ShadowVPN is a fast, safe VPN based on libsodium. Designed for low end devices, i.e. OpenWRT routers.
For more details, check here.
ShadowVPN is currently beta and have much work to do. If you want a stable version, please come by here a few months later.
For Debian 7 and Ubuntu 12+, add the following line to /etc/apt/sources.list
deb http://shadowvpn.org/debian wheezy main Then
apt-get update apt-get install shadowvpn service shadowvpn restart Or see Build deb Package.
Currently Linux, FreeBSD and OS X are supported. Download a release and build. Do not clone the repo, since it's not stable. Make sure to set --sysconfdir=/etc. You'll find conf files under /etc.
# For Debian-based Linux sudo apt-get update sudo apt-get install build-essential automake libtool git -y ./configure --enable-static --sysconfdir=/etc make && sudo make install Download precompiled for OpenWRT Barrier Breaker.
Or build yourself: cd into SDK root, then
pushd package git clone https://github.com/clowwindy/ShadowVPN.git popd make menuconfig # select Network/ShadowVPN make V=s scp bin/xxx/ShadowVPN-xxx-xxx.ipk [email protected] # then log in your box and use opkg to install that ipk file See Build for Windows.
- You can find all the conf files under
/etc/shadowvpn. - For the client, edit
client.conf. - For the server, edit
server.conf. - Update
serverandpasswordin those files. - The script file specified by
upwill be executed after VPN is up. - The script file specified by
downwill be executed after VPN is down. - If you need to specify routing rules, modify those scripts. You'll see a placeholder at the end of those scripts.
- If you are using Windows, the IP address of TUN/TAP device
tunipis required to be specified in the conf file.
Notice ShadowVPN is a peer-to-peer VPN, which means you'll have one server for one client. If you have multiple clients, you should start multiple server instances, which can be controlled by different configuration files via -c argument. Make sure to use different IP for each instance in each up and down scripts.
Server:
sudo shadowvpn -c /etc/shadowvpn/server.conf -s start sudo shadowvpn -c /etc/shadowvpn/server.conf -s stop If you installed using apt-get, you can use sudo service shadowvpn start instead.
Client:
sudo shadowvpn -c /etc/shadowvpn/client.conf -s start sudo shadowvpn -c /etc/shadowvpn/client.conf -s stop Client(OpenWRT):
/etc/init.d/shadowvpn start /etc/init.d/shadowvpn stop You can also read LuCI Configuration.
You can find all the documentation in the wiki: https://github.com/clowwindy/ShadowVPN/wiki
MIT