Debian 9 and 10 VPS Installerv20201103 Updates: * Almost the same features in my previous v20200907 update * Fixed some OpenVPN and webmin bugs. * Added new feature(For Filipino users): GTM noload ssh setup, simply run activate_gtm_noload and all done. (Please be note that these setup uses port 80, if you have another services running through that port, simply run deactivate_gtm_noload to undo the setup.) * Added BadVPN-udpgw , running on port 7300 * Another note : Please do not edit ALL OpenVPN ports(just remain all the same ports after script installation), and do not change OpenSSH(225) and Dropbear(550) or else OHPServer will not work. * For some users want to transfer files smooth and fast(without sftp needed), use FFSend, simply run ffsend –help for more information. * Repeated FAQ: ‘How can i edit SSH/SSL Banner’ ; Answer: nano /etc/banner && service ssh restart && service dropbear restart && service stunnel4 restart * For some users asking me for OpenVPN config compability for Built-in OpenVPN on their modems, just simply edit your http headers, avoid using “quoted” http headers to avoid unwanted Openvpn client errors(e.g. http-proxy-option CUSTOM-HEADER “Host: example.example”).If you wanna use that http header/payload setup, use OpenVPN+OHP config instead(sample configs located at /var/www/openvpn directory) * Another issue of script reselling from BonvScripts project. Again, all script released from BonvScripts are free-of-charge. I am not liable for any damages/loses for those whom uses my name or my project to resell their works. All offical updates are released only from this channel, from BonvScripts’ git or from Bon-chan’s phcorner account.
common ‘Frequently Asked Questions’ from my recent DM’s (that everyone should read)
Q: i want to disable/hide my .ovpn configs to download from other users
A: move them outside of /var/www/openvpn or just stop openvpn-download-site (running on port 86); by just renaming /etc/nginx/conf.d/bonveio-ovpn-config.conf into other filename extension (.conf.back or .back)
command: mv /etc/nginx/conf.d/bonveio-ovpn-config.conf /etc/nginx/conf.d/bonveio-ovpn-config.back
Q: my privoxy throws 503 error, what should i do?
A: thats normal, wait for it until you get 200 status. If you’re annoying on privoxy connecting hiccups, use OHPServer (ohp+ssh/ohp+ovpn) (8085~8088)
Q: my hosting provider warns me for my vps instance activities about high RAM usage, what should i do?
A: I Recommend to increase your VPS plan for high RAM allocation (1.5 GB above) since we’re running multiple services and if we’re serving our vps instances for public usage with bulge users (100+ above), make sure we’ve enough ram allocation (2GB above) so vps providers dont warns or suspend our instance deployments. Another solution is to minimize your running services. program that eats alot of RAM is OpenSSH, Squid(for OHPServer -proxy) and Webmin. We can stop/disable them.
Cons of the following programs if we stop/disable them:
- OpenSSH: OHP+OpenSSH will stop working, we were not be able to access our vps through openssh, instead we will switch it to dropbear
- Webmin: if you’re serving your vps using OCS Panel, your server throws error creating accounts/accessing usermin API from your OCS Panel server, OCS Panel depends on your server’s webmin accessibility
- Squid: All OHPServer ports will not be working after squid processes stop, OHPServer relies on squid proxy.
- OpenSSH: service ssh stop(old centos/6); systemctl stop ssh(ubuntu/debian); systemctl stop sshd(centos/fedora)
- Squid: service squid stop
- Webmin: service webmin stop
If you want to permanently disable them from boot, just run systemctl disable program_name or chkconfig program_name off(for centos 6)
Q: Why server time sets to PH Time or GMT +08:00?
A: Since BonvScripts are originally served for Filipino VPN Administrators, and 4AM reboot time shall be sync to the instance . i’ve set it to +8 GMT, you can set it to your country timezones too(Last update notice: i’ve removed it during installation, but if you reboot your vps, your server TZ is now set to GMT +8):
command: ln -fs /usr/share/zoneinfo/Asia/Manila /etc/localtime
were Asia/Manila is your TZ Database name, run ls /usr/share/zoneinfo and check https://en.m.wikipedia.org/wiki/List_of_tz_database_time_zones for your country exact TZ. I entered timezone command on /etc/bonveio/startup.sh . Edit it to save your settings from boot
Q: How can i change OHPServer ports?
A: I dont recommend to change it for now, wait for my next updates.
Q: Why squid only running on localhost:25800? (for my latest updates)
A: Squid installed on your vps are OHPServer’s proxy component, please dont modify anything there like changing the listening port or else your OHPServer fails to work.
Q: Did you add some performance techniques inside of your scripts? what are those?
A: Actually nothing, all of them are just standard server configurations. The best way to achieve performance type flow from your server is to Maintain your VPS Instance RAM and CPU on stable condition and deploy high specs(if possible) to mid specs instances. Limit user counts/connections on each of your vps instances to balance bandwidth traffic of your vps.
Q: What are OpenVPN-EC?
A: OpenVPN Elliptic Curve, modern openvpn v2.4.x feature that allow usage of modern tls cryptography feature from your openvpn server. Just google about it for more information about that feature. But that ensures more faster data exchange from server to client.
Q: Did you setup your OpenVPN configs to same Certificates as older updates?
A: Yes, easyrsa tarball of bonvscrips are available on git, just check them.
Q: I saw on stunnel config that OpenVPN has a SSL too wh
ich is running on port 587, can i use it ?
A: Yes you can, but there’s no public OpenVPN-SSL client available yet, but if you’re vpn app supports it, yes you can. Import or use your openvpn server there. just edit your .ovpn remote line to port 587 and remove all http-* options
Q: Can i use BonvScripts and install it to my Personal desktop machine or my own workstation?
A: First, BonvScripts are for public service usage, think first if you want to do that on your personal or rather private machine. Second, if you install BonvScripts on a linux with any X-Server desktop builds like GNOME, KDE, Xfce, Cinnamon, Mate etc. , server installation might encounter some bugs including some firewall issues for iptables and daemon issue for other programs.
Q: Rumors that you add some third-party during installations so you can access superuser of each server you logged, is that true?
A: No that’s not true, there’s no evidence of that. Im not logging any user installations from the script (Except Github Analytics). I respect data privacy of anyone who uses my script. I decided to encrypt my script for someone who does not respect copyrights from public material like this script. And some noobie paid vpn or premium vpn (kuno) owners take advantages about logic inside of script installers (especially BonvScripts). They are just doin everything just for the sake of money and pursue more advert and selling income(that’s one of the attitude i hate most of them)
Q: Why did you slowly updates your script unlike before?
A: im a student with other responsibilities too. I apologize for it. But im trying my best to spend my freetime or my rest time to update the git since the popularity of BonvScripts increased drastically over year and a half. Thanks to those who help me and uses the script, and also to those donated such ammount just to force me to continue the project, thank you so much.
DebianVPS-Installer v20201227 Updates:
- Fixed menuscript (relayout, fix some major bugs except connections and autokill menuscript)
- New activate_gtm_noload command feature: now you can set autoreconnect time and choose any port you want. (more faster reconnect time depends on your server latency)(pic below for script view)
- Fix OHPServer HTTP/1.1 50X error (new privoxy 3.0.28 installation)
- Removed SunConfig.ovpn and SunNoloadConfig.ovpn (same with SunConfig_EC.ovpn and SunNoloadConfig_EC.ovpn) and changed into SmartGStories.ovpn and SmartGGames.ovpn (For latest OpenVPN clients: SmartGStories_EC.ovpn, SmartGGames_EC.ovpn)
DebianVPS-Installer v20201107 update * Changed Privoxy as ohpserver proxy and Squid as main http proxy server
DebianVPS-Installer now on non-interactive mode
to uninstall, simply add uninstall on script’s last line
ex: ./DebianVPS-Installer uninstall
For those Debian 10/buster users without wget, you can use curl, or just use this command:
rm -f DebianVPS* && curl -sLO ‘https://raw.githubusercontent.com/Bonveio/BonvScripts/master/DebianVPS-Installer‘ || wget -q ‘https://raw.githubusercontent.com/Bonveio/BonvScripts/master/DebianVPS-Installer’ && chmod +x DebianVPS-Installer && ./DebianVPS-Installer