Recently I set up a L2TP/IPsec VPN on my Arch Linux machine and there were so many different config files to keep track of with IP addresses, user names, passwords, etc. scattered through them. There's no way I was going to remember how to set all that up and guides I used might go offline so... I wrote a script to do it for me next time.
- strongswan
- xl2tpd
I wrote this for my Arch Linux machine so the script uses systemd to start these services and writes config files to where Arch keeps them.
Set the following environment variables to match the L2TP/IPSec VPN that you're connecting to.
TARGET_IP_RANGES means a space separated list of CIDR notation of the destination IP range you wish to route through the VPN tunnel.
TARGET_DOMAINS means a space separated list of domain names you wish to route through the VPN. For example if you want all connections to www.example.com to go through the VPN, you would add that domain here.
The rest should be self explanatory.
You can also put these in another file and pass that as an argument.
- L2TP_SERVER_IP
- L2TP_USER_NAME
- L2TP_PASSWORD
- IPSEC_PRE_SHARED_KEY
- TARGET_IP_RANGES
- TARGET_DOMAINS