Komodo / ad2mt-site-install

Download as
Browse Code ยป

Commit 8bd584dd1050476b6c87052b68a8f8e11b671ea4

Authored by Adhidarma Hadiwinoto
1 parent 8c59d6ffe5
Exists in master

yum install vpnc

Showing 1 changed file with 2 additions and 0 deletions Inline Diff

1 #!/bin/bash 1 #!/bin/bash
2 2
3 echo 3 echo
4 echo ================ 4 echo ================
5 echo Tektrans - Finnet AD2MT VPNC configurator 5 echo Tektrans - Finnet AD2MT VPNC configurator
6 echo ================ 6 echo ================
7 echo 7 echo
8 8
9 read -p 'VPNC username: ' vpncuser < /dev/tty 9 read -p 'VPNC username: ' vpncuser < /dev/tty
10 if [ -z "$vpncuser" ]; then 10 if [ -z "$vpncuser" ]; then
11 echo "Invalid vpnc user"; 11 echo "Invalid vpnc user";
12 exit 12 exit
13 fi 13 fi
14 14
15 read -p 'VPNC password: ' vpncpass < /dev/tty 15 read -p 'VPNC password: ' vpncpass < /dev/tty
16 if [ -z "$vpncpass" ]; then 16 if [ -z "$vpncpass" ]; then
17 echo "Invalid vpnc password"; 17 echo "Invalid vpnc password";
18 exit 18 exit
19 fi 19 fi
20 20
21 read -p 'IPSEC secret: ' ipsecsecret < /dev/tty 21 read -p 'IPSEC secret: ' ipsecsecret < /dev/tty
22 if [ -z "$ipsecsecret" ]; then 22 if [ -z "$ipsecsecret" ]; then
23 echo "Invalid ipssec secret"; 23 echo "Invalid ipssec secret";
24 exit 24 exit
25 fi 25 fi
26 26
27 27
28 set -x 28 set -x
29 29
30 sudo yum -y install vpnc
31
30 sudo tee /etc/systemd/system/vpnc@.service << EOF 32 sudo tee /etc/systemd/system/vpnc@.service << EOF
31 [Unit] 33 [Unit]
32 Description=VPNC Client %i 34 Description=VPNC Client %i
33 After=syslog.target network.target 35 After=syslog.target network.target
34 36
35 [Service] 37 [Service]
36 Type=simple 38 Type=simple
37 ExecStart=/usr/sbin/vpnc --no-detach --ifname tun-%i %i 39 ExecStart=/usr/sbin/vpnc --no-detach --ifname tun-%i %i
38 Restart=always 40 Restart=always
39 User=root 41 User=root
40 Group=root 42 Group=root
41 43
42 [Install] 44 [Install]
43 WantedBy=multi-user.target 45 WantedBy=multi-user.target
44 EOF 46 EOF
45 47
46 sudo tee /etc/vpnc/ad2mt.conf << EOF 48 sudo tee /etc/vpnc/ad2mt.conf << EOF
47 IPSec gateway vpn.finnet.co.id 49 IPSec gateway vpn.finnet.co.id
48 IPSec ID ad2mt 50 IPSec ID ad2mt
49 Domain WORKGROUP 51 Domain WORKGROUP
50 Vendor cisco 52 Vendor cisco
51 NAT Traversal Mode natt 53 NAT Traversal Mode natt
52 IKE DH Group dh2 54 IKE DH Group dh2
53 Perfect Forward Secrecy server 55 Perfect Forward Secrecy server
54 Local Addr 0.0.0.0 56 Local Addr 0.0.0.0
55 Local Port 500 57 Local Port 500
56 Cisco UDP Encapsulation Port 10000 58 Cisco UDP Encapsulation Port 10000
57 DPD idle timeout (our side) 300 59 DPD idle timeout (our side) 300
58 IKE Authmode psk 60 IKE Authmode psk
59 IPSEC target network 0.0.0.0/0.0.0.0 61 IPSEC target network 0.0.0.0/0.0.0.0
60 EOF 62 EOF
61 63
62 echo Xauth username $vpncuser | sudo tee -a /etc/vpnc/ad2mt.conf 64 echo Xauth username $vpncuser | sudo tee -a /etc/vpnc/ad2mt.conf
63 echo Xauth password $vpncpass | sudo tee -a /etc/vpnc/ad2mt.conf 65 echo Xauth password $vpncpass | sudo tee -a /etc/vpnc/ad2mt.conf
64 echo IPSec secret $ipsecsecret | sudo tee -a /etc/vpnc/ad2mt.conf 66 echo IPSec secret $ipsecsecret | sudo tee -a /etc/vpnc/ad2mt.conf
65 67
66 sudo systemctl daemon-reload 68 sudo systemctl daemon-reload
67 sudo systemctl enable vpnc@ad2mt 69 sudo systemctl enable vpnc@ad2mt
68 70
69 echo 71 echo
70 cat /etc/vpnc/ad2mt.conf 72 cat /etc/vpnc/ad2mt.conf
71 73