script journald receveur

wg0.conf ap31-test
script wg0.conf
2023-11-30 15:07:37 +01:00 · 2023-11-30 15:02:28 +01:00 · 2023-11-30 14:45:31 +01:00 · 2023-11-30 14:25:54 +01:00 · 2023-11-30 14:17:01 +01:00 · 2023-11-30 14:12:33 +01:00
6 changed files with 135 additions and 0 deletions
--- a/Partie2/Wireguard/ap31-prod/journald-snd.sh
+++ b/Partie2/Wireguard/ap31-prod/journald-snd.sh
@ -0,0 +1,9 @@
+#!/bin/bash
+# usage : ./journald-snd.sh 10.0.0.1
+#sudo timedatectl set-timezone Europe/Paris
+#sudo apt-get update
+#sudo apt-get install -y systemd-journal-remote
+rpl="s/^# URL=/URL=http:\/\/${1}:19532/"  # $1 represente l'adresse du recepteur
+sudo sed -i "$rpl" /etc/systemd/journal-upload.conf
+sudo systemctl enable --now systemd-journal-upload.service
+sudo systemctl restart systemd-journal-upload.service
--- a/Partie2/Wireguard/ap31-prod/wg0.conf
+++ b/Partie2/Wireguard/ap31-prod/wg0.conf
@ -0,0 +1,12 @@
+#Fichier wg0-c.conf
+# local settings for Endpoint C
+[Interface]
+PrivateKey = iIMEJjirl1chq2kLfuO9G5f25cJrVbHgK+BgOiHTdUI=
+Address = 10.0.0.3/32
+ListenPort = 51820
+ 
+# remote settings for Endpoint A
+[Peer]
+PublicKey = JkdGvyuNoJRKGF3Vc4OGgiY59WhROJfCDCwnyVgCmjs=
+Endpoint = 10.121.38.35:51820
+AllowedIPs = 10.0.0.1/32
--- a/Partie2/Wireguard/ap31-test/journald-snd.sh
+++ b/Partie2/Wireguard/ap31-test/journald-snd.sh
@ -0,0 +1,9 @@
+#!/bin/bash
+# usage : ./journald-snd.sh 10.0.0.1
+#sudo timedatectl set-timezone Europe/Paris
+#sudo apt-get update
+#sudo apt-get install -y systemd-journal-remote
+rpl="s/^# URL=/URL=http:\/\/${1}:19532/"  # $1 represente l'adresse du recepteur
+sudo sed -i "$rpl" /etc/systemd/journal-upload.conf
+sudo systemctl enable --now systemd-journal-upload.service
+sudo systemctl restart systemd-journal-upload.service
--- a/Partie2/Wireguard/ap31-test/wg0.conf
+++ b/Partie2/Wireguard/ap31-test/wg0.conf
@ -0,0 +1,12 @@
+#Fichier wg0-b.conf
+# local settings for Endpoint B
+[Interface]
+PrivateKey = WEFEtAFdTwClzY7/AGKW4k0LFqL4Gc4iKIdFYokUa0M=
+Address = 10.0.0.2/32
+ListenPort = 51820
+ 
+# remote settings for Endpoint A
+[Peer]
+PublicKey = JkdGvyuNoJRKGF3Vc4OGgiY59WhROJfCDCwnyVgCmjs=
+Endpoint = 10.121.38.35:51820
+AllowedIPs = 10.0.0.1/32
--- a/Partie2/Wireguard/srvlog31/journald-rcv.sh
+++ b/Partie2/Wireguard/srvlog31/journald-rcv.sh
@ -0,0 +1,10 @@
+#!/bin/bash
+sudo timedatectl set-timezone Europe/Paris
+sudo apt-get update
+sudo apt-get install -y systemd-journal-remote
+sudo systemctl enable --now systemd-journal-remote.socket
+sudo cp /lib/systemd/system/systemd-journal-remote.service /etc/systemd/system
+sudo sed -i 's/--listen-https=-3/--listen-http=-3/' /etc/systemd/system/systemd-journal-remote.service
+[[ -d /var/log/journal/remote ]] || sudo mkdir /var/log/journal/remote
+sudo chown systemd-journal-remote /var/log/journal/remote
+sudo systemctl daemon-reload
--- a/Partie2/Wireguard/srvlog31/mkwgconf-p2p.sh
+++ b/Partie2/Wireguard/srvlog31/mkwgconf-p2p.sh
@ -0,0 +1,83 @@
+#!/bin/bash
+set -u
+set -e
+ 
+AddressAwg=10.0.0.1/32  # Adresse VPN Wireguard extremite A
+EndpointA=10.121.38.35  # Adresse extremite A (gwsio avec redirection vers srvlog31)
+PortA=51820             # Port ecoute extremite A
+
+AddressBwg=10.0.0.2/32  # Adresse VPN Wireguard extremite B
+EndpointB=172.16.0.95   # Adresse extremite B (ap31-test)
+PortB=51820             # Port ecoute extremite B
+
+AddressCwg=10.0.0.3/32  # Adresse VPN Wireguard extremite C
+EndpointC=172.16.0.82   # Adresse extremite C (ap31-prod)
+PortC=51820             # Port ecoute extremite C
+
+umask 077 ;  
+wg genkey > endpoint-a.key
+wg pubkey < endpoint-a.key > endpoint-a.pub
+
+wg genkey > endpoint-b.key
+wg pubkey < endpoint-b.key > endpoint-b.pub
+ 
+wg genkey > endpoint-c.key
+wg pubkey < endpoint-c.key > endpoint-c.pub
+
+PKA=$(cat endpoint-a.key)
+pKA=$(cat endpoint-a.pub)
+
+PKB=$(cat endpoint-b.key)
+pKB=$(cat endpoint-b.pub)
+
+PKC=$(cat endpoint-c.key)
+pKC=$(cat endpoint-c.pub)
+
+cat <<FINI > wg0-a.conf
+# local settings for Endpoint A
+[Interface]
+PrivateKey = $PKA
+Address = $AddressAwg
+ListenPort = $PortA
+ 
+# remote settings for Endpoint B
+[Peer]
+PublicKey = $pKB
+Endpoint = ${EndpointB}:$PortB
+AllowedIPs = $AddressBwg
+
+# remote settings for Endpoint C
+[Peer]
+PublicKey = $pKC
+Endpoint = ${EndpointC}:$PortC
+AllowedIPs = $AddressCwg
+FINI
+ 
+ 
+cat <<FINI > wg0-b.conf
+# local settings for Endpoint B
+[Interface]
+PrivateKey = $PKB
+Address = $AddressBwg
+ListenPort = $PortB
+ 
+# remote settings for Endpoint A
+[Peer]
+PublicKey = $pKA
+Endpoint = ${EndpointA}:$PortA
+AllowedIPs = $AddressAwg
+FINI
+
+cat <<FINI > wg0-c.conf
+# local settings for Endpoint C
+[Interface]
+PrivateKey = $PKC
+Address = $AddressCwg
+ListenPort = $PortC
+ 
+# remote settings for Endpoint A
+[Peer]
+PublicKey = $pKA
+Endpoint = ${EndpointA}:$PortA
+AllowedIPs = $AddressAwg
+FINI
Author	SHA1	Message	Date
root	78ac5ec91f	script journald receveur	2023-11-30 15:07:37 +01:00
root	4661866ca1	wg0.conf ap31-test	2023-11-30 15:02:28 +01:00
root	7e47f208a9	script wg0.conf	2023-11-30 14:45:31 +01:00
root	20a8e0e94e	wg0 ap31-prod	2023-11-30 14:25:54 +01:00
root	fff6f809a0	script journald emmeteur	2023-11-30 14:17:01 +01:00
root	5f87a27856	Script mkwgconf-p2p.sh	2023-11-30 14:12:33 +01:00