Komodo / ad2mt-site-install

Download as
Browse Code ยป

Commit 579e6bf097688445b232900f0e8d9d496e17107c

Authored by Adhidarma Hadiwinoto
1 parent 36b3dccd9b
Exists in master

automatic restart

Showing 1 changed file with 1 additions and 1 deletions Inline Diff

1 #!/bin/bash 1 #!/bin/bash
2 2
3 echo 3 echo
4 echo ================ 4 echo ================
5 echo Tektrans - Finnet AD2MT VPNC configurator 5 echo Tektrans - Finnet AD2MT VPNC configurator
6 echo ================ 6 echo ================
7 echo 7 echo
8 8
9 read -p 'VPNC username: ' vpncuser < /dev/tty 9 read -p 'VPNC username: ' vpncuser < /dev/tty
10 if [ -z "$vpncuser" ]; then 10 if [ -z "$vpncuser" ]; then
11 echo "Invalid vpnc user"; 11 echo "Invalid vpnc user";
12 exit 12 exit
13 fi 13 fi
14 14
15 read -p 'VPNC password: ' vpncpass < /dev/tty 15 read -p 'VPNC password: ' vpncpass < /dev/tty
16 if [ -z "$vpncpass" ]; then 16 if [ -z "$vpncpass" ]; then
17 echo "Invalid vpnc password"; 17 echo "Invalid vpnc password";
18 exit 18 exit
19 fi 19 fi
20 20
21 read -p 'IPSEC secret: ' ipsecsecret < /dev/tty 21 read -p 'IPSEC secret: ' ipsecsecret < /dev/tty
22 if [ -z "$ipsecsecret" ]; then 22 if [ -z "$ipsecsecret" ]; then
23 echo "Invalid ipssec secret"; 23 echo "Invalid ipssec secret";
24 exit 24 exit
25 fi 25 fi
26 26
27 27
28 set -x 28 set -x
29 29
30 sudo yum -y install vpnc 30 sudo yum -y install vpnc
31 31
32 sudo tee /etc/systemd/system/vpnc@.service << EOF 32 sudo tee /etc/systemd/system/vpnc@.service << EOF
33 [Unit] 33 [Unit]
34 Description=VPNC Client %i 34 Description=VPNC Client %i
35 After=syslog.target network.target 35 After=syslog.target network.target
36 36
37 [Service] 37 [Service]
38 Type=simple 38 Type=simple
39 ExecStart=/usr/sbin/vpnc --no-detach --ifname tun-%i %i 39 ExecStart=/usr/sbin/vpnc --no-detach --ifname tun-%i %i
40 Restart=always 40 Restart=always
41 User=root 41 User=root
42 Group=root 42 Group=root
43 43
44 [Install] 44 [Install]
45 WantedBy=multi-user.target 45 WantedBy=multi-user.target
46 EOF 46 EOF
47 47
48 sudo tee /etc/vpnc/ad2mt.conf << EOF 48 sudo tee /etc/vpnc/ad2mt.conf << EOF
49 IPSec gateway vpn.finnet.co.id 49 IPSec gateway vpn.finnet.co.id
50 IPSec ID ad2mt 50 IPSec ID ad2mt
51 Domain WORKGROUP 51 Domain WORKGROUP
52 Vendor cisco 52 Vendor cisco
53 NAT Traversal Mode natt 53 NAT Traversal Mode natt
54 IKE DH Group dh2 54 IKE DH Group dh2
55 Perfect Forward Secrecy server 55 Perfect Forward Secrecy server
56 Local Addr 0.0.0.0 56 Local Addr 0.0.0.0
57 Local Port 500 57 Local Port 500
58 Cisco UDP Encapsulation Port 10000 58 Cisco UDP Encapsulation Port 10000
59 DPD idle timeout (our side) 300 59 DPD idle timeout (our side) 300
60 IKE Authmode psk 60 IKE Authmode psk
61 IPSEC target network 0.0.0.0/0.0.0.0 61 IPSEC target network 0.0.0.0/0.0.0.0
62 EOF 62 EOF
63 63
64 echo Xauth username $vpncuser | sudo tee -a /etc/vpnc/ad2mt.conf 64 echo Xauth username $vpncuser | sudo tee -a /etc/vpnc/ad2mt.conf
65 echo Xauth password $vpncpass | sudo tee -a /etc/vpnc/ad2mt.conf 65 echo Xauth password $vpncpass | sudo tee -a /etc/vpnc/ad2mt.conf
66 echo IPSec secret $ipsecsecret | sudo tee -a /etc/vpnc/ad2mt.conf 66 echo IPSec secret $ipsecsecret | sudo tee -a /etc/vpnc/ad2mt.conf
67 67
68 sudo systemctl daemon-reload 68 sudo systemctl daemon-reload
69 sudo systemctl enable vpnc@ad2mt 69 sudo systemctl enable vpnc@ad2mt
70 sudo systemctl start vpnc@ad2mt 70 sudo systemctl restart vpnc@ad2mt
71 71
72 echo 72 echo
73 cat /etc/vpnc/ad2mt.conf 73 cat /etc/vpnc/ad2mt.conf
74 74