BlueGreycalmElegant

Català-Valencià – Catalan中文 – Chinese (Simplified)中文 – Chinese (Traditional)Česky – CzechDansk – DanishNederlands – DutchEnglish – EnglishSuomi – FinnishFrançais – FrenchDeutsch – Germanעברית – Hebrewहिंदी – HindiMagyar – HungarianBahasa Indonesia – IndonesianItaliano – Italian日本語 – Japanese한국어 – KoreanМакедонски – Macedonianमराठी – MarathiNorsk – NorwegianPolski – PolishPortuguês – PortuguesePortuguês – Portuguese (Brazil)Русский – RussianSlovenčina – SlovakSlovenščina – SlovenianEspañol – SpanishSvenska – SwedishTürkçe – TurkishУкраїнська – UkrainianOëzbekcha – Uzbek

Compare Revisions

• This comparison shows the changes necessary to convert path

  → / @ 1213

  → / @ 1214

  ↔ Reverse comparison

• Compare Path:	Rev

  With Path:	Rev

Ignore whitespace Rev 1213 → Rev 1214

/conf/nfsen/nfsen-init
File deleted

/conf/nfsen/nfsen.service
0,0 → 1,24
# This file is part of systemd.
#
# systemd is free software; you can redistribute it and/or modify it
# under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
# This unit lauches alcasar-load-balancing.sh script.
[Unit]
Description= NfSen init script
After=network.target iptables.service
[Service]
Type=oneshot
RemainAfterExit=yes
ExecStart=/bin/bash /usr/local/bin/alcasar-iptables.sh
ExecStart=/usr/bin/nfsen start
ExecStop=/usr/bin/nfsen stop
ExecRestart=/usr/bin/nfsen restart
TimeoutSec=0
SysVStartPriority=99
[Install]
WantedBy=multi-user.target

/scripts/alcasar-netflow.sh
0,0 → 1,12
#!/bin/bash
NOW=$(date +%G%m%d)
DIR_SAVE="var/Save/logs/firwall/"
DIR_LOG="/var/log/nfsen/profiles-data/live/ipt_netflow"
DIR_SAVE="/var/Save/logs/firewall"
EXPIRE_DELAY=7
cd $DIR_SAVE
find $DIR_LOG -mtime +$EXPIRE_DELAY -name 'nfcapd.*' | xargs tar -czf tracability.log-$NOW.tar.gz;
exit 0

/alcasar.sh
1213,12 → 1213,13
mkdir -p /var/log/netflow/porttracker
mkdir -p /usr/share/nfsen/plugins
chown -R apache:apache /usr/share/nfsen
cp -f ./conf/nfsen/PortTracker.pm /tmp/nfsen-1.3.6p1/contrib/PortTracker/
cp -f $DIR_CONF/nfsen/PortTracker.pm /tmp/nfsen-1.3.6p1/contrib/PortTracker/
chown apache /var/log/netflow/porttracker
#Copie du fichier de conf modifié de nfsen
cp ./conf/nfsen/nfsen.conf /tmp/nfsen-1.3.6p1/etc/
cp $DIR_CONF/nfsen/nfsen.conf /tmp/nfsen-1.3.6p1/etc/
#Copie du script d'initialisation de nfsen
cp ./conf/nfsen/nfsen-init /etc/init.d/nfsen
cp $DIR_CONF/nfsen/nfsen.service /lib/systemd/system/
systemctl enable nfsen.service
#Installation de nfsen via le scrip Perl
DirTmp=$(pwd)
cd /tmp/nfsen-1.3.6p1/
1248,7 → 1249,7
</Directory>
EOF
#Configuration du délais d'expiration des captures du profile "live"
nfsen -m live -e 365d
nfsen -m live -e 62d
#Suppression des sources de nfsen
cd $DirTmp
rm -rf /tmp/nfsen-1.3.6p1/
1425,7 → 1426,7
EOF
cat << EOF > /etc/cron.d/alcasar-netflow
# mise à jour automatique du délais d'expiration des log Nertflow (tous les vendredi à 0h05)
05 0 * * 5 root /usr/bin/nfexpire -e /var/log/nfsen/profiles-data/ALCASAR/ipt_netflow/ -t 1y -w 90
05 0 * * 5 root $DIR_DEST_BIN/alcasar-netflow.sh
EOF
# mise à jour des stats de connexion (accounting). Scripts provenant de "dialupadmin" (rpm freeradius-web) (cf. wiki.freeradius.org/Dialup_admin).