-
Notifications
You must be signed in to change notification settings - Fork 16
/
Copy pathsetup.sh
92 lines (73 loc) · 3.11 KB
/
setup.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
#!/bin/bash
#This script automatically sets your raspberry pi to tor access point.
RED='\033[0;31m'
GREEN='\033[0;32m'
YELLOW='\033[0;33m'
NC='\033[0m'
echo -e "This scripts:
${YELLOW}*${NC} Auto configure ${GREEN}Raspberry Pi Model 3${NC} as wifi router with Tor proxy.
${YELLOW}*${NC} Recommend : Run this script on ${GREEN}fresh installation of Raspbian${NC}.
${YELLOW}*${NC} The name of ethernet interface must be ${GREEN}eth0${NC}.
${YELLOW}*${NC} The name of wifi interface must be ${GREEN}wlan0${NC}."
# You should be running the script as root.
if [ `whoami` != "root" ]; then
echo -e "This script must be run as ${RED}root${NC}."
echo -e "Please type in ${GREEN}sudo !!${NC} to run as root."
exit 1
fi
echo -e "${GREEN}Updating...${NC}"
read -p "Press [y/n] to continue..." ans
if [ $ans == "y" ];then
apt-get update -y
fi
echo -e "${GREEN}Upgarding...${NC}"
read -p "Press [y/n] to continue..." ans
if [ $ans == "y" ];then
apt-get upgrade -y
fi
echo "Installing various packages..."
# Package information
# tor: for setting up the system using Tor
# isc-dhcp-server: This is required to allow the raspberry pi to give local ip to connecting devices.
# iptables-persistent: Saving the state of Iptables for restoring during bootup
# hostapd: sets up the wifi hotspot.
apt-get install -y tor hostapd isc-dhcp-server iptables-persistent
#Configuration change in DHCP server, make it authoritative so as to make it give IP address to connecting devices.
sed -e '/option domain-name "example.org";/ s/^#*/#/' -i /etc/dhcp/dhcpd.conf
sed -e '/option domain-name-servers ns1.example.org, ns2.example.org;/ s/^#*/#/' -i /etc/dhcp/dhcpd.conf
sed '/^#authoritative;/s/^#//' -i /etc/dhcp/dhcpd.conf
cat dhcp.config >> /etc/dhcp/dhcpd.conf
echo 'INTERFACESv4="wlan0"' > /etc/default/isc-dhcp-server
rm /var/run/dhcpd.pid
service isc-dhcp-server stop
service isc-dhcp-server start
#Assigning the static IP to the wlan interface
ifconfig wlan0 down
# Static IP configuration is stored in interfaces.config
cat interfaces.config > /etc/networks/interfaces
ifconfig wlan0 up
# copying the wifi hotspot config file to hostapd.conf
cat hostapd.config > /etc/hostapd/hostapd.conf
sed 'DAEMON_CONF="/etc/hostapd/hostapd.conf"' > /etc/default/hostapd
# Allow the Rpi to behave as NAT forwarder
echo 'net.ipv4.ip_forward=1' >> /etc/sysctl.conf
sh -c "echo 1 > /proc/sys/net/ipv4/ip_forward"
# Configure IP tables to forward all the traffic on wlan0 to tor service running on 9040 port.
cat tor.config > /etc/tor/torrc
iptables -F
iptables -t nat -F
iptables -t nat -A PREROUTING -i wlan0 -p tcp --dport 22 -j REDIRECT --to-ports 22
iptables -t nat -A PREROUTING -i wlan0 -p udp --dport 53 -j REDIRECT --to-ports 53
iptables -t nat -A PREROUTING -i wlan0 -p tcp --syn -j REDIRECT --to-ports 9040
iptables -t nat -L
# Saving the state of Iptables.
iptables-save > /etc/iptables/rules.v4
# Make IP tables ready to restore after bootup.
cat >> /etc/rc.local << EOF
iptables-restore < /etc/iptables.conf
EOF
touch /var/log/tor/notices.log
chown debian-tor /var/log/tor/notices.log
chmod 644 /var/log/tor/notices.log
service tor start
update-rc.d tor enable