69,8 → 69,8 |
HOSTNAME="alcasar" # |
DOMAIN="localdomain" # domaine local |
EXTIF="eth0" # ETH0 est l'interface connectée à Internet (Box FAI) |
MTU="1500" |
ETHTOOL_OPTS="speed 100 duplex full" |
MTU="1492" |
ETHTOOL_OPTS="autoneg off speed 100 duplex full" |
INTIF="eth1" # ETH1 est l'interface connectée au réseau local de consultation |
DEFAULT_PRIVATE_IP_MASK="192.168.182.1/24" # adresse d'ALCASAR (+masque) proposée par défaut sur le réseau de consultation |
# ****** Paths - chemin des commandes ******* |
991,14 → 991,15 |
coaport 3799 |
include $DIR_DEST_ETC/alcasar-uamallowed |
include $DIR_DEST_ETC/alcasar-uamdomain |
#dhcpgateway\t |
#dhcprelayagent\t |
#dhcpgatewayport\t |
#dhcpgateway |
#dhcprelayagent |
#dhcpgatewayport |
EOF |
# create file for DHCP static ip. Reserve the second IP address for eth1 (the first one is for tun0) |
echo "$PRIVATE_MAC $PRIVATE_SECOND_IP" > $DIR_DEST_ETC/alcasar-ethers |
# create files for trusted domains and urls |
touch $DIR_DEST_ETC/alcasar-uamallowed $DIR_DEST_ETC/alcasar-uamdomain |
cp -f $DIR_CONF/alcasar-uam* $DIR_DEST_ETC/. |
# touch $DIR_DEST_ETC/alcasar-uamallowed $DIR_DEST_ETC/alcasar-uamdomain |
chown root:apache $DIR_DEST_ETC/alcasar-* |
chmod 660 $DIR_DEST_ETC/alcasar-* |
# Configuration des fichier WEB d'interception (secret partagé avec coova-chilli) |
1517,7 → 1518,11 |
/sbin/chkconfig --add $i |
done |
|
echo "/usr/local/sbin/alcasar-load_balancing.sh start &" >> /etc/rc.local |
cat << EOF > /etc/rc.local |
/usr/local/sbin/alcasar-load_balancing.sh start & |
sleep 3 |
service radiusd restart |
EOF |
|
# On applique les préconisations ANSSI |
# Apply French Security Agency rules |