aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--disposable/Vagrantfile13
1 files changed, 11 insertions, 2 deletions
diff --git a/disposable/Vagrantfile b/disposable/Vagrantfile
index b21d234..0ecd704 100644
--- a/disposable/Vagrantfile
+++ b/disposable/Vagrantfile
@@ -21,7 +21,7 @@ Vagrant.configure('2') do |config|
config.ssh.connect_timeout = 15
# shares
- config.vm.synced_folder '.', '/vagrant', type: 'nfs', nfs_version: 4, nfs_udp: false
+ # config.vm.synced_folder '.', '/vagrant', type: 'nfs', nfs_version: 4, nfs_udp: false, nfs_export: true
config.vm.provider 'libvirt' do |libvirt|
libvirt.storage_pool_name = 'ramdisk'
@@ -41,11 +41,13 @@ Vagrant.configure('2') do |config|
config.vm.provision 'update-upgrade', type: 'shell', name: 'update-upgrade', inline: <<-SHELL
set -ex
sudo apk update && sudo apk upgrade
- sudo apk add tor torsocks firefox-esr xauth font-dejavu wget openvpn unzip iptables
+ sudo apk add tor torsocks firefox-esr xauth font-dejavu wget openvpn unzip iptables bubblewrap apparmor ufw nfs-utils
wget -q https://addons.mozilla.org/firefox/downloads/file/4228676/foxyproxy_standard-8.9.xpi
mv foxyproxy_standard-8.9.xpi foxyproxy@eric.h.jung.xpi
mkdir -p ~/.mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/
mv foxyproxy@eric.h.jung.xpi ~/.mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}/
+ mkdir -p /vagrant && \
+ sudo mount -t nfs 192.168.121.1:/home/devi/share/nfs /vagrant
SHELL
config.vm.provision 'update-upgrade-privileged', type: 'shell', name: 'update-upgrade-privileged', privileged: true, inline: <<-SHELL
@@ -72,6 +74,12 @@ Vagrant.configure('2') do |config|
echo "net.ipv4.ip_forward = 1" >> /etc/sysctl.d/ipv4.conf
sysctl -p /etc/sysctl.d/ipv4.conf
rc-service openvpn start || true
+ sleep 1
+
+ ufw allow 22
+ ufw enable
+
+ cp /vagrant/bw_firefox /usr/bin/
SHELL
config.vm.provision 'mullvad-test', type: 'shell', name: 'test', privileged: false, inline: <<-SHELL
@@ -80,6 +88,7 @@ Vagrant.configure('2') do |config|
SHELL
config.vm.provision 'kill-switch', communicator_required: false, type: 'shell', name: 'kill-switch', privileged: true, inline: <<-SHELL
+ # http://o54hon2e2vj6c7m3aqqu6uyece65by3vgoxxhlqlsvkmacw6a7m7kiad.onion/en/help/linux-openvpn-installation
set -ex
iptables -P OUTPUT DROP
iptables -A OUTPUT -o tun+ -j ACCEPT
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 10:49:12 +0000