.privateinternetaccess.com=PIA - Norway
157
-sg.privateinternetaccess.com=PIA - Singapore
158
-spain.privateinternetaccess.com=PIA - Spain
159
-sweden.privateinternetaccess.com=PIA - Sweden
160
-swiss.privateinternetaccess.com=PIA - Switzerland
161
-turkey.privateinternetaccess.com=PIA - Turkey
162
-uk-london.privateinternetaccess.com=PIA - UK (London)
163
-brazil.privateinternetaccess.com=PIA - Brazil
164
-EOF
165
-
166
-```
167
-
168
-#### Setup NeworkManager Profiles
169
-
170
-Some fancy bash tricks to get the full list of NetworkManager PIA connections imported in one copy/paste.
171
-
172
-*Note: You'll need to fill in ```[your_username]``` and ```[your_password]``` before running this block of commands.
173
-
174
-``` bash
175
-
176
-export PIA_USER="[your_username]"
177
-export PIA_PASSWORD="[your_password]"
178
-while read line;
179
-do
180
-desc=$(echo $line | cut -f2 -d'=')
181
-dns=$(echo $line | cut -f1 -d'=')
182
-file="/etc/NetworkManager/system-connections/$desc"
183
-
184
-cat > "$file" <<EOF
185
-[connection]
186
-id=$desc
187
-uuid=`uuidgen`
188
-type=vpn
189
-permissions=
190
-secondaries=
191
-
192
-[vpn]
193
-connection-type=password
194
-auth=SHA256
195
-password-flags=0
196
-remote=${dns}:1197
197
-cipher=AES-256-CBC
198
-comp-lzo=yes
199
-reneg-seconds=0
200
-remote-cert-tls=server
201
-ca=/etc/pia/openvpn-strong/ca.rsa.4096.crt
202
-dev=tun
203
-service-type=org.freedesktop.NetworkManager.openvpn
204
-username=${PIA_USER}
205
-
206
-[vpn-secrets]
207
-password=${PIA_PASSWORD}
208
-
209
-[ipv4]
210
-dns-search=
211
-method=auto
212
-
213
-[ipv6]
214
-addr-gen-mode=stable-privacy
215
-dns-search=
216
-method=auto
217
-
218
-EOF
219
-
220
-chmod 600 "$file"
221
-
222
-done < /etc/pia/server_list.txt
223
-
224
-systemctl restart NetworkManager
225
-nmcli con show
226
-
227
-```
228
-
229
-## Testing VPN (Post Setup)
230
-
231
-Go to each link below and verify you're safe.
232
-
233
-- [https://www.privateinternetaccess.com/pages/whats-my-ip/](https://www.privateinternetaccess.com/pages/whats-my-ip/)
234
-- [http://dnsleak.com/](http://dnsleak.com/)
235
-- [http://ipv6leak.com/](http://ipv6leak.com/)
236
-- [http://emailipleak.com/](http://emailipleak.com/)

+ 0
- 2
armbian/vpn/vpn_ac.md View File

@@ -8,8 +8,6 @@ The author *strongly* recommends reading through this and adapting to other serv
8 8
 
9 9
 ## Inspiration / Sources
10 10
 
11
-This is an adaptation of the [PIA](pia.md) setup but for vpn.ac instead.
12
-
13 11
 - [https://vpn.ac/ovpn](https://vpn.ac/ovpn)
14 12
 
15 13
 ## Prep Work

+ 1
- 1
armbian/vpn/vpn_autoconnect.md View File

@@ -15,7 +15,7 @@ Some basic setup for auto-connecting a *specific* VPN connection. You'll need/wa
15 15
 
16 16
 ``` bash
17 17
 
18
-# Get UUID for PIA endpoint you want as a default
18
+# Get UUID for endpoint you want as a default
19 19
 nmcli con show
20 20
 mkdir /etc/autovpn
21 21
 # Setup the default so it can be used via autovpn script (see below)

Loading…
Cancel
Save