/alcasar.sh |
---|
1052,8 → 1052,8 |
{ |
mkdir /var/dansguardian |
chown dansguardian /var/dansguardian |
$SED "s/^ExecStart=.*?ExecStart=/usr/sbin/dansguardian -c /etc/dansguardian/dansguardian.conf?g" /lib/systemd/system/dansguardian.service |
$SED "s/^After=.*?After=network.target chilli.target?g" /lib/systemd/system/dansguardian.service |
$SED "s?^ExecStart=.*?ExecStart=/usr/sbin/dansguardian -c /etc/dansguardian/dansguardian.conf?g" /lib/systemd/system/dansguardian.service |
$SED "s?^After=.*?After=network.target chilli.target?g" /lib/systemd/system/dansguardian.service |
[ -e $DIR_DG/dansguardian.conf.default ] || cp $DIR_DG/dansguardian.conf $DIR_DG/dansguardian.conf.default |
# By default the filter is off |
$SED "s/^reportinglevel =.*/reportinglevel = -1/g" $DIR_DG/dansguardian.conf |
1157,15 → 1157,14 |
do |
[ -e /lib/systemd/system/ulogd-$log_type.service ] || cp -f /lib/systemd/system/ulogd.service /lib/systemd/system/ulogd-$log_type.service |
[ -e /var/log/firewall/$log_type.log ] || echo "" > /var/log/firewall/$log_type.log |
cp -f /etc/ulogd.conf /etc/ulogd-$log_type.conf |
cp -f $DIR_CONF/ulogd-sample.conf /etc/ulogd-$log_type.conf |
$SED "s?^nlgroup=.*?nlgroup=$nl?g" /etc/ulogd-$log_type.conf |
$SED '/OPRINT/,$d' /etc/ulogd-$log_type.conf |
cat << EOF >> /etc/ulogd-$log_type.conf |
[LOGEMU] |
file="/var/log/firewall/$log_type.log" |
sync=1 |
EOF |
$SED "s?^ExecStart=.*?ExecStart=/usr/sbin/ulogd -c /etc/ulogd-$log_type.conf?g" /lib/systemd/system/ulogd-$log_type.service |
$SED "s?^ExecStart=.*?ExecStart=/usr/sbin/ulogd -d -c /etc/ulogd-$log_type.conf?g" /lib/systemd/system/ulogd-$log_type.service |
nl=`expr $nl + 1` |
done |
chown -R root:apache /var/log/firewall |
1515,9 → 1514,6 |
echo "QOS=off" >> $CONF_FILE |
echo "LDAP=off" >> $CONF_FILE |
echo "LDAP_IP=0.0.0.0/0.0.0.0" >> $CONF_FILE |
echo "WEB_ANTIVIRUS=on" >> $CONF_FILE # TODO to remove |
echo "PROTOCOLS_FILTERING=off" >> $CONF_FILE # TODO to remove |
echo "DNS_FILTERING=off" >> $CONF_FILE # TODO to remove |
echo "YOUTUBE_ID=ABCD1234567890abcdef" >> $CONF_FILE |
echo "MULTIWAN=off" >> $CONF_FILE |
echo "FAILOVER=30" >> $CONF_FILE |
/conf/ulogd-sample.conf |
---|
0,0 → 1,39 |
# Example of a simple configuration for ulogd with ALCASAR |
[global] |
###################################################################### |
# GLOBAL OPTIONS |
###################################################################### |
# netlink multicast group (the same as the iptables --ulog-nlgroup param) |
nlgroup=1 |
# logfile for status messages |
logfile="/var/log/ulogd.log" |
# loglevel: debug(1), info(3), notice(5), error(7) or fatal(8) |
loglevel=5 |
# socket receive buffer size (should be at least the size of the |
# in-kernel buffer (ipt_ULOG.o 'nlbufsiz' parameter) |
rmem=131071 |
# libipulog/ulogd receive buffer size, should be > rmem |
bufsize=150000 |
###################################################################### |
# PLUGIN OPTIONS |
###################################################################### |
# We have to configure and load only the plugins we want to use |
# general rules: |
# 1. load the plugins _first_ from the global section |
# 2. options for each plugin in seperate section below |
# ulogd_BASE.so - interpreter plugin for basic IPv4 header fields |
plugin="/usr/lib64/ulogd/ulogd_BASE.so" |
# output plugins. |
plugin="/usr/lib64/ulogd/ulogd_LOGEMU.so" |
/scripts/alcasar-urpmi.sh |
---|
218,7 → 218,7 |
else |
echo "Nettoyage du système : " |
fi |
for rm_rpm in shorewall mandi radeontool avahi mageia-gfxboot-theme privoxy |
for rm_rpm in shorewall mandi radeontool avahi mageia-gfxboot-theme privoxy cpupower |
do |
/usr/sbin/urpme --auto $rm_rpm --auto-orphans 2>/dev/null |
echo -n "." |
/scripts/sbin/alcasar-uninstall.sh |
---|
19,7 → 19,7 |
do |
[ -e /etc/init.d/$i ] && /sbin/chkconfig --del $i && /etc/init.d/$i stop && killall $i 2>/dev/null |
done |
for i in alcasar-load_balancing.service nfsen.service mysqld.service ntpd.service iptables.service ulogd.service dansguardian.service httpd.service radiusd.service freshclam.service dnsmasq.service dhcpd.service chilli.service |
for i in alcasar-load_balancing.service nfsen.service mysqld.service ntpd.service iptables.service ulogd-ext-access.service ulogd-ssh.service ulogd-traceability.service dansguardian.service httpd.service radiusd.service freshclam.service dnsmasq.service dnsmasq-blacklist.service dnsmasq-whitelist.service dhcpd.service chilli.service |
do |
[ -e /lib/systemd/system/$i ] && systemctl disable $i && systemctl stop $i 1>/dev/null |
done |