From b68f7100c3fe43dfeae85b7c3813d1f9b49815db Mon Sep 17 00:00:00 2001 From: David JULIEN Date: Fri, 9 Apr 2021 11:15:38 +0200 Subject: [PATCH] feat: add vpn --- .config/paru/pkglist.txt | 3 + .config/vpn/servers/ch.protonvpn.com.udp.ovpn | 122 ++++++++++++++++++ .config/vpn/servers/de.protonvpn.com.udp.ovpn | 122 ++++++++++++++++++ 3 files changed, 247 insertions(+) create mode 100644 .config/vpn/servers/ch.protonvpn.com.udp.ovpn create mode 100644 .config/vpn/servers/de.protonvpn.com.udp.ovpn diff --git a/.config/paru/pkglist.txt b/.config/paru/pkglist.txt index 3e125f9..f12db19 100644 --- a/.config/paru/pkglist.txt +++ b/.config/paru/pkglist.txt @@ -35,6 +35,7 @@ grub gsasl gzip htop +iftop imagemagick isync iwd @@ -55,6 +56,8 @@ neomutt neovim nnn notmuch +openvpn +openvpn-update-systemd-resolved pacman pacman-contrib pam-gnupg diff --git a/.config/vpn/servers/ch.protonvpn.com.udp.ovpn b/.config/vpn/servers/ch.protonvpn.com.udp.ovpn new file mode 100644 index 0000000..e15016d --- /dev/null +++ b/.config/vpn/servers/ch.protonvpn.com.udp.ovpn @@ -0,0 +1,122 @@ +# ============================================================================== +# Copyright (c) 2016-2020 Proton Technologies AG (Switzerland) +# Email: contact@protonvpn.com +# +# The MIT License (MIT) +# +# Permission is hereby granted, free of charge, to any person obtaining a copy +# of this software and associated documentation files (the "Software"), to deal +# in the Software without restriction, including without limitation the rights +# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell +# copies of the Software, and to permit persons to whom the Software is +# furnished to do so, subject to the following conditions: +# +# The above copyright notice and this permission notice shall be included in all +# copies or substantial portions of the Software. +# +# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, +# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE +# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER +# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR # OTHERWISE, ARISING +# FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS +# IN THE SOFTWARE. +# ============================================================================== + +client +dev tun +proto udp + +remote ch.protonvpn.com 443 +remote ch.protonvpn.com 5060 +remote ch.protonvpn.com 4569 +remote ch.protonvpn.com 80 +remote ch.protonvpn.com 1194 + +remote-random +resolv-retry infinite +nobind +cipher AES-256-CBC +auth SHA512 +comp-lzo no +verb 3 + +setenv CLIENT_CERT 0 +tun-mtu 1500 +tun-mtu-extra 32 +mssfix 1450 +persist-key +persist-tun + +reneg-sec 0 + +remote-cert-tls server +#auth-user-pass +pull +fast-io + +script-security 2 +setenv PATH /usr/bin +up /etc/openvpn/scripts/update-systemd-resolved +down /etc/openvpn/scripts/update-systemd-resolved +down-pre +dhcp-option DOMAIN-ROUTE . + + +-----BEGIN CERTIFICATE----- +MIIFozCCA4ugAwIBAgIBATANBgkqhkiG9w0BAQ0FADBAMQswCQYDVQQGEwJDSDEV +MBMGA1UEChMMUHJvdG9uVlBOIEFHMRowGAYDVQQDExFQcm90b25WUE4gUm9vdCBD +QTAeFw0xNzAyMTUxNDM4MDBaFw0yNzAyMTUxNDM4MDBaMEAxCzAJBgNVBAYTAkNI +MRUwEwYDVQQKEwxQcm90b25WUE4gQUcxGjAYBgNVBAMTEVByb3RvblZQTiBSb290 +IENBMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAt+BsSsZg7+AuqTq7 +vDbPzfygtl9f8fLJqO4amsyOXlI7pquL5IsEZhpWyJIIvYybqS4s1/T7BbvHPLVE +wlrq8A5DBIXcfuXrBbKoYkmpICGc2u1KYVGOZ9A+PH9z4Tr6OXFfXRnsbZToie8t +2Xjv/dZDdUDAqeW89I/mXg3k5x08m2nfGCQDm4gCanN1r5MT7ge56z0MkY3FFGCO +qRwspIEUzu1ZqGSTkG1eQiOYIrdOF5cc7n2APyvBIcfvp/W3cpTOEmEBJ7/14RnX +nHo0fcx61Inx/6ZxzKkW8BMdGGQF3tF6u2M0FjVN0lLH9S0ul1TgoOS56yEJ34hr +JSRTqHuar3t/xdCbKFZjyXFZFNsXVvgJu34CNLrHHTGJj9jiUfFnxWQYMo9UNUd4 +a3PPG1HnbG7LAjlvj5JlJ5aqO5gshdnqb9uIQeR2CdzcCJgklwRGCyDT1pm7eoiv +WV19YBd81vKulLzgPavu3kRRe83yl29It2hwQ9FMs5w6ZV/X6ciTKo3etkX9nBD9 +ZzJPsGQsBUy7CzO1jK4W01+u3ItmQS+1s4xtcFxdFY8o/q1zoqBlxpe5MQIWN6Qa +lryiET74gMHE/S5WrPlsq/gehxsdgc6GDUXG4dk8vn6OUMa6wb5wRO3VXGEc67IY +m4mDFTYiPvLaFOxtndlUWuCruKcCAwEAAaOBpzCBpDAMBgNVHRMEBTADAQH/MB0G +A1UdDgQWBBSDkIaYhLVZTwyLNTetNB2qV0gkVDBoBgNVHSMEYTBfgBSDkIaYhLVZ +TwyLNTetNB2qV0gkVKFEpEIwQDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFByb3Rv +blZQTiBBRzEaMBgGA1UEAxMRUHJvdG9uVlBOIFJvb3QgQ0GCAQEwCwYDVR0PBAQD +AgEGMA0GCSqGSIb3DQEBDQUAA4ICAQCYr7LpvnfZXBCxVIVc2ea1fjxQ6vkTj0zM +htFs3qfeXpMRf+g1NAh4vv1UIwLsczilMt87SjpJ25pZPyS3O+/VlI9ceZMvtGXd +MGfXhTDp//zRoL1cbzSHee9tQlmEm1tKFxB0wfWd/inGRjZxpJCTQh8oc7CTziHZ +ufS+Jkfpc4Rasr31fl7mHhJahF1j/ka/OOWmFbiHBNjzmNWPQInJm+0ygFqij5qs +51OEvubR8yh5Mdq4TNuWhFuTxpqoJ87VKaSOx/Aefca44Etwcj4gHb7LThidw/ky +zysZiWjyrbfX/31RX7QanKiMk2RDtgZaWi/lMfsl5O+6E2lJ1vo4xv9pW8225B5X +eAeXHCfjV/vrrCFqeCprNF6a3Tn/LX6VNy3jbeC+167QagBOaoDA01XPOx7Odhsb +Gd7cJ5VkgyycZgLnT9zrChgwjx59JQosFEG1DsaAgHfpEl/N3YPJh68N7fwN41Cj +zsk39v6iZdfuet/sP7oiP5/gLmA/CIPNhdIYxaojbLjFPkftVjVPn49RqwqzJJPR +N8BOyb94yhQ7KO4F3IcLT/y/dsWitY0ZH4lCnAVV/v2YjWAWS3OWyC8BFx/Jmc3W +DK/yPwECUcPgHIeXiRjHnJt0Zcm23O2Q3RphpU+1SO3XixsXpOVOYP6rJIXW9bMZ +A1gTTlpi7A== +-----END CERTIFICATE----- + + +key-direction 1 + +# 2048 bit OpenVPN static key +-----BEGIN OpenVPN Static key V1----- +6acef03f62675b4b1bbd03e53b187727 +423cea742242106cb2916a8a4c829756 +3d22c7e5cef430b1103c6f66eb1fc5b3 +75a672f158e2e2e936c3faa48b035a6d +e17beaac23b5f03b10b868d53d03521d +8ba115059da777a60cbfd7b2c9c57472 +78a15b8f6e68a3ef7fd583ec9f398c8b +d4735dab40cbd1e3c62a822e97489186 +c30a0b48c7c38ea32ceb056d3fa5a710 +e10ccc7a0ddb363b08c3d2777a3395e1 +0c0b6080f56309192ab5aacd4b45f55d +a61fc77af39bd81a19218a79762c3386 +2df55785075f37d8c71dc8a42097ee43 +344739a0dd48d03025b0450cf1fb5e8c +aeb893d9a96d1f15519bb3c4dcb40ee3 +16672ea16c012664f8a9f11255518deb +-----END OpenVPN Static key V1----- + diff --git a/.config/vpn/servers/de.protonvpn.com.udp.ovpn b/.config/vpn/servers/de.protonvpn.com.udp.ovpn new file mode 100644 index 0000000..80d18ef --- /dev/null +++ b/.config/vpn/servers/de.protonvpn.com.udp.ovpn @@ -0,0 +1,122 @@ +# ============================================================================== +# Copyright (c) 2016-2020 Proton Technologies AG (Switzerland) +# Email: contact@protonvpn.com +# +# The MIT License (MIT) +# +# Permission is hereby granted, free of charge, to any person obtaining a copy +# of this software and associated documentation files (the "Software"), to deal +# in the Software without restriction, including without limitation the rights +# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell +# copies of the Software, and to permit persons to whom the Software is +# furnished to do so, subject to the following conditions: +# +# The above copyright notice and this permission notice shall be included in all +# copies or substantial portions of the Software. +# +# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, +# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE +# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER +# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR # OTHERWISE, ARISING +# FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS +# IN THE SOFTWARE. +# ============================================================================== + +client +dev tun +proto udp + +remote de.protonvpn.com 5060 +remote de.protonvpn.com 1194 +remote de.protonvpn.com 443 +remote de.protonvpn.com 80 +remote de.protonvpn.com 4569 + +remote-random +resolv-retry infinite +nobind +cipher AES-256-CBC +auth SHA512 +comp-lzo no +verb 3 + +setenv CLIENT_CERT 0 +tun-mtu 1500 +tun-mtu-extra 32 +mssfix 1450 +persist-key +persist-tun + +reneg-sec 0 + +remote-cert-tls server +#auth-user-pass +pull +fast-io + +script-security 2 +setenv PATH /usr/bin +up /etc/openvpn/scripts/update-systemd-resolved +down /etc/openvpn/scripts/update-systemd-resolved +down-pre +dhcp-option DOMAIN-ROUTE . + + +-----BEGIN CERTIFICATE----- +MIIFozCCA4ugAwIBAgIBATANBgkqhkiG9w0BAQ0FADBAMQswCQYDVQQGEwJDSDEV +MBMGA1UEChMMUHJvdG9uVlBOIEFHMRowGAYDVQQDExFQcm90b25WUE4gUm9vdCBD +QTAeFw0xNzAyMTUxNDM4MDBaFw0yNzAyMTUxNDM4MDBaMEAxCzAJBgNVBAYTAkNI +MRUwEwYDVQQKEwxQcm90b25WUE4gQUcxGjAYBgNVBAMTEVByb3RvblZQTiBSb290 +IENBMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAt+BsSsZg7+AuqTq7 +vDbPzfygtl9f8fLJqO4amsyOXlI7pquL5IsEZhpWyJIIvYybqS4s1/T7BbvHPLVE +wlrq8A5DBIXcfuXrBbKoYkmpICGc2u1KYVGOZ9A+PH9z4Tr6OXFfXRnsbZToie8t +2Xjv/dZDdUDAqeW89I/mXg3k5x08m2nfGCQDm4gCanN1r5MT7ge56z0MkY3FFGCO +qRwspIEUzu1ZqGSTkG1eQiOYIrdOF5cc7n2APyvBIcfvp/W3cpTOEmEBJ7/14RnX +nHo0fcx61Inx/6ZxzKkW8BMdGGQF3tF6u2M0FjVN0lLH9S0ul1TgoOS56yEJ34hr +JSRTqHuar3t/xdCbKFZjyXFZFNsXVvgJu34CNLrHHTGJj9jiUfFnxWQYMo9UNUd4 +a3PPG1HnbG7LAjlvj5JlJ5aqO5gshdnqb9uIQeR2CdzcCJgklwRGCyDT1pm7eoiv +WV19YBd81vKulLzgPavu3kRRe83yl29It2hwQ9FMs5w6ZV/X6ciTKo3etkX9nBD9 +ZzJPsGQsBUy7CzO1jK4W01+u3ItmQS+1s4xtcFxdFY8o/q1zoqBlxpe5MQIWN6Qa +lryiET74gMHE/S5WrPlsq/gehxsdgc6GDUXG4dk8vn6OUMa6wb5wRO3VXGEc67IY +m4mDFTYiPvLaFOxtndlUWuCruKcCAwEAAaOBpzCBpDAMBgNVHRMEBTADAQH/MB0G +A1UdDgQWBBSDkIaYhLVZTwyLNTetNB2qV0gkVDBoBgNVHSMEYTBfgBSDkIaYhLVZ +TwyLNTetNB2qV0gkVKFEpEIwQDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFByb3Rv +blZQTiBBRzEaMBgGA1UEAxMRUHJvdG9uVlBOIFJvb3QgQ0GCAQEwCwYDVR0PBAQD +AgEGMA0GCSqGSIb3DQEBDQUAA4ICAQCYr7LpvnfZXBCxVIVc2ea1fjxQ6vkTj0zM +htFs3qfeXpMRf+g1NAh4vv1UIwLsczilMt87SjpJ25pZPyS3O+/VlI9ceZMvtGXd +MGfXhTDp//zRoL1cbzSHee9tQlmEm1tKFxB0wfWd/inGRjZxpJCTQh8oc7CTziHZ +ufS+Jkfpc4Rasr31fl7mHhJahF1j/ka/OOWmFbiHBNjzmNWPQInJm+0ygFqij5qs +51OEvubR8yh5Mdq4TNuWhFuTxpqoJ87VKaSOx/Aefca44Etwcj4gHb7LThidw/ky +zysZiWjyrbfX/31RX7QanKiMk2RDtgZaWi/lMfsl5O+6E2lJ1vo4xv9pW8225B5X +eAeXHCfjV/vrrCFqeCprNF6a3Tn/LX6VNy3jbeC+167QagBOaoDA01XPOx7Odhsb +Gd7cJ5VkgyycZgLnT9zrChgwjx59JQosFEG1DsaAgHfpEl/N3YPJh68N7fwN41Cj +zsk39v6iZdfuet/sP7oiP5/gLmA/CIPNhdIYxaojbLjFPkftVjVPn49RqwqzJJPR +N8BOyb94yhQ7KO4F3IcLT/y/dsWitY0ZH4lCnAVV/v2YjWAWS3OWyC8BFx/Jmc3W +DK/yPwECUcPgHIeXiRjHnJt0Zcm23O2Q3RphpU+1SO3XixsXpOVOYP6rJIXW9bMZ +A1gTTlpi7A== +-----END CERTIFICATE----- + + +key-direction 1 + +# 2048 bit OpenVPN static key +-----BEGIN OpenVPN Static key V1----- +6acef03f62675b4b1bbd03e53b187727 +423cea742242106cb2916a8a4c829756 +3d22c7e5cef430b1103c6f66eb1fc5b3 +75a672f158e2e2e936c3faa48b035a6d +e17beaac23b5f03b10b868d53d03521d +8ba115059da777a60cbfd7b2c9c57472 +78a15b8f6e68a3ef7fd583ec9f398c8b +d4735dab40cbd1e3c62a822e97489186 +c30a0b48c7c38ea32ceb056d3fa5a710 +e10ccc7a0ddb363b08c3d2777a3395e1 +0c0b6080f56309192ab5aacd4b45f55d +a61fc77af39bd81a19218a79762c3386 +2df55785075f37d8c71dc8a42097ee43 +344739a0dd48d03025b0450cf1fb5e8c +aeb893d9a96d1f15519bb3c4dcb40ee3 +16672ea16c012664f8a9f11255518deb +-----END OpenVPN Static key V1----- +