sqrtminusone/dotfiles
1
0
Fork 0
mirror of https://github.com/SqrtMinusOne/dotfiles.git synced 2025-12-10 19:23:03 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix(guix): docs

Browse source
This commit is contained in:
Pavel Korytov 2022-08-31 21:04:13 +03:00
parent 4c52cf6e80
commit 86ed4185e1
1 changed files with 9 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
Guix.org
View file

@ -516,7 +516,7 @@ Don't forget to install =JetBrainsMono Nerd Font=.
I'm not sure how to properly spin up VPN on Guix, so here is what ended I'm doing after some trial and error.
I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ovpn=), modified as follows:
I'm using Mullvad VPN. The =~/.vpn= folder stores its OpenVPN config (=openvpn.ovpn=), modified as follows:
- paths to =ca=, =cert= and =key= are made absolute
#+begin_src conf-space :tangle no
ca /home/pavel/.vpn/ca.crt
@ -532,7 +532,7 @@ I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ov
login
password
#+end_src
- Run [[https://github.com/alfredopalhares/openvpn-update-resolv-conf][openvpn-update-resolv-conf]] script to fix DNS. =openvpn-update-resolve-conf= originates in my [[https://github.com/SqrtMinusOne/channel-q][channel-q]].
- Run [[https://github.com/alfredopalhares/openvpn-update-resolv-conf][openvpn-update-resolv-conf]] script to prevent DNS leaks. =openvpn-update-resolve-conf= originates in my [[https://github.com/SqrtMinusOne/channel-q][channel-q]].
Edit <2022-04-07 Thu>: Looks like this doesn't work on some connections. See the next option in that case
@ -544,7 +544,7 @@ I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ov
#+end_src
=setenv PATH= is necessary because both =resolvconf= (openresolve) and =update-resolv-conf.sh= are shell scripts which need GNU coreutils and stuff, and OpenVPN clears PATH by default.
- Fix =etc/resolv.conf=
- Manually fix =etc/resolv.conf= to prevent DNS leaks
#+begin_src sh :tangle ~/bin/scripts/fix-resolve-conf
cp /etc/resolv.conf /etc/resolv.conf-bak
echo "nameserver 8.8.8.8" > /etc/resolv.conf
@ -584,7 +584,9 @@ I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ov
#+RESULTS:
*** vpn-start
As of now, CyberGhost doesn't provide ipv6, so we have to disable it.
+As of now, CyberGhost doesn't provide ipv6, so we have to disable it.+
Mullvad seems to provide it, so the script just launches =openvpn= with =pkexec=.
#+begin_src bash :tangle ~/bin/scripts/vpn-start
export DISPLAY=:0
@ -606,8 +608,9 @@ fi
pkexec openvpn --config ~/.vpn/mullvad_openvpn_linux_lv_rix/mullvad_lv_rix.conf
#+end_src
*** vpn-stop
Also a script to reverse the changes.
*** +vpn-stop+
+Also a script to reverse the changes+
Also not necessary now. Just =herd stop vpn= and =sudo pkill vpn=.
#+begin_src bash :tangle ~/bin/scripts/vpn-stop
CONN=$(nmcli -f NAME con show --active | grep -Ev "(.*docker.*|NAME|br-.*|veth.*|tun.*)" | sed 's/ *$//g')