diff --git a/sisr1/TP05-installation-proxy/gitpush.sh b/sisr1/TP05-installation-proxy/gitpush.sh new file mode 100644 index 0000000..6461052 --- /dev/null +++ b/sisr1/TP05-installation-proxy/gitpush.sh @@ -0,0 +1,16 @@ +#!/bin/bash + +if [ -z "$1" ] ; then + read -p "Erreur: Ecrivez un message " $message +else + message=$1 +fi + +# Ajout des fichiers modifiers +git add . + +# Commit avec le message +git commit -m "$message" + +# Push vers le dépot +git push https://redouane.assani@gitea.lyc-lecastel.fr/redouane.assani/siotp.git \ No newline at end of file diff --git a/sisr1/TP05-installation-proxy/majservice.sh b/sisr1/TP05-installation-proxy/majservice.sh new file mode 100644 index 0000000..b6a7f17 --- /dev/null +++ b/sisr1/TP05-installation-proxy/majservice.sh @@ -0,0 +1,16 @@ +#Script destiné a être paramétré et exécuté depuis un repertoire de votre depots git +#contenant un fichier de coinfiguration d'un service +filename=squid.conf # nom du fichier config +filepath=/etc/squid # emplacement systeme du fichier config +servicename="" #nom du service + +git pull # mise a jour du fichier de config du dépôt + +sudo cp $filepath/$filename $filepath/$filename.old +#sauvegarde fichier précédente + +sudo cp ./$filename $filepath/$filename +#copie du fichier de config mis a jour a son emplacement + +sudo systemectl restart $servicename +#redemarage du service associé diff --git a/sisr1/TP05-installation-proxy/squid/squid.conf b/sisr1/TP05-installation-proxy/squid/squid.conf index 25c5c07..f87ac71 100644 --- a/sisr1/TP05-installation-proxy/squid/squid.conf +++ b/sisr1/TP05-installation-proxy/squid/squid.conf @@ -1330,14 +1330,16 @@ # Example rule allowing access from your local networks. # Adapt to list your (internal) IP networks from where browsing # should be allowed -acl localnet src 0.0.0.1-0.255.255.255 # RFC 1122 "this" network (LAN) -acl localnet src 10.0.0.0/8 # RFC 1918 local private network (LAN) -acl localnet src 100.64.0.0/10 # RFC 6598 shared address space (CGN) -acl localnet src 169.254.0.0/16 # RFC 3927 link-local (directly plugged) machines -acl localnet src 172.16.0.0/12 # RFC 1918 local private network (LAN) -acl localnet src 192.168.0.0/16 # RFC 1918 local private network (LAN) -acl localnet src fc00::/7 # RFC 4193 local private network range -acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines +# acl localnet src 0.0.0.1-0.255.255.255 # RFC 1122 "this" network (LAN) +# acl localnet src 10.0.0.0/8 # RFC 1918 local private network (LAN) +# acl localnet src 100.64.0.0/10 # RFC 6598 shared address space (CGN) +# acl localnet src 169.254.0.0/16 # RFC 3927 link-local (directly plugged) machines +# acl localnet src 172.16.0.0/12 # RFC 1918 local private network (LAN) +# acl localnet src 192.168.0.0/16 # RFC 1918 local private network (LAN) +# acl localnet src fc00::/7 # RFC 4193 local private network range +# acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines +acl localnet src 172.16.0.0/24 + acl SSL_ports port 443 acl Safe_ports port 80 # http @@ -1548,7 +1550,7 @@ include /etc/squid/conf.d/*.conf # Example rule allowing access from your local networks. # Adapt localnet in the ACL section to list your (internal) IP networks # from where browsing should be allowed -#http_access allow localnet +http_access allow localnet http_access allow localhost # And finally deny all other access to this proxy @@ -2103,7 +2105,7 @@ http_access deny all # # Squid normally listens to port 3128 -http_port 3128 +http_port 8080 # TAG: https_port # Usage: [ip:]port [mode] tls-cert=certificate.pem [options]