利用免费的Amazon EC2搭建openvpn AS

Amazon EC2提供了一年的免费使用期,申请比较简单,关键是你要有美元信用卡(申请时会预授权扣1美元,之后返回),还有就是电话验证这个环节,amazon会给你验证码,然后打电话确认,不要担心你的蹩脚英语,你只要在手机上输入验证码即可。

具体搭建的方法可参考官方的guide文档:

http://docs.openvpn.net/how-to-tutorialsguides/virtual-platforms/amazon-ec2-appliance-ami-quick-start-guide/

注意以下几点:

1instance要选择micro,否则要付费的。

2、服务器地址建议选择东京,国内连日本节点速度比较快。

3、申请静态IP后,要尽快与instance挂钩。否则会一直扣钱直到你释放申请的IP

4、配置OpenVPN Access Server Setup Wizard参数时,可参考如下

Will this be the primary Access Server node?
(enter ‘no’ to configure as a backup or standby node)
> Press ENTER for default [yes]: yes

Please specify the network interface and IP address to be
used by the Admin Web UI:
(1) all interfaces: 0.0.0.0
(2) eth0: 172.31.9.245
Please enter the option number from the list above (1-2).
> Press Enter for default [2]: 1

Please specify the port number for the Admin Web UI.
> Press ENTER for default [943]: 943

Please specify the TCP port number for the OpenVPN Daemon
> Press ENTER for default [443]: 443

Should client traffic be routed by default through the VPN?
> Press ENTER for default [yes]: yes

Should client DNS traffic be routed by default through the VPN?
> Press ENTER for default [yes]: yes

Use local authentication via internal DB?
> Press ENTER for default [no]: no

Should private subnets be accessible to clients by default?
> Press ENTER for default [yes]: yes

To initially login to the Admin Web UI, you must use a
username and password that successfully authenticates you
with the host UNIX system (you can later modify the settings
so that RADIUS or LDAP is used for authentication instead).

You can login to the Admin Web UI as openvpn or specify
a different user account to use for this purpose.

Do you wish to login to the Admin UI as openvpn?
> Press ENTER for default [yes]: yes

> Please specify your OpenVPN-AS license key (or leave blank to specify later): leave blank

5、进入openvpn控制面板(https://申请的静态IP:943/admin),修改hostname为你申请的静态IP。建议修改DNSgoogleDNS8.8.8.88.8.4.4)。

You are free!

This entry was posted in IT相关 and tagged . Bookmark the permalink.

Leave a Reply

Your email address will not be published.

*