Dieses Wiki ist ein Archiv bis 2023. Das aktuelle Wiki findet sich unter https://wiki.hamburg.ccc.de/

Difference between revisions of "ChaosVPN:OpenWRTHowto"

From CCCHHWiki
Jump to: navigation, search
m (Zwischenspeicherung)
(Final v0.1)
Line 1: Line 1:
This is Howto for setting up an independent Box providing you with ChaosVPN
+
This is Howto for setting up an independent Box providing you with [[ChaosVPN]]
  
- Buy http://www.amazon.de/dp/B004YIT2ZI (or some equivalent Router)
+
In five steps. Really.
  
- Open your Router and power on
+
= 0. Fulfil Requirements =
- Connect wired or wireless (use information provided with your router)
+
* Buy Hardware [[Netgear WNDR3800 | http://www.amazon.de/dp/B004YIT2ZI]] or some equivalent
- Go directly to your routers Webinterface (one of 192.168.1.1 or 192.168.178.1) and search for sth like "System -> Firmware Upgrade"
+
* You must have read the basic [[ChaosVPN::Howto]] precisely
(There is no need to change any of the configuration)
+
* generate your keys, choose nodename and subnet and send pubkey to openvpn team
  
- Download current WRT version
+
= 1. Get Started =
If you are using the Hardware above: http://downloads.openwrt.org/backfire/10.03.1/ar71xx/openwrt-ar71xx-wndr3800-squashfs-factory.img
+
* Open your Router and power on
 +
* Connect wired or wireless (use information provided with your router)
 +
* Go directly to your routers Webinterface (192.168.1.1 or 192.168.178.1) and search for sth like ''System -> Firmware Upgrade''
 +
* (There is no need to change any of the configuration)
  
- Upload the Image in your Webinterface
+
= 2. Install OpenWRT =
- Press Start  
+
* Download [[OpenWRT for WNDR3800|http://downloads.openwrt.org/backfire/10.03.1/ar71xx/openwrt-ar71xx-wndr3800-squashfs-factory.img]]
- DO NOT REBOOT, POWEROFF OR ELSE
+
* Upload the Image in your Webinterface
- Wait until done (Power LED should not flash)
+
* Press Start  
 +
* '''DO NOT REBOOT, POWEROFF OR ELSE'''
 +
* Wait until done (Power LED should not flash)
  
 +
= 3. Start and Setup OpenWRT =
 +
* Reconnect Network between PC <-> Router
 +
* <pre>telnet 192.168.1.1</pre>
 +
* <pre>passwd #set a root password </pre>
 +
* REMEMBER IT
 +
* Go to Webinterface at 192.168.1.1
 +
* Connect the yellow port on your router to current infrastructure
 +
* Go to ''Network -> Interfaces'' and activate WAN Connection with DHCP or your custom internet configuration
 +
* Navigate to ''System -> Software'' and press ''Update Lists''
 +
* Press ''Available Software'' tab and select ''C''
 +
* Search for ChaosVPN and press ''install''
 +
(I did also install ''screen'' at this point)
  
- Reconnect to your Router
+
= 4. Prepare for launch =
- Console: telnet 192.168.1.1, set a root password passwd and REMEMBER IT
+
* <pre>ssh root@192.168.1.1 # telnet won't work anymore</pre>
- Go to Webinterface at 192.168.1.1
+
* edit the top part of
- Connect the yellow port on your router to current infrastructure
+
* <pre>/etc/tinc/chaosvpn.conf</pre>
- Go to "Network -> Interfaces" and activate WAN Connection with DHCP (assuming DHCP is available; you may configure DSL if you are connecting a modem)
 
- Navigate to "System -> Software" and press "Update Lists"
 
- Press "Available Software" Tab and select "C"
 
- Search for ChaosVPN and press "install"
 
  
( - I did also install "screen" at this point)
+
<pre>$my_peerid = <nodename>
 +
$my_vpn_ip = 172.31.<your Subnet>.[1-255]
 +
</pre>
  
- ssh root@192.168.1.1 (telnet won't work anymore)
+
* Copy over your keys to OpenWRT Box
- edit the top part of file /etc/tinc/chaosvpn.conf to fit your needs
+
<pre>
 +
# scp /etc/tinc/chaos/rsa_key.p* root@192.168.1.1:/etc/tinc/chaos
 +
# rm /etc/tinc/chaos/rsa_key.p*
 +
</pre>
  
$my_peerid = <nodename>
+
= 5. Lift off =
$my_vpn_ip = 172.31.<your Subnet>.[1-255]
+
* start chaosvpn
 +
* <pre>/etc/init.de/chaosvpn start</pre>
  
- generate your keys and send pubkey to openvpn team (fast response time) see [Howto]
+
...be prepared for 150 new route entries
tincd -n chaos --generate-keys=2048
 
  
- start chaosvpn
 
/etc/init.de/chaosvpn start
 
  
...be prepared for 150 new route entries
+
... to be continued

Revision as of 18:09, 13 April 2012

This is Howto for setting up an independent Box providing you with ChaosVPN

In five steps. Really.

0. Fulfil Requirements

1. Get Started

  • Open your Router and power on
  • Connect wired or wireless (use information provided with your router)
  • Go directly to your routers Webinterface (192.168.1.1 or 192.168.178.1) and search for sth like System -> Firmware Upgrade
  • (There is no need to change any of the configuration)

2. Install OpenWRT

3. Start and Setup OpenWRT

  • Reconnect Network between PC <-> Router
  • telnet 192.168.1.1
  • passwd #set a root password
  • REMEMBER IT
  • Go to Webinterface at 192.168.1.1
  • Connect the yellow port on your router to current infrastructure
  • Go to Network -> Interfaces and activate WAN Connection with DHCP or your custom internet configuration
  • Navigate to System -> Software and press Update Lists
  • Press Available Software tab and select C
  • Search for ChaosVPN and press install

(I did also install screen at this point)

4. Prepare for launch

  • ssh root@192.168.1.1 # telnet won't work anymore
  • edit the top part of
  • /etc/tinc/chaosvpn.conf
$my_peerid = <nodename>
$my_vpn_ip = 172.31.<your Subnet>.[1-255]
  • Copy over your keys to OpenWRT Box
 
# scp /etc/tinc/chaos/rsa_key.p* root@192.168.1.1:/etc/tinc/chaos
# rm /etc/tinc/chaos/rsa_key.p*

5. Lift off

  • start chaosvpn
  • /etc/init.de/chaosvpn start

...be prepared for 150 new route entries


... to be continued

Retrieved from "https://oldwiki.hamburg.ccc.de/index.php?title=ChaosVPN:OpenWRTHowto&oldid=8052"