Home Explore Help
Sign In
irwanmohi
/
autotunnel
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
autotunnel
/
VPSJanda.sh

VPSJanda.sh 12 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313 
  1. #!/bin/bash
    2. 

  2. #
    3. 

  3. # Original script by fornesia, rzengineer and fawzya 
    4. 

  4. # Mod by Janda Baper Group for Adding OCS Panel
    5. 

  5. # 
    6. 

  6. # ==================================================
    7. 

  7. 

  8. MYIP=$(wget -qO- ipv4.icanhazip.com);
    9. 

  9. : '
    10. 

  10. # check registered ip
    11. 

  11. wget -q -O daftarip http://188.166.215.119:85/ocs/ip.txt
    12. 

  12. if ! grep -w -q $MYIP daftarip; then
    13. 

  13. 	echo "Sorry, only registered IPs can use this script!"
    14. 

  14. 	if [[ $vps = "vps" ]]; then
    15. 

  15. 		echo "Powered by Clrkz"
    16. 

  16. 	else
    17. 

  17. 		echo "Powered by Clrkz"
    18. 

  18. 	fi
    19. 

  19. 	rm -f /root/daftarip
    20. 

  20. 	exit
    21. 

  21. fi
    22. 

  22. '
    23. 

  23. # initialisasi var
    24. 

  24. export DEBIAN_FRONTEND=noninteractive
    25. 

  25. OS=`uname -m`;
    26. 

  26. MYIP=$(wget -qO- ipv4.icanhazip.com);
    27. 

  27. MYIP2="s/xxxxxxxxx/$MYIP/g";
    28. 

  28. 

  29. #detail nama perusahaan
    30. 

  30. country=ID
    31. 

  31. state=Manila
    32. 

  32. locality=Manila
    33. 

  33. organization=ByteHAX
    34. 

  34. organizationalunit=IT
    35. 

  35. commonname=bytehax.blogspot.com
    36. 

  36. email=143Clarkz@gmail.com
    37. 

  37. 

  38. # go to root
    39. 

  39. cd
    40. 

  40. 

  41. # disable ipv6
    42. 

  42. echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6
    43. 

  43. sed -i '$ i\echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6' /etc/rc.local
    44. 

  44. 

  45. # install wget and curl
    46. 

  46. apt-get update;apt-get -y install wget curl;
    47. 

  47. 

  48. # set time GMT +7
    49. 

  49. ln -fs /usr/share/zoneinfo/Asia/Manila /etc/localtime
    50. 

  50. 

  51. # set locale
    52. 

  52. sed -i 's/AcceptEnv/#AcceptEnv/g' /etc/ssh/sshd_config
    53. 

  53. service ssh restart
    54. 

  54. 

  55. # set repo
    56. 

  56. wget -O /etc/apt/sources.list "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/sources.list.debian7"
    57. 

  57. wget "http://www.dotdeb.org/dotdeb.gpg"
    58. 

  58. cat dotdeb.gpg | apt-key add -;rm dotdeb.gpg
    59. 

  59. sh -c 'echo "deb http://download.webmin.com/download/repository sarge contrib" > /etc/apt/sources.list.d/webmin.list'
    60. 

  60. wget -qO - http://www.webmin.com/jcameron-key.asc | apt-key add -
    61. 

  61. 

  62. # update
    63. 

  63. apt-get update
    64. 

  64. 

  65. # install webserver
    66. 

  66. apt-get -y install nginx
    67. 

  67. 

  68. # install essential package
    69. 

  69. apt-get -y install nano iptables dnsutils openvpn screen whois ngrep unzip unrar
    70. 

  70. 

  71. echo "clear" >> .bashrc
    72. 

  72. echo 'echo -e "      # ###       ###                  /"' >> .bashrc
    73. 

  73. echo 'echo -e "    /  /###  /     ###               #/"' >> .bashrc
    74. 

  74. echo 'echo -e "   /  /  ###/       ##               ##"' >> .bashrc
    75. 

  75. echo 'echo -e "  /  ##   ##        ##               ##"' >> .bashrc
    76. 

  76. echo 'echo -e " /  ###             ##               ##"' >> .bashrc
    77. 

  77. echo 'echo -e "##   ##             ##  ###  /###    ##  /##   ######"' >> .bashrc
    78. 

  78. echo 'echo -e "##   ##             ##   ###/ #### / ## / ### /#######"' >> .bashrc
    79. 

  79. echo 'echo -e "##   ##             ##    ##   ###/  ##/   / /      ##"' >> .bashrc
    80. 

  80. echo 'echo -e "##   ##             ##    ##         ##   /         /"' >> .bashrc
    81. 

  81. echo 'echo -e "##   ##             ##    ##         ##  /         /"' >> .bashrc
    82. 

  82. echo 'echo -e " ##  ##             ##    ##         ## ##        ###"' >> .bashrc
    83. 

  83. echo 'echo -e "  ## #      /       ##    ##         ######        ###"' >> .bashrc
    84. 

  84. echo 'echo -e "   ###     /        ##    ##         ##  ###        ###"' >> .bashrc
    85. 

  85. echo 'echo -e "    ######/         ### / ###        ##   ### /      ##"' >> .bashrc
    86. 

  86. echo 'echo -e "      ###            ##/   ###        ##   ##/       ##"' >> .bashrc
    87. 

  87. echo 'echo -e "                                                     /"' >> .bashrc
    88. 

  88. echo 'echo -e "                                                    /"' >> .bashrc
    89. 

  89. echo 'echo -e "                                                   /"' >> .bashrc
    90. 

  90. echo 'echo -e "                                                  /"' >> .bashrc
    91. 

  91. echo 'echo -e "welcome to the server $HOSTNAME" | lolcat' >> .bashrc
    92. 

  92. echo 'echo -e "Script mod by Clrkz"' >> .bashrc
    93. 

  93. echo 'echo -e "Type menu to display a list of commands"' >> .bashrc
    94. 

  94. echo 'echo -e ""' >> .bashrc
    95. 

  95. 

  96. # install webserver
    97. 

  97. cd
    98. 

  98. rm /etc/nginx/sites-enabled/default
    99. 

  99. rm /etc/nginx/sites-available/default
    100. 

  100. wget -O /etc/nginx/nginx.conf "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/nginx.conf"
    101. 

  101. mkdir -p /home/vps/public_html
    102. 

  102. echo "<pre>Setup by Clrkz</pre>" > /home/vps/public_html/index.html
    103. 

  103. wget -O /etc/nginx/conf.d/vps.conf "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/vps.conf"
    104. 

  104. service nginx restart
    105. 

  105. 

  106. # install openvpn
    107. 

  107. wget -O /etc/openvpn/openvpn.tar "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/openvpn-debian.tar"
    108. 

  108. cd /etc/openvpn/
    109. 

  109. tar xf openvpn.tar
    110. 

  110. wget -O /etc/openvpn/1194.conf "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/1194.conf"
    111. 

  111. service openvpn restart
    112. 

  112. sysctl -w net.ipv4.ip_forward=1
    113. 

  113. sed -i 's/#net.ipv4.ip_forward=1/net.ipv4.ip_forward=1/g' /etc/sysctl.conf
    114. 

  114. iptables -t nat -I POSTROUTING -s 192.168.100.0/24 -o eth0 -j MASQUERADE
    115. 

  115. iptables-save > /etc/iptables_yg_baru_dibikin.conf
    116. 

  116. wget -O /etc/network/if-up.d/iptables "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/iptables"
    117. 

  117. chmod +x /etc/network/if-up.d/iptables
    118. 

  118. service openvpn restart
    119. 

  119. 

  120. # konfigurasi openvpn
    121. 

  121. cd /etc/openvpn/
    122. 

  122. wget -O /etc/openvpn/client.ovpn "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/client-1194.conf"
    123. 

  123. sed -i $MYIP2 /etc/openvpn/client.ovpn;
    124. 

  124. cp client.ovpn /home/vps/public_html/
    125. 

  125. 

  126. # install badvpn
    127. 

  127. cd
    128. 

  128. wget -O /usr/bin/badvpn-udpgw "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/badvpn-udpgw"
    129. 

  129. if [ "$OS" == "x86_64" ]; then
    130. 

  130.   wget -O /usr/bin/badvpn-udpgw "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/badvpn-udpgw64"
    131. 

  131. fi
    132. 

  132. sed -i '$ i\screen -AmdS badvpn badvpn-udpgw --listen-addr 127.0.0.1:7300' /etc/rc.local
    133. 

  133. chmod +x /usr/bin/badvpn-udpgw
    134. 

  134. screen -AmdS badvpn badvpn-udpgw --listen-addr 127.0.0.1:7300
    135. 

  135. 

  136. # setting port ssh
    137. 

  137. cd
    138. 

  138. sed -i 's/Port 22/Port 22/g' /etc/ssh/sshd_config
    139. 

  139. sed -i '/Port 22/a Port 444' /etc/ssh/sshd_config
    140. 

  140. service ssh restart
    141. 

  141. 

  142. # install dropbear
    143. 

  143. apt-get -y install dropbear
    144. 

  144. sed -i 's/NO_START=1/NO_START=0/g' /etc/default/dropbear
    145. 

  145. sed -i 's/DROPBEAR_PORT=22/DROPBEAR_PORT=3128/g' /etc/default/dropbear
    146. 

  146. sed -i 's/DROPBEAR_EXTRA_ARGS=/DROPBEAR_EXTRA_ARGS="-p 143"/g' /etc/default/dropbear
    147. 

  147. echo "/bin/false" >> /etc/shells
    148. 

  148. echo "/usr/sbin/nologin" >> /etc/shells
    149. 

  149. service ssh restart
    150. 

  150. service dropbear restart
    151. 

  151. 

  152. # install squid3
    153. 

  153. cd
    154. 

  154. apt-get -y install squid3
    155. 

  155. wget -O /etc/squid3/squid.conf "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/squid3.conf"
    156. 

  156. sed -i $MYIP2 /etc/squid3/squid.conf;
    157. 

  157. service squid3 restart
    158. 

  158. 

  159. # install webmin
    160. 

  160. cd
    161. 

  161. apt-get -y install webmin
    162. 

  162. sed -i 's/ssl=1/ssl=0/g' /etc/webmin/miniserv.conf
    163. 

  163. service webmin restart
    164. 

  164. 

  165. # install stunnel
    166. 

  166. apt-get install stunnel4 -y
    167. 

  167. cat > /etc/stunnel/stunnel.conf <<-END
    168. 

  168. cert = /etc/stunnel/stunnel.pem
    169. 

  169. client = no
    170. 

  170. socket = a:SO_REUSEADDR=1
    171. 

  171. socket = l:TCP_NODELAY=1
    172. 

  172. socket = r:TCP_NODELAY=1
    173. 

  173. 

  174. 

  175. [dropbear]
    176. 

  176. accept = 443
    177. 

  177. connect = 127.0.0.1:3128
    178. 

  178. 

  179. END
    180. 

  180. 

  181. #membuat sertifikat
    182. 

  182. openssl genrsa -out key.pem 2048
    183. 

  183. openssl req -new -x509 -key key.pem -out cert.pem -days 1095 \
    184. 

  184. -subj "/C=$country/ST=$state/L=$locality/O=$organization/OU=$organizationalunit/CN=$commonname/emailAddress=$email"
    185. 

  185. cat key.pem cert.pem >> /etc/stunnel/stunnel.pem
    186. 

  186. 

  187. #konfigurasi stunnel
    188. 

  188. sed -i 's/ENABLED=0/ENABLED=1/g' /etc/default/stunnel4
    189. 

  189. /etc/init.d/stunnel4 restart
    190. 

  190. 

  191. # teks berwarna
    192. 

  192. apt-get -y install ruby
    193. 

  193. gem install lolcat
    194. 

  194. 

  195. # install fail2banapt-get -y install fail2ban;
    196. 

  196. service fail2ban restart 
    197. 

  197. 

  198. # install ddos deflate
    199. 

  199. cd
    200. 

  200. apt-get -y install dnsutils dsniff
    201. 

  201. wget https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/ddos-deflate-master.zip 
    202. 

  202. unzip ddos-deflate-master.zip
    203. 

  203. cd ddos-deflate-master
    204. 

  204. ./install.sh
    205. 

  205. rm -rf /root/ddos-deflate-master.zip 
    206. 

  206. 

  207. # bannerrm /etc/issue.net
    208. 

  208. wget -O /etc/issue.net "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/issue.net"
    209. 

  209. sed -i 's@#Banner@Banner@g' /etc/ssh/sshd_config
    210. 

  210. sed -i 's@DROPBEAR_BANNER=""@DROPBEAR_BANNER="/etc/issue.net"@g' /etc/default/dropbear
    211. 

  211. service ssh restart
    212. 

  212. service dropbear restart
    213. 

  213. 

  214. #xml parser
    215. 

  215. cd
    216. 

  216. apt-get -y --force-yes -f install libxml-parser-perl
    217. 

  217. 

  218. # download script
    219. 

  219. cd /usr/bin
    220. 

  220. wget -O menu "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/menu.sh"
    221. 

  221. wget -O usernew "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/usernew.sh"
    222. 

  222. wget -O trial "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/trial.sh"
    223. 

  223. wget -O delete "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/hapus.sh"
    224. 

  224. wget -O check "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/user-login.sh"
    225. 

  225. wget -O member "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/user-list.sh"
    226. 

  226. wget -O restart "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/resvis.sh"
    227. 

  227. wget -O speedtest "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/speedtest_cli.py"
    228. 

  228. wget -O info "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/info.sh"
    229. 

  229. wget -O about "https://raw.githubusercontent.com/Clrkz/VPSAutoScrptz/master/about.sh"
    230. 

  230. 

  231. echo "0 0 * * * root /sbin/reboot" > /etc/cron.d/reboot
    232. 

  232. 

  233. chmod +x menu
    234. 

  234. chmod +x usernew
    235. 

  235. chmod +x trial
    236. 

  236. chmod +x delete
    237. 

  237. chmod +x check
    238. 

  238. chmod +x member
    239. 

  239. chmod +x restart
    240. 

  240. chmod +x speedtest
    241. 

  241. chmod +x info
    242. 

  242. chmod +x about
    243. 

  243. 

  244. # finishing
    245. 

  245. cd
    246. 

  246. chown -R www-data:www-data /home/vps/public_html
    247. 

  247. service nginx start
    248. 

  248. service openvpn restart
    249. 

  249. service cron restart
    250. 

  250. service ssh restart
    251. 

  251. service dropbear restart
    252. 

  252. service squid3 restart
    253. 

  253. service webmin restart
    254. 

  254. rm -rf ~/.bash_history && history -c
    255. 

  255. echo "unset HISTFILE" >> /etc/profile
    256. 

  256. 

  257. # install neofetch
    258. 

  258. echo "deb http://dl.bintray.com/dawidd6/neofetch jessie main" | tee -a /etc/apt/sources.list
    259. 

  259. curl "https://bintray.com/user/downloadSubjectPublicKey?username=bintray"| apt-key add -
    260. 

  260. apt-get update
    261. 

  261. apt-get install neofetch
    262. 

  262. 

  263. echo "deb http://dl.bintray.com/dawidd6/neofetch jessie main" | tee -a /etc/apt/sources.list
    264. 

  264. curl "https://bintray.com/user/downloadSubjectPublicKey?username=bintray"| apt-key add -
    265. 

  265. apt-get update
    266. 

  266. apt-get install neofetch
    267. 

  267. 

  268. # info
    269. 

  269. clear
    270. 

  270. echo "Autoscript Include:" | tee log-install.txt
    271. 

  271. echo "===========================================" | tee -a log-install.txt
    272. 

  272. echo ""  | tee -a log-install.txt
    273. 

  273. echo "Service"  | tee -a log-install.txt
    274. 

  274. echo "-------"  | tee -a log-install.txt
    275. 

  275. echo "OpenSSH  : 22, 444"  | tee -a log-install.txt
    276. 

  276. echo "Dropbear : 143, 3128"  | tee -a log-install.txt
    277. 

  277. echo "SSL      : 443"  | tee -a log-install.txt
    278. 

  278. echo "Squid3   : 8000, 8080 (limit to IP SSH)"  | tee -a log-install.txt
    279. 

  279. echo "OpenVPN  : TCP 1194 (client config : http://$MYIP:81/client.ovpn)"  | tee -a log-install.txt
    280. 

  280. echo "badvpn   : badvpn-udpgw port 7300"  | tee -a log-install.txt
    281. 

  281. echo "nginx    : 81"  | tee -a log-install.txt
    282. 

  282. echo ""  | tee -a log-install.txt
    283. 

  283. echo "Script"  | tee -a log-install.txt
    284. 

  284. echo "------"  | tee -a log-install.txt
    285. 

  285. echo "menu (Displays a list of available commands)"  | tee -a log-install.txt
    286. 

  286. echo "usernew (Creating an SSH Account)"  | tee -a log-install.txt
    287. 

  287. echo "trial (Create a Trial Account)"  | tee -a log-install.txt
    288. 

  288. echo "delete (Clearing SSH Account)"  | tee -a log-install.txt
    289. 

  289. echo "check (Check User Login)"  | tee -a log-install.txt
    290. 

  290. echo "member (Check Member SSH)"  | tee -a log-install.txt
    291. 

  291. echo "restart (Restart Service dropbear, webmin, squid3, openvpn and ssh)"  | tee -a log-install.txt
    292. 

  292. echo "reboot (Reboot VPS)"  | tee -a log-install.txt
    293. 

  293. echo "speedtest (Speedtest VPS)"  | tee -a log-install.txt
    294. 

  294. echo "info (System Information)"  | tee -a log-install.txt
    295. 

  295. echo "about (Information about auto install script)"  | tee -a log-install.txt
    296. 

  296. echo ""  | tee -a log-install.txt
    297. 

  297. echo "Other features"  | tee -a log-install.txt
    298. 

  298. echo "----------"  | tee -a log-install.txt
    299. 

  299. echo "Webmin   : http://$MYIP:10000/"  | tee -a log-install.txt
    300. 

  300. echo "Timezone : Asia/Manila (GMT +7)"  | tee -a log-install.txt
    301. 

  301. echo "IPv6     : [off]"  | tee -a log-install.txt
    302. 

  302. echo ""  | tee -a log-install.txt
    303. 

  303. echo "Original Script by Fornesia, Rzengineer & Fawzya"  | tee -a log-install.txt
    304. 

  304. echo "Modified by Clrkz"  | tee -a log-install.txt
    305. 

  305. echo ""  | tee -a log-install.txt
    306. 

  306. echo "Installation Log --> /root/log-install.txt"  | tee -a log-install.txt
    307. 

  307. echo ""  | tee -a log-install.txt
    308. 

  308. echo "VPS AUTO REBOOT TIME HOURS 12 NIGHT"  | tee -a log-install.txt
    309. 

  309. echo ""  | tee -a log-install.txt
    310. 

  310. echo "==========================================="  | tee -a log-install.txt
    311. 

  311. cd
    312. 

  312. rm -f /root/debian7.sh
    313. 

  313.