[LINUX] Key points of creating LiveUSB of Ubuntu "with VPN and remmina connection settings" (provisional version)

specification

--Use user "ubuntu" --The VPN method is assumed to be OpenVPN. --Automatic connection to OpenVPN mackerel --This time, the authentication method is user name + password (using the VPN function built into the router) --At this time, you do not have to manually enter the user name and password. --Do not ask for the connection destination address, user name, and password when connecting remmina

Introduction

--Extract filesystem.squashfs to a suitable location. Hereinafter referred to as ROOTFS / --For the time being, I will not touch on how to expand, edit, and remaster squashfs here. --This time, I modified the script of Distroshare Ubuntu Imager to copy "different parts for each user" from another directory to ROOTFS / and delete it from ROOTFS / after ISO image conversion. --Rewrite the script from 1 --Create ROOTFS / --Copy personal settings in ROOTFS /, compress them into squashfs and convert them to ISO → Delete personal settings (only here requires scripts for the number of users) --Cleanup -I think it's better to divide it into places.

NetworkManager settings

--Copy the certificate file (~ / .cert / nm-openvpn / *. Pem) to a suitable location. I made it under ROOTFS / etc / NetworkManager / cert / nm-openvpn / --Copy and edit the NetworkManager connection settings file.

$ sudo cp / etc / NetworkManager / system-connections / * VPN connection configuration file *
ROOTFS / etc / NetworkManager / system-connections / * VPN connection configuration file * $ sudo nano ROOTFS / etc / NetworkManager / system-connections / * VPN connection configuration file *

Add / edit the following line

[vpn] section ca = * New CA certificate * # / etc / NetworkManager / cert / nm-openvpn / * New ca.pem * ta = * new static key * # / etc / NetworkManager / cert / nm-openvpn / * new tls-auth.pem * username = * Username used for vpn connection *

[vpn-secrets] section password = * password for vpn connection *

important point

--VPN user name and password are saved in clear text.

Automatic connection to VPN

--Since ʻautoconnect in the [connection] section does not work, make sure that nmcli connection up <VPN_UUID> `is executed in some way when logging in to the desktop environment. --Create an appropriate .desktop file under ROOTFS / etc / skel / .config / autostart /

Remmina settings (horizontal version)

--Create user "ubuntu" on the work environment for the time being --Set up remmina connection on user'ubuntu " --Copy /home/ubuntu/.local/share/keyrings and /home/ubuntu/.local/share/remmina under ROOTFS / etc / skel / .local / share / ――I want to know if there is a better way around keyrings

Recommended Posts

Key points of creating LiveUSB of Ubuntu "with VPN and remmina connection settings" (provisional version)
Simple VPN construction of IPsec gateway with Ubuntu 20.04 and Raspberry Pi --2 StrongSwan VPN connection confirmation
Simple VPN construction of IPsec gateway with Ubuntu 20.04 and Raspberry Pi ―― 1. StrongSwan introduced
Key points of "Machine learning with Azure ML Studio"
Version control of Node, Ruby and Python with anyenv