BEGINNER’S GUIDE: STEP-BY-STEP LINK MACAUDEWA SETUP TUTORIAL
Link Macaudewa is a lightweight, open-source tool that lets you create secure, private links between devices without relying on third-party servers. It’s perfect for beginners who want to share files, access remote computers, or set up a personal VPN without complicated configurations. This guide will walk you through every step, from installation to your first successful connection.
—
INSTALLATION: GET LINK link macaudewa RUNNING IN MINUTES
DOWNLOAD THE CORRECT BINARY FOR YOUR OPERATING SYSTEM
Visit the official GitHub releases page at https://github.com/macaudewa/link/releases and grab the latest version for Windows (link-windows-amd64.exe), macOS (link-darwin-amd64), or Linux (link-linux-amd64). Avoid third-party mirrors—stick to GitHub for security.
VERIFY THE DOWNLOAD WITH SHA256 CHECKSUMS
Open a terminal (Command Prompt on Windows, Terminal on macOS/Linux) and run `certutil -hashfile link-windows-amd64.exe SHA256` (Windows) or `shasum -a 256 link-darwin-amd64` (macOS/Linux). Compare the output to the checksum listed on the GitHub releases page. If they don’t match, delete the file and redownload.
RENAME THE BINARY TO “LINK” FOR EASIER COMMAND-LINE USE
Right-click the downloaded file, select “Rename,” and change it to just `link` (or `link.exe` on Windows). This saves you from typing long filenames every time you run a command.
MOVE THE BINARY TO A PERMANENT LOCATION IN YOUR SYSTEM PATH
On Windows, move `link.exe` to `C:WindowsSystem32`. On macOS/Linux, move it to `/usr/local/bin` using `sudo mv link /usr/local/bin/`. This lets you run `link` from any terminal window without specifying the full path.
RUN THE SELF-TEST TO CONFIRM INSTALLATION
Open a terminal and type `link –version`. If you see a version number (e.g., `v0.4.2`), the installation worked. If you get an error, double-check the file location and permissions.
—
BASIC CONFIGURATION: SET UP YOUR FIRST LINK
GENERATE A NEW KEY PAIR FOR SECURE COMMUNICATION
Run `link keygen` in your terminal. This creates two files: `id_ed25519` (your private key—never share this) and `id_ed25519.pub` (your public key—share this with others). Store the private key in a secure folder like `~/.link/` (macOS/Linux) or `C:UsersYourName.link` (Windows).
CREATE A SIMPLE CONFIG FILE TO AVOID TYPING REPEATED FLAGS
Open a text editor and create a file named `config.yml` in your `.link` folder. Add these lines:
“`
port: 5000
key: ~/.link/id_ed25519
“`
Save it. Now you can run `link serve` instead of `link serve –port 5000 –key ~/.link/id_ed25519` every time.
START THE LINK SERVER IN THE BACKGROUND
Run `link serve &` (macOS/Linux) or `start /B link serve` (Windows). This keeps the server running even if you close the terminal. To stop it later, run `pkill -f link` (macOS/Linux) or `taskkill /IM link.exe /F` (Windows).
SHARE YOUR PUBLIC KEY WITH A TRUSTED DEVICE
Send the `id_ed25519.pub` file to the other device via email, USB drive, or a secure messaging app. Never share the private key. The recipient will use this to authenticate with your server.
ADD A PEER BY EDITING THE CONFIG FILE
On the other device, open `~/.link/config.yml` and add:
“`
peers:
– name: my-pc
key: /path/to/your/public_key.pub
address: your-public-ip:5000
“`
Replace `your-public-ip` with your actual public IP (find it at https://whatismyip.com). If you’re behind a router, forward port 5000 to your local IP.
TEST THE CONNECTION WITH A PING
On the other device, run `link ping my-pc`. If you see `pong` in the response, the link is working. If not, check your firewall, port forwarding, and IP address.
—
ADVANCED SETUP: OPTIMIZE FOR SPEED AND SECURITY
USE A DOMAIN NAME INSTEAD OF A RAW IP ADDRESS
Buy a cheap domain (e.g., from Namecheap) and point it to your public IP using an A record. Update the peer’s `address` field in `config.yml` to `yourdomain.com:5000`. This makes it easier to remember and allows you to change IPs later.
ENABLE ENCRYPTION WITH TLS FOR EXTRA SECURITY
Generate a self-signed certificate with `openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365 -nodes`. Then update `config.yml`:
“`
tls:
cert: /path/to/cert.pem
key: /path/to/key.pem
“`
Restart the server. Now all traffic is encrypted.
SET UP PORT FORWARDING ON YOUR ROUTER
Log in to your router’s admin panel (usually at `192.168.1.1`), find the port forwarding section, and forward external port 5000 to your local IP on port 5000. This lets external devices connect to your server.
USE A DYNAMIC DNS SERVICE IF YOUR IP CHANGES FREQUENTLY
Sign up for a free dynamic DNS service like No-IP or DuckDNS. Install their client on your computer to automatically update your domain’s IP. Update the peer’s `address` field to use the dynamic DNS hostname (e.g., `yourhost.ddns.net:5000`).
LIMIT ACCESS WITH FIREWALL RULES
On Windows, open Windows Defender Firewall and allow inbound connections only from the peer’s IP. On macOS/Linux, run `sudo ufw allow from 123.45.67.89 to any port 5000` (replace with the peer’s IP). This blocks unauthorized access.
CREATE A SYSTEM SERVICE TO RUN LINK AUTOMATICALLY ON BOOT
On Linux, create `/etc/systemd/system/link.service` with:
“`
[Unit]
Description=Link Macaudewa Server
After=network.target
[Service]
ExecStart=/usr/local/bin/link serve
Restart=always
User=yourusername
[Install]
WantedBy=multi-user.target
“`
Run