I take no responsibility for how this information is used.
- Debian 8.0+ Virtual Machine
- OpenVPN server
Static IP Address
Set a static IP address so it doesn’t change DNS servers to your ISPs or uses your local router’s DNS server.
/etc/network/interfaces1234567auto eth0iface eth0 inet staticaddress ADDRESSnetmask NET_MASKbroadcast BROADCASTgateway GATEWAY_IPdns-nameservers 220.127.116.11 18.104.22.168
/etc/resolv.conf12nameserver 22.214.171.124nameserver 126.96.36.199
Transmission is a fantastic BitTorrent client for Linux that also has a web interface.
apt-get install transmission-daemon
Stop the service.
systemctl stop transmission-daemon.service
Edit the config
These two must be changed so that you may login to the web interface:12"rpc-authentication-required": false"rpc-bind-address": "LOCAL LAN IP"
Three more that you might want to change:123"blocklist-enabled": true,"blocklist-url": "http://john.bitsurge.net/public/biglist.p2p.gz","encryption": 2
systemctl start transmission-daemon.service
apt-get install openvpn
Copy your OpenVPN client configs to
/etc/openvpn. The file extension must be
.conffor the config file.
Verify that you are now utilizing the VPN.
This final part will be to configure
iptables to only allow inbound/outbound connections to the VPN tunnel interface based on the transmission user group. This will prevent transmission from communicating before the VPN starts.
Some VPN providers allow you to use an API to open up a port for your current tunnel IP. This is very handy if you wish to also seed torrents more effectively. PrivateInternetAccess allows this in certain regions. For PIA, the port will always be different so you will need to implement it into your firewall script.
Be sure to edit the
INBOUND_PORT text, otherwise remove it if you are not planning to open a port.
DNS Leak Test
If you installed a GUI on your VM you can check to make sure you are not leaking any DNS requests. Assuming you’ve changed your DNS servers and do not see your own IP you should not need to worry about leaking DNS queries.