melchiorbv
/
Obsidian
1
0
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity

vpn init

Browse Source
main
Mel 3 years ago
parent 1f5ed5d669
commit 237ba3f31e
11 changed files with 300 additions and 20 deletions
Show Stats Download Patch File Download Diff File

2
.obsidian/plugins/obsidian-admonition/data.json
Unescape View File

@ -43,7 +43,7 @@
},
"syntaxHighlight": false,
"copyButton": false,
"version": "6.3.3",
"version": "6.3.4",
"autoCollapse": false,
"defaultCollapseType": "open",
"syncLinks": true,

2
.obsidian/plugins/obsidian-admonition/manifest.json
Unescape View File

@ -1,7 +1,7 @@
{
"id": "obsidian-admonition",
"name": "Admonition",
"version": "6.3.3",
"version": "6.3.4",
"minAppVersion": "0.11.0",
"description": "Admonition block-styled content for Obsidian.md",
"author": "Jeremy Valentine",

1
.obsidian/plugins/obsidian-admonition/styles.css
Unescape View File

@ -85,7 +85,6 @@
details.admonition:not([open]) {
padding-bottom: 0;
box-shadow: none;
}
details.admonition > summary {

24
.obsidian/workspace
Unescape View File

@ -9,7 +9,7 @@
"state": {
"type": "markdown",
"state": {
"file": "Reading list/@Reading master.md",
"file": "Networks/@Networks.md",
"mode": "preview"
}
}
@ -68,7 +68,7 @@
"state": {
"type": "backlink",
"state": {
"file": "Reading list/@Reading master.md",
"file": "Networks/@Networks.md",
"collapseAll": false,
"extraContext": false,
"sortOrder": "alphabetical",
@ -107,15 +107,15 @@
},
"active": "c1cbd199334b4022",
"lastOpenFiles": [
"Reading list/@Reading master.md",
"Family/Basville.md",
"Family/Birthdays.md",
"Home/MRCK.md",
"Computer setup/Git.md",
"Computer setup/Tesseract.md",
"Computer setup/VLC.md",
"Computer setup/youtube-dl.md",
"Computer setup/@Computer Set Up.md",
"Computer setup/Internet services.md"
"Networks/@Networks.md",
"Networks/Server VPN.md",
"Networks/Server Tools.md",
"Networks/mfxm Website Scope.md",
"Networks/mfxm.fr.jpg",
"Networks/Selfhosting.md",
"Networks/VPS Console Dialogue.md",
"Networks/Configuring Monit.md",
"Networks/Server Cloud.md",
"Networks/Server Alias.md"
]
}

3
Networks/@Networks.md
Unescape View File

@ -168,11 +168,12 @@ hide task count
![[Server Alias#^AliasServerCost]]
![[Server Cloud#^CloudServerCost]]
![[Server Tools#^ToolsServerCost]]
![[Server VPN#^VPNServerCost]]
|<mark class="blue">_**Aggregation**_</mark> | One-off Cost | Subscription p.a.
|--------|:------------:|:-----------------:
_**Total**_ | *€14.5* | *€118.79*
_**Total**_ | *€14.5* | *€140.29*
&emsp;

7
Networks/Configuring Monit.md
Unescape View File

@ -11,7 +11,7 @@ CollapseMetaTable: Yes
---
Parent:: [[Selfhosting]], [[Server Cloud]], [[Server Alias]], [[Server Tools]]
Parent:: [[Selfhosting]], [[Server Cloud]], [[Server Alias]], [[Server Tools]], [[Server VPN]]
---
@ -68,6 +68,11 @@ title: Tools server
http://monit-tools.mfxm.fr
```
```ad-address
title: Cloud server
http://vpn.mfxm.fr:2812
```
&emsp;
---

2
Networks/Configuring Postfix.md
Unescape View File

@ -11,7 +11,7 @@ CollapseMetaTable: Yes
---
Parent:: [[Selfhosting]], [[Server Alias]], [[Server Cloud]], [[Server Tools]]
Parent:: [[Selfhosting]], [[Server Alias]], [[Server Cloud]], [[Server Tools]], [[Server VPN]]
&emsp;

2
Networks/Configuring UFW.md
Unescape View File

@ -11,7 +11,7 @@ CollapseMetaTable: Yes
---
Parent:: [[Selfhosting]], [[Server Alias]], [[Server Cloud]], [[Server Tools]]
Parent:: [[Selfhosting]], [[Server Alias]], [[Server Cloud]], [[Server Tools]], [[Server VPN]]
---

256
Networks/Server VPN.md
Unescape View File

@ -0,0 +1,256 @@
---
Alias: ["VPN"]
Tag: ["Server", "Privacy", "Security", "Web"]
Date: 2021-10-11
DocType: "Server"
Hierarchy: "NonRoot"
location:
Performance:
CPU: 1Core
RAM: 1GB
Bandwidth: 1T
Speed:
Characteristics:
OS: Ubuntu 20.04
Domiciliation: FR
IPv4: 5.135.0.192
Hostname: vpn.mfxm.fr
Host: HostNamaste
SubDomain: vpn
Disk:
Capa: 30GB
Type: RAID-10
UsedSpace:
TimeStamp:
---
Parent:: [[mfxm Website Scope|mfxm.fr]]
---
&emsp;
```button
name Edit Server parameters
type command
action MetaEdit: Run MetaEdit
id EditMetaData
```
^button-ServerVPNEdit
```button
name Save
type command
action Save current file
id Save
```
^button-ServerVPNSave
&emsp;
# Server VPN
&emsp;
```ad-abstract
title: Summary
collapse: open
VPN server sitting in France for accessing French media as if at home.
```
&emsp;
```toc
style: number
```
&emsp;
---
&emsp;
### Server parameters
&emsp;
```ad-quote
title: Dashboard access
[Login - HostNamaste](https://www.hostnamaste.com/clients/login)
[Control Panel](https://manage.hostnamaste.com/login.php)
```
&emsp;
```ad-quote
title: Address
The service will be located under **[vpn.mfxm.fr](https://vpn.mfxm.fr)** .
```
&emsp;
---
&emsp;
### Services
&emsp;
```ad-abstract
title: Service description
The VPN server will host a single VPN service and dependencies bare metal.
```
&emsp;
#### Installed server dependencies
##### Security
| Program name | Type | Description
|----------------|------|-------------
| **fail2ban** | Daemon | Blocks suspicious attempts to login
| **unattended-upgrades** | Program | Enables automatic updates of installed programs and OS
| **logwatch** | Daemon | Monitors activity on server and sends activity logs
&emsp;
##### fail2ban
Classic installation with a dedicated configuration:
```ad-command
~~~
sudo nano /etc/fail2ban/jail.d/sshd.local
~~~
```
With the following parameters:
```ad-code
~~~
[sshd]
enabled = true
port=2227
maxretry = 10
bantime = 1m
~~~
```
&emsp;
##### Postfix
Mail Transfer Agent. Configuration is standard to allow for emails to be sent by programs / deamons / [[Nextcloud]] or others. Such a [[Configuring Postfix|system]] is required for every server to work correctly.
&emsp;
##### UFW
Firewall management, see [[Configuring UFW|here]] for more details.
&emsp;
---
&emsp;
#### Dedicated Server parameters
&emsp;
| Service | Used value
|---------|:---------:
&emsp; | &emsp;
**Port: SSH** | 2227
**Port: WG** | 61242
&emsp;
---
&emsp;
#### VPN Service
&emsp;
##### File repository
```ad-path
title: Client Config files
~~~
/home/melchiorbv/wg0-client-(clientname).conf
~~~
```
```ad-path
title: Server Config file
~~~
/etc/wireguard/wg0.conf
~~~
```
&emsp;
##### VPN client parametrisation
```ad-command
title: In `~` for `melchiorbv`
~~~
./wireguard-install.sh
~~~
```
&emsp;
##### VPN parameters
```ad-code
title: WireGuard config
~~~
IPv4 or IPv6 public address: 5.135.0.192
Public interface: eth0
WireGuard interface name: wg0
Server's WireGuard IPv4: 10.66.66.1
Server's WireGuard IPv6: fd42:42:42::1
Server's WireGuard port [1-65535]: 61242
First DNS resolver to use for the clients: 94.140.14.14
Second DNS resolver to use for the clients (optional): 94.140.15.15
~~~
```
&emsp;
---
&emsp;
### Pricing
&emsp;
<mark class="green">VPN Server</mark> | One-off cost | Recurring subscription p.a.
--------|---------------|:----------------------:
<p style="color:cyan">**Server hosting**</p> | &emsp; | *$25*
^VPNServerCost
&emsp;
---
&emsp;
### Tasks & Further steps
&emsp;
- [ ] [[Server VPN]]: Backup server 🔁 every 6 months on the 1st Tuesday
&emsp;
&emsp;

2
Networks/VPS Console Dialogue.md
Unescape View File

@ -11,7 +11,7 @@ CollapseMetaTable: Yes
---
Parent:: [[Selfhosting]], [[Server Alias]], [[Server Cloud]], [[Server Tools]]
Parent:: [[Selfhosting]], [[Server Alias]], [[Server Cloud]], [[Server Tools]], [[Server VPN]]
&emsp;

19
Networks/mfxm Website Scope.md
Unescape View File

@ -207,6 +207,25 @@ https://git.mfxm.fr/melchiorbv/Obsidian.git
&emsp;
### VPN
&emsp;
```ad-address
title: sub-domain address
https://vpn.mfxm.fr
```
Server details to be found [[Server VPN|here]]
Today, this server has no GUI and therefore is not accessible from the web.
&emsp;
---
&emsp;
### Pricing
| Cost source | One-off cost | Subscription (p.a.)

Write Preview
Loading…
Cancel
Save