PiVPN
The simplest way to setup and manage a VPN,
designed for Raspberry Pi™.
install
It is recommended to install Pi-hole first as it automates DNS routing upon installing PiVPN
Important
don't forget to set boot option to wait for network (i.e. raspi-config)
updating
run pivpn update
VPN protocols are updated via system package manager
backup
also a backup of Pi-hole
#! /bin/bash
DATE=`date +%Y-%m-%d`
echo '======================' > backup.log
echo $DATE >> backup.log
if pihole -a -t\
&& mv /home/pi4/scripts/backup/pi-hole-rpi-teleporter* /home/pi4/scripts/backup/pihole\
; then
echo 'pihole SUCCESS' >> backup.log
else
echo 'pihole failed' >> backup.log
fi
if pivpn -bk\
&& sudo mv /home/pi4/pivpnbackup/* /home/pi4/scripts/backup/pivpn\
; then
echo 'pivpn SUCCESS' >> backup.log
else
echo 'pivpn failed' >> backup.log
fi
Migrating PiVPN & Wireguard
Backup your server with pivpn -bk copy the tar archive to your computer. example using scp on Linux:
scp <user>@<server>:~/pivpnbackup/<archivename> <path/on/local>
- Backup the current (new instance) install:
sudo cp -r /etc/wireguard /etc/new_wireguard_backup - Extract the backup archive:
tar xzpfv <archive name> - Copy the extracted content:
sudo cp -r etc/wireguard /etc - Restart the wireguard service:
sudo systemctl restart wg-quick@wg0
tunnels connecting but no internet after reinstall
sudo cat /etc/wireguard/wg0.conf
sudo iptables -t nat -A POSTROUTING -s <FIRST_IP_IN_CONF>/<#> -o eth0 -j MASQUERADE
then turn off and on the tunnel
Port UDP (and TCP too maybe idk)
connections
No internet browsing when connected
# debug help
pivpn -d
:::: Self check ::::
:: [OK] IP forwarding is enabled
:: [OK] Ufw is enabled
:: [ERR] Iptables MASQUERADE rule is not set, attempt fix now? [Y/n] Y
Firewall reloaded
Done
:: [OK] Ufw input rule set
:: [ERR] Ufw forwarding rule is not set, attempt fix now? [Y/n] Y
Install PiVPN on non supported platforms like Linux Mint
cat /etc/os-release
UBUNTU_CODENAME=jammy
curl https://raw.githubusercontent.com/pivpn/pivpn/master/auto_install/install.sh > pivpn-installer.sh
nano pivpn-installer.sh
pivpn-installer.sh
...
distroCheck(){
# if lsb_release command is on their system
if command -v lsb_release > /dev/null; then
PLAT=$(lsb_release -si)
OSCN=$(lsb_release -sc)
else # else get info from os-release
# shellcheck disable=SC1091
source /etc/os-release
PLAT=$(awk '{print $1}' <<< "$NAME")
VER="$VERSION_ID"
declare -A VER_MAP=(["9"]="stretch" ["10"]="buster" ["16.04"]="xenial" ["18.04"]="bionic")
OSCN=${VER_MAP["${VER}"]}
fi
## !👇 HERE
OSCN="jammy"
PLAT="Ubuntu"
if [ "$PLAT" = "Debian" ] || [ "$PLAT" = "Ubuntu" ]; then
DPKG_ARCH="$(dpkg --print-architecture)"
if [ "$DPKG_ARCH" = "amd64" ] || [ "$DPKG_ARCH" = "i386" ]; then
X86_SYSTEM=1
else
X86_SYSTEM=0
fi
fi
...
sudo chmod +x pivpn-installer.sh