[arm-allstar] OpenVPN & Hamvoip

Mike Sullivan kn4imu at gmail.com
Thu Sep 17 22:14:58 EDT 2020 

Here you go Tom. Let me know if it works for you. Make sure you read it
carefully, the PDF messes the commands up for iptables up so you can't just
copy and paste them without fixing.

Mike

On Thu, Sep 17, 2020 at 2:24 PM "Tom Eaton via ARM-allstar" <
arm-allstar at hamvoip.org> wrote:

> Hi Mike, Can you share your guide you made up?
>
> Tom
> KC4CBQ
>
> On Thu, Sep 17, 2020 at 8:15 AM "Mike Sullivan via ARM-allstar" <
> arm-allstar at hamvoip.org> wrote:
>
> > Rob, I appreciate you sharing your experience. I have been using OpenVPN
> as
> > well and typed up a guide to help those that are new to it. Do you mind
> if
> > I steal a couple of pointers from yours for it? The main thing I wanted
> to
> > add is the client.conf change in rc.allstar.
> >
> > Also, have you tried multiple clients on one VPN? I would like to combine
> > two nodes for one club onto one server is possible, instead of individual
> > servers, but never quite figured out multiple clients on OpenVPN.
> >
> > Mike Sullivan
> >
> >
> >
> > On Mon, Sep 7, 2020 at 10:54 AM "Rob Seaman via ARM-allstar" <
> > arm-allstar at hamvoip.org> wrote:
> >
> > > Hi All,
> > >
> > > After some experimenting, I managed to get one of my Allstar nodes,
> > > located a few hundred miles away on a LTE cellular modem, working with
> > > OpenVPN.
> > >
> > > The node is unreachable by conventional internet means because of
> CGNAT,
> > > so I've been using a reverse SSH tunnel fairly successfully need to
> > connect
> > > to it remotely, except for the time my local node had a corrupted SD
> card
> > > and crashed.
> > >
> > > I thought I'd share my experience here in case anyone was wanting to
> try
> > > the same.
> > >
> > > I started with setting up my own OpenVPN server on a small VPS with a
> > > local provider in my city. VPS specs are 1GB RAM, 20GB storage & 1TB
> data
> > > transfer.
> > >
> > > I followed these guides:
> > >
> > >
> > >
> >
> https://computingforgeeks.com/easy-way-to-install-and-configure-openvpn-server-on-ubuntu/
> > >
> > >
> > >
> >
> https://www.cyberciti.biz/faq/ubuntu-18-04-lts-set-up-openvpn-server-in-5-minutes/
> > >
> > >
> > >
> >
> https://www.cyberciti.biz/faq/howto-setup-openvpn-server-on-ubuntu-linux-14-04-or-16-04-lts/
> > >
> > > https://whattheserver.com/openvpn-server-with-port-forwarding<
> > > https://whattheserver.com/openvpn-server-with-port-forwarding/>/
> > >
> > > Moving next to your remote Allstar node to connect into the VPN
> > >
> > > 1.  Generate .ovpn/.conf profile on your VPS server. I use the callsign
> > of
> > > the node or node number
> > > 2.  Copy .ovpn profile to node (/etc/openvpn) and rename to .conf.
> > > 3.  Add "--pull-filter ignore redirect-gateway" to .conf profile on
> node
> > > if you wish to not forward Allstar traffic via VPN.
> > > 4.  Update OpenVPN package on node, as the included version didn't work
> > > with my server version.  Use pacman -S hamvoip-openvpn
> > > 5.  Test OpenVPN connection.  openvpn <profile-name>.conf  (eg:
> openvpn
> > > vk6ld.conf)
> > > 6.  Change /usr/local/etc/allstar.env file to VPN enabled
> > > 7.  Change /usr/local/etc/rc.allstar file - from client.conf to
> <callsign
> > > or node number>.conf
> > > 8.  Reboot node and VPN connection should come up.  You should see the
> > VPN
> > > tunnel is alive with command ifconfig or at the top of the Admin Menu
> > > window.
> > >
> > > I also setup an OpenVPN profile on my Win10 computer and can now SSH to
> > > the node, as well as use Supermon on the node.
> > >
> > > There may be steps I missed, but I managed to repeat the exercise on a
> > > second node from my own notes and it worked again second time around.
> > >
> > > Hope this helps.
> > >
> > > Cheers,
> > >
> > > Rob...
> > > VK6LD
> > >
> > >
> > > _______________________________________________
> > >
> > > ARM-allstar mailing list
> > > ARM-allstar at hamvoip.org
> > > http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
> > >
> > > Visit the BBB and RPi2/3/4 web page - http://hamvoip.org
> > >
> > _______________________________________________
> >
> > ARM-allstar mailing list
> > ARM-allstar at hamvoip.org
> > http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
> >
> > Visit the BBB and RPi2/3/4 web page - http://hamvoip.org
> >
> _______________________________________________
>
> ARM-allstar mailing list
> ARM-allstar at hamvoip.org
> http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
>
> Visit the BBB and RPi2/3/4 web page - http://hamvoip.org
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Hamvoip OpenVPN Install 091520.pdf
Type: application/pdf
Size: 89316 bytes
Desc: not available
URL: <http://lists.hamvoip.org/pipermail/arm-allstar/attachments/20200917/06f444d1/attachment.pdf>

More information about the ARM-allstar mailing list