Subversion Repositories ALCASAR

Compare Revisions

Ignore whitespace Rev 1374 → Rev 1375

/alcasar.sh
1052,8 → 1052,8
{
mkdir /var/dansguardian
chown dansguardian /var/dansguardian
$SED "s/^ExecStart=.*?ExecStart=/usr/sbin/dansguardian -c /etc/dansguardian/dansguardian.conf?g" /lib/systemd/system/dansguardian.service
$SED "s/^After=.*?After=network.target chilli.target?g" /lib/systemd/system/dansguardian.service
$SED "s?^ExecStart=.*?ExecStart=/usr/sbin/dansguardian -c /etc/dansguardian/dansguardian.conf?g" /lib/systemd/system/dansguardian.service
$SED "s?^After=.*?After=network.target chilli.target?g" /lib/systemd/system/dansguardian.service
[ -e $DIR_DG/dansguardian.conf.default ] || cp $DIR_DG/dansguardian.conf $DIR_DG/dansguardian.conf.default
# By default the filter is off
$SED "s/^reportinglevel =.*/reportinglevel = -1/g" $DIR_DG/dansguardian.conf
1157,15 → 1157,14
do
[ -e /lib/systemd/system/ulogd-$log_type.service ] || cp -f /lib/systemd/system/ulogd.service /lib/systemd/system/ulogd-$log_type.service
[ -e /var/log/firewall/$log_type.log ] || echo "" > /var/log/firewall/$log_type.log
cp -f /etc/ulogd.conf /etc/ulogd-$log_type.conf
cp -f $DIR_CONF/ulogd-sample.conf /etc/ulogd-$log_type.conf
$SED "s?^nlgroup=.*?nlgroup=$nl?g" /etc/ulogd-$log_type.conf
$SED '/OPRINT/,$d' /etc/ulogd-$log_type.conf
cat << EOF >> /etc/ulogd-$log_type.conf
[LOGEMU]
file="/var/log/firewall/$log_type.log"
sync=1
EOF
$SED "s?^ExecStart=.*?ExecStart=/usr/sbin/ulogd -c /etc/ulogd-$log_type.conf?g" /lib/systemd/system/ulogd-$log_type.service
$SED "s?^ExecStart=.*?ExecStart=/usr/sbin/ulogd -d -c /etc/ulogd-$log_type.conf?g" /lib/systemd/system/ulogd-$log_type.service
nl=`expr $nl + 1`
done
chown -R root:apache /var/log/firewall
1515,9 → 1514,6
echo "QOS=off" >> $CONF_FILE
echo "LDAP=off" >> $CONF_FILE
echo "LDAP_IP=0.0.0.0/0.0.0.0" >> $CONF_FILE
echo "WEB_ANTIVIRUS=on" >> $CONF_FILE # TODO to remove
echo "PROTOCOLS_FILTERING=off" >> $CONF_FILE # TODO to remove
echo "DNS_FILTERING=off" >> $CONF_FILE # TODO to remove
echo "YOUTUBE_ID=ABCD1234567890abcdef" >> $CONF_FILE
echo "MULTIWAN=off" >> $CONF_FILE
echo "FAILOVER=30" >> $CONF_FILE
/conf/ulogd-sample.conf
0,0 → 1,39
# Example of a simple configuration for ulogd with ALCASAR
 
[global]
######################################################################
# GLOBAL OPTIONS
######################################################################
 
# netlink multicast group (the same as the iptables --ulog-nlgroup param)
nlgroup=1
 
# logfile for status messages
logfile="/var/log/ulogd.log"
 
# loglevel: debug(1), info(3), notice(5), error(7) or fatal(8)
loglevel=5
 
# socket receive buffer size (should be at least the size of the
# in-kernel buffer (ipt_ULOG.o 'nlbufsiz' parameter)
rmem=131071
 
# libipulog/ulogd receive buffer size, should be > rmem
bufsize=150000
 
######################################################################
# PLUGIN OPTIONS
######################################################################
 
# We have to configure and load only the plugins we want to use
 
# general rules:
# 1. load the plugins _first_ from the global section
# 2. options for each plugin in seperate section below
 
# ulogd_BASE.so - interpreter plugin for basic IPv4 header fields
plugin="/usr/lib64/ulogd/ulogd_BASE.so"
 
# output plugins.
plugin="/usr/lib64/ulogd/ulogd_LOGEMU.so"
 
/scripts/alcasar-urpmi.sh
218,7 → 218,7
else
echo "Nettoyage du système : "
fi
for rm_rpm in shorewall mandi radeontool avahi mageia-gfxboot-theme privoxy
for rm_rpm in shorewall mandi radeontool avahi mageia-gfxboot-theme privoxy cpupower
do
/usr/sbin/urpme --auto $rm_rpm --auto-orphans 2>/dev/null
echo -n "."
/scripts/sbin/alcasar-uninstall.sh
19,7 → 19,7
do
[ -e /etc/init.d/$i ] && /sbin/chkconfig --del $i && /etc/init.d/$i stop && killall $i 2>/dev/null
done
for i in alcasar-load_balancing.service nfsen.service mysqld.service ntpd.service iptables.service ulogd.service dansguardian.service httpd.service radiusd.service freshclam.service dnsmasq.service dhcpd.service chilli.service
for i in alcasar-load_balancing.service nfsen.service mysqld.service ntpd.service iptables.service ulogd-ext-access.service ulogd-ssh.service ulogd-traceability.service dansguardian.service httpd.service radiusd.service freshclam.service dnsmasq.service dnsmasq-blacklist.service dnsmasq-whitelist.service dhcpd.service chilli.service
do
[ -e /lib/systemd/system/$i ] && systemctl disable $i && systemctl stop $i 1>/dev/null
done