{"id":409,"date":"2023-03-22T21:01:43","date_gmt":"2023-03-22T12:01:43","guid":{"rendered":"https:\/\/shoo-ka.haijiso.com\/?p=409"},"modified":"2023-12-06T07:41:49","modified_gmt":"2023-12-05T22:41:49","slug":"gl-inet%e6%a9%9f%e5%99%a8%e3%81%ab%e3%81%8a%e3%81%91%e3%82%8bopenvpn%e3%81%ae%e8%a9%b1","status":"publish","type":"post","link":"https:\/\/shoo-ka.haijiso.com\/?p=409","title":{"rendered":"GL.iNet\u6a5f\u5668\u306b\u304a\u3051\u308bOpenVPN\u306e\u8a71"},"content":{"rendered":"\n

2023.10.22\u8ffd\u8a18\u30fb2023.12.06\u4fee\u6b63<\/p>\n\n\n\n

\u5c11\u306a\u304f\u3068\u3082GL-MT300N-V2\uff08Mango\uff09\u306b\u3064\u3044\u3066\u306f9\u6708\u306b\u30d0\u30fc\u30b8\u30e7\u30f34.x\u306e\u03b2\u304c\u53d6\u308c\u3001stable\u30ea\u30ea\u30fc\u30b9\u3068\u306a\u3063\u305f\uff084.3.7\uff09\u3002GL.iNet\u306eWebUI\u3082\u65b0\u3057\u304f\u306a\u308a\u3001VPN\u30c0\u30c3\u30b7\u30e5\u30dc\u30fc\u30c9\u3067\u300c\u30b0\u30ed\u30fc\u30d0\u30eb\u30d7\u30ed\u30ad\u30b7\uff08\uff1d\u30b9\u30d7\u30ea\u30c3\u30c8\u30c8\u30f3\u30cd\u30ea\u30f3\u30b0\u3057\u306a\u3044\uff09\u300d\u300c\u30bf\u30fc\u30b2\u30c3\u30c8\u30c9\u30e1\u30a4\u30f3\u307e\u305f\u306fIP\uff08\uff1d\u30b9\u30d7\u30ea\u30c3\u30c8\u30c8\u30f3\u30cd\u30ea\u30f3\u30b0\u3059\u308b\uff09\u300d\u306e\u8a2d\u5b9a\u304c\u53ef\u80fd\u3068\u306a\u3063\u305f\u305f\u3081\u3001\u4ee5\u4e0b\u306e\u3088\u3046\u306a\u7d30\u5de5\u306f\u4e0d\u8981\u3068\u306a\u3063\u305f\u3002\u305f\u3060\u3057opvn\u30d5\u30a1\u30a4\u30eb\u306b\u304a\u3051\u308bredirect-gateway autolocal<\/kbd>\u306e\u8a2d\u5b9a\u306f\u76f8\u5909\u308f\u3089\u305a\u7121\u8996\u3059\u308b\u307f\u305f\u3044\u3002<\/p>\n\n\n\n

\n\n\n\n

\u4e00\u822c\u7684\u306aOpenVPN\u306e\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u5074\u306e\u8a2d\u5b9a\u3068\u3057\u3066\u3001<\/p>\n\n\n\n

redirect-gateway autolocal<\/code><\/pre>\n\n\n\n
\u3068\u8a2d\u5b9a\u3059\u308b\u3068\u5168\u3066\u306e\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u3092VPN\u7d4c\u7531\u306b\u3059\u308b\u306e\u3060\u3051\u3069\u3001\u4f7f\u9014\u306b\u3088\u3063\u3066\u305d\u3046\u3055\u305b\u305f\u3044\u5834\u5408\u3068\u305d\u3046\u3055\u305b\u305f\u304f\u306a\u3044\uff08\u30b9\u30d7\u30ea\u30c3\u30c8\u30c8\u30f3\u30cd\u30ea\u30f3\u30b0\u3055\u305b\u305f\u3044\uff09\u5834\u5408\u3068\u304c\u3042\u308b\u3068\u601d\u3046\u304c\u3001GL.iNet\u306e\u6a5f\u5668\uff08\u5c11\u306a\u304f\u3068\u3082GL-MT300N-V2\uff08Mango\uff09\u304a\u3088\u3073GL-XE300\uff08Puli\uff09\u306e\u3044\u305a\u308c\u3082\u30d0\u30fc\u30b8\u30e7\u30f33.215\u3002\u4ee5\u4e0b\u300cGL-MT300N-V2\u306a\u3069\u300d\uff09\u306f\u3053\u306e\u8a2d\u5b9a\u306e\u6709\u7121\u3092\u7121\u8996\u3057\u3066\u3001\u5e38\u306b\u5168\u3066\u306e\u30c8\u30e9\u30d5\u30a3\u30c3\u30af\u304cVPN\u7d4c\u7531\u3068\u306a\u308a\u3001\u30b9\u30d7\u30ea\u30c3\u30c8\u30c8\u30f3\u30cd\u30ea\u30f3\u30b0\u3067\u304d\u306a\u3044\u3002<\/p>\n\n\n\n
\u305d\u3082\u305d\u3082GL-MT300N-V2\u306a\u3069\u306f\u6700\u521d\u304b\u3089OpenVPN\u304c\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3055\u308c\u3066\u3044\u3066\u3001GL.iNet\u306eWebUI\u304b\u3089\uff08OpenWRT\u306eLuCI\u3067\u306a\u3044\u3068\u3044\u3046\u610f\u5473\uff09\u7c21\u5358\u306b\u8a2d\u5b9a\u3067\u304d\u308b\u3088\u3046\u306b\u306a\u3063\u3066\u3044\u308b\u304c\u3001\u7c21\u5358\u904e\u304e\u3066\u8a2d\u5b9a\u3067\u304d\u308b\u9805\u76ee\u304c\u307b\u307c\u306a\u3044\u3002<\/p>\n\n\n\n
\"\"<\/figure>\n\n\n\n
\u6700\u521d\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\uff08ovpn\u30d5\u30a1\u30a4\u30eb\uff09\u306b\u8d77\u56e0\u3059\u308b\u554f\u984c\u3060\u3068\u601d\u3044\u8fbc\u3093\u3067\u3044\u305f\u3053\u3068\u3068\u3001\u3053\u306e\u300c\u30b9\u30d7\u30ea\u30c3\u30c8\u30c8\u30f3\u30cd\u30ea\u30f3\u30b0\u300d\u3068\u3044\u3046\u8a00\u8449\u3092\u5fd8\u308c\u3066\u3044\u305f\u305f\u3081\u306b\u691c\u7d22\u3059\u308b\u306e\u306b\u96e3\u5100\u3057\u3066\u3044\u305f\u304c\u3001\u3084\u3063\u3071\u308a\u540c\u3058\u3053\u3068\u3092\u3084\u308d\u3046\u3068\u3057\u3066\u3044\u308b\u4eba\u304c\u3044\u305f\u3002<\/p>\n\n\n\n
\n
GL-MT300N-V2 as OpenVPN client need for Split Tunneling<\/a><\/p>\n<\/blockquote>\n\n\n\n
\u3053\u306e\u8a18\u4e8b\u3092\u66f8\u3044\u305f\u4eba\u304c\u3069\u3046\u3084\u3063\u3066\u8abf\u3079\u305f\u304b\u306f\u8a18\u4e8b\u3092\u8aad\u3093\u3067\u3082\u3089\u3046\u3068\u3057\u3066\u3001\u7d50\u8ad6\u7684\u306b\u306fSSH\u3068\u304b\u3067\u30ed\u30b0\u30a4\u30f3\u3057\u3001\u307e\u305a\/etc\/vpn.user<\/code>\u306eovpn_main()<\/code>\u95a2\u6570\u3092\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u30b3\u30e1\u30f3\u30c8\u30a2\u30a6\u30c8\u3059\u308b\uff08ip route<\/code>\u3068ipset<\/code>\u306e\u8a084\u884c\uff09\u3002<\/p>\n\n\n\n
ovpn_main() {\n        local ip\n        local host\n        local enable\n\n        eanble=$(uci get glconfig.openvpn.enable 2>\/dev\/null)\n        [ \"$eanble\" = \"1\" ] || return\n\n        # Load default rules\n        if [ \"$INTERFACE\" = \"ovpn\" ]; then\n                # add default rules and force to main table\n                [ -z \"$(ip route list | grep -E \"0.0.0.0\/1 (.) $DEVICE\" 2>\/dev\/null)\" ] && {\n                        # ip route add 0.0.0.0\/1 dev $DEVICE 2>\/dev\/null\n                        # ipset add mwan3_connected_v4 0.0.0.0\/1 2>\/dev\/null\n                }\n                [ -z \"$(ip route list | grep -E \"128.0.0.0\/1 (.) $DEVICE\" 2>\/dev\/null)\" ] && {\n                        # ip route add 128.0.0.0\/1 dev $DEVICE 2>\/dev\/null\n                        # ipset add mwan3_connected_v4 128.0.0.0\/1 2>\/dev\/null\n                }\n        fi<\/code><\/pre>\n\n\n\n
\u6b21\u306b\/etc\/init.d\/startvpn<\/code>\u306eovpn_firewall_start()<\/code>\u95a2\u6570\u306elan2wan_forwarding disable<\/code>\u3092\u30b3\u30e1\u30f3\u30c8\u30a2\u30a6\u30c8\u3059\u308b\u3002<\/p>\n\n\n\n
ovpn_firewall_start() {\n        set_ovpn_config add\n        # lan2wan_forwarding disable\n\n        uci commit firewall\n        \/etc\/init.d\/firewall reload\n        # flush old connecting\n        echo \" \"  >\/proc\/net\/nf_conntrack\n}<\/code><\/pre>\n\n\n\n
\u5143\u8a18\u4e8b\u306e\u4eba\u306f\u30ed\u30fc\u30ab\u30eb\u5074\u3092NAT\u3057\u305f\u304f\u306a\u3044\u305d\u3046\u306a\u306e\u3067\u8a71\u306e\u7d9a\u304d\u304c\u3042\u308b\u304c\u3001\u79c1\u306f\u3053\u308c\u3067\u6e80\u8db3\u306a\u306e\u3067\u3053\u3053\u307e\u3067\u3002<\/p>\n\n\n\n
(2023.03.22 – 2023.12.06)<\/p>\n","protected":false},"excerpt":{"rendered":"
2023.10.22\u8ffd\u8a18\u30fb2023.12.06\u4fee\u6b63 \u5c11\u306a\u304f\u3068\u3082GL-MT300N-V2\uff08Mango\uff09\u306b\u3064\u3044\u3066\u306f9\u6708\u306b\u30d0\u30fc\u30b8\u30e7\u30f34.x\u306e\u03b2\u304c\u53d6\u308c\u3001stable\u30ea\u30ea\u30fc\u30b9\u3068\u306a\u3063\u305f\uff084.3.7\uff09\u3002GL.iNet\u306eWebUI\u3082\u65b0\u3057 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[1],"tags":[],"class_list":["post-409","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=\/wp\/v2\/posts\/409","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=409"}],"version-history":[{"count":13,"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=\/wp\/v2\/posts\/409\/revisions"}],"predecessor-version":[{"id":546,"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=\/wp\/v2\/posts\/409\/revisions\/546"}],"wp:attachment":[{"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=409"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=409"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/shoo-ka.haijiso.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=409"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}