Compare commits
26 Commits
v0.0.4f-ps
...
v0.0.4z-aa
| Author | SHA1 | Date | |
|---|---|---|---|
| 167060157c | |||
| 30fd771045 | |||
| ca2f1ca8a1 | |||
| f185789e08 | |||
| 2a8ecb7f18 | |||
| 206291e753 | |||
| 87c1d8eee6 | |||
| 5224ae00cd | |||
| fa000f3116 | |||
| ad2dadb0b6 | |||
| abad0fcdbc | |||
| a7a9752aa0 | |||
| 4490b84c15 | |||
| 46ad76af18 | |||
| 019096fb7e | |||
| 993c34b934 | |||
| fe914d9894 | |||
| 83bfd34e91 | |||
| 00289e1bcb | |||
| 8f3f364152 | |||
| e36f8af7e6 | |||
| 495546fae7 | |||
| c29549a281 | |||
| 761d3a00bc | |||
| aadc552dc3 | |||
| 3cbae83a73 |
@ -1,12 +1,13 @@
|
||||
#!/bin/bash
|
||||
## aa : 2023-04-18 15:25
|
||||
## aa : 2023-01-18 15:25
|
||||
## ps : 2023-02-01 15:25
|
||||
|
||||
set -o errexit
|
||||
set -o pipefail
|
||||
GITUSR=gitgsb
|
||||
GITPRJ=gsb2023
|
||||
apt update && apt upgrade
|
||||
apt install -y apache2 git
|
||||
apt-get update
|
||||
apt-get install -y apache2 git
|
||||
STOREREP="/var/www/html/gsbstore"
|
||||
|
||||
GLPIREL=10.0.6
|
||||
|
||||
@ -13,9 +13,9 @@
|
||||
- goss
|
||||
# - snmp-agent
|
||||
# - firewall-vpn-r
|
||||
- post
|
||||
- wireguard-r
|
||||
# - x509-r
|
||||
- fw-ferm
|
||||
- ssh-cli
|
||||
- syslog-cli
|
||||
- post
|
||||
|
||||
|
||||
@ -27,6 +27,8 @@
|
||||
192.168.99.102 s-lb-web2.gsb.adm
|
||||
192.168.99.103 s-lb-web3.gsb.adm
|
||||
192.168.99.112 r-vp1.gsb.adm
|
||||
192.168.99.102 r-vp2.gsb.adm
|
||||
|
||||
|
||||
192.168.99.8 syslog.gsb.adm
|
||||
|
||||
|
||||
@ -26,6 +26,7 @@
|
||||
192.168.99.102 s-lb-web2.gsb.adm
|
||||
192.168.99.103 s-lb-web3.gsb.adm
|
||||
192.168.99.112 r-vp1.gsb.adm
|
||||
192.168.99.102 r-vp2.gsb.adm
|
||||
|
||||
192.168.99.8 syslog.gsb.adm
|
||||
|
||||
|
||||
@ -109,12 +109,12 @@ log-facility local7;
|
||||
#DHCP pour le réseau wifi
|
||||
#subnet 172.16.65.0 netmask 255.255.255.0 {
|
||||
# range 172.16.65.1 172.16.65.100;
|
||||
# option domain-name-servers ns1.internal.example.org;
|
||||
# option domain-name "internal.example.org";
|
||||
# option routers 10.5.5.1;
|
||||
# option broadcast-address 10.5.5.31;
|
||||
# default-lease-time 600;
|
||||
# max-lease-time 7200;
|
||||
# option domain-name-servers ns1.internal.example.org;
|
||||
# option domain-name "internal.example.org";
|
||||
# option routers 10.5.5.1;
|
||||
# option broadcast-address 10.5.5.31;
|
||||
# default-lease-time 600;
|
||||
# max-lease-time 7200;
|
||||
#}
|
||||
|
||||
#DHCP pour le réseau USER
|
||||
|
||||
@ -10,5 +10,3 @@
|
||||
copy: src=dhcpd.conf dest=/etc/dhcp/
|
||||
notify:
|
||||
- restart isc-dhcp-server
|
||||
|
||||
|
||||
|
||||
@ -1,17 +1,15 @@
|
||||
---
|
||||
- name: creation d'un repertoire fog
|
||||
file:
|
||||
path: /root/tools/fog
|
||||
state: directory
|
||||
|
||||
- name: recuperation de l'archive d'installation fog sur git
|
||||
git:
|
||||
repo: https://gitea.lyc-lecastel.fr/gadmin/fog.git
|
||||
dest: /root/tools/fog/
|
||||
clone: yes
|
||||
update: yes
|
||||
force: yes
|
||||
|
||||
#- name: Instructions
|
||||
# tags: msg
|
||||
# debug: msg='{{instructions}}'
|
||||
|
||||
- name: Modification fichier bash (desac UDPCast)
|
||||
ansible.builtin.lineinfile:
|
||||
path: /root/tools/fog/lib/common/functions.sh
|
||||
regexp: '^configureUDPCast\(\).*'
|
||||
line: "configureUDPCast() {\nreturn"
|
||||
backup: yes
|
||||
|
||||
@ -10,4 +10,4 @@
|
||||
dest: /etc/fstab
|
||||
regexp: ''
|
||||
insertafter: EOF
|
||||
line: '192.168.102.253:/home/wordpress /var/www/html/wordpress nfs soft,timeo=5,intr,rsize=8192,wsize=8192,wsize=8192 0 0'
|
||||
line: '192.168.102.253:/home/ /var/www/html/wordpress nfs soft,timeo=5,intr,rsize=8192,wsize=8192,wsize=8192 0 0'
|
||||
|
||||
@ -60,7 +60,7 @@
|
||||
replace:
|
||||
path: /home/wordpress/wp-config.php
|
||||
regexp: "localhost"
|
||||
replace: "192.168.102.253"
|
||||
replace: "192.168.102.254"
|
||||
backup: yes
|
||||
|
||||
- name: 55 - relance nfs
|
||||
|
||||
@ -1,11 +1,13 @@
|
||||
---
|
||||
- name:
|
||||
- apache2
|
||||
- php
|
||||
- php-mbstring
|
||||
- php-mysql
|
||||
- mariadb-client
|
||||
state: present
|
||||
- name: installation des paquets web
|
||||
apt:
|
||||
name:
|
||||
- apache2
|
||||
- php
|
||||
- php-mbstring
|
||||
- php-mysql
|
||||
- mariadb-client
|
||||
state: present
|
||||
|
||||
- name: install nfs-common
|
||||
apt:
|
||||
@ -16,11 +18,11 @@
|
||||
blockinfile:
|
||||
path: /etc/fstab
|
||||
block: |
|
||||
192.168.56.6:/exports/wordpress /var/www/html nfs soft,timeo=5,intr,rsize=8192,wsize=8192,wsize=8192 0 0
|
||||
192.168.102.253:/home/wordpress /var/www/html nfs soft,timeo=5,intr,rsize=8192,wsize=8192,wsize=8192 0 0
|
||||
|
||||
- name: monte export wordpress
|
||||
ansible.posix.mount:
|
||||
path: /var/www/html
|
||||
state: mounted
|
||||
fstype: nfs
|
||||
src: 192.168.56.6:/exports/wordpress
|
||||
#- name: monte export wordpress
|
||||
# ansible.posix.mount:
|
||||
# path: /var/www/html
|
||||
# state: mounted
|
||||
# fstype: nfs
|
||||
# src: 192.168.102.253:/exports/wordpress
|
||||
|
||||
80
roles/nxc-traefik/files/docker-compose.yml
Normal file
80
roles/nxc-traefik/files/docker-compose.yml
Normal file
@ -0,0 +1,80 @@
|
||||
version: '3'
|
||||
volumes:
|
||||
nextcloud:
|
||||
db:
|
||||
|
||||
networks:
|
||||
proxy:
|
||||
external: true
|
||||
nxc:
|
||||
external: false
|
||||
|
||||
services:
|
||||
reverse-proxy:
|
||||
# The official v2 Traefik docker image
|
||||
image: traefik:latest
|
||||
container_name: traefik
|
||||
# Enables the web UI and tells Traefik to listen to docker
|
||||
command: --api.insecure=true --providers.docker
|
||||
ports:
|
||||
# The HTTP port
|
||||
- "80:80"
|
||||
- "443:443"
|
||||
# The Web UI (enabled by --api.insecure=true)
|
||||
- "8080:8080"
|
||||
volumes:
|
||||
# So that Traefik can listen to the Docker events
|
||||
- /var/run/docker.sock:/var/run/docker.sock:ro
|
||||
# Map the static configuration into the container
|
||||
- ./config/static.yml:/etc/traefik/traefik.yml:ro
|
||||
# Map the dynamic configuration into the container
|
||||
- ./config/dynamic.yml:/etc/traefik/dynamic.yml:ro
|
||||
# Map the certificats into the container
|
||||
- ./certs:/etc/certs:ro
|
||||
networks:
|
||||
- proxy
|
||||
|
||||
db:
|
||||
image: mariadb:10.5
|
||||
container_name: db
|
||||
restart: always
|
||||
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
|
||||
volumes:
|
||||
- db:/var/lib/mysql
|
||||
networks:
|
||||
- nxc
|
||||
environment:
|
||||
- MYSQL_ROOT_PASSWORD=Azerty1+
|
||||
- MYSQL_PASSWORD=Azerty1+
|
||||
- MYSQL_DATABASE=nextcloud
|
||||
- MYSQL_USER=nextcloud
|
||||
|
||||
app:
|
||||
image: nextcloud
|
||||
container_name: app
|
||||
restart: always
|
||||
ports:
|
||||
- 8081:80
|
||||
#links:
|
||||
depends_on:
|
||||
- db
|
||||
volumes:
|
||||
- ./nextcloud:/var/www/html
|
||||
networks:
|
||||
- proxy
|
||||
- nxc
|
||||
labels:
|
||||
# - "traefik.enable=true"
|
||||
- "traefik.http.routers.app.rule=Host(`s-nxc.gsb.lan`)"
|
||||
- "traefik.http.routers.app.tls=true"
|
||||
- "traefik.enable=true"
|
||||
- "traefik.docker.network=proxy"
|
||||
# - "traefik.http.routers.app.entrypoints=websecure"
|
||||
# - "traefik.http.routers.app.rule=Host(`mon.nxc`)"
|
||||
- "traefik.http.routers.app.service=app-service"
|
||||
- "traefik.http.services.app-service.loadbalancer.server.port=80"
|
||||
environment:
|
||||
- MYSQL_PASSWORD=Azerty1+
|
||||
- MYSQL_DATABASE=nextcloud
|
||||
- MYSQL_USER=nextcloud
|
||||
- MYSQL_HOST=db
|
||||
@ -1,58 +0,0 @@
|
||||
version: '2'
|
||||
|
||||
volumes:
|
||||
# nextcloud:
|
||||
db:
|
||||
|
||||
services:
|
||||
db:
|
||||
image: mariadb
|
||||
container_name: db
|
||||
restart: always
|
||||
#command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
|
||||
command: --innodb-read-only-compressed=OFF
|
||||
volumes:
|
||||
- db:/var/lib/mysql
|
||||
networks:
|
||||
- nxc-db
|
||||
environment:
|
||||
- MYSQL_ROOT_PASSWORD=blabla
|
||||
- MYSQL_PASSWORD=blabla
|
||||
- MYSQL_DATABASE=nextcloud
|
||||
- MYSQL_USER=nextcloud
|
||||
|
||||
nxc:
|
||||
image: nextcloud
|
||||
restart: always
|
||||
container_name: nxc
|
||||
# ports:
|
||||
# - 8080:80
|
||||
# links:
|
||||
depends_on:
|
||||
- db
|
||||
volumes:
|
||||
- ./nextcloud:/var/www/html
|
||||
environment:
|
||||
- MYSQL_PASSWORD=blabla
|
||||
- MYSQL_DATABASE=nextcloud
|
||||
- MYSQL_USER=nextcloud
|
||||
- MYSQL_HOST=db
|
||||
labels:
|
||||
# Enable this container to be mapped by traefik
|
||||
# For more information, see: https://docs.traefik.io/providers/docker/#exposedbydefault
|
||||
- "traefik.enable=true"
|
||||
# URL to reach this container
|
||||
- "traefik.http.routers.nxc.rule=Host(`s-nxc.gsb.lan`)"
|
||||
# Activation of TLS
|
||||
- "traefik.http.routers.nxc.tls=true"
|
||||
# If port is different than 80, use the following service:
|
||||
#- "traefik.http.services.<service_name>.loadbalancer.server.port=<port>"
|
||||
# - "traefik.http.services.app.loadbalancer.server.port=8080"
|
||||
networks:
|
||||
- proxy
|
||||
- nxc-db
|
||||
networks:
|
||||
proxy:
|
||||
external: true
|
||||
nxc-db:
|
||||
external: false
|
||||
@ -1,6 +1,4 @@
|
||||
#!/bin/bash
|
||||
docker-compose -f nextcloud.yml down
|
||||
docker-compose -f traefik.yml down
|
||||
docker compose down -v
|
||||
sleep 1
|
||||
docker-compose -f traefik.yml up -d --remove-orphans
|
||||
docker-compose -f nextcloud.yml up -d
|
||||
docker compose up -d
|
||||
|
||||
@ -1,4 +1,6 @@
|
||||
#!/bin/bash
|
||||
docker volume prune -f
|
||||
docker container prune -f
|
||||
docker image prune -f
|
||||
|
||||
docker compose down -v
|
||||
#docker volume prune -f
|
||||
#docker container prune -f
|
||||
#docker image prune -f
|
||||
|
||||
@ -1,3 +1,2 @@
|
||||
#!/bin/bash
|
||||
docker-compose -f traefik.yml up -d
|
||||
docker-compose -f nextcloud.yml up -d
|
||||
docker compose up -d
|
||||
|
||||
@ -1,3 +1,2 @@
|
||||
#!/bin/bash
|
||||
docker-compose -f nextcloud.yml down
|
||||
docker-compose -f traefik.yml down
|
||||
docker compose down
|
||||
|
||||
@ -1,28 +0,0 @@
|
||||
version: '3'
|
||||
|
||||
services:
|
||||
reverse-proxy:
|
||||
#image: traefik:v2.5
|
||||
image: traefik
|
||||
container_name: traefik
|
||||
restart: always
|
||||
security_opt:
|
||||
- no-new-privileges:true
|
||||
ports:
|
||||
# Web
|
||||
- 80:80
|
||||
- 443:443
|
||||
volumes:
|
||||
- /var/run/docker.sock:/var/run/docker.sock:ro
|
||||
# Map the static configuration into the container
|
||||
- ./config/static.yml:/etc/traefik/traefik.yml:ro
|
||||
# Map the dynamic configuration into the container
|
||||
- ./config/dynamic.yml:/etc/traefik/dynamic.yml:ro
|
||||
# Map the certificats into the container
|
||||
- ./certs:/etc/certs:ro
|
||||
networks:
|
||||
- proxy
|
||||
|
||||
networks:
|
||||
proxy:
|
||||
external: true
|
||||
@ -24,14 +24,9 @@
|
||||
src: dynamic.yml
|
||||
dest: /root/nxc/config
|
||||
|
||||
- name: Copie de nextcloud.yml
|
||||
- name: Copie de docker-compose.yml
|
||||
copy:
|
||||
src: nextcloud.yml
|
||||
dest: /root/nxc
|
||||
|
||||
- name: Copie de traefik.yml
|
||||
copy:
|
||||
src: traefik.yml
|
||||
src: docker-compose.yml
|
||||
dest: /root/nxc
|
||||
|
||||
- name: Copie de nxc-stop.sh
|
||||
@ -76,3 +71,8 @@
|
||||
|
||||
- name: Creation reseau docker proxy
|
||||
command: docker network create proxy
|
||||
|
||||
- name: Démarrage du docker-compose...
|
||||
command: /bin/bash docker-compose up -d
|
||||
args:
|
||||
chdir: /root/nxc
|
||||
|
||||
@ -1,10 +1,14 @@
|
||||
---
|
||||
|
||||
- name: Creation de .ssh
|
||||
file: path=/root/.ssh mode=0700 state=directory
|
||||
file:
|
||||
path: /root/.ssh
|
||||
mode: 0700
|
||||
state: directory
|
||||
|
||||
- name: Copie cle public s-adm
|
||||
shell: curl 192.168.99.99/id_rsa.pub > ~/.ssh/authorized_keys
|
||||
- name: Copie cle publiique depuis s-adm
|
||||
ansible.posix.authorized_key:
|
||||
user: root
|
||||
state: present
|
||||
key: http://s-adm.gsb.adm/id_rsa.pub
|
||||
|
||||
#- name: Copie cle public s-spec
|
||||
# shell: curl 192.168.99.10/id_rsa.pub >> ~/.ssh/authorized_keys
|
||||
|
||||
@ -14,8 +14,7 @@
|
||||
name: wireguard-tools
|
||||
state: present
|
||||
|
||||
#- name: copie du fichier de configuration depuis r-vp1
|
||||
# command: "sshpass -p 'root' scp -r root@192.168.99.112:/root/confwg/wg0-b.conf /etc/wireguard/"
|
||||
|
||||
|
||||
#- name: renommage du fichier de configuration
|
||||
# command: "mv /etc/wireguard/wg0-b.conf /etc/wireguard/wg0.conf"
|
||||
|
||||
@ -39,3 +39,4 @@
|
||||
name: wg-quick@wg0
|
||||
enabled: yes
|
||||
state: restarted
|
||||
|
||||
|
||||
@ -4,6 +4,6 @@
|
||||
|
||||
roles:
|
||||
- base
|
||||
- post
|
||||
- lb-web
|
||||
- snmp-agent
|
||||
- post
|
||||
|
||||
@ -4,6 +4,6 @@
|
||||
|
||||
roles:
|
||||
- base
|
||||
- post
|
||||
- lb-web
|
||||
- snmp-agent
|
||||
- post
|
||||
|
||||
@ -1,6 +1,6 @@
|
||||
#!/bin/bash
|
||||
|
||||
mkvmrelease="v1.2"
|
||||
mkvmrelease="v1.2.1"
|
||||
|
||||
ovarelease="2023a"
|
||||
ovafogrelease="2023a"
|
||||
@ -11,7 +11,7 @@ deletemode=0
|
||||
usage () {
|
||||
echo "$0 - version ${mkvmrelease} - Ova version ${ovarelease}"
|
||||
echo "$0 : creation VM et parametrage interfaces"
|
||||
echo "usage : $0 [-r] <s-infra|r-int|r-ext|s-proxy|s-mon|s-appli|s-backup|s-itil|s-ncx|s-fog>"
|
||||
echo "usage : $0 [-r] <s-adm|s-infra|r-int|r-ext|s-proxy|s-mon|s-appli|s-backup|s-itil|s-ncx|s-fog>"
|
||||
echo " option -r : efface vm existante avant creation nouvelle"
|
||||
exit 1
|
||||
}
|
||||
@ -33,7 +33,6 @@ create_vm () {
|
||||
}
|
||||
|
||||
setif () {
|
||||
|
||||
VBoxManage modifyvm "$1" --nic"${2}" intnet
|
||||
VBoxManage modifyvm "$1" --intnet"${2}" "$3"
|
||||
VBoxManage modifyvm "$1" --nictype"${2}" 82540EM
|
||||
@ -66,7 +65,9 @@ fi
|
||||
vm="$1"
|
||||
|
||||
create_vm "${vm}"
|
||||
if [[ "${vm}" == "s-infra" ]] ; then
|
||||
if [[ "${vm}" == "s-adm" ]] ; then
|
||||
bash addint.s-adm
|
||||
elif [[ "${vm}" == "s-infra" ]] ; then
|
||||
create_if "${vm}" "n-adm" "n-infra"
|
||||
elif [[ "${vm}" == "s-proxy" ]] ; then
|
||||
create_if "${vm}" "n-adm" "n-infra"
|
||||
|
||||
190
scripts/mkvm.ps1
190
scripts/mkvm.ps1
@ -1,3 +1,6 @@
|
||||
# POUR POUVOIR EXECUTER DES SCRIPTS POWERSHELL SOUS WINDOWS LANCER COMMANDE SUIVANTE EN ADMIN SOUS POWERSHELL
|
||||
# set-executionpolicy unrestricted
|
||||
|
||||
#mkvm pour toutes les vms
|
||||
|
||||
$mkvmrelease="v1.2"
|
||||
@ -5,124 +8,151 @@ $ovarelease="2023a"
|
||||
$ovafogrelease="2023a"
|
||||
$ovafile="$HOME\Downloads\debian-bullseye-gsb-${ovarelease}.ova"
|
||||
$ovafilefog="$HOME\Downloads\debian-buster-gsb-${ovafogrelease}.ova"
|
||||
$vboxmanage="C:\Program Files\Oracle\VirtualBox\VBoxManage.exe"
|
||||
$deletemode=0
|
||||
|
||||
#FONCTIONS
|
||||
|
||||
function create_vm{ param([string]$nomvm)
|
||||
#Importation depuis l'ova
|
||||
& "$vboxmanage" import "$ovafile" --vsys 0 --vmname "$nomvm"
|
||||
Write-Host "Machine $nomvm importée"
|
||||
}
|
||||
|
||||
function create_if{ param([string]$nomvm, [string]$nic, [int]$rang, [string]$reseau)
|
||||
#Création d'une interface
|
||||
if ($nomvm -and $nic -and $rang -and $reseau) {
|
||||
#if ("1" -eq "1") {
|
||||
if ($nic -eq "bridge") {
|
||||
#Création d'une interface en pont
|
||||
& "$vboxmanage" modifyvm "$nomvm" --nic"$rang" bridged
|
||||
& "$vboxmanage" modifyvm "$nomvm" --nictype"$rang" 82540EM
|
||||
& "$vboxmanage" modifyvm "$nomvm" --cableconnected"$rang" on
|
||||
& "$vboxmanage" modifyvm "$nomvm" --nicpromisc"$rang" allow-all
|
||||
Write-Host "$nomvm : IF$rang $nic"
|
||||
}
|
||||
elseif ($nic -eq "int") {
|
||||
#Création d'une interface en reseau interne
|
||||
& "$vboxmanage" modifyvm "$nomvm" --nic"$rang" intnet
|
||||
& "$vboxmanage" modifyvm "$nomvm" --intnet"$rang" "$reseau"
|
||||
& "$vboxmanage" modifyvm "$nomvm" --nictype"$rang" 82540EM
|
||||
& "$vboxmanage" modifyvm "$nomvm" --cableconnected"$rang" on
|
||||
& "$vboxmanage" modifyvm "$nomvm" --nicpromisc"$rang" allow-all
|
||||
Write-Host "$nomvm : IF$rang $nic $reseau"
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
if ($args[0] -eq "s-adm") {
|
||||
|
||||
#Importation depuis l'ova
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" import "$ovafile" --vsys 0 --vmname "s-adm"
|
||||
|
||||
#création de la première interface
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --nic1 bridged
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --nictype1 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --cableconnected1 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --nicpromisc1 allow-all
|
||||
|
||||
#création de la deuxième interface
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --nic2 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --intnet2 "n-adm"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --nictype2 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --cableconnected2 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-adm" --nicpromisc2 allow-all
|
||||
create_vm $args[0]
|
||||
create_if $args[0] "bridge" 1 "null"
|
||||
create_if $args[0] "int" 2 "n-adm"
|
||||
|
||||
}
|
||||
|
||||
elseif ($args[0] -eq "s-infra") {
|
||||
|
||||
#Importation depuis l'ova
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" import "$ovafile" --vsys 0 --vmname "s-infra"
|
||||
create_vm $args[0]
|
||||
create_if $args[0] "int" 1 "n-adm"
|
||||
create_if $args[0] "int" 2 "n-infra"
|
||||
|
||||
#création de la première interface
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --nic1 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --intnet1 "n-adm"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --nictype1 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --cableconnected1 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --nicpromisc1 allow-all
|
||||
& "$vboxmanage" modifyvm "s-infra" --nic1 intnet
|
||||
& "$vboxmanage" modifyvm "s-infra" --intnet1 "n-adm"
|
||||
& "$vboxmanage" modifyvm "s-infra" --nictype1 82540EM
|
||||
& "$vboxmanage" modifyvm "s-infra" --cableconnected1 on
|
||||
& "$vboxmanage" modifyvm "s-infra" --nicpromisc1 allow-all
|
||||
|
||||
#création de la deuxième interface
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --nic2 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --intnet2 "n-infra"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --nictype2 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --cableconnected2 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "s-infra" --nicpromisc2 allow-all
|
||||
& "$vboxmanage" modifyvm "s-infra" --nic2 intnet
|
||||
& "$vboxmanage" modifyvm "s-infra" --intnet2 "n-infra"
|
||||
& "$vboxmanage" modifyvm "s-infra" --nictype2 82540EM
|
||||
& "$vboxmanage" modifyvm "s-infra" --cableconnected2 on
|
||||
& "$vboxmanage" modifyvm "s-infra" --nicpromisc2 allow-all
|
||||
}
|
||||
|
||||
elseif ($args[0] -eq "r-int") {
|
||||
|
||||
#Importation depuis l'ova
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" import "$ovafile" --vsys 0 --vmname "r-int"
|
||||
create_vm($args[0])
|
||||
|
||||
#interface 1
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nic1 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --intnet1 "n-adm"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nictype1 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --cableconnected1 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nicpromisc1 allow-all
|
||||
& "$vboxmanage" modifyvm "r-int" --nic1 intnet
|
||||
& "$vboxmanage" modifyvm "r-int" --intnet1 "n-adm"
|
||||
& "$vboxmanage" modifyvm "r-int" --nictype1 82540EM
|
||||
& "$vboxmanage" modifyvm "r-int" --cableconnected1 on
|
||||
& "$vboxmanage" modifyvm "r-int" --nicpromisc1 allow-all
|
||||
|
||||
#interface 2
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nic2 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --intnet2 "n-link"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nictype2 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --cableconnected2 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nicpromisc2 allow-all
|
||||
& "$vboxmanage" modifyvm "r-int" --nic2 intnet
|
||||
& "$vboxmanage" modifyvm "r-int" --intnet2 "n-link"
|
||||
& "$vboxmanage" modifyvm "r-int" --nictype2 82540EM
|
||||
& "$vboxmanage" modifyvm "r-int" --cableconnected2 on
|
||||
& "$vboxmanage" modifyvm "r-int" --nicpromisc2 allow-all
|
||||
|
||||
#interface 3
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nic3 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --intnet3 "n-wifi"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nictype3 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --cableconnected3 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nicpromisc3 allow-all
|
||||
& "$vboxmanage" modifyvm "r-int" --nic3 intnet
|
||||
& "$vboxmanage" modifyvm "r-int" --intnet3 "n-wifi"
|
||||
& "$vboxmanage" modifyvm "r-int" --nictype3 82540EM
|
||||
& "$vboxmanage" modifyvm "r-int" --cableconnected3 on
|
||||
& "$vboxmanage" modifyvm "r-int" --nicpromisc3 allow-all
|
||||
|
||||
#interface 4
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nic4 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --intnet4 "n-user"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nictype4 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --cableconnected4 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nicpromisc4 allow-all
|
||||
& "$vboxmanage" modifyvm "r-int" --nic4 intnet
|
||||
& "$vboxmanage" modifyvm "r-int" --intnet4 "n-user"
|
||||
& "$vboxmanage" modifyvm "r-int" --nictype4 82540EM
|
||||
& "$vboxmanage" modifyvm "r-int" --cableconnected4 on
|
||||
& "$vboxmanage" modifyvm "r-int" --nicpromisc4 allow-all
|
||||
|
||||
#interface 5
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nic5 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --intnet5 "n-infra"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nictype5 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --cableconnected5 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-int" --nicpromisc5 allow-all
|
||||
& "$vboxmanage" modifyvm "r-int" --nic5 intnet
|
||||
& "$vboxmanage" modifyvm "r-int" --intnet5 "n-infra"
|
||||
& "$vboxmanage" modifyvm "r-int" --nictype5 82540EM
|
||||
& "$vboxmanage" modifyvm "r-int" --cableconnected5 on
|
||||
& "$vboxmanage" modifyvm "r-int" --nicpromisc5 allow-all
|
||||
}
|
||||
|
||||
elseif ($args[0] -eq "r-ext") {
|
||||
|
||||
#Importation depuis l'ova
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" import "$ovafile" --vsys 0 --vmname "r-ext"
|
||||
create_vm($args[0])
|
||||
|
||||
#interface 1
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nic1 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --intnet1 "n-adm"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nictype1 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --cableconnected1 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nicpromisc1 allow-all
|
||||
& "$vboxmanage" modifyvm "r-ext" --nic1 intnet
|
||||
& "$vboxmanage" modifyvm "r-ext" --intnet1 "n-adm"
|
||||
& "$vboxmanage" modifyvm "r-ext" --nictype1 82540EM
|
||||
& "$vboxmanage" modifyvm "r-ext" --cableconnected1 on
|
||||
& "$vboxmanage" modifyvm "r-ext" --nicpromisc1 allow-all
|
||||
|
||||
#interface 2
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nic2 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --intnet2 "n-dmz"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nictype2 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --cableconnected2 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nicpromisc2 allow-all
|
||||
& "$vboxmanage" modifyvm "r-ext" --nic2 intnet
|
||||
& "$vboxmanage" modifyvm "r-ext" --intnet2 "n-dmz"
|
||||
& "$vboxmanage" modifyvm "r-ext" --nictype2 82540EM
|
||||
& "$vboxmanage" modifyvm "r-ext" --cableconnected2 on
|
||||
& "$vboxmanage" modifyvm "r-ext" --nicpromisc2 allow-all
|
||||
|
||||
#interface 3
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nic3 bridged
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nictype3 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --cableconnected3 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nicpromisc3 allow-all
|
||||
& "$vboxmanage" modifyvm "r-ext" --nic3 bridged
|
||||
& "$vboxmanage" modifyvm "r-ext" --nictype3 82540EM
|
||||
& "$vboxmanage" modifyvm "r-ext" --cableconnected3 on
|
||||
& "$vboxmanage" modifyvm "r-ext" --nicpromisc3 allow-all
|
||||
|
||||
#interface 4
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nic4 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --intnet4 "n-linkv"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nictype4 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --cableconnected4 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nicpromisc4 allow-all
|
||||
& "$vboxmanage" modifyvm "r-ext" --nic4 intnet
|
||||
& "$vboxmanage" modifyvm "r-ext" --intnet4 "n-linkv"
|
||||
& "$vboxmanage" modifyvm "r-ext" --nictype4 82540EM
|
||||
& "$vboxmanage" modifyvm "r-ext" --cableconnected4 on
|
||||
& "$vboxmanage" modifyvm "r-ext" --nicpromisc4 allow-all
|
||||
|
||||
#interface 5
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nic5 intnet
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --intnet5 "n-link"
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nictype5 82540EM
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --cableconnected5 on
|
||||
& "C:\Program Files\Oracle\VirtualBox\VBoxManage.exe" modifyvm "r-ext" --nicpromisc5 allow-all
|
||||
& "$vboxmanage" modifyvm "r-ext" --nic5 intnet
|
||||
& "$vboxmanage" modifyvm "r-ext" --intnet5 "n-link"
|
||||
& "$vboxmanage" modifyvm "r-ext" --nictype5 82540EM
|
||||
& "$vboxmanage" modifyvm "r-ext" --cableconnected5 on
|
||||
& "$vboxmanage" modifyvm "r-ext" --nicpromisc5 allow-all
|
||||
}
|
||||
|
||||
elseif ($args[0] -eq "test") {
|
||||
|
||||
fonction1 $args[0] $args[1]
|
||||
}
|
||||
5
scripts/r-vp1-post.sh
Normal file
5
scripts/r-vp1-post.sh
Normal file
@ -0,0 +1,5 @@
|
||||
#!/bin/bash
|
||||
#stoper le fw
|
||||
systemctl stop ferm
|
||||
#ouverture du service web pour copie distante
|
||||
cd /root/confwg/ && python3 -m http.server 8000 &
|
||||
5
scripts/r-vp2-post.sh
Normal file
5
scripts/r-vp2-post.sh
Normal file
@ -0,0 +1,5 @@
|
||||
#!/bin/bash
|
||||
#recuperation du fichier de config
|
||||
wget http://r-vp1.gsb.adm:8000/wg0-b.qconf
|
||||
#renomage fichier et mv
|
||||
mv ./wg0-b.conf /etc/wireguard/wg0.conf
|
||||
Reference in New Issue
Block a user