Comments (12)
Yes, you have to download the client configuration from the OpenVPN (or Wireguard) config generator and place it in the corresponding directory (e.g. /etc/openvpn) and start the VPN tunnel. Whether your computer acts as a client or server just depends on the config file.
Is there any unclear or confusing part in particular?
If you want to set up a VPN server you should take a look at PiVPN.
from private-lan.
Thanks for a real quick answer @Trigus42!
I've downloaded (from: Windscribe)
- Config file
- A zip containing: ca.crt, ta.key
I just want pi.hole to redirect all my traffic via WindScribe VPN. Please guide!
from private-lan.
You don't need the zip file with the certificate and key.
You just have to place the file into the directory /etc/openvpn/ and change the file extension to .conf (instead of .ovpn).
PS: If there is no reason to use OpenVPN I would recommend using Wireguard as you will get better speeds on a device with relatively low performance such as a Raspberry Pi.
from private-lan.
I got your point!
Yes I'm not bound to use OpenVPN. I'll try switching to Wireguard. Here's my home infra:
- Pi-hole running on a Raspberry Pi 4 (8GB), within a docker container
- Speed 200mpbs
You're amazing!
from private-lan.
Thanks. Is the issue if it is resolved for you, then?
from private-lan.
Just starting on setting up wireguard, and then will follow further steps to hook pi hole with it
Sorry! I don't understand much of the network stuffs.
from private-lan.
systemctl enable wg-quick@wg0
ERROR:systemctl:Unit [email protected] could not be found.
wg-quick up wg0
[#] ip link add wg0 type wireguard
RTNETLINK answers: Operation not permitted
Unable to access interface: Protocol not supported
[#] ip link delete dev wg0
Cannot find device "wg0"
from private-lan.
iptables -A FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
getsockopt failed strangely: Operation not permitted
from private-lan.
Will it be a good idea to run this whole setup on the host itself and not within a docker container?
from private-lan.
"service could not be found" | Protocol not supported
Have you installed Wireguard? Is the Wireguard module loaded (in your container)?
Check with lsmod | grep wireguard
.
The output should look something like this:
Operation not permitted
Are you running all commands as root? Maybe try starting the docker container with the option --privileged
?
Will it be a good idea to run this whole setup on the host itself and not within a docker container?
If it's possible, I would recommend it since I haven't tested it with docker and I also don't have much experience with docker.
from private-lan.
Yes docker was running with --privileged.
However, composed it off already and moved to host. And I'm gonna follow everything from scratch. I don't wanna complicate stuffs at this level of traffic. Docker would probably good idea for other applications.
Thank you again!
from private-lan.
FYI - the problem was that wireguard module wasn't loaded, and required linux-header update. I followed the solution (end of the page) from here: adrianmihalko/raspberrypiwireguard#11
from private-lan.
Related Issues (1)
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from private-lan.