Install Endpoint

Install and configure endpoint in Pritunl Zero

Create Endpoint

Open the Endpoints tab and click New.

16991699

Set the Name and Roles of the endpoint then click Save. The roles will be used to matching alerts and health checks. For an alert to be triggered one of the endpoint roles must match one of the alert roles. For the alert to be received by a user one of the users roles must match one of the alert roles.

17001700

Install Endpoint

Run the commands below on the Linux endpoint to add the repository and install Pritunl Endpoint. This section contains a limited set of distributions. Refer to the Repositories section for a list of all available distributions.

sudo tee -a /etc/pacman.conf << EOF
[pritunl]
Server = https://repo.pritunl.com/stable/pacman
EOF

sudo pacman-key --keyserver hkp://keyserver.ubuntu.com -r 7568D9BB55FF9E5287D586017AE645C0CF8E292A
sudo pacman-key --lsign-key 7568D9BB55FF9E5287D586017AE645C0CF8E292A
sudo pacman -Sy
sudo pacman -S --noconfirm pritunl-endpoint
sudo tee /etc/yum.repos.d/pritunl.repo << EOF
[pritunl]
name=Pritunl 
baseurl=https://repo.pritunl.com/stable/yum/amazonlinux/2/
gpgcheck=1
enabled=1
EOF

gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 7568D9BB55FF9E5287D586017AE645C0CF8E292A
gpg --armor --export 7568D9BB55FF9E5287D586017AE645C0CF8E292A > key.tmp; sudo rpm --import key.tmp; rm -f key.tmp
sudo yum -y install pritunl-endpoint
sudo tee /etc/yum.repos.d/pritunl.repo << EOF
[pritunl]
name=Pritunl Repository
baseurl=https://repo.pritunl.com/stable/yum/centos/7/
gpgcheck=1
enabled=1
EOF

gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 7568D9BB55FF9E5287D586017AE645C0CF8E292A
gpg --armor --export 7568D9BB55FF9E5287D586017AE645C0CF8E292A > key.tmp; sudo rpm --import key.tmp; rm -f key.tmp
sudo yum -y install pritunl-endpoint
sudo tee /etc/apt/sources.list.d/pritunl.list << EOF
deb https://repo.pritunl.com/stable/apt buster main
EOF

sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com --recv 7568D9BB55FF9E5287D586017AE645C0CF8E292A
sudo apt-get update
sudo apt-get --assume-yes install pritunl-endpoint
sudo tee /etc/yum.repos.d/pritunl.repo << EOF
[pritunl]
name=Pritunl Repository
baseurl=https://repo.pritunl.com/stable/yum/oraclelinux/7/
gpgcheck=1
enabled=1
EOF

sudo yum -y install yum-utils
gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 7568D9BB55FF9E5287D586017AE645C0CF8E292A
gpg --armor --export 7568D9BB55FF9E5287D586017AE645C0CF8E292A > key.tmp; sudo rpm --import key.tmp; rm -f key.tmp
sudo yum -y install pritunl-endpoint
sudo tee /etc/yum.repos.d/pritunl.repo << EOF
[pritunl]
name=Pritunl Repository
baseurl=https://repo.pritunl.com/stable/yum/oraclelinux/8/
gpgcheck=1
enabled=1
EOF

gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 7568D9BB55FF9E5287D586017AE645C0CF8E292A
gpg --armor --export 7568D9BB55FF9E5287D586017AE645C0CF8E292A > key.tmp; sudo rpm --import key.tmp; rm -f key.tmp
sudo yum -y install pritunl-endpoint
sudo tee /etc/apt/sources.list.d/pritunl.list << EOF
deb https://repo.pritunl.com/stable/apt focal main
EOF

sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com --recv 7568D9BB55FF9E5287D586017AE645C0CF8E292A
sudo apt-get update
sudo apt-get --assume-yes install pritunl-endpoint

Configure Endpoint

Copy the Registration URI from the endpoint web console page above and run the commands below with the URI. The domain name in the URI should be the domain that the endpoint will use to access the Pritunl Zero server. To change it refer to the node settings in the Getting Started section.

sudo pritunl-endpoint register pritunl://demo.pritunl.com/bc926c8853aea272dd16c4f4_N0HkgYUBCybqy0ipAJWtX5k2MKOVtySvDORTuUpGDrmxp6y8ASAZmbt9dqRT8ron
sudo systemctl start pritunl-endpoint
sudo systemctl enable pritunl-endpoint

Once the endpoint is configured private keys will be generated on the endpoint that will be used to handle authentication and encryption of endpoint traffic. The endpoint URI will no longer be valid, to reconfigure it click Reset Key. After a few minutes data should begin to populate the charts.

18151815

Alerts and Health Checks

Refer to the Endpoint Alerts section to configure an alert. Refer to the Endpoint Health Check section to configure HTTP health checks.