Line 1... |
Line 1... |
1 |
#!/bin/sh
|
1 |
#!/bin/sh
|
2 |
# $Id: alcasar.sh 254 2010-09-15 11:58:02Z franck $
|
2 |
# $Id: alcasar.sh 259 2010-09-16 20:57:51Z richard $
|
3 |
|
3 |
|
4 |
# alcasar.sh
|
4 |
# alcasar.sh
|
5 |
# by Franck BOUIJOUX, Pascal LEVANT and Richard REY
|
5 |
# by Franck BOUIJOUX, Pascal LEVANT and Richard REY
|
6 |
# This script is distributed under the Gnu General Public License (GPL)
|
6 |
# This script is distributed under the Gnu General Public License (GPL)
|
7 |
|
7 |
|
Line 196... |
Line 196... |
196 |
# On mets à jour le système
|
196 |
# On mets à jour le système
|
197 |
urpmi --auto --auto-update
|
197 |
urpmi --auto --auto-update
|
198 |
# On installe les paquetages complémentaires
|
198 |
# On installe les paquetages complémentaires
|
199 |
urpmi --auto $PACKAGES
|
199 |
urpmi --auto $PACKAGES
|
200 |
# On supprime les paquetages et les services inutiles
|
200 |
# On supprime les paquetages et les services inutiles
|
201 |
for rm_rpm in avahi mandi shorewall-common shorewall libc-icap0 cyrus-sasl
|
201 |
for rm_rpm in avahi mandi shorewall libc-icap0 cyrus-sasl
|
202 |
do
|
202 |
do
|
203 |
/usr/sbin/urpme --auto $rm_rpm
|
203 |
/usr/sbin/urpme --auto $rm_rpm
|
204 |
done
|
204 |
done
|
205 |
for svc in alsa sound dm atd dc_server
|
205 |
for svc in alsa sound dm atd dc_server
|
206 |
do
|
206 |
do
|
Line 820... |
Line 820... |
820 |
$SED "s?^HS_WWWDIR.*?# HS_WWWDIR?g" /etc/chilli/config
|
820 |
$SED "s?^HS_WWWDIR.*?# HS_WWWDIR?g" /etc/chilli/config
|
821 |
$SED "s?^HS_WWWBIN.*?# HS_WWWBIN?g" /etc/chilli/config
|
821 |
$SED "s?^HS_WWWBIN.*?# HS_WWWBIN?g" /etc/chilli/config
|
822 |
$SED "s?^HS_PROVIDER_LINK.*?HS_PROVIDER_LINK=https://\$HS_UAMSERVER/?g" /etc/chilli/config
|
822 |
$SED "s?^HS_PROVIDER_LINK.*?HS_PROVIDER_LINK=https://\$HS_UAMSERVER/?g" /etc/chilli/config
|
823 |
echo "HS_COAPORT=3799" >> /etc/chilli/config
|
823 |
echo "HS_COAPORT=3799" >> /etc/chilli/config
|
824 |
echo "HS_ADMINTERVAL=0" >> /etc/chilli/config
|
824 |
echo "HS_ADMINTERVAL=0" >> /etc/chilli/config
|
825 |
cat <<EOF >> /etc/chilli/config
|
825 |
# cat <<EOF >> /etc/chilli/config
|
826 |
# Usage d'un DHCPD externe a coova (dhcpd local ou extérieur)
|
826 |
## Usage d'un DHCPD externe a coova (dhcpd local ou extérieur)
|
827 |
HS_USE_DHCPD_EXT="on"
|
827 |
#HS_USE_DHCPD_EXT="on"
|
828 |
HS_DHCP_GATEWAY_IP=127.0.0.1
|
828 |
#HS_DHCP_GATEWAY_IP=127.0.0.1
|
829 |
HS_DHCP_GATEWAY_PORT=67
|
829 |
#HS_DHCP_GATEWAY_PORT=67
|
830 |
HS_DHCP_RELAY_AGENT_IP=127.0.0.1
|
830 |
#HS_DHCP_RELAY_AGENT_IP=127.0.0.1
|
831 |
HS_USE_DHCP_RADIUS="no"
|
831 |
#HS_USE_DHCP_RADIUS="no"
|
832 |
EOF
|
832 |
#EOF
|
833 |
# création des fichiers de sites, d'urls et d'adresses MAC de confiance
|
833 |
# création des fichiers de sites, d'urls et d'adresses MAC de confiance
|
834 |
echo -e "HS_UAMALLOW=\"\"" > /etc/chilli/alcasar-uamallowed
|
834 |
echo -e "HS_UAMALLOW=\"\"" > /etc/chilli/alcasar-uamallowed
|
835 |
echo -e "HS_UAMDOMAINS=\"\"" > /etc/chilli/alcasar-uamdomain
|
835 |
echo -e "HS_UAMDOMAINS=\"\"" > /etc/chilli/alcasar-uamdomain
|
836 |
$SED "s?^# HS_MACAUTHMODE=.*?HS_MACAUTHMODE=local?g" /etc/chilli/config
|
836 |
$SED "s?^# HS_MACAUTHMODE=.*?HS_MACAUTHMODE=local?g" /etc/chilli/config
|
837 |
echo -e "HS_MACALLOW=\"\"" > /etc/chilli/alcasar-macallowed
|
837 |
echo -e "HS_MACALLOW=\"\"" > /etc/chilli/alcasar-macallowed
|
Line 1040... |
Line 1040... |
1040 |
param_dnsmasq ()
|
1040 |
param_dnsmasq ()
|
1041 |
{
|
1041 |
{
|
1042 |
[ -d /etc/dnsmasq.d ] || mkdir /etc/dnsmasq.d
|
1042 |
[ -d /etc/dnsmasq.d ] || mkdir /etc/dnsmasq.d
|
1043 |
[ -d /var/log/dnsmasq ] || mkdir /var/log/dnsmasq
|
1043 |
[ -d /var/log/dnsmasq ] || mkdir /var/log/dnsmasq
|
1044 |
[ -e /etc/dnsmasq.conf ] || cp /etc/dnsmasq.conf /etc/dnsmasq.conf.default
|
1044 |
[ -e /etc/dnsmasq.conf ] || cp /etc/dnsmasq.conf /etc/dnsmasq.conf.default
|
1045 |
$SED "s?^[^#]?#&?g" /etc/dnsmasq.conf # (on commente ce qui ne l'est pas)
|
1045 |
$SED "s?^[^#]?#&?g" /etc/dnsmasq.conf # (on commente ce qui ne l'est pas)
|
1046 |
cp -f $DIR_CONF/alcasar-dnsmasq.conf /etc/dnsmasq.d/.
|
- |
|
1047 |
$SED "s?^#conf-dir=.*?conf-dir=/etc/dnsmasq.d?g" /etc/dnsmasq.conf # les fichiers de config se trouvent dans /etc/dnsmasq.d/*
|
1046 |
$SED "s?^#conf-dir=.*?conf-dir=/etc/dnsmasq.d?g" /etc/dnsmasq.conf # les fichiers de config se trouvent dans /etc/dnsmasq.d/*
|
- |
|
1047 |
$SED "s?^DHCP_LEASE=.*?DHCP_LEASE=/var/log/dnsmasq/lease.log?g" /etc/sysconfig/dnsmasq # fichier contenant les baux
|
- |
|
1048 |
# on crée le fichier de conf spécifique pour Alcasar
|
1048 |
$SED "s?^domain=.*?domain=$DOMAIN?g" /etc/dnsmasq.d/alcasar-dnsmasq.conf
|
1049 |
cat << EOF > /etc/dnsmasq.d/alcasar-dnsmasq.conf
|
1049 |
$SED "s?^#listen-address=.*?listen-address=$PRIVATE_IP?g" /etc/dnsmasq.d/alcasar-dnsmasq.conf
|
1050 |
# Inclusion de la blacklist <domains> de Toulouse dans la configuration
|
- |
|
1051 |
conf-dir=/usr/local/etc/alcasar-dnsfilter-enabled
|
- |
|
1052 |
|
- |
|
1053 |
listen-address=$PRIVATE_IP
|
- |
|
1054 |
listen-address=127.0.0.1
|
- |
|
1055 |
no-dhcp-interfaces=$INTIF
|
- |
|
1056 |
bind-interfaces
|
- |
|
1057 |
|
- |
|
1058 |
cache-size=256
|
- |
|
1059 |
domain=$DOMAIN
|
- |
|
1060 |
domain-needed
|
- |
|
1061 |
expand-hosts
|
- |
|
1062 |
bogus-priv
|
- |
|
1063 |
filterwin2k
|
- |
|
1064 |
server=$DNS1
|
- |
|
1065 |
server=$DNS2
|
- |
|
1066 |
|
1050 |
$SED "s?^#dhcp-range=.*?dhcp-range=$ORGANISME,$PRIVATE_DYN_FIRST_IP,$PRIVATE_DYN_LAST_IP,$PRIVATE_MASK,12h?g" /etc/dnsmasq.d/alcasar-dnsmasq.conf
|
1067 |
dhcp-range=$ORGANISME,$PRIVATE_DYN_FIRST_IP,$PRIVATE_DYN_LAST_IP,$PRIVATE_MASK,12h
|
- |
|
1068 |
#dhcp-option=3,1.2.3.4
|
- |
|
1069 |
#dhcp-option=option:router,1.2.3.4
|
- |
|
1070 |
#dhcp-option=42,0.0.0.0
|
1051 |
$SED "s?^#server=.*?server=$DNS1?g" /etc/dnsmasq.d/alcasar-dnsmasq.conf
|
1071 |
#dhcp-option=option:ntp-server,192.168.0.4,10.10.0.5
|
- |
|
1072 |
|
1052 |
$SED "/^server=/a\server=$DNS2" /etc/dnsmasq.d/alcasar-dnsmasq.conf
|
1073 |
# Exemple de configuration statique
|
1053 |
$SED "s?^DHCP_LEASE=.*?DHCP_LEASE=/var/log/dnsmasq/lease.log?g" /etc/sysconfig/dnsmasq
|
1074 |
#dhcp-host=11:22:33:44:55:66,ssic-test,192.168.10.20,255.255.255.0,45m
|
- |
|
1075 |
EOF
|
1054 |
mkdir /usr/local/etc/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}
|
1076 |
mkdir /usr/local/etc/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}
|
1055 |
chown -R 770 /usr/local/etc/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}
|
1077 |
chown -R 770 /usr/local/etc/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}
|
1056 |
chown -R root:apache /usr/local/etc/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}
|
1078 |
chown -R root:apache /usr/local/etc/{alcasar-dnsfilter-available,alcasar-dnsfilter-enabled}
|
1057 |
/usr/local/bin/alcasar-dnsfilter-import.sh
|
1079 |
/usr/local/bin/alcasar-dnsfilter-import.sh
|
1058 |
/usr/local/bin/alcasar-dnsfilter-activate.sh
|
1080 |
/usr/local/bin/alcasar-dnsfilter-activate.sh
|