Step 1: install Raspbian<\/a><\/p>\n Step 2: install necessary software and edit dhcp configuration<\/p>\n References:<\/p>\nsudo apt-get update\r\nsudo apt-get upgrade\r\nsudo apt-get install dnsmasq hostapd speedtest-cli\r\nsudo systemctl stop dnsmasq\r\nsudo systemctl stop hostapd\r\nsudo nano \/etc\/dhcpcd.conf\r\n\r\nStep 3: Insert the following lines and save\r\n\r\n<\/pre>\n
interface wlan0\r\n static ip_address=192.168.4.1\/24\r\n\r\nStep 4: Restart DHCP server and start editing dnsmasq\r\n\r\n<\/pre>\n
sudo service dhcpcd restart\r\nsudo mv \/etc\/dnsmasq.conf \/etc\/dnsmasq.conf.orig\r\nsudo nano \/etc\/dnsmasq.conf\r\n\r\nStep 5: Write the following lines and save<\/pre>\n
interface=wlan0 # Use the require wireless interface - usually wlan0\r\n dhcp-range=192.168.4.2,192.168.4.20,255.255.255.0,24h\r\n\r\nStep 6: Edit hostapd configuration\r\n\r\n<\/pre>\n
sudo nano \/etc\/hostapd\/hostapd.conf\r\n\r\nStep 7: Write the following configuration and adapt to your situation\r\n\r\n<\/pre>\n
interface=wlan0\r\ndriver=nl80211\r\nssid=NameOfNetwork\r\nhw_mode=g\r\nchannel=7\r\nwmm_enabled=0\r\nmacaddr_acl=0\r\nauth_algs=1\r\nignore_broadcast_ssid=0\r\nwpa=2\r\nwpa_passphrase=AardvarkBadgerHedgehog\r\nwpa_key_mgmt=WPA-PSK\r\nwpa_pairwise=TKIP\r\nrsn_pairwise=CCMP\r\n\r\nStep 8: Point to the above configuration\r\n\r\n<\/pre>\n
sudo nano \/etc\/default\/hostapd\r\n\r\nMake sure the following line exists and save\r\n\r\n<\/pre>\n
DAEMON_CONF=\"\/etc\/hostapd\/hostapd.conf\"\r\n\r\nStep 9: Edit sysctl\r\n\r\n<\/pre>\n
sudo nano \/etc\/sysctl.conf\r\n\r\nStep 10: Uncomment and save\r\n\r\n<\/pre>\n
net.ipv4.ip_forward=1\r\n\r\nStep 11: Setup IP tables\r\n\r\n<\/pre>\n
sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE\r\nsudo sh -c \"iptables-save > \/etc\/iptables.ipv4.nat\"\r\n\r\nStep 12: Make sure configuration persists on restart by editing\r\n\r\n<\/pre>\n
sudo nano \/etc\/rc.local\r\n\r\nand injecting the following line right before 'exit 0'<\/pre>\n
iptables-restore < \/etc\/iptables.ipv4.nat\r\n\r\n\r\n<\/pre>\n
At this point WAP should be up and running. Now, let’s setup PIA OpenVPN client:<\/h1>\n
Step 13: Adapt the following to your situation and run\r\n\r\n<\/pre>\n
sudo apt-get install openvpn\r\ncd \/etc\/openvpn\r\nsudo wget http:\/\/www.privateinternetaccess.com\/openvpn\/openvpn.zip\r\nsudo unzip openvpn.zip\r\nsudo mv -fv US\\ New\\ York\\ City.ovpn us_new_york.ovpn\r\nsudo nano us_new_york.ovpn\r\n\r\nStep 14: Make sure the following line is present\r\n\r\n<\/pre>\n
auth-user-pass creds.pwd\r\n\r\nStep 15: Create creds.pwd and add your VPN username\/password in the first two lines\r\n\r\n<\/pre>\n
sudo nano creds.pwd\r\n\r\nStep 16: Test the configuration by running (press Enter twice after the first command)\r\n\r\n<\/pre>\n
sudo openvpn --config us_new_york.ovpn & disown\r\nspeedtest-cli\r\n\r\nStep 17: Redirect WiFi traffic to the openvpn interface\r\n\r\n<\/pre>\n
sudo iptables -F\r\nsudo iptables -t nat -F\r\nsudo iptables -X\r\nsudo iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE\r\nsudo iptables -A FORWARD -i tun0 -o wlan0 -m state --state RELATED,ESTABLISHED -j ACCEPT\r\nsudo iptables -A FORWARD -i wlan0 -o tun0 -j ACCEPT\r\nsudo sh -c \"iptables-save > \/etc\/iptables.ipv4.nat\"\r\nsudo nano \/etc\/rc.local\r\n\r\nStep 18: Enter the following lines right before 'exit 0'\r\n\r\n<\/pre>\n
sleep 5\r\ncd \/etc\/openvpn\r\nsudo openvpn --config us_new_york.ovpn\r\n\r\nStep 19: Reboot\r\n\r\n<\/pre>\n
sudo reboot\r\n\r\n\r\n\r\n<\/pre>\n
\n