Setja ákveðin tæki á VPN miðlægt & íslensk traffík í gegnum ISP
Sent: Lau 18. Jan 2020 16:12
Hæ
Ég er með ExpressVPN vegna Netflix, Hulu ofl. í Apple TV.
Mig langar að geta skipt um sjónvarpsbox og haft WIFI tækin á VPN án þess að þurfa að stilla hvert og eitt, en til dæmis að hafa PC leikjavélina á venjulega netinu. Sum sjónvörp og TV box leyfa manni ekki einu sinni að stilla DNS á sér, svo þetta þyrfti að gerast í router/switch eða hvar sem þetta er gert.
Fyrsta skrefið væri að setja WIFI á VPN en hafa wired tæki á venjulega ISP.
Hvernig græja ég þetta? Þarf ég að kaupa einhverjar græjur í þetta?
Ég er með Edgerouter X, TOUGHSwitch, Unifi AP.
EDIT:
Hér er config sem virkar. Setur tæki 192.168.1.150-199 á ExpressVPN (sjá leiðbeiningar neðar) nema íslensk traffík og nokkrir Amazon þjónar(vegna NovaTV) fara í gegnum ISP.
http://www.expressvpn.com > My Account > Set Up on More Devices/Set up on all your devices > See all devices > Manual Config > Manual Configuration
> OpenVPN >
Búa til textaskrá sem heitir user-pass.txt og setja Username á fyrstu línu og Password á næstu línu
2. Download one or more OpenVPN configuration files for your account. The following locations are available:
Breyta einni línu í express.ovpn (auth-user-pass) til að nota user/pass.
auth-user-pass /config/auth/user-pass.txt ; route-nopull
Sækja WinSCP, tengjast router, setja skrárnar í /config/auth/
Sækja Putty, tengjast router og keyra þessar línur:
Ég er með ExpressVPN vegna Netflix, Hulu ofl. í Apple TV.
Mig langar að geta skipt um sjónvarpsbox og haft WIFI tækin á VPN án þess að þurfa að stilla hvert og eitt, en til dæmis að hafa PC leikjavélina á venjulega netinu. Sum sjónvörp og TV box leyfa manni ekki einu sinni að stilla DNS á sér, svo þetta þyrfti að gerast í router/switch eða hvar sem þetta er gert.
Fyrsta skrefið væri að setja WIFI á VPN en hafa wired tæki á venjulega ISP.
Hvernig græja ég þetta? Þarf ég að kaupa einhverjar græjur í þetta?
Ég er með Edgerouter X, TOUGHSwitch, Unifi AP.
EDIT:
Hér er config sem virkar. Setur tæki 192.168.1.150-199 á ExpressVPN (sjá leiðbeiningar neðar) nema íslensk traffík og nokkrir Amazon þjónar(vegna NovaTV) fara í gegnum ISP.
http://www.expressvpn.com > My Account > Set Up on More Devices/Set up on all your devices > See all devices > Manual Config > Manual Configuration
> OpenVPN >
Búa til textaskrá sem heitir user-pass.txt og setja Username á fyrstu línu og Password á næstu línu
Sækja eina OpenVPN skrá úr leiðbeiningunum, New York - 2, og skýra hana express.ovpn:user-pass.txt skrifaði:qgmtbnknkwjensq2h8qdx42n
4bhi78j3i12j7vweboejjj8e
2. Download one or more OpenVPN configuration files for your account. The following locations are available:
Breyta einni línu í express.ovpn (auth-user-pass) til að nota user/pass.
auth-user-pass /config/auth/user-pass.txt ; route-nopull
Sækja WinSCP, tengjast router, setja skrárnar í /config/auth/
Sækja Putty, tengjast router og keyra þessar línur:
Kóði: Velja allt
configure
set firewall group network-group sendToInternetGroup network 13.224.0.0/14
set firewall group network-group sendToInternetGroup network 143.204.0.0/16
set firewall group network-group sendToInternetGroup network 5.23.64.0/19
set firewall group network-group sendToInternetGroup network 5.252.12.0/22
set firewall group network-group sendToInternetGroup network 31.15.112.0/21
set firewall group network-group sendToInternetGroup network 31.209.136.0/21
set firewall group network-group sendToInternetGroup network 31.209.144.0/20
set firewall group network-group sendToInternetGroup network 31.209.192.0/18
set firewall group network-group sendToInternetGroup network 37.152.64.0/21
set firewall group network-group sendToInternetGroup network 37.205.32.0/21
set firewall group network-group sendToInternetGroup network 37.235.49.0/24
set firewall group network-group sendToInternetGroup network 46.22.96.0/20
set firewall group network-group sendToInternetGroup network 46.28.152.0/21
set firewall group network-group sendToInternetGroup network 46.182.184.0/21
set firewall group network-group sendToInternetGroup network 46.239.192.0/18
set firewall group network-group sendToInternetGroup network 62.145.128.0/19
set firewall group network-group sendToInternetGroup network 77.73.32.0/22
set firewall group network-group sendToInternetGroup network 77.83.108.0/22
set firewall group network-group sendToInternetGroup network 78.40.248.0/21
set firewall group network-group sendToInternetGroup network 79.171.96.0/21
set firewall group network-group sendToInternetGroup network 80.248.16.0/20
set firewall group network-group sendToInternetGroup network 80.249.116.0/22
set firewall group network-group sendToInternetGroup network 81.15.0.0/17
set firewall group network-group sendToInternetGroup network 82.112.64.0/19
set firewall group network-group sendToInternetGroup network 82.148.64.0/19
set firewall group network-group sendToInternetGroup network 82.221.0.0/16
set firewall group network-group sendToInternetGroup network 83.173.0.0/18
set firewall group network-group sendToInternetGroup network 85.116.64.0/19
set firewall group network-group sendToInternetGroup network 85.197.192.0/18
set firewall group network-group sendToInternetGroup network 85.220.0.0/17
set firewall group network-group sendToInternetGroup network 87.237.32.0/21
set firewall group network-group sendToInternetGroup network 88.149.0.0/17
set firewall group network-group sendToInternetGroup network 88.151.48.0/21
set firewall group network-group sendToInternetGroup network 89.17.128.0/19
set firewall group network-group sendToInternetGroup network 89.104.128.0/19
set firewall group network-group sendToInternetGroup network 89.160.128.0/17
set firewall group network-group sendToInternetGroup network 91.199.134.0/24
set firewall group network-group sendToInternetGroup network 91.208.22.0/24
set firewall group network-group sendToInternetGroup network 91.216.255.0/24
set firewall group network-group sendToInternetGroup network 91.220.110.0/24
set firewall group network-group sendToInternetGroup network 92.43.192.0/21
set firewall group network-group sendToInternetGroup network 93.95.72.0/21
set firewall group network-group sendToInternetGroup network 93.95.224.0/21
set firewall group network-group sendToInternetGroup network 94.142.152.0/21
set firewall group network-group sendToInternetGroup network 94.198.48.0/23
set firewall group network-group sendToInternetGroup network 94.250.244.0/22
set firewall group network-group sendToInternetGroup network 128.140.232.0/21
set firewall group network-group sendToInternetGroup network 130.208.0.0/16
set firewall group network-group sendToInternetGroup network 139.28.0.0/22
set firewall group network-group sendToInternetGroup network 141.98.144.0/22
set firewall group network-group sendToInternetGroup network 147.78.128.0/22
set firewall group network-group sendToInternetGroup network 149.3.164.0/22
set firewall group network-group sendToInternetGroup network 149.126.80.0/21
set firewall group network-group sendToInternetGroup network 151.236.24.0/24
set firewall group network-group sendToInternetGroup network 153.92.128.0/19
set firewall group network-group sendToInternetGroup network 157.97.0.0/19
set firewall group network-group sendToInternetGroup network 157.157.0.0/16
set firewall group network-group sendToInternetGroup network 160.20.214.0/23
set firewall group network-group sendToInternetGroup network 160.210.0.0/16
set firewall group network-group sendToInternetGroup network 176.10.32.0/21
set firewall group network-group sendToInternetGroup network 176.57.224.0/20
set firewall group network-group sendToInternetGroup network 178.19.48.0/20
set firewall group network-group sendToInternetGroup network 178.248.16.0/21
set firewall group network-group sendToInternetGroup network 185.21.16.0/22
set firewall group network-group sendToInternetGroup network 185.24.0.0/22
set firewall group network-group sendToInternetGroup network 185.25.252.0/22
set firewall group network-group sendToInternetGroup network 185.27.36.0/22
set firewall group network-group sendToInternetGroup network 185.29.196.0/22
set firewall group network-group sendToInternetGroup network 185.30.184.0/22
set firewall group network-group sendToInternetGroup network 185.35.244.0/23
set firewall group network-group sendToInternetGroup network 185.40.120.0/22
set firewall group network-group sendToInternetGroup network 185.44.240.0/22
set firewall group network-group sendToInternetGroup network 185.56.12.0/22
set firewall group network-group sendToInternetGroup network 185.67.84.0/22
set firewall group network-group sendToInternetGroup network 185.67.180.0/22
set firewall group network-group sendToInternetGroup network 185.86.220.0/22
set firewall group network-group sendToInternetGroup network 185.93.156.0/22
set firewall group network-group sendToInternetGroup network 185.107.60.0/22
set firewall group network-group sendToInternetGroup network 185.109.100.0/22
set firewall group network-group sendToInternetGroup network 185.111.36.0/22
set firewall group network-group sendToInternetGroup network 185.112.144.0/22
set firewall group network-group sendToInternetGroup network 185.112.204.0/22
set firewall group network-group sendToInternetGroup network 185.118.32.0/22
set firewall group network-group sendToInternetGroup network 185.119.124.0/22
set firewall group network-group sendToInternetGroup network 185.123.196.0/22
set firewall group network-group sendToInternetGroup network 185.126.60.0/22
set firewall group network-group sendToInternetGroup network 185.138.172.0/22
set firewall group network-group sendToInternetGroup network 185.152.116.0/22
set firewall group network-group sendToInternetGroup network 185.154.116.0/22
set firewall group network-group sendToInternetGroup network 185.159.158.0/24
set firewall group network-group sendToInternetGroup network 185.169.188.0/23
set firewall group network-group sendToInternetGroup network 185.174.176.0/22
set firewall group network-group sendToInternetGroup network 185.177.132.0/22
set firewall group network-group sendToInternetGroup network 185.179.76.0/22
set firewall group network-group sendToInternetGroup network 185.191.232.0/22
set firewall group network-group sendToInternetGroup network 185.198.144.0/22
set firewall group network-group sendToInternetGroup network 185.202.180.0/22
set firewall group network-group sendToInternetGroup network 185.219.148.0/22
set firewall group network-group sendToInternetGroup network 185.221.176.0/22
set firewall group network-group sendToInternetGroup network 185.221.232.0/22
set firewall group network-group sendToInternetGroup network 185.240.40.0/22
set firewall group network-group sendToInternetGroup network 185.248.120.0/22
set firewall group network-group sendToInternetGroup network 192.30.37.0/24
set firewall group network-group sendToInternetGroup network 192.71.218.0/24
set firewall group network-group sendToInternetGroup network 192.147.34.0/24
set firewall group network-group sendToInternetGroup network 192.253.250.0/24
set firewall group network-group sendToInternetGroup network 193.4.0.0/16
set firewall group network-group sendToInternetGroup network 193.107.84.0/22
set firewall group network-group sendToInternetGroup network 193.109.16.0/20
set firewall group network-group sendToInternetGroup network 194.31.61.0/24
set firewall group network-group sendToInternetGroup network 194.105.224.0/19
set firewall group network-group sendToInternetGroup network 194.144.0.0/16
set firewall group network-group sendToInternetGroup network 195.130.193.0/24
set firewall group network-group sendToInternetGroup network 199.195.118.0/24
set firewall group network-group sendToInternetGroup network 212.30.192.0/18
set firewall group network-group sendToInternetGroup network 212.126.224.0/19
set firewall group network-group sendToInternetGroup network 213.167.128.0/19
set firewall group network-group sendToInternetGroup network 213.176.128.0/19
set firewall group network-group sendToInternetGroup network 213.181.96.0/19
set firewall group network-group sendToInternetGroup network 213.190.96.0/19
set firewall group network-group sendToInternetGroup network 213.213.128.0/19
set firewall group network-group sendToInternetGroup network 213.220.64.0/18
set firewall group network-group sendToInternetGroup network 217.9.128.0/20
set firewall group network-group sendToInternetGroup network 217.28.176.0/20
set firewall group network-group sendToInternetGroup network 217.151.160.0/19
set firewall group network-group sendToInternetGroup network 217.171.208.0/20
set interfaces openvpn vtun0 config-file /config/auth/express.ovpn
set interfaces openvpn vtun0 description 'ExpressVPN'
set firewall modify express_vpn_route rule 9 action modify
set firewall modify express_vpn_route rule 9 destination group network-group sendToInternetGroup
set firewall modify express_vpn_route rule 9 modify table main
set firewall modify express_vpn_route rule 10 description 'ExpressVPN'
set firewall modify express_vpn_route rule 10 source address 192.168.1.150-192.168.1.199
set firewall modify express_vpn_route rule 10 modify table 1
set protocols static table 1 interface-route 0.0.0.0/0 next-hop-interface vtun0
set interfaces switch switch0 firewall in modify express_vpn_route
set service nat rule 5001 description 'ExpressVPN'
set service nat rule 5001 log disable
set service nat rule 5001 outbound-interface vtun0
set service nat rule 5001 type masquerade
commit ; save
exit