On the website, under Products>Instances>Cloud Instance (the VPS you rented for this)>Settings>Firewall select the Firewall Group we created earlier, with the description you assigned yourself ( ).Ĭlick "Update Firewall Group" to apply the changes ( ). Then, you must attach the Firewall Group to the VPS for it to take affect.Source: Anywhere (or you can define a specific IP range if you want to limit access to your VPN web panel to only that range)Ĭreate a firewall rule to allow HTTP connections to the VPN web panel for LetsEncrypt SSL, if you want to specify a custom domain ( ).Source: Anywhere (or you can define a specific IP range if you want to limit access to your VPN to only that range)Ĭreate a firewall rule to allow HTTPS connections to the VPN web panel ( ).Port: 1337 (or whatever you decide to use as your VPN port).Source: My IP (or you can set this to Anywhere, but this will allow anyone to attempt to login to your server)Ĭreate a firewall rule for the VPN server IP ( )."VPN Firewall")Ĭreate a firewall rule to allow SSH connections to the VPS ( ). On the website, under Products>Firewall click the "Add Firewall Group" button ( ) and set the description to something related to VPN so you remember what it is for (ie. We will be using the one supplied by Vultr. Setup a firewall either in OS, or via the control panel of your VPS provider. Input and then confirm your desired new password ( ). At a bare minimum, you should change the supplied root password. This was provided to you in plain text through your provider's web panel and should be considered insecure until it is changed:Įnter 'passwd' in PuTTY and hit enter.Now that you're SSH'd into the server, while technically optional, we highly recommend setting up some basic security including: changing your root password, setting up a sudo user and blocking root from SSH login, and setting up a firewall.**OPTIONAL BUT RECOMMENDED**: Setup automatic security updates on your VPS:.Quickly update the server by running 'yum update -y' ( ) Update the server and setup automatic security updates.Then for password, copy and paste (paste in PuTTY by right clicking with your mouse) in the password supplied in your VPS provider's control panel ( ). You may be prompted about a "PuTTY Security Alert" with a message about the host key not being cached, this is normal, click Yes ( ).Īfter it prompts you with "login as:" enter 'root' You can find this in your VPS provider's control panel ( ). We will be using PuTTY because it's simple, but any SSH client will do: ( )Ĭopy the IP address assigned to your VPS into PuTTY, and click "Open" ( ). Once the VPS is running and ready, you'll need to get an SSH client so we can SSH into the VPS to setup the Pritunl VPN server.ĭownload, install and then launch the SSH client of your choice.Wait a few minutes for the VPS to deploy and start up - you should get an email once it is ready.This is one of the lightest-weight mainstream operating systems that Pritunl is compatible with right out of the box. Before you can do any installing, you must deploy a VPS from your chosen provider. For the purposes of this tutorial we will be using (LMG affiliate link), specifically their $3.50/month 1 core, 512MB of memory, 500GB of bandwidth plan (note: this plan is only available at their New York/New Jersey data center).Ĭreate an account at Vultr or your chosen VPS provider.ĭeploy a VPS at your desired tier and location, choosing Centos 7 as your operating system (it appears Pritunl does not yet support CentOS 8, although this may change).Stage 1 - VPS Install, Firewall, and Setup (before the video tutorial section): That's it - unless you intend to install Pritunl locally in which case you will need a system or VM to install CentOS onto.A credit card or PayPal account to rent a server with.Note: Image links will be coloured like this: (I still need to finish this, was posting at the end of the day and ran out of time D:) For the Name ID, use the primary email (the default).This is an accompanying guide for our recent video (currently on Floatplane) where we setup a DIY VPN server using Pritunl.For the Start URL, enter the address you'll use to log in to the Pritunl servers.For the ACS URL, use the default values.Edit these fields replacing the values with ones for your configuration environment, as listed below. On the Service provider details page, the ACS URL and Entity ID fields are automatically populated.Copy and save the SSO URL and the Entity ID.On the Google Identity Provider details page:. In the search results, hover over the Pritunl SAML app and click Select.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |