安装依赖包
安装基础组件
1 | apt install -y vim wget build-essential p7zip-full locate lrzsz dstat |
2 | apt install -y golang tcpdump masscan aria2 pixiewps tcpdump |
3 | apt install -y libpcap-dev libnetfilter-queue-dev libusb-dev libdbus-1-dev libglib2.0-dev libudev-dev libical-dev libreadline-dev matchbox-keyboard libssl-dev libpcap-dev libcurl4-openssl-dev |
安装服务
1 | apt install -y dnsmasq bluez-tools |
安装功能
1 | apt install -y aircrack-ng wifite mdk3 shadowsocks-libev hostapd redsocks |
配置网络
配置网络接口
1 | cat > /etc/network/interfaces.d/lo <<EOFMARKER |
2 | auto lo |
3 | iface lo inet loopback |
4 | EOFMARKER |
5 | |
6 | cat > /etc/network/interfaces.d/wlan0 <<EOFMARKER |
7 | allow-hotplug wlan0 |
8 | iface wlan0 inet manual |
9 | EOFMARKER |
10 | |
11 | cat > /etc/network/interfaces.d/eth0 <<EOFMARKER |
12 | auto eth0 |
13 | iface eth0 inet static |
14 | address 172.16.44.1 |
15 | netmask 255.255.255.0 |
16 | EOFMARKER |
配置防火墙
1 | iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE |
2 | iptables -A FORWARD -i eth0 -o wlan0 -m state --state RELATED,ESTABLISHED -j ACCEPT |
3 | iptables -A FORWARD -i wlan0 -o eth0 -j ACCEPT |
4 | |
5 | iptables -t nat -A POSTROUTING -s 192.168.0.0/16 -o wlan1 -j MASQUERADE |
6 | iptables-save > /etc/iptables.ipv4.nat |
配置服务
配置DHCP服务
1 | cat > /etc/dhcpcd.conf <<EOFMARKER |
2 | hostname |
3 | clientid |
4 | persistent |
5 | option rapid_commit |
6 | option domain_name_servers, domain_name, domain_search, host_name |
7 | option classless_static_routes |
8 | option ntp_servers |
9 | option interface_mtu |
10 | require dhcp_server_identifier |
11 | slaac private |
12 | interface wlan0 |
13 | static ip_address=192.168.0.1/24 |
14 | EOFMARKER |
15 | |
16 | #echo interface wlan0 >> /etc/dhcpcd.conf |
17 | #static ip_address=192.168.0.1/24 >> /etc/dhcpcd.conf |
配置DNS服务
1 | cat > /etc/dnsmasq.conf <<EOFMARKER |
2 | dhcp-mac=set:client_is_a_pi,B8:27:EB:*:*:* |
3 | dhcp-reply-delay=tag:client_is_a_pi,2 |
4 | server=218.2.2.2 |
5 | server=114.114.114.114 |
6 | server=8.8.8.8 |
7 | domain-needed |
8 | bogus-priv |
9 | dhcp-range=192.168.0.100,192.168.0.254,48h |
10 | EOFMARKER |
配置功能
配置WIFI热点功能
1 | cat > /etc/hostapd/hostapd.conf <<EOFMARKER |
2 | interface=wlan0 |
3 | driver=nl80211 |
4 | ssid=Ziroom901 |
5 | hw_mode=g |
6 | channel=1 |
7 | ieee80211n=1 |
8 | wpa=2 |
9 | wpa_passphrase=4001001111 |
10 | wpa_key_mgmt=WPA-PSK |
11 | wmm_enabled=1 |
12 | ht_capab=[HT40][SHORT-GI-20][DSSS_CCK-40] |
13 | macaddr_acl=0 |
14 | auth_algs=1 |
15 | ignore_broadcast_ssid=0 |
16 | wpa=2 |
17 | wpa_key_mgmt=WPA-PSK |
18 | rsn_pairwise=CCMP |
19 | EOFMARKER |
配置代理功能
1 | cat > /opt/docker/ss/docker-compose.yml <<EOF |
2 | version: '2' |
3 | services: |
4 | sskcp: |
5 | image: mritd/shadowsocks:3.1.3 |
6 | network_mode: host |
7 | environment: |
8 | SS_CONFIG : "-s 0.0.0.0 -p 22222 -m aes-256-cfb -k vpnpassword --fast-open -u" |
9 | KCP_FLAG: "true" |
10 | KCP_MODULE: kcpserver |
11 | KCP_CONFIG: "-t 127.0.0.1:22222 -l :22223 -mode fast2" |
12 | EOF |