The current version NightHawk should be installed on Ubuntu Server 16.04 LTS (other version will not be supported).
Moreover, NightHawk is designed for internal network (LAN) only. Outside the LAN is NOT recommended. If you insisted to place the NightHawk outside the LAN, you will be hacked. Meanwhile, your PPTP VPN username and password should be strong enough; otherwise, you can be hacked. In addition, please update NightHawk often too.
Do not connect back with reverse connection as it will reveal your IP address. When need to, please consider to use hidden service with torsocks or socat or alike.
You can consider to change the MAC address of the NightHawk with macchanger. If you do so, the IP address of the NightHawk may change for almost all of the router.
First of all, you should behind a router. The NightHawk (Torified Ubuntu VPN Server) should be installed on Ubuntu Server (Long Term Support, LTS) or Debian Server (Stable) (x86_64 is prefered). Other versions and distributions will not be supported. It can be installed to VirtualBox or standalone computer.
You should know how to install and setup Ubuntu Server or Debian Server.
You also should know how to setup a PPTP VPN connection at client side.
Make sure port 1723 is opened for internal network and you are not advised to open this port for public network unless you need to do so. If you open this port to public, make sure your VPN client passwords are very strong.
Before going to install NightHawk, you need to update the Ubuntu server.
sudo apt-get update
sudo apt-get dist-upgrade
sudo apt-get --purge autoremove
sudo apt-get autoclean
This PROCEDURE should be RAN ONCE. If run more than one time, your system will be broken.
tar -xvzf nighthawk_current.tar.gz
chmod +x *-nighthawk
Follow the instruction on the screen to setup. If you do not know what you have been asked, just accept the default setting by pressing the Enter key.
To check the IP address of the NightHawk (Torified Ubuntu VPN Server), you should do the following. The script only works on eth0.
There would be something like 192.168.0.100 or similar. If there is no eth0, it should be a problem. Please check the router and your connections.
After that, you may need to reboot the server if you cannot ping your gateway.For example :
However, you cannot ping yahoo.com or outside world.
After the NightHawk (Torified Ubuntu VPN Server) is setting up, you have to update the box.
You are advised to update your server every one week in order to keep the server up to date.ADD VPN USER
To add a new user, you can do the following.
If you want to delete any username in the box, you should do the following :
To test the server if it works or not. You type the following command under the server.For example, ping your gateway :
If you have the ping result. That means the server is working. Press Ctrl+C to quit the ping process.
If there is no ping result, you are required to reboot your server to test again.
To test the Tor is working or not. You type the following command under the server.
If elinks is not installed, just install it :
sudo apt-get install elinks
If you see the IP address is different from your real IP (the external IP), that means the server is working fine.Client side :
To test the server if it works or not. You can connect the server via VPN (PPTP) from your host. To set the PPTP VPN Client, you should set the "Gateway" or "Server address" to be the IP address of your NightHawk (Torified Ubuntu VPN Server) or the hostname. For Windows and Mac OSX systems, the hostname method may not work properly. Once it is connected, you can go to the following site with your browser.
If you see a big green onion, your server is working fine.OTHER STUFF
The hostname of the NightHawk (Torified Ubuntu VPN Server) is the IP address of the NightHawk.
You are required to use "
sudo" on each command; otherwises, the command will not work.
To power off the server, you need to enter "
sudo poweroff". When you want to reboot the server, you need to enter "
Since PPTP VPN is not very secure, you need to set a very strong password when it is allowed for connecting outside your internal network.
You can use NightHawk without logging in to the PPTP VPN. If your applications are support SOCKS4 or SOCKS5, you can set the application to SOCKS5, port 9050, IP address of NightHawk to use NightHawk without login the the PPTP VPN.Speed Improvement
If your router supports QoS, you can set the traffic on Ports 53, 80, 443 on localhost and IP address of HighHawk in very high priority in order to increase of the speed of the NightHawk network.Linux Client
Like Mac OSX, Linux can tunnel all traffic from the client to the VPN, However, you need to set something on the Network Manager (Gnome).
IPv4 Settings -- Method -- Automatic (VPN) Addresses only -- DNS servers -- (the IP address of NightHawk)
VPN -- Gateway -- (IP address of NightHawk) -- User name -- (NightHawk VPN username) -- Password -- (NightHawk VPN password -- Advanced -- (Click all checkboxes except Send PPP echo packets)
A strong password should be combined with numeric, character (upper and lower cases) and speical characters as well as more than 16 characters length. In addition, the word inside the password should not be a common word or it can be find in the dictionaries or internet. It is better that the password should be nonsense.TROUBLESHOOTING
If you have re-generated the MAC network interface when importing or at anytime you think fit. You may encounter no network interface on the server. If so, you should follow the below steps to fix.
sudo nano /etc/udev/rules.d/70-persistent-net.rules
Then, delete the first entry of
eth0 and rename the second entry of "
eth1" to "
eth0" at the end of that entry. After that, reboot the server. The network interface should be came back.
Meanwhile, the network interface should be in "
Bridge mode" on the VirtualBox. It can be bind to ethernet or wireless network interface.
Furthermore, make sure there is no USB device (such as USB DVD ROM and USB stick) is inserted to the computer. Otherwise, this application will malfunction. In addition, some services (such as Google Search and freenode.net irc) may ban the Tor network. However, we can refer to this link to run freenode for NightHawk.
If you run NightHawk on different routers, I suggest you to have different virtual machines of NightHawk for each router. Or, if you insist to use one virtual machine, you can make a snapshot after the installed a working NightHawk. When switching router, you should revert the virtual machine to the previous status when you cannot make the virtual machine function again after running "sudo setup-nighthawk" and reboot. If you can ping your gateway, the new setting is working.
For Windows systems, you may encounter DNS problem on PPTP VPN, this link may help. However, you should consider if there is any DNS leaking or not.
For the usage, such as IRC, FTP and web browsing, you can refer to the above video. Make sure you forward the ports for FTP usage.