[arm-allstar] OpenVPN Port Forwarding Update
Jeff Karpinski
jeff at 3d0g.net
Sat Aug 17 08:50:07 EDT 2019
I recently went down the same rabbit hole for our club. While I got it all working I wasn't thrilled with all the moving parts and complexity from a supportability standpoint. Since I already had the VPS, I punted OpenVPN and stood up an Allstar node on it instead using the pseudo channel driver to make it a hub node. Now anyone can join the club's Allstar infrastructure regardless of firewalls, netting, etc. Just works and it's 100% Allstar - no dependencies on other apps.
Still on the to-do list, I'm going to stand up a web UI so members can add/remove links to the hub whenever they like.
> On Aug 17, 2019, at 1:37 AM, Mike Sullivan via ARM-allstar <arm-allstar at hamvoip.org> wrote:
>
> All, after a couple nights of overcomplicating things, I finally found an
> easy way to set up OpenVPN and configure it with the club's node so I can
> use it on a cell hotspot until we get a permanent internet line in.
>
> I am renting a small VDS (virtual dedicated server) from SkySilk, running
> Ubuntu 19.04. I followed their instructions on setting up OpenVPN and
> generating client files. After setting up the client files on the node and
> making sure that the two were communicating (which is indicated by the
> added OpenVPN IP in the Allstar terminal window) I then went through the
> tedious process of setting up port forwarding. After much screwing around
> with UFW (Uncomplicated Firewall, ironically enough) I disabled it entirely
> and found this instruction set on port forwarding using iptables:
> https://arashmilani.com/post?id=53
>
> Following those instructions, and making sure I entered iptables-save to
> save the configuration to the server, I finally was able to port forward
> correctly, forwarding ports for web, SSH, iax, and Echolink. Several
> restart tests have confirmed it is working flawlessly, and I've tested
> prepaid hotspots from both Verizon and Unreal Mobile (which works off
> AT&T's network.. but is considerably slower)
>
> Finally.. I can sleep.
>
> Mike
> _______________________________________________
>
> ARM-allstar mailing list
> ARM-allstar at hamvoip.org
> http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
>
> Visit the BBB and RPi2/3 web page - http://hamvoip.org
More information about the ARM-allstar
mailing list