Generate Server Config for Client
Run the following command on the Eagle server, make sure each of the following are unique:
- clientname = unique name for the client, keep it to the scheme (.e.g custX.vpn…)
- x.x.x.x = IP address of the Raspberry Pi tunnel interface
- y.y.y.y = IP address of the Modem (typically 192.168.1.1)
- z.z.z.z = IP address to access the modem
./configNetwork.sh clientname.vpn.karmacomputing.co.uk eagle.karmacomputing.co.uk x.x.x.x y.y.y.y 255.255.255.255 z.z.z.z
You’ll then need to copy this *.ovpn file somehow to the Pi. You can SCP it to your workstation, then use a memory key to transfer it to the Pi. After this, reboot the OpenVPN server.
systemctl restart openvpn@karma_server.service
Configure the Raspberry Pi
To get the Pi ready, run the configuration script by cloning and then running:
git clone https://github.com/wmcelderry/simplovpn.git
mv *filename*.ovpn ./
./pi_setup_script.sh *filename_without_.opvn* disabled
This will install the required services and the OpenVPN configuration file. To test that it’s worked correctly, run:
If ‘tun0’ is showing, with the chosen IP, you’re good to go. Attempt a echo ping from a workstation that is also connected to the VPN network, in this example the RPi is set to: 10.10.0.5
➜ ~ ping 10.10.0.5
PING 10.10.0.5 (10.10.0.5): 56 data bytes
92 bytes from 10.10.0.1: Redirect Host(New addr: 10.10.0.5)
Vr HL TOS Len ID Flg off TTL Pro cks Src Dst
4 5 00 0054 fd3b 0 0000 3f 01 6c52 10.10.254.2 10.10.0.5
64 bytes from 10.10.0.5: icmp_seq=0 ttl=63 time=64.422 ms
Attempt to access the modem webpage using the chosen modem access IP, in this example: 10.10.1.5.
If you see the modem configuration page, this guide finishes.
Image show is for X6200 broadband customers
Dongle has no connection to net
If the mobile dongle is not able to traceroute or ping 22.214.171.124 then check the SIM is still active and has credit.
Can access RPi, but not modem
If you can ping and SSH into RPi, check the eth0 port has an IP address and is up. If not, the modem is likely unplugged from the RPi or is turned off.
Can't ping RPi or Modem
Check your workstation is connected to VPN, on macOS TunnelBrick will show the following if the connection is live:
If you cannot connect to VPN, check workstation's connection to the Net and check the status of Eagle.
Cannot log into modem firmware
Check CRM for modem credentials, if correct but still not allowed access the customer may have changed or reset the modem. The modem's default password is available on support.karmacomputing.co.uk