Skip to content

andrey-yantsen/yandex-cloud-vpn

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
README.md
README.md
 
 
do.sh
do.sh
 
 

Repository files navigation

Quick VPN with Yandex Cloud

What is it?

There're days, when you need to access a web-site hosted in Russia, which has prevented the out-of-the-country access. Unfortunately, some of the utility providers do this, yet you still need to pay for the utilities when you have fled the country.

Yandex.Cloud allows you to create a low-cost preemptive virtual machine for under a rouble per hour. Instruction and the script in this repo help you create such a virtual machine.

How to prepare?

  1. Set up Yandex Cloud account.
  2. Configure the billing account in Yandex Cloud.
  3. Install yc.
  4. Restart your shell to make yc command available.
  5. Configure yc by calling yc init.
  6. Install Wireguard on the device where you want to use VPN.
  7. Ensure you have an SSH-key generated, with public key saved as ~/.ssh/id_rsa.pub.
  8. Download do.sh and run it, following the on-screen instructions. Keep the script running for now.
  9. Configure your WireGuard client using the config displayed by the script.
  10. When you're finished, press Enter in the terminal where you have the script running. It should remove the created virtual machine. Check that the server was removed from Yandex Cloud.

By default the command will generate a wireguard config for 1 client, using the subnet 192.168.55.0/24. You can override the defaults by calling the script with the arguments: ./do.sh -c 10 -a 10.0.0 — this will generate config for 10 clients with subnet 10.0.0.0/24.

It is also possible to request displaying the config as a QR-code, which can be useful when you need to configure VPN on mobile clients. Pass argument -q 1 to generate one client config with the QR code, -q 2 to generate two codes and so on. The value passed to -q argument must be greater than or equal to the value passed to -c.

Below is the example produced by this script (so you'll know what to look for in the output):

[Interface]
Address = 10.10.10.2/24
DNS = 8.8.8.8
PrivateKey = cGiXg4D1SHlvyxqRCeuwxXil9UeMgdfw4WqqNwvZ+ls=

[Peer]
PublicKey = WtPF2qWwDlGSjfo0SJu3kr6FeB/csBXBmD+L72/j8mc=
AllowedIPs = 0.0.0.0/0, ::/0
Endpoint = 62.84.2.1:43517
PersistentKeepalive = 30

You need to add this config into your wireguard client and activate the connection.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

68 stars

Watchers

4 watching

Forks

19 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages