這是本文件的舊版!

[Draft]安裝 ovpn-admin (OpenVPN + 簡易 WebUI) 方案

  • 雖然已找到 DockOVPN (OpenVPN Docker方案), 但還是希望能找到有 WebUI 可方便管理 VPN 帳號的方案
  • 安裝環境
    • VM : 2 vCore, 2G RAM, 32G SSD
    • OS : Alpine 3.19 + Docker Compose
  • 規劃環境
    • OpenVPN 內部網路 : 10.16.0.0/24
    • 外部聯入 VPN : vpn.mydomain.com TCP Port 443

安裝設定

  1. Alpine 3.19 Kernel 啟用 ip_tables

    modprobe ip_tables
echo 'ip_tables' >> /etc/modules
reboot

  2. 編輯 docker-compose.yml 
    services:
  openvpn:
    image: flant/ovpn-admin:openvpn-latest
    command: /etc/openvpn/setup/configure.sh
    environment:
      OVPN_SERVER_NET: "10.16.0.0"
      OVPN_SERVER_MASK: "255.255.255.0"
      OVPN_PASSWD_AUTH: "true"
    cap_add:
      - NET_ADMIN
    ports:
      - 443:1194 # for openvpn
      - 8080:8080 # for ovpn-admin because of network_mode
    volumes:
      - ./easyrsa_master:/etc/openvpn/easyrsa
      - ./ccd_master:/etc/openvpn/ccd
  ovpn-admin:
    image: flant/ovpn-admin
    command: /app/ovpn-admin
    environment:
      OVPN_DEBUG: "true"
      OVPN_VERBOSE: "true"
      OVPN_NETWORK: "10.16.0.0/24"
      OVPN_CCD: "true"
      OVPN_CCD_PATH: "/mnt/ccd"
      EASYRSA_PATH: "/mnt/easyrsa"
      OVPN_SERVER: "vpn.mydomain.com:443:tcp"
      OVPN_INDEX_PATH: "/mnt/easyrsa/pki/index.txt"
      OVPN_AUTH: "true"
      OVPN_AUTH_DB_PATH: "/mnt/easyrsa/pki/users.db"
      LOG_LEVEL: "debug"
    network_mode: service:openvpn
    volumes:
      - ./easyrsa_master:/mnt/easyrsa
      - ./ccd_master:/mnt/ccd

參考網址

  • tech/ovpn-admin.1719223223.txt.gz
  • 上一次變更: 2024/06/24 18:00
  • jonathan