Subversion Repositories ALCASAR

Rev

Rev 1552 | Rev 1556 | Go to most recent revision | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log

Rev 1552 Rev 1554
Line 1... Line 1...
1
#!/bin/bash
1
#!/bin/bash
2
#  $Id: alcasar.sh 1552 2015-01-10 18:26:57Z richard $ 
2
#  $Id: alcasar.sh 1554 2015-01-11 22:42:51Z richard $ 
3
 
3
 
4
# alcasar.sh
4
# alcasar.sh
5
 
5
 
6
# ALCASAR Install script -  CopyLeft ALCASAR Team [Rexy + 3abtux + Steweb + Crox + ...] 
6
# ALCASAR Install script -  CopyLeft ALCASAR Team [Rexy + 3abtux + Steweb + Crox + ...] 
7
# Ce programme est un logiciel libre ; This software is free and open source
7
# Ce programme est un logiciel libre ; This software is free and open source
Line 539... Line 539...
539
IPV6INIT=no
539
IPV6INIT=no
540
IPV6TO4INIT=no
540
IPV6TO4INIT=no
541
ACCOUNTING=no
541
ACCOUNTING=no
542
USERCTL=no
542
USERCTL=no
543
MTU=$MTU
543
MTU=$MTU
544
ETHTOOL_OPTS="autoneg off speed 100 duplex full"
-
 
545
EOF
544
EOF
546
	fi
545
	fi
547
# Config INTIF (consultation LAN) in normal mode
546
# Config INTIF (consultation LAN) in normal mode
548
	cat <<EOF > /etc/sysconfig/network-scripts/ifcfg-$INTIF
547
	cat <<EOF > /etc/sysconfig/network-scripts/ifcfg-$INTIF
549
DEVICE=$INTIF
548
DEVICE=$INTIF
Line 555... Line 554...
555
IPV6TO4INIT=no
554
IPV6TO4INIT=no
556
ACCOUNTING=no
555
ACCOUNTING=no
557
USERCTL=no
556
USERCTL=no
558
ETHTOOL_OPTS="autoneg off speed 100 duplex full"
557
ETHTOOL_OPTS="autoneg off speed 100 duplex full"
559
EOF
558
EOF
-
 
559
cp -f /etc/sysconfig/network-scripts/ifcfg-$INTIF /etc/sysconfig/network-scripts/default-ifcfg-$INTIF
560
# Config of INTIF in bypass mode (see "alcasar-bypass.sh")
560
# Config of INTIF in bypass mode (see "alcasar-bypass.sh")
561
	cat <<EOF > /etc/sysconfig/network-scripts/default-ifcfg-$INTIF
561
	cat <<EOF > /etc/sysconfig/network-scripts/bypass-ifcfg-$INTIF
562
DEVICE=$INTIF
562
DEVICE=$INTIF
563
BOOTPROTO=static
563
BOOTPROTO=static
564
IPADDR=$PRIVATE_IP
564
IPADDR=$PRIVATE_IP
565
NETMASK=$PRIVATE_NETMASK
565
NETMASK=$PRIVATE_NETMASK
566
ONBOOT=yes
566
ONBOOT=yes
Line 569... Line 569...
569
MII_NOT_SUPPORTED=yes
569
MII_NOT_SUPPORTED=yes
570
IPV6INIT=no
570
IPV6INIT=no
571
IPV6TO4INIT=no
571
IPV6TO4INIT=no
572
ACCOUNTING=no
572
ACCOUNTING=no
573
USERCTL=no
573
USERCTL=no
-
 
574
ETHTOOL_OPTS="autoneg off speed 100 duplex full"
574
EOF
575
EOF
575
# Mise à l'heure du serveur
576
# Mise à l'heure du serveur
576
	[ -e /etc/ntp/step-tickers.default ] || cp /etc/ntp/step-tickers /etc/ntp/step-tickers.default
577
	[ -e /etc/ntp/step-tickers.default ] || cp /etc/ntp/step-tickers /etc/ntp/step-tickers.default
577
	cat <<EOF > /etc/ntp/step-tickers
578
	cat <<EOF > /etc/ntp/step-tickers
578
0.fr.pool.ntp.org	# adapt to your country
579
0.fr.pool.ntp.org	# adapt to your country
Line 1373... Line 1374...
1373
	for log_type in traceability ssh ext-access
1374
	for log_type in traceability ssh ext-access
1374
	do
1375
	do
1375
		[ -e /lib/systemd/system/ulogd-$log_type.service ] || cp -f /lib/systemd/system/ulogd.service /lib/systemd/system/ulogd-$log_type.service
1376
		[ -e /lib/systemd/system/ulogd-$log_type.service ] || cp -f /lib/systemd/system/ulogd.service /lib/systemd/system/ulogd-$log_type.service
1376
		[ -e /var/log/firewall/$log_type.log ] || echo "" > /var/log/firewall/$log_type.log
1377
		[ -e /var/log/firewall/$log_type.log ] || echo "" > /var/log/firewall/$log_type.log
1377
		cp -f $DIR_CONF/ulogd-sample.conf /etc/ulogd-$log_type.conf
1378
		cp -f $DIR_CONF/ulogd-sample.conf /etc/ulogd-$log_type.conf
1378
		$SED "s?^nlgroup=.*?nlgroup=$nl?g" /etc/ulogd-$log_type.conf 
1379
		$SED "s?^nlgroup=.*?nlgroup=$nl?g" /etc/ulogd-$log_type.conf
-
 
1380
		if [ "$ARCH" == "i586" ]; then $SED "s/lib64/lib/g" /etc/ulogd-$log_type.conf; fi
1379
		cat << EOF >> /etc/ulogd-$log_type.conf
1381
		cat << EOF >> /etc/ulogd-$log_type.conf
1380
[emu1]
1382
[emu1]
1381
file="/var/log/firewall/$log_type.log"
1383
file="/var/log/firewall/$log_type.log"
1382
sync=1
1384
sync=1
1383
EOF
1385
EOF