Raspi2-3_GenImage Files · bootstrap.d/20-networking.sh · Collaboration Tremplin des Sciences

vknecht-master-merge

Jan Wagner - - Load All Authors

Fichier de la dernière révision:

r68:69e22e063597


                r68:69e22e063597

Download file

             20-networking.sh
        
                    69 lines
            
             | 1.7 KiB
            
                | application/x-sh
            
             |
                BashLexer
            
             / bootstrap.d / 20-networking.sh
          
                    Historique
                
                 |
                  Annotation
                 | Brut
                 |Copy content
                 |Copy permalink

      #

      # Setup Networking

      #

      # Load utility functions

      . ./functions.sh

      # Set up IPv4 hosts

      install_readonly files/network/hostname $R/etc/hostname

      sed -i -e "s/^rpi2-jessie/${HOSTNAME}/" $R/etc/hostname

      install_readonly files/network/hosts $R/etc/hosts

      sed -i -e "s/rpi2-jessie/${HOSTNAME}/" $R/etc/hosts

      if [ "$NET_ADDRESS" != "" ] ; then

        NET_IP=$(echo ${NET_ADDRESS} | cut -f 1 -d'/')

        sed -i "s/^127.0.1.1/${NET_IP}/" $R/etc/hosts

      fi

      # Set up IPv6 hosts

      if [ "$ENABLE_IPV6" = true ] ; then

        cat <<EOM >>$R/etc/hosts

      ::1             localhost ip6-localhost ip6-loopback

      ff02::1         ip6-allnodes

      ff02::2         ip6-allrouters

      EOM

      fi

      # Place hint about network configuration

      install_readonly files/network/interfaces $R/etc/network/interfaces

      if [ "$ENABLE_DHCP" = true ] ; then

      # Enable systemd-networkd DHCP configuration for interface eth0

      install_readonly files/network/eth.network $R/etc/systemd/network/eth.network

      # Set DHCP configuration to IPv4 only

        if [ "$ENABLE_IPV6" = false ] ; then

          sed -i "s/^DHCP=yes/DHCP=v4/" $R/etc/systemd/network/eth.network

        fi

      else # ENABLE_DHCP=false

        cat <<EOM >$R/etc/systemd/network/eth.network

      [Match]

      Name=eth0

      [Network]

      DHCP=no

      Address=${NET_ADDRESS}

      Gateway=${NET_GATEWAY}

      DNS=${NET_DNS_1}

      DNS=${NET_DNS_2}

      Domains=${NET_DNS_DOMAINS}

      NTP=${NET_NTP_1}

      NTP=${NET_NTP_2}

      EOM

      fi

      # Enable systemd-networkd service

      chroot_exec systemctl enable systemd-networkd

      # Enable network stack hardening

      if [ "$ENABLE_HARDNET" = true ] ; then

        install_readonly files/sysctl.d/82-rpi-net-hardening.conf $R/etc/sysctl.d/82-rpi-net-hardening.conf

      # Enable resolver warnings about spoofed addresses

        cat <<EOM >>$R/etc/host.conf

      spoof warn

      EOM

      fi

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Dépôts
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				#
				# Setup Networking
				#

				# Load utility functions
				. ./functions.sh

				# Set up IPv4 hosts
				install_readonly files/network/hostname $R/etc/hostname
				sed -i -e "s/^rpi2-jessie/${HOSTNAME}/" $R/etc/hostname

				install_readonly files/network/hosts $R/etc/hosts
				sed -i -e "s/rpi2-jessie/${HOSTNAME}/" $R/etc/hosts

				if [ "$NET_ADDRESS" != "" ] ; then
				NET_IP=$(echo ${NET_ADDRESS} \| cut -f 1 -d'/')
				sed -i "s/^127.0.1.1/${NET_IP}/" $R/etc/hosts
				fi

				# Set up IPv6 hosts
				if [ "$ENABLE_IPV6" = true ] ; then
				cat <<EOM >>$R/etc/hosts

				::1 localhost ip6-localhost ip6-loopback
				ff02::1 ip6-allnodes
				ff02::2 ip6-allrouters
				EOM
				fi

				# Place hint about network configuration
				install_readonly files/network/interfaces $R/etc/network/interfaces

				if [ "$ENABLE_DHCP" = true ] ; then
				# Enable systemd-networkd DHCP configuration for interface eth0
				install_readonly files/network/eth.network $R/etc/systemd/network/eth.network

				# Set DHCP configuration to IPv4 only
				if [ "$ENABLE_IPV6" = false ] ; then
				sed -i "s/^DHCP=yes/DHCP=v4/" $R/etc/systemd/network/eth.network
				fi
				else # ENABLE_DHCP=false
				cat <<EOM >$R/etc/systemd/network/eth.network
				[Match]
				Name=eth0

				[Network]
				DHCP=no
				Address=${NET_ADDRESS}
				Gateway=${NET_GATEWAY}
				DNS=${NET_DNS_1}
				DNS=${NET_DNS_2}
				Domains=${NET_DNS_DOMAINS}
				NTP=${NET_NTP_1}
				NTP=${NET_NTP_2}
				EOM
				fi

				# Enable systemd-networkd service
				chroot_exec systemctl enable systemd-networkd

				# Enable network stack hardening
				if [ "$ENABLE_HARDNET" = true ] ; then
				install_readonly files/sysctl.d/82-rpi-net-hardening.conf $R/etc/sysctl.d/82-rpi-net-hardening.conf

				# Enable resolver warnings about spoofed addresses
				cat <<EOM >>$R/etc/host.conf
				spoof warn
				EOM
				fi