{"id":465,"date":"2020-04-02T11:55:43","date_gmt":"2020-04-02T02:55:43","guid":{"rendered":"http:\/\/www.tkn.jp\/tknsys\/wordpress\/?p=465"},"modified":"2020-04-08T00:53:54","modified_gmt":"2020-04-07T15:53:54","slug":"pritunl-vpn%e7%92%b0%e5%a2%83%e3%81%ae%e6%a7%8b%e7%af%89%e6%89%8b%e9%a0%86","status":"publish","type":"post","link":"https:\/\/www.tkn.jp\/?p=465","title":{"rendered":"Pritunl VPN\u74b0\u5883\u306e\u69cb\u7bc9\u624b\u9806"},"content":{"rendered":"<h6>\u30b3\u30ed\u30ca\u306e\u5f71\u97ff\u3067\u30ea\u30e2\u30fc\u30c8\u63a5\u7d9a\u304c\u5fc5\u8981\u3068\u306a\u308a\u69cb\u7bc9\u3057\u305f\u969b\u306e\u30e1\u30e2\u3002<br \/>\u65e2\u5b58\u306e\u30bb\u30b0\u30e1\u30f3\u30c8\u306b\u900f\u904e\u7684\u306b\u30a2\u30af\u30bb\u30b9\u53ef\u80fd\u3068\u3059\u308b\u306e\u3067\u306f\u306a\u304f\u3001\u65b0\u3057\u3044\u4eee\u60f3\u306eVPN\u30bb\u30b0\u30e1\u30f3\u30c8\u3092\u751f\u6210\u3057\u3066\u3001\u305d\u306e\u30bb\u30b0\u30e1\u30f3\u30c8\u306b\u5fc5\u8981\u306a\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3092\u53c2\u52a0\u3055\u305b\u308b\u5f62\u3068\u306a\u308b\u3002<\/h6>\n<h2>Pritunl\u30b5\u30fc\u30d0\u69cb\u7bc9<\/h2>\n<h3>AWS\uff08\u6e96\u5099\uff09<\/h3>\n<ul>\n<li>EC2\u306eOS\uff1a\u3000Amazon Linux 2<\/li>\n<li>EC2\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u30bf\u30a4\u30d7\uff1a\u3000t3.micro<\/li>\n<li>\u30b9\u30c8\u30ec\u30fc\u30b8\uff1a\u30008GB<\/li>\n<li>ElasticIP\u4ed8\u4e0e\uff1a\u3000\u5fc5\u9808\uff08\u4ee5\u964d\u3001111.111.111.111\uff09<\/li>\n<li>\u30c9\u30e1\u30a4\u30f3\u8a2d\u5b9a\uff1a\u3000\u4efb\u610f<\/li>\n<li>\u30a4\u30f3\u30d0\u30a6\u30f3\u30c9\u30dd\u30fc\u30c8\u8a2d\u5b9a\n<ul>\n<li>TCP\u3000SSH\u3001HTTP\u3001HTTPS\u3000\u4fdd\u5b88\u4f5c\u696d\u3059\u308b\u5834\u6240\uff08\u81ea\u5b85\uff0f\u4f1a\u793e\uff09\u306eIP\u306e\u307f\u8a31\u53ef<\/li>\n<li>UDP\u300018055\u3000VPN\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u7528\uff08*\u5f8c\u307b\u3069Pritunl\u306eWeb\u8a2d\u5b9a\u753b\u9762\u3067\u8868\u793a\u3055\u308c\u308b\u756a\u53f7\uff09<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<h3>AWS\uff08EC2\u30b5\u30fc\u30d0\u69cb\u7bc9\uff09<\/h3>\n<ul>\n<li>SSH\u306b\u3066\u3001ec2-user\u3067\u30ed\u30b0\u30a4\u30f3<\/li>\n<li><a href=\"https:\/\/docs.pritunl.com\/docs\/installation#section-aws-install\">\u3053\u3053<\/a>\u3092\u53c2\u8003\u306bPritunl\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb(\u4ee5\u4e0b)<\/li>\n<\/ul>\n<blockquote>\n<p>sudo tee \/etc\/yum.repos.d\/mongodb-org-4.2.repo &lt;&lt; EOF<br \/>[mongodb-org-4.2]<br \/>name=MongoDB Repository<br \/>baseurl=<a href=\"https:\/\/repo.mongodb.org\/yum\/amazon\/2\/mongodb-org\/4.2\/x86_64\/\">https:\/\/repo.mongodb.org\/yum\/amazon\/2\/mongodb-org\/4.2\/x86_64\/<\/a><br \/>gpgcheck=1<br \/>enabled=1<br \/>gpgkey=<a href=\"https:\/\/www.mongodb.org\/static\/pgp\/server-4.2.asc\">https:\/\/www.mongodb.org\/static\/pgp\/server-4.2.asc<\/a><br \/>EOF<\/p>\n<p>sudo tee \/etc\/yum.repos.d\/pritunl.repo &lt;&lt; EOF<br \/>[pritunl]<br \/>name=Pritunl Repository<br \/>baseurl=<a href=\"https:\/\/repo.pritunl.com\/stable\/yum\/amazonlinux\/2\/\">https:\/\/repo.pritunl.com\/stable\/yum\/amazonlinux\/2\/<\/a><br \/>gpgcheck=1<br \/>enabled=1<br \/>EOF<\/p>\n<p>sudo rpm -Uvh <a href=\"https:\/\/dl.fedoraproject.org\/pub\/epel\/epel-release-latest-7.noarch.rpm\">https:\/\/dl.fedoraproject.org\/pub\/epel\/epel-release-latest-7.noarch.rpm<\/a><br \/>gpg &#8211;keyserver hkp:\/\/keyserver.ubuntu.com &#8211;recv-keys 7568D9BB55FF9E5287D586017AE645C0CF8E292A<br \/>gpg &#8211;armor &#8211;export 7568D9BB55FF9E5287D586017AE645C0CF8E292A &gt; key.tmp; sudo rpm &#8211;import key.tmp; rm -f key.tmp<br \/>sudo yum -y install pritunl mongodb-org<br \/>sudo systemctl start mongod pritunl<br \/>sudo systemctl enable mongod pritunl<\/p>\n<\/blockquote>\n<ul>\n<li>\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u30ad\u30fc\u3092\u4f5c\u6210<\/li>\n<\/ul>\n<blockquote>\n<p style=\"text-align: left;\">sudo pritunl setup-key<br \/>0602d77d26fe4b22a8330a8c13c00000\u3000\u306e\u3088\u3046\u306a\u30ad\u30fc\u304c\u8868\u793a\u3055\u308c\u308b<\/p>\n<\/blockquote>\n<ul>\n<li>\u30c7\u30d5\u30a9\u30eb\u30c8\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u4f5c\u6210<\/li>\n<\/ul>\n<blockquote>\n<p>sudo pritunl default-password<br \/>Administrator default password:<br \/>username: &#8220;pritunl&#8221;<br \/>password: &#8220;xxxxxxxxxxxxxx&#8221;<\/p>\n<\/blockquote>\n<h3>Pritunl \u30b3\u30f3\u30c8\u30ed\u30fc\u30eb\u753b\u9762\uff08\u521d\u671f\u8a2d\u5b9a\uff09<\/h3>\n<ul>\n<li>\u30d6\u30e9\u30a6\u30b6\u3067\u3001Pritunl\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u753b\u9762\u3092\u958b\u304d\u3001\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u30ad\u30fc\u3092\u5165\u529b\u3059\u308b\u3002<br \/><a href=\"https:\/\/111.111.111.111\/setup\">https:\/\/111.111.111.111\/setup<\/a><\/li>\n<li>\u5148\u7a0b\u751f\u6210\u3057\u305f\u3001\u30e6\u30fc\u30b6\u3001\u521d\u671f\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u5165\u529b\u3057\u30ed\u30b0\u30a4\u30f3\u3059\u308b\u3002<\/li>\n<li>Settings\u30c0\u30a4\u30a2\u30ed\u30b0\u304c\u8868\u793a\u3055\u308c\u308b\u306e\u3067New Password\u3001Lets Encrypt Domain(\u30c9\u30e1\u30a4\u30f3\u53d6\u5f97\u6642\u306e\u307f)\u306a\u3069\u3092\u8a2d\u5b9a\u3059\u308b\u3002<\/li>\n<li>\u30aa\u30fc\u30ac\u30ca\u30a4\u30bc\u30fc\u30b7\u30e7\u30f3\u4f5c\u6210\n<ul>\n<li>\u4e0a\u90e8\u30e1\u30cb\u30e5\u30fc\u306e\u3000Users\u3000\u3092\u30af\u30ea\u30c3\u30af<\/li>\n<li>Add Organization\u3000\u30dc\u30bf\u30f3\u3092\u30af\u30ea\u30c3\u30af<br \/>\u203b\u6700\u4f4e\u3053\u306e\u5358\u4f4d\u3067\u3001VPN\u306e\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u30bb\u30b0\u30e1\u30f3\u30c8\u3092\u5206\u3051\u308b\u3053\u3068\u3082\u53ef\u80fd<\/li>\n<\/ul>\n<\/li>\n<li>\u30e6\u30fc\u30b6\u4f5c\u6210\n<ul>\n<li>Add User\u3000\u30dc\u30bf\u30f3\u3092\u30af\u30ea\u30c3\u30af<\/li>\n<li>\u5bfe\u8c61\u30e6\u30fc\u30b6\u3092\u5168\u54e1\u5206\u4f5c\u6210<\/li>\n<li>Linux\u306e\u30d5\u30a1\u30a4\u30eb\u30b5\u30fc\u30d0\u3092\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u306b\u3059\u308b\u5834\u5408\u3001Pin\u3084\u30e1\u30fc\u30eb\u306f\u8a2d\u5b9a\u3057\u306a\u3044<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<table style=\"margin-left: 40px;\">\n<thead>\n<tr>\n<th>\u30a2\u30ab\u30a6\u30f3\u30c8\uff08\u534a\u89d2\uff09<\/th>\n<th>\u30e1\u30fc\u30eb<\/th>\n<th>PIN\uff08\u6574\u65706\u6587\u5b57\u4ee5\u4e0a\uff09<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>user1<\/td>\n<td>user1@hoge.jp<\/td>\n<td>123456<\/td>\n<\/tr>\n<tr>\n<td>user2<\/td>\n<td>user1@hoge.jp<\/td>\n<td>123456<\/td>\n<\/tr>\n<tr>\n<td>user3<\/td>\n<td>user3@hoge.jp<\/td>\n<td>123456<\/td>\n<\/tr>\n<tr>\n<td>linuxFileServer<\/td>\n<td>\u306a\u3057<\/td>\n<td>\u306a\u3057<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<ul>\n<li>\u30b5\u30fc\u30d0\u4f5c\u6210<br \/>Name\uff1a\u3000vpn\u306e\u540d\u79f0<br \/>UDP\uff1a\u300018055 \uff08\u81ea\u52d5\u3067\u8a2d\u5b9a\u3055\u308c\u308b\uff09<br \/>\u30bb\u30b0\u30e1\u30f3\u30c8\uff1a\u3000192.168.217.0\/24 \uff08\u81ea\u52d5\u3067\u8a2d\u5b9a\u3055\u308c\u308b\uff09<br \/>\u203bVPN\u30bb\u30b0\u30e1\u30f3\u30c8\u3092\u8907\u6570\u69cb\u7bc9\u3057\u305f\u3044\u5834\u5408\uff08\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u3092\u5206\u96e2\u3057\u305f\u3044\u5834\u5408\uff09\u306f\u8907\u6570\u4f5c\u6210\u3059\u308b\u3002<\/li>\n<li>\u30aa\u30fc\u30ac\u30ca\u30a4\u30bc\u30fc\u30b7\u30e7\u30f3\u3092\u30b5\u30fc\u30d0\u306b\u7d10\u4ed8\u3051\u308b\n<ul>\n<li>Attach Organization\u3000\u30dc\u30bf\u30f3\u3092\u30af\u30ea\u30c3\u30af<\/li>\n<li>\u30aa\u30fc\u30ac\u30ca\u30a4\u30bc\u30fc\u30b7\u30e7\u30f3\u3068\u30b5\u30fc\u30d0\u3092\u5165\u529b<\/li>\n<\/ul>\n<\/li>\n<li>\u30b5\u30fc\u30d0\u306e\u8d77\u52d5\n<ul>\n<li>\u5de6\u5074\u306e\u3000Start Server \u7dd1\u30dc\u30bf\u30f3\u3092\u30af\u30ea\u30c3\u30af<\/li>\n<li>\u53f3\u5074\u306e\u3000Status\u3000\u304c\u3000Online\u3000\u3068\u306a\u308c\u3070OK<\/li>\n<\/ul>\n<\/li>\n<li>\u5404\u30e6\u30fc\u30b6\u306e\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u3092\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9<br \/>\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u3057\u305f\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u3068\u3001\u5148\u7a0b\u8a2d\u5b9a\u3057\u305fPin\u3092\u3001\u5404\u30e6\u30fc\u30b6\u306b\u914d\u5e03\u3059\u308b\u3002\n<p class=\"alert\">\u3053\u306e\u30d5\u30a1\u30a4\u30eb\u3068Pin\u304c\u3042\u308c\u3070\u8ab0\u3067\u3082\u63a5\u7d9a\u3067\u304d\u3066\u3057\u307e\u3046\u70ba\u3001\u914d\u5e03\u306f\u53ef\u80fd\u306a\u9650\u308a\u5b89\u5168\u306a\u65b9\u6cd5\u3067\u884c\u3046\u3053\u3068\u3002\u307e\u305fPin\u306f\u53e3\u982d\u3067\u4f1d\u3048\u308b\u306a\u3069\u3059\u308b\u3053\u3068\u3002<\/p>\n<\/li>\n<\/ul>\n<h2>Windows\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u30a2\u30d7\u30ea\u306e\u5c0e\u5165<\/h2>\n<ul>\n<li><a href=\"https:\/\/client.pritunl.com\/\">\u3053\u3053<\/a>\u3088\u308a Pritunl.exe \u3092\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u3057\u3001\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb<\/li>\n<li>\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u8d77\u52d5<\/li>\n<li>\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u3092Import\uff08\u4e88\u3081\u3001Pritunl\u306e\u30e6\u30fc\u30b6\u4e00\u89a7\u753b\u9762\u306e\u53f3\u5074\u306e\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u30dc\u30bf\u30f3\u3067\u3001\u5404\u30e6\u30fc\u30b6\u306e.tar\u30d5\u30a1\u30a4\u30eb\u3092\u30c0\u30f3\u30ed\u30fc\u30c9\u3057\u3066\u304a\u304f\uff09<\/li>\n<li>\u53f3\u4e0a\u306e\u30cf\u30f3\u30d0\u30fc\u30ac\u30fc\u30e1\u30cb\u30e5\u30fc\u3088\u308a\u300cConnect\u300d<\/li>\n<li>Pin\u3092\u3044\u308c\u308c\u3070\u63a5\u7d9a\u5b8c\u4e86<\/li>\n<\/ul>\n<p class=\"info\" style=\"padding-left: 40px;\">\u30ea\u30e2\u30fc\u30c8\u30c7\u30b9\u30af\u30c8\u30c3\u30d7\u3092\u4f7f\u7528\u3059\u308b\u5834\u5408\u306f\u3001\u63a5\u7d9a\u5143\u30fb\u5148\u306e\uff12\u53f0\u306b\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u30a2\u30d7\u30ea\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u307e\u3059\u3002<br \/>\u307e\u305f\u3001\u65e2\u5b58\u306e\u30d5\u30a1\u30a4\u30eb\u30b5\u30fc\u30d0\u306b\u30a2\u30af\u30bb\u30b9\u3057\u305f\u3044\u5834\u5408\u306f\u3001\u30d5\u30a1\u30a4\u30eb\u30b5\u30fc\u30d0\u306b\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u307e\u3059\uff08\u6b21\u7ae0\u3092\u53c2\u7167\uff09<\/p>\n<h2>Linux\u30b5\u30fc\u30d0\u306bOpenVPN\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3092\u5c0e\u5165<\/h2>\n<p style=\"padding-left: 40px;\">\u30d5\u30a1\u30a4\u30eb\u30b5\u30fc\u30d0\u7b49\u3001Linux\u30de\u30b7\u30f3\u306b\u30a2\u30af\u30bb\u30b9\u3092\u884c\u3046\u5fc5\u8981\u304c\u3042\u308b\u5834\u5408\u306a\u3069\u306b\u5fc5\u8981\u3068\u306a\u308b\u3002<br \/>\u203b<a href=\"https:\/\/www.atmarkit.co.jp\/ait\/articles\/1603\/22\/news010_2.html\">\u3053\u3053<\/a>\u306e\u8a18\u4e8b\u306eclient\u5074\u306b\u3064\u3044\u3066\u306e\u307f\u53c2\u8003\u306b\u3055\u305b\u3066\u3044\u305f\u3060\u304d\u307e\u3057\u305f\u3002<\/p>\n<ul>\n<li>openvpn\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb<\/li>\n<\/ul>\n<blockquote>\n<p>yum install epel-release<br \/>yum install &#8211;enablerepo=epel openvpn<\/p>\n<\/blockquote>\n<ul>\n<li>client.conf\u306e\u4fee\u6b63<\/li>\n<\/ul>\n<blockquote>\n<p>cat \/usr\/share\/doc\/openvpn\/sample\/sample-config-files\/client.conf &gt; \/etc\/openvpn\/client.conf<br \/>vi \/etc\/openvpn\/client.conf<\/p>\n<\/blockquote>\n<p style=\"padding-left: 40px;\">\u4e0b\u8a18\u9805\u76ee\u3092\u5909\u66f4\u3057\u307e\u3059\u3002<br \/>remote 111.111.111.111 18055<br \/>ca \/etc\/openvpn\/ca<br \/>cert \/etc\/openvpn\/cert<br \/>key \/etc\/openvpn\/key<br \/>tls-auth \/etc\/openvpn\/ta 1<\/p>\n<ul>\n<li>\u4e0a\u8a18\u306e\uff14\u3064\u306e\u8a3c\u660e\u66f8(ca,cert,key,ta)\u306b\u5bfe\u5fdc\u3057\u305f\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u6210<br \/>Pritunl\u306e\u30e6\u30fc\u30b6\u4e00\u89a7\u753b\u9762\u304b\u3089\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u3057\u305f\u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\uff08tar\u30d5\u30a1\u30a4\u30eb\uff09\u3092LhaForge\u7b49\u306e\u30a2\u30fc\u30ab\u30a4\u30d0\u3067\u5c55\u958b\u3057\u3001\u5c55\u958b\u3055\u308c\u305f .ovpn\u30d5\u30a1\u30a4\u30eb\u3092\u3001\u30b5\u30af\u30e9\u30a8\u30c7\u30a3\u30bf\u7b49\u306e\u30c6\u30ad\u30b9\u30c8\u30a8\u30c7\u30a3\u30bf\u3067\u958b\u3044\u3066\u5207\u308a\u51fa\u3057\u3001\u30d5\u30a1\u30a4\u30eb\u5316\u3057\u307e\u3059\u3002<\/li>\n<\/ul>\n<blockquote>\n<p>&lt;ca&gt;\uff5e\u3053\u306e\u90e8\u5206\u3092\u30b3\u30d4\u30fc\u3057\u3066\u5358\u72ec\u306e\u30d5\u30a1\u30a4\u30eb ca \u306b\u3059\u308b\uff5e&lt;\/ca&gt;<\/p>\n<p>&lt;tls-auth&gt;\uff5e\u3053\u306e\u90e8\u5206\u3092\u30b3\u30d4\u30fc\u3057\u3066\u5358\u72ec\u306e\u30d5\u30a1\u30a4\u30eb ta \u306b\u3059\u308b\uff5e&lt;\/tls-auth&gt;<\/p>\n<p>&lt;cert&gt;\uff5e\u3053\u306e\u90e8\u5206\u3092\u30b3\u30d4\u30fc\u3057\u3066\u5358\u72ec\u306e\u30d5\u30a1\u30a4\u30eb cert\u306b \u3059\u308b\uff5e&lt;\/cert&gt;<\/p>\n<p>&lt;key&gt;\uff5e\u3053\u306e\u90e8\u5206\u3092\u30b3\u30d4\u30fc\u3057\u3066\u5358\u72ec\u306e\u30d5\u30a1\u30a4\u30eb key \u306b\u3059\u308b\uff5e&lt;\/key&gt;<\/p>\n<\/blockquote>\n<p style=\"padding-left: 40px;\">\u203bLinux\u3067\u3042\u308c\u3070\u3000<code><code>tar -xf user1.tar<\/code><\/code>\u3000\u306e\u3088\u3046\u306b\u30a2\u30fc\u30ab\u30a4\u30d6\u3092\u5c55\u958b\u3057\u3001\u5c55\u958b\u5f8c\u306eovpn\u30d5\u30a1\u30a4\u30eb\u3092\u3000<code><code><\/code><code>vi user1.ovpn<\/code><\/code>\u3000\u7b49\u3068\u3057\u3066\u30d5\u30a1\u30a4\u30eb\u5185\u306e\u30bf\u30b0\u3067\u56f2\u307e\u308c\u305f\u30c6\u30ad\u30b9\u30c8\u90e8\u5206\u3092\u5207\u308a\u51fa\u3057\u3066\u30d5\u30a1\u30a4\u30eb\u5316\u3057\u307e\u3059\u3002\u5c11\u3005\u9762\u5012\u306a\u306e\u3067\u3059\u304c\u3001\u3082\u3063\u3068\u826f\u3044\u65b9\u6cd5\u3092\u77e5\u3063\u3066\u3044\u308b\u65b9\u304c\u3044\u308c\u3070\u6559\u3048\u3066\u307b\u3057\u3044\u3067\u3059\u30fb\u30fb\u30fb<\/p>\n<ul>\n<li>VPN\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u63a5\u7d9a\u30c6\u30b9\u30c8<\/li>\n<\/ul>\n<blockquote>\n<p>openvpn \/etc\/openvpn\/client.conf<\/p>\n<\/blockquote>\n<p style=\"padding-left: 40px;\">\u63a5\u7d9a\u30ed\u30b0\u304c\u753b\u9762\u306b\u305a\u3089\u305a\u3089\u3068\u8868\u793a\u3055\u308c\u308b\u3002\u30a8\u30e9\u30fc\u306a\u3069\u304c\u306a\u3051\u308c\u3070OK\u3002<br \/>\u203b\u4ee5\u4e0b\u306e\u3088\u3046\u306aPin\u30a8\u30e9\u30fc\u306b\u306a\u308b\u5834\u5408\u306f\u3001\u5f53\u8a72\u30e6\u30fc\u30b6\u4f5c\u6210\u6642\u306bPin\u3092\u8a2d\u5b9a\u3057\u3066\u3044\u308b\u70ba\u3001Pin\u306e\u8a2d\u5b9a\u3092\u524a\u9664\u3057\u3066\u304f\u3060\u3055\u3044\u3002<\/p>\n<blockquote>\n<p>Mon Mar 30 02:03:30 2020 AUTH: Received control message:<br \/>AUTH_FAILED,CRV1:R:f52cbb8978cc402da249d2e00000003:bmls:Enter Pin<br \/>Mon Mar 30 02:03:30 2020 SIGTERM[soft,auth-failure] received, process exiting<\/p>\n<\/blockquote>\n<ul>\n<li>VPN\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u81ea\u52d5\u8d77\u52d5<\/li>\n<\/ul>\n<blockquote>\n<p>vi \/opt\/openvpn-client.sh<\/p>\n<\/blockquote>\n<pre style=\"padding-left: 40px;\"><code>#!\/bin\/bash  \nopenvpn \/etc\/openvpn\/client.conf  <\/code><\/pre>\n<blockquote>\n<p>chmod 755 \/opt\/openvpn-client.sh<br \/>vi \/etc\/systemd\/system\/openvpn-client.service<\/p>\n<\/blockquote>\n<pre style=\"padding-left: 40px;\"><code>[Unit]  \nDescription = OpenVPN-Client daemon  \n[Service]  \nExecStart = \/opt\/openvpn-client.sh  \nRestart = always  \nType = simple  \n[Install]  \nWantedBy=multi-user.target  <\/code><\/pre>\n<ul>\n<li>\u8d77\u52d5<\/li>\n<\/ul>\n<blockquote>\n<p>systemctl start openvpn-client<br \/>ps aux | grep openvpn<\/p>\n<\/blockquote>\n<p style=\"padding-left: 40px;\">\u4e0b\u8a18\u306e\u3088\u3046\u306a\u30d7\u30ed\u30bb\u30b9\u304c\u3042\u308c\u3070\u554f\u984c\u306a\u3044<br \/>root 862 0.0 0.1 23284 3420 ? Ss 3\u670831 0:00 \/bin\/bash \/opt\/openvpn-client.sh<br \/>root 867 0.0 0.4 56504 7976 ? S 3\u670831 0:05 openvpn \/etc\/openvpn\/client.conf<\/p>\n<ul>\n<li>\u81ea\u52d5\u8d77\u52d5<\/li>\n<\/ul>\n<blockquote>\n<p>systemctl enable openvpn-client<\/p>\n<\/blockquote>\n<ul>\n<li>\u30b5\u30fc\u30d0\u3092\u518d\u8d77\u52d5\u5f8c\u3057\u3070\u3089\u304f\u3057\u3066\u3001Pritunl \u30e6\u30fc\u30b6\u4e00\u89a7\u753b\u9762\u3067\u3001\u5f53\u8a72\u30b5\u30fc\u30d0\u304c\u63a5\u7d9a\u72b6\u614b\u3068\u306a\u3063\u3066\u3044\u308c\u3070OK<\/li>\n<\/ul>\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u30b3\u30ed\u30ca\u306e\u5f71\u97ff\u3067\u30ea\u30e2\u30fc\u30c8\u63a5\u7d9a\u304c\u5fc5\u8981\u3068\u306a\u308a\u69cb\u7bc9\u3057\u305f\u969b\u306e\u30e1\u30e2\u3002\u65e2\u5b58\u306e\u30bb\u30b0\u30e1\u30f3\u30c8\u306b\u900f\u904e\u7684\u306b\u30a2\u30af\u30bb\u30b9\u53ef\u80fd\u3068\u3059\u308b\u306e\u3067\u306f\u306a\u304f\u3001\u65b0\u3057\u3044\u4eee\u60f3\u306eVPN\u30bb\u30b0\u30e1\u30f3\u30c8\u3092\u751f\u6210\u3057\u3066\u3001\u305d\u306e\u30bb\u30b0\u30e1\u30f3\u30c8\u306b\u5fc5\u8981\u306a\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u3092\u53c2\u52a0\u3055\u305b\u308b\u5f62\u3068\u306a\u308b\u3002 Pritunl\u30b5\u30fc\u30d0\u69cb\u7bc9 AWS\uff08\u6e96\u5099\uff09 EC2\u306eOS\uff1a Amazon Linux 2 EC2\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u30bf\u30a4\u30d7\uff1a t3.micro \u30b9\u30c8\u30ec\u30fc\u30b8\uff1a 8GB ElasticIP\u4ed8\u4e0e\uff1a \u5fc5\u9808\uff08\u4ee5\u964d\u3001111.111.111.111\uff09 \u30c9\u30e1\u30a4\u30f3\u8a2d\u5b9a\uff1a \u4efb\u610f \u30a4\u30f3\u30d0\u30a6\u30f3\u30c9\u30dd\u30fc\u30c8\u8a2d\u5b9a TCP SSH\u3001HTTP\u3001HTTPS \u4fdd\u5b88\u4f5c\u696d\u3059\u308b\u5834\u6240\uff08\u81ea\u5b85\uff0f\u4f1a\u793e\uff09\u306eIP\u306e\u307f\u8a31\u53ef UDP 18055 VPN\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u7528\uff08*\u5f8c\u307b\u3069Pritunl\u306eWeb\u8a2d\u5b9a\u753b\u9762\u3067\u8868\u793a\u3055\u308c\u308b\u756a\u53f7\uff09 AWS\uff08EC2\u30b5\u30fc\u30d0\u69cb\u7bc9\uff09 SSH\u306b\u3066\u3001ec2-user\u3067\u30ed\u30b0\u30a4\u30f3 \u3053\u3053\u3092\u53c2\u8003\u306bPritunl\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb(\u4ee5\u4e0b) <\/p>\n<p>sudo tee \/etc\/yum.repos.d\/mongodb-org-4.2.repo &lt;&lt; EOF[mongodb-org-4.2]name=MongoDB Repositorybaseurl=https:\/\/repo.mongodb.org\/yum\/amazon\/2\/mongodb-org\/4.2\/x86_64\/gpgcheck=1enabled=1gpgkey=https:\/\/www.mongodb.org\/static\/pgp\/server-4.2.ascEOF<\/p>\n<p>sudo tee \/etc\/yum.repos.d\/pritunl.repo &lt;&lt; EOF[pritunl]name=Pritunl Repositorybaseurl=https:\/\/repo.pritunl.com\/stable\/yum\/amazonlinux\/2\/gpgcheck=1enabled=1EOF<\/p>\n<p>sudo rpm -Uvh https:\/\/dl.fedoraproject.org\/pub\/epel\/epel-release-latest-7.noarch.rpmgpg &#8211;keyserver hkp:\/\/keyserver.ubuntu.com &#8211;recv-keys 7568D9BB55FF9E5287D586017AE645C0CF8E292Agpg &#8211;armor &#8211;export 7568D9BB55FF9E5287D586017AE645C0CF8E292A &gt; key.tmp; sudo rpm &#8211;import key.tmp; rm [&#8230;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[],"class_list":["post-465","post","type-post","status-publish","format-standard","hentry","category-centos","odd"],"_links":{"self":[{"href":"https:\/\/www.tkn.jp\/index.php?rest_route=\/wp\/v2\/posts\/465","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.tkn.jp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.tkn.jp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.tkn.jp\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tkn.jp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=465"}],"version-history":[{"count":23,"href":"https:\/\/www.tkn.jp\/index.php?rest_route=\/wp\/v2\/posts\/465\/revisions"}],"predecessor-version":[{"id":485,"href":"https:\/\/www.tkn.jp\/index.php?rest_route=\/wp\/v2\/posts\/465\/revisions\/485"}],"wp:attachment":[{"href":"https:\/\/www.tkn.jp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=465"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.tkn.jp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=465"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.tkn.jp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=465"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}