sqrtminusone/dotfiles
1
0
Fork 0
mirror of https://github.com/SqrtMinusOne/dotfiles.git synced 2025-12-11 19:45:25 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix(guix): docs

Browse source
This commit is contained in:
Pavel Korytov 2022-08-31 21:04:13 +03:00
parent 4c52cf6e80
commit 86ed4185e1
1 changed files with 9 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
Guix.org
View file

@ -516,7 +516,7 @@ Don't forget to install =JetBrainsMono Nerd Font=.
I'm not sure how to properly spin up VPN on Guix, so here is what ended I'm doing after some trial and error. I'm not sure how to properly spin up VPN on Guix, so here is what ended I'm doing after some trial and error.
I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ovpn=), modified as follows: I'm using Mullvad VPN. The =~/.vpn= folder stores its OpenVPN config (=openvpn.ovpn=), modified as follows:
- paths to =ca=, =cert= and =key= are made absolute - paths to =ca=, =cert= and =key= are made absolute
#+begin_src conf-space :tangle no #+begin_src conf-space :tangle no
ca /home/pavel/.vpn/ca.crt ca /home/pavel/.vpn/ca.crt
@ -532,7 +532,7 @@ I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ov
login login
password password
#+end_src #+end_src
- Run [[https://github.com/alfredopalhares/openvpn-update-resolv-conf][openvpn-update-resolv-conf]] script to fix DNS. =openvpn-update-resolve-conf= originates in my [[https://github.com/SqrtMinusOne/channel-q][channel-q]]. - Run [[https://github.com/alfredopalhares/openvpn-update-resolv-conf][openvpn-update-resolv-conf]] script to prevent DNS leaks. =openvpn-update-resolve-conf= originates in my [[https://github.com/SqrtMinusOne/channel-q][channel-q]].
Edit <2022-04-07 Thu>: Looks like this doesn't work on some connections. See the next option in that case Edit <2022-04-07 Thu>: Looks like this doesn't work on some connections. See the next option in that case
@ -544,7 +544,7 @@ I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ov
#+end_src #+end_src
=setenv PATH= is necessary because both =resolvconf= (openresolve) and =update-resolv-conf.sh= are shell scripts which need GNU coreutils and stuff, and OpenVPN clears PATH by default. =setenv PATH= is necessary because both =resolvconf= (openresolve) and =update-resolv-conf.sh= are shell scripts which need GNU coreutils and stuff, and OpenVPN clears PATH by default.
- Fix =etc/resolv.conf= - Manually fix =etc/resolv.conf= to prevent DNS leaks
#+begin_src sh :tangle ~/bin/scripts/fix-resolve-conf #+begin_src sh :tangle ~/bin/scripts/fix-resolve-conf
cp /etc/resolv.conf /etc/resolv.conf-bak cp /etc/resolv.conf /etc/resolv.conf-bak
echo "nameserver 8.8.8.8" > /etc/resolv.conf echo "nameserver 8.8.8.8" > /etc/resolv.conf
@ -584,7 +584,9 @@ I'm using CyberGhost VPN. =~/.vpn= folder stores its OpenVPN config (=openvpn.ov
#+RESULTS: #+RESULTS:
*** vpn-start *** vpn-start
As of now, CyberGhost doesn't provide ipv6, so we have to disable it. +As of now, CyberGhost doesn't provide ipv6, so we have to disable it.+
Mullvad seems to provide it, so the script just launches =openvpn= with =pkexec=.
#+begin_src bash :tangle ~/bin/scripts/vpn-start #+begin_src bash :tangle ~/bin/scripts/vpn-start
export DISPLAY=:0 export DISPLAY=:0
@ -606,8 +608,9 @@ fi
pkexec openvpn --config ~/.vpn/mullvad_openvpn_linux_lv_rix/mullvad_lv_rix.conf pkexec openvpn --config ~/.vpn/mullvad_openvpn_linux_lv_rix/mullvad_lv_rix.conf
#+end_src #+end_src
*** vpn-stop *** +vpn-stop+
Also a script to reverse the changes. +Also a script to reverse the changes+
Also not necessary now. Just =herd stop vpn= and =sudo pkill vpn=.
#+begin_src bash :tangle ~/bin/scripts/vpn-stop #+begin_src bash :tangle ~/bin/scripts/vpn-stop
CONN=$(nmcli -f NAME con show --active | grep -Ev "(.*docker.*|NAME|br-.*|veth.*|tun.*)" | sed 's/ *$//g') CONN=$(nmcli -f NAME con show --active | grep -Ev "(.*docker.*|NAME|br-.*|veth.*|tun.*)" | sed 's/ *$//g')