changed Files: config_ hex.grote.lan.rsc
config_hex.grote.lan.rsc config_rb5009.grote.lan.rsc docker-compose.yml keys/git keys/git.pub keys/rb5009 keys/rb5009.pub neu neu.pub x Signed-off-by: Michael Grote <michael.grote@posteo.de>
This commit is contained in:
parent
b803f56c04
commit
696c4b901d
11 changed files with 3678 additions and 1 deletions
0
config_ hex.grote.lan.rsc
Normal file
0
config_ hex.grote.lan.rsc
Normal file
174
config_hex.grote.lan.rsc
Normal file
174
config_hex.grote.lan.rsc
Normal file
|
@ -0,0 +1,174 @@
|
||||||
|
# 2023-07-21 18:40:20 by RouterOS 7.10
|
||||||
|
# software id = NPZE-DVQU
|
||||||
|
#
|
||||||
|
# model = RB750Gr3
|
||||||
|
# serial number = CC210C7265A3
|
||||||
|
/interface ethernet
|
||||||
|
set [ find default-name=ether1 ] disabled=yes
|
||||||
|
set [ find default-name=ether3 ] disabled=yes
|
||||||
|
set [ find default-name=ether4 ] disabled=yes
|
||||||
|
set [ find default-name=ether5 ] disabled=yes
|
||||||
|
/interface wireguard
|
||||||
|
add listen-port=13233 mtu=1420 name=wireguard_clients private-key=\
|
||||||
|
"4EsatRG85+HxsoPF1gm6A5vZQ88xRo/fHb0xsdJMb3w="
|
||||||
|
add listen-port=13232 mtu=1420 name=wireguard_s2s_hex private-key=\
|
||||||
|
"ABE3o3tWAw2GeLfJDAKeNqG9OwudiOLFhT+ghQ6P1Fc="
|
||||||
|
/interface list
|
||||||
|
add name=LAN
|
||||||
|
add name=VPN
|
||||||
|
add name=winbox-access
|
||||||
|
/interface lte apn
|
||||||
|
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
|
||||||
|
/interface wireless security-profiles
|
||||||
|
set [ find default=yes ] supplicant-identity=MikroTik
|
||||||
|
/port
|
||||||
|
set 1 name=serial0
|
||||||
|
/routing ospf instance
|
||||||
|
add disabled=no name=ospf-instance-s2s redistribute=connected router-id=\
|
||||||
|
10.25.26.2
|
||||||
|
/routing ospf area
|
||||||
|
add area-id=0.0.0.1 disabled=no instance=ospf-instance-s2s name=ospf-area-1
|
||||||
|
/snmp community
|
||||||
|
set [ find default=yes ] read-access=no security=private
|
||||||
|
add addresses=::/0 authentication-password=9IEYe5R-usuhdH7y-LEcJpWcfeQ319 \
|
||||||
|
authentication-protocol=SHA1 encryption-password=\
|
||||||
|
GjYze03kkkeRMH3sDVbAJp9Gl6WC-I encryption-protocol=AES name=librenms-v3
|
||||||
|
/system logging action
|
||||||
|
set 0 memory-lines=10000
|
||||||
|
/ip neighbor discovery-settings
|
||||||
|
set discover-interface-list=winbox-access
|
||||||
|
/ip settings
|
||||||
|
set tcp-syncookies=yes
|
||||||
|
/ipv6 settings
|
||||||
|
set disable-ipv6=yes max-neighbor-entries=8192
|
||||||
|
/interface list member
|
||||||
|
add interface=ether2 list=LAN
|
||||||
|
add interface=wireguard_s2s_hex list=VPN
|
||||||
|
add interface=wireguard_clients list=LAN
|
||||||
|
add interface=wireguard_s2s_hex list=winbox-access
|
||||||
|
add interface=wireguard_clients list=winbox-access
|
||||||
|
add interface=ether2 list=winbox-access
|
||||||
|
/interface ovpn-server server
|
||||||
|
set auth=sha1,md5
|
||||||
|
/interface wireguard peers
|
||||||
|
add allowed-address=0.0.0.0/0 endpoint-address=mgrote.net endpoint-port=13232 \
|
||||||
|
interface=wireguard_s2s_hex persistent-keepalive=10s public-key=\
|
||||||
|
"/drwUkzCR7umH4YFTRa+D9WB8KOvTXIZxRf/9gC9kkM="
|
||||||
|
add allowed-address=10.25.27.2/24 comment=iphone_andreas interface=\
|
||||||
|
wireguard_clients public-key=\
|
||||||
|
"Y/3GVIZsdAUpKr2XJ42MVPte4qJvPpe6ZWj7lQIjPEM="
|
||||||
|
add allowed-address=10.25.27.200/32 comment=iphone_maximilian interface=\
|
||||||
|
wireguard_clients public-key=\
|
||||||
|
"45IEON4osDmTxIv/pkDTWwdUb6X33uTmZFbebkrkdHo="
|
||||||
|
add allowed-address=10.25.27.100/24 comment=ipad_maximilian interface=\
|
||||||
|
wireguard_clients public-key=\
|
||||||
|
"45/22voZXBbjYhtLLQqwPQ00tMZVB6sglrLbkEnlTUM="
|
||||||
|
/ip address
|
||||||
|
add address=10.25.26.2/30 interface=wireguard_s2s_hex network=10.25.26.0
|
||||||
|
add address=10.25.27.1/24 interface=wireguard_clients network=10.25.27.0
|
||||||
|
/ip cloud
|
||||||
|
set ddns-enabled=yes ddns-update-interval=5m
|
||||||
|
/ip dhcp-client
|
||||||
|
add interface=ether2
|
||||||
|
/ip firewall address-list
|
||||||
|
add address=192.168.2.0/24 list=subnet2
|
||||||
|
add address=192.168.2.0/24 list=mgmt_access
|
||||||
|
add address=192.168.3.0/24 list=subnet3
|
||||||
|
add address=10.25.25.0/24 list=subnet2525
|
||||||
|
add address=10.25.26.0/24 list=mgmt_access
|
||||||
|
add address=10.25.26.0/24 list=subnet2526
|
||||||
|
add address=192.168.3.0/24 list=mgmt_access
|
||||||
|
add address=10.25.27.0/24 list=subnet2527
|
||||||
|
add address=10.25.27.0/24 list=mgmt_access
|
||||||
|
add address=192.168.2.43 list=snmp_server
|
||||||
|
/ip firewall filter
|
||||||
|
add action=accept chain=input connection-state=established,related \
|
||||||
|
log-prefix="Allow established, related: "
|
||||||
|
add action=drop chain=input connection-state=invalid log-prefix=\
|
||||||
|
"Drop invalid:"
|
||||||
|
add action=accept chain=input in-interface=wireguard_s2s_hex log-prefix=\
|
||||||
|
"Allow OSPF: " protocol=ospf
|
||||||
|
add action=accept chain=input icmp-options=!5:0-255 log-prefix="Allow ICMP: " \
|
||||||
|
protocol=icmp
|
||||||
|
add action=accept chain=input dst-port=13232,13233 in-interface=ether2 \
|
||||||
|
log-prefix="Allow Wireguard: " protocol=udp
|
||||||
|
add action=accept chain=input dst-port=22,8291 log-prefix=\
|
||||||
|
"Allow ssh+winbox: " protocol=tcp src-address-list=mgmt_access
|
||||||
|
add action=drop chain=input log-prefix="INPUT: Drop anything not allowed: "
|
||||||
|
add action=fasttrack-connection chain=forward connection-state=\
|
||||||
|
established,related hw-offload=yes log-prefix="FastTrack Connection: "
|
||||||
|
add action=accept chain=forward connection-state=established,related \
|
||||||
|
log-prefix="Allow established, related: "
|
||||||
|
add action=drop chain=forward connection-state=invalid log-prefix=\
|
||||||
|
"Drop invalid:"
|
||||||
|
add action=accept chain=forward dst-address-list=subnet3 log-prefix=\
|
||||||
|
"Allow SN2 -> SN3: " src-address-list=subnet2
|
||||||
|
add action=accept chain=forward dst-address-list=subnet3 log-prefix=\
|
||||||
|
"Allow SN2526 -> SN3: " src-address-list=subnet2526
|
||||||
|
add action=accept chain=forward dst-address-list=subnet3 log-prefix=\
|
||||||
|
"Allow SN2525 -> SN3: " src-address-list=subnet2525
|
||||||
|
add action=accept chain=forward in-interface=wireguard_clients log-prefix=\
|
||||||
|
"Allow WG-Clients-> Ether2: " out-interface=ether2 src-address-list=\
|
||||||
|
subnet2527
|
||||||
|
add action=drop chain=forward disabled=yes log=yes log-prefix=\
|
||||||
|
"FORWARD: Drop anything not allowed: "
|
||||||
|
/ip firewall nat
|
||||||
|
add action=masquerade chain=srcnat log-prefix="NAT: Alles von SN2" \
|
||||||
|
out-interface=!wireguard_s2s_hex
|
||||||
|
/ip service
|
||||||
|
set telnet disabled=yes
|
||||||
|
set ftp disabled=yes
|
||||||
|
set www disabled=yes
|
||||||
|
set ssh address=192.168.2.0/24,192.168.3.0/24,10.25.26.0/24
|
||||||
|
set api disabled=yes
|
||||||
|
set winbox address=192.168.2.0/24,192.168.3.0/24,10.25.26.0/24
|
||||||
|
set api-ssl disabled=yes
|
||||||
|
/ip ssh
|
||||||
|
set strong-crypto=yes
|
||||||
|
/routing ospf interface-template
|
||||||
|
add area=ospf-area-1 disabled=no interfaces=wireguard_s2s_hex networks=\
|
||||||
|
10.25.26.0/30 type=ptmp
|
||||||
|
/routing ospf static-neighbor
|
||||||
|
add address=10.25.26.1%wireguard_s2s_hex area=ospf-area-1 disabled=no
|
||||||
|
/snmp
|
||||||
|
set contact="mgrote <michael.grote@posteo.de>" location="S\FCdstra\DFe" \
|
||||||
|
trap-community=librenms-v3 trap-generators=temp-exception,interfaces \
|
||||||
|
trap-version=3
|
||||||
|
/system clock
|
||||||
|
set time-zone-name=Europe/Berlin
|
||||||
|
/system identity
|
||||||
|
set name=hex
|
||||||
|
/system logging
|
||||||
|
add disabled=yes topics=ospf
|
||||||
|
/system note
|
||||||
|
set show-at-login=no
|
||||||
|
/system ntp client
|
||||||
|
set enabled=yes
|
||||||
|
/system ntp client servers
|
||||||
|
add address=0.de.pool.ntp.org
|
||||||
|
/system routerboard settings
|
||||||
|
set silent-boot=yes
|
||||||
|
/system watchdog
|
||||||
|
set automatic-supout=no ping-timeout=5m watch-address=10.25.26.1
|
||||||
|
/tool bandwidth-server
|
||||||
|
set enabled=no
|
||||||
|
/tool mac-server
|
||||||
|
set allowed-interface-list=none
|
||||||
|
/tool mac-server mac-winbox
|
||||||
|
set allowed-interface-list=winbox-access
|
||||||
|
/tool mac-server ping
|
||||||
|
set enabled=no
|
||||||
|
/tool netwatch
|
||||||
|
add disabled=no down-script="# set variables\r\
|
||||||
|
\n:local wginterface wireguard_s2s_hex\r\
|
||||||
|
\n# Valid characters in variable names are letters and digits. If variable\
|
||||||
|
\_name contains any other character, then variable name should be put in d\
|
||||||
|
ouble quotes.\r\
|
||||||
|
\n\r\
|
||||||
|
\n:log error \"wireguard-tunnel down: \$wginterface\"\r\
|
||||||
|
\n/interface/wireguard/disable \$wginterface\r\
|
||||||
|
\n:delay 20s\r\
|
||||||
|
\n/interface/wireguard/enable \$wginterface\r\
|
||||||
|
\n:log info \"Restart wireguard-tunnel: \$wginterface\"\r\
|
||||||
|
\nping 192.168.2.1\r\
|
||||||
|
\n" host=192.168.2.1 interval=30s timeout=1s type=simple
|
3357
config_rb5009.grote.lan.rsc
Normal file
3357
config_rb5009.grote.lan.rsc
Normal file
File diff suppressed because it is too large
Load diff
|
@ -14,7 +14,6 @@ services:
|
||||||
- ./keys/rb5009:/keys/rb5009:ro
|
- ./keys/rb5009:/keys/rb5009:ro
|
||||||
# git
|
# git
|
||||||
- ./keys/git:/keys/git:ro
|
- ./keys/git:/keys/git:ro
|
||||||
-
|
|
||||||
# Add any other volumes or configurations needed
|
# Add any other volumes or configurations needed
|
||||||
|
|
||||||
|
|
||||||
|
|
7
keys/git
Normal file
7
keys/git
Normal file
|
@ -0,0 +1,7 @@
|
||||||
|
-----BEGIN OPENSSH PRIVATE KEY-----
|
||||||
|
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
|
||||||
|
QyNTUxOQAAACAWEUth3wtXBSzUyKxV3XqMQM1wIJAlpua+F/gB11hf9gAAAJAF27/QBdu/
|
||||||
|
0AAAAAtzc2gtZWQyNTUxOQAAACAWEUth3wtXBSzUyKxV3XqMQM1wIJAlpua+F/gB11hf9g
|
||||||
|
AAAEDK9dPqPZ9JhaSDmTlPP4Nn4Hq1k7wyw2bnwDb0JEYWnRYRS2HfC1cFLNTIrFXdeoxA
|
||||||
|
zXAgkCWm5r4X+AHXWF/2AAAACW1nQGlyYW50dQECAwQ=
|
||||||
|
-----END OPENSSH PRIVATE KEY-----
|
1
keys/git.pub
Normal file
1
keys/git.pub
Normal file
|
@ -0,0 +1 @@
|
||||||
|
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBYRS2HfC1cFLNTIrFXdeoxAzXAgkCWm5r4X+AHXWF/2 mg@irantu
|
49
keys/rb5009
Normal file
49
keys/rb5009
Normal file
|
@ -0,0 +1,49 @@
|
||||||
|
-----BEGIN OPENSSH PRIVATE KEY-----
|
||||||
|
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAACFwAAAAdzc2gtcn
|
||||||
|
NhAAAAAwEAAQAAAgEAwTtvMtZr48QWmOMyLHBWlvQTsyJhsBa9okOUrVHRXgf+ICAru31V
|
||||||
|
qQdPo+D+HmOTQ+mwrObczTXTHHJ4Hu8PjusWtYxnmuw7SjBgFVYyAGmPhXZPgdycemKxHs
|
||||||
|
CNa7rt0AIwQcPtgLOcmWDHFN2KeQ5JDQGsIR5aTV5idNP/nokZ2tK9uCzLRrfoSW+aBM+y
|
||||||
|
HKa8DJcCJ4Y4Z76mofJmsfDNqYpbfR1xDQL+cFr7llBjZSa3meTDclVn1tBdHua1kxgWQp
|
||||||
|
onkPO3VKKlvp31qoyhTJBnQYjIyiJ3mfqGFAAoEKGdmuj/9jJnW+zW3Mg9aF+B5mhnrv2S
|
||||||
|
rbPhvAqORW5z+2OMKYpitFdN/EWvLzS4f2na5mm0NelV55oUdfL43+AckRqGqSfWfARRJu
|
||||||
|
dcxt+GDERJZdgIbsISXo9DvR2xCZfuQlwzEU6zZwwquJRApYBY2Nul5VMwQO8DuBjhPaS1
|
||||||
|
y/kjRbVxxyjANM5yHpZtYi1nHpgPYS+EV6YAO1azGOsnAXHD0GQeRe5iKvlO5kgfJLko9m
|
||||||
|
LGwRwgc0cV/sMc1q7gYvtwyq7uDB3Uzdo2AeFy0a2Io1Tj8UI62MACMIR4367xeqamju7i
|
||||||
|
UO6yjEVT3Tm8cxzolDsggIo6Wde7LxZz9MZUvDUXJDjvlf3fj64zA5chV8vh9geSiFgaRT
|
||||||
|
kAAAdAKIsYciiLGHIAAAAHc3NoLXJzYQAAAgEAwTtvMtZr48QWmOMyLHBWlvQTsyJhsBa9
|
||||||
|
okOUrVHRXgf+ICAru31VqQdPo+D+HmOTQ+mwrObczTXTHHJ4Hu8PjusWtYxnmuw7SjBgFV
|
||||||
|
YyAGmPhXZPgdycemKxHsCNa7rt0AIwQcPtgLOcmWDHFN2KeQ5JDQGsIR5aTV5idNP/nokZ
|
||||||
|
2tK9uCzLRrfoSW+aBM+yHKa8DJcCJ4Y4Z76mofJmsfDNqYpbfR1xDQL+cFr7llBjZSa3me
|
||||||
|
TDclVn1tBdHua1kxgWQponkPO3VKKlvp31qoyhTJBnQYjIyiJ3mfqGFAAoEKGdmuj/9jJn
|
||||||
|
W+zW3Mg9aF+B5mhnrv2SrbPhvAqORW5z+2OMKYpitFdN/EWvLzS4f2na5mm0NelV55oUdf
|
||||||
|
L43+AckRqGqSfWfARRJudcxt+GDERJZdgIbsISXo9DvR2xCZfuQlwzEU6zZwwquJRApYBY
|
||||||
|
2Nul5VMwQO8DuBjhPaS1y/kjRbVxxyjANM5yHpZtYi1nHpgPYS+EV6YAO1azGOsnAXHD0G
|
||||||
|
QeRe5iKvlO5kgfJLko9mLGwRwgc0cV/sMc1q7gYvtwyq7uDB3Uzdo2AeFy0a2Io1Tj8UI6
|
||||||
|
2MACMIR4367xeqamju7iUO6yjEVT3Tm8cxzolDsggIo6Wde7LxZz9MZUvDUXJDjvlf3fj6
|
||||||
|
4zA5chV8vh9geSiFgaRTkAAAADAQABAAAB/zMX6bxtKrgh2ci4/yWqYXc17P+SshxDMmFX
|
||||||
|
V6IxR67N3yu2Cq0UAkNga4Uak0QyCKQsdaVCR/pkW2o9B36P3WPhn+cdj6HykRUuvO32b4
|
||||||
|
X/NlmQGG5Q41qXLut2fqMnKGfULFBGeoogP0vloa9e9A1/TFGY0Iy1DLqsNpEem21EvKvB
|
||||||
|
nJ1s/oAwvtVg1nrCBv/9YcNq7kjI7TfMrdHv2U5KSyZJPlitbH6mKiEaZhkCPyfO8x8cPE
|
||||||
|
Z7VkEvORXf1IUMsANOP5j6BaG5jT+KyLIuG1pMxXk4CHY9F9PQG2AI17xg4XUBxSUMrtbf
|
||||||
|
rrRfelXArwWUJMdCawowRjhuv0XjBFZFkErf7bWrxAqMIvBY9Fog9Jo4IBzJ/7g4ccsQVq
|
||||||
|
meSxp03aU5mYPxbmJBU5z0kZXazLYA9/OREOm3lwpwlCzslCCou0HgmOw/ECbhfNvcxIV+
|
||||||
|
k0Vrz8kUa+t13TNec1J9jxLi/Xl9/Y9x7sFBOCkE0HbeQsLeY+sFNRAN+Im7Xv+xeqtxwg
|
||||||
|
zmZt93NrmLD7OAC91xp5n6HSH1Q7av4VD5rZTmDnbf0BqrgW/6NAZ+NcRtd7mO5JhH5AxI
|
||||||
|
zvzDrdTIXRN/TWq3fEmp5bmhNdxNct9oSg6/MUkgZHmzBI8okcsXk4Gik72+F2CtT9tXJv
|
||||||
|
Xg70rEAGzLZ0w3WyEAAAEBAMzcE7z8G/dcctgFd1kIEBZBubA1R+jzgivQHa6iXgND5gX6
|
||||||
|
GVpQrEcuriK6cva5EIvjTTTqeQfw0V7stsz5WX61YlAbIgxZaT/SS12svPIGSo5Jgft3Rb
|
||||||
|
YwmuInlH5+YwEEdHRltYq9TIaw+mcz5/ubrm8S78UqPWGlooCw+TiitO5Y8/FN9WXvPcco
|
||||||
|
cOdpx/o9V4u4LbYxXrKtsRc8M6/fFoAif8JbCUEq/ZYOEXdUtjmgNIyToawMYlrU6iCH8g
|
||||||
|
Fa/DgBC5TAg/GVKGWCuUYkQQFNvKYDBlUZNgSfvpPvR23oa88EKAEEQ+Xnbf3zWXwWXPIa
|
||||||
|
C8o2CXdIvJvGecUAAAEBAOyC2Cty20unqIcjj+GhC5G5gg75hC5JJM8zQTUTa2yplreQqY
|
||||||
|
yHf+xYZoQkqBg6DAlbrMCKfrDogc1xX9d2M0ymb/xwQn+4+KzMi+ieT9QiUtfnMczbXTYp
|
||||||
|
VxSG/cOUOrjBHoPEZxw/FcW9SOZWMkdrLgLWkoD72PopRmnP9GJtr9HWDqcrEztDycLRtV
|
||||||
|
2GZtDNKFVpShl+BWivuIyAUe1Clg7jdUCHTpYoJcKjIF3fpwkU2VFoC+gBTKQO5FzcoyEq
|
||||||
|
qxS3+HDPmgPPkVUpUMH725Nk8RFHtlc64Lmsc28SOoNXGxc9uqF0OUC0pE9VdRa8lSfiWP
|
||||||
|
FOpxhV7T/evLEAAAEBANEnoQr7FfjuVq9jvVnfeUpNfNh3SMRC79VcvF4LDkZoyqDmKj0U
|
||||||
|
vnCuD6qIXC24nL0eQv7QSPIqt7WMxbKCF9u2WdxE6KkCVmZGYZjzhEUfztvpKmB1b5muwn
|
||||||
|
FsqBe3oTaTrvYDzklQeLm80Fezf7R+YcKov5FNjPJSXQs3sZSm1UiZi2FmJWUUrdlu8pPy
|
||||||
|
fZq45YV2GjhNZmN8GvNePoKE3pCMUET8BbrYjpqDwAO7EKJrVanS7mwM8bYyRl6vEE9gpG
|
||||||
|
yM6QOiAFu7Iuv7VP5xdavYmORAZPSxRy4J0O1/GZ2VDT2SGdxJ5l5AYoNGvIZpAJZ2WutD
|
||||||
|
AEkmHyyskwkAAAAJbWdAaXJhbnR1AQI=
|
||||||
|
-----END OPENSSH PRIVATE KEY-----
|
1
keys/rb5009.pub
Normal file
1
keys/rb5009.pub
Normal file
|
@ -0,0 +1 @@
|
||||||
|
ssh-rsa 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 mg@irantu
|
49
neu
Normal file
49
neu
Normal file
|
@ -0,0 +1,49 @@
|
||||||
|
-----BEGIN OPENSSH PRIVATE KEY-----
|
||||||
|
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAACFwAAAAdzc2gtcn
|
||||||
|
NhAAAAAwEAAQAAAgEAph66MPxBFHM+pchivS2Eg+E/whqI9Dh17rcx1jB94ze+/Slvm0Uu
|
||||||
|
BzUPrWMBqbcYfzvGvr4QUZfk4nbPW+XgHJTsidMO+iEeJ3VucbiK3q/YdMIdTU+y48P3hJ
|
||||||
|
OGkxTJBlL9Ee7n7qp29sXS/AGzVAGez1GahSAuiBBn4awMUU/7SKEPFNSS5GWqG3ycoHRs
|
||||||
|
PBou/QzYKMJW9UTeysy97DJWOIPRQBxLMwX237Hy55711jL0V9AfZWUK9WDn8vE51LicEW
|
||||||
|
LgtnjOR4KXu4mNNronqa2SSWnVu2ZipotAJOj6iwyuInXLqVB/aymMKnThy3sz1OFhdwlY
|
||||||
|
ukGaINEsW17WEjl4995B8Hzarcl0NUP/mQtpb7yeyNCXzqxKXpgTSuRjxTHCEbEhGq0oxk
|
||||||
|
3gJIu/O/c9SHy3uc5+m36gttQPQPxqRDHwJiSxFT1jLNVE7Mei55B9a0FWhCPlGkJvvSab
|
||||||
|
8A0FF4HuwB9UzPHbAocU0MM8yeorlTsVMoIs2reBHYUELU+wVUc7H/pIMN60CuGc4Xvwv9
|
||||||
|
+NBLOWjw5RZokmqAvm8ntNo24VBBp6AMLt8DafX9nIBYmhhtcP3Ke63e1njnPBFnWNL8rZ
|
||||||
|
wJCtUmaehx6V6Mzc/4wqHJxYnkubIf35S4Ys4/3hwfRBVegEEbLJdJ4kP/2mgulp31bZ24
|
||||||
|
sAAAdIBJAdZQSQHWUAAAAHc3NoLXJzYQAAAgEAph66MPxBFHM+pchivS2Eg+E/whqI9Dh1
|
||||||
|
7rcx1jB94ze+/Slvm0UuBzUPrWMBqbcYfzvGvr4QUZfk4nbPW+XgHJTsidMO+iEeJ3Vucb
|
||||||
|
iK3q/YdMIdTU+y48P3hJOGkxTJBlL9Ee7n7qp29sXS/AGzVAGez1GahSAuiBBn4awMUU/7
|
||||||
|
SKEPFNSS5GWqG3ycoHRsPBou/QzYKMJW9UTeysy97DJWOIPRQBxLMwX237Hy55711jL0V9
|
||||||
|
AfZWUK9WDn8vE51LicEWLgtnjOR4KXu4mNNronqa2SSWnVu2ZipotAJOj6iwyuInXLqVB/
|
||||||
|
aymMKnThy3sz1OFhdwlYukGaINEsW17WEjl4995B8Hzarcl0NUP/mQtpb7yeyNCXzqxKXp
|
||||||
|
gTSuRjxTHCEbEhGq0oxk3gJIu/O/c9SHy3uc5+m36gttQPQPxqRDHwJiSxFT1jLNVE7Mei
|
||||||
|
55B9a0FWhCPlGkJvvSab8A0FF4HuwB9UzPHbAocU0MM8yeorlTsVMoIs2reBHYUELU+wVU
|
||||||
|
c7H/pIMN60CuGc4Xvwv9+NBLOWjw5RZokmqAvm8ntNo24VBBp6AMLt8DafX9nIBYmhhtcP
|
||||||
|
3Ke63e1njnPBFnWNL8rZwJCtUmaehx6V6Mzc/4wqHJxYnkubIf35S4Ys4/3hwfRBVegEEb
|
||||||
|
LJdJ4kP/2mgulp31bZ24sAAAADAQABAAACABhy7klWXwew/Hfu2aVpJRc52CXrvNtg0e6b
|
||||||
|
1MBm66g85KWi6xOpp2AVLaUBrNV7JqZXOGWLWKCBoAS6osMuPoFGY9fXEd27cRIypNok5H
|
||||||
|
9o1w08Io7l23jNN0kyYzyTcxC0tx1kEYudWBvyup4va+LByEtQAdN1DJQnAfsDVN7EzEGA
|
||||||
|
vtT8glAOLG6WNQEikWl5GxBQSyIYlC7N/5JOdudj8y+nKu1qHKE6T/7VVGBFk33+itq/vV
|
||||||
|
cxe17o78pgOXg24XVnnZYNiqKYtFc8I+X5mOvOqXiXlIbbx0omtX6ZMYK0j45v0tUtDUvK
|
||||||
|
1h/Liw3lKJg8wZkA7aegDxykXIgrX88teYJayxzneKe1ty89SEEeYP+gJFEUhOuB87PEpg
|
||||||
|
hdL2uYd1ur3frNRzkxStv0tu9HXjC8fz82sVDkDtmxpeJR8zpx6vV7SGQy8NgFhr/18W+v
|
||||||
|
kQTe887TETbYpx8whTl0kNuZ3YBxO6oTtjlJ79sVQZMw2ZsOGDyl5M/wr1ZR2k4LwvvVMm
|
||||||
|
egUVBvUkZkYLFpo0F9W218LEOJAdszcRcdgSugoP9w6g54s8lh8ZaOILl5cuITNZOwzna+
|
||||||
|
X8/hKhQKy2o8uRqiqOfso9tO/R9D5kpKFh3f/Idlf6Ra+wiuvCkG4y09QS0NCQHZ8MZig5
|
||||||
|
OMuBQ3LXq/igaXzeNdAAABAQCsuqDBXRgNruB2cX13x2SMsp0n0xv2wM2iXlkEfmf0LBgb
|
||||||
|
Is+2OtQezPAPbyWqzPvMzPmcKs5jD7jfQsMCh3sOFCnkPbAh3/kERHqnL7h4SKI6ar6YQs
|
||||||
|
6T1i54dKJZyPFF/VoldGD6XBa3ev/qUVpPL/MdfoDSBlNcHTbDnzYQEPp1dKm800mDzMoN
|
||||||
|
4a+wOTjxH7WqE6iUGgEPUnEO3WZN7HoX0gAfCNYCfxOU54m3aLm2timVZfnZElxx9KH+53
|
||||||
|
bvU3L+n1CwmjrJ+GlotWWosscVmK0HaoIjVVv2yuT7zM2DgDn3alVkBOyUkg9P3C+KBUY1
|
||||||
|
H8nTWvHF1VgkDsiTAAABAQDT/jVjr1cHHI+SYBiqcw8RsIEf1QF5etRJxfEEFh2aBSXm3/
|
||||||
|
7NwijzBUD4pV2yWLiWkwIZ5blaHoHtPZK5qeWfrTrU5za3aowxg69te7Tm4uL+LXxQHeob
|
||||||
|
vPyTXsQ5yzcG1PW86oWc5TI7ZNnXOvlHqF6s94f+7dNI/25OH6caEUa2MVicQ2cJRikUIS
|
||||||
|
pzsXYEchB8RoKfdLg6MIfNvQ1F+CZPx6aD5ohddq9pv3n8jZiOB02b76BvungetN65ONFP
|
||||||
|
jJsPRaRq2n4nXAWbudk0UL87hWP4chbCPvKK3Ml6T3iR6vHNWaPYvAG6ZUC2kS31YtR8+U
|
||||||
|
GY0UZDtyCKSWXHAAABAQDImrlvcOgbn1C8rlUYPUdcN5gYiXS4o3A5iGMAddE4L1+S0Blc
|
||||||
|
Q6NHd5I5RST+hmt6XvxSUl4b81GnFsQEwxGvizP7R7/2TDxmcp3lvwVsjRMZASBuwtXaUz
|
||||||
|
cmJdy+2LvnyqQdHEcA8TwSaFSvT/m+XWIX2HRgBsfb45xqQynjSPuucL0NGzjX95+MD59h
|
||||||
|
+wnJI9CvSA+p1gD53PBu5WzvQG8B+8gTrcFztXo9IuIHkyRFC4jchhCDUaKRtTP5ItqMQo
|
||||||
|
H8mjSb+UUUV4JbcchmCKlgrlbTDaHomje/18ygXtHqlKCIIWxgloc5UGazmhTzxVkjXg9i
|
||||||
|
8YFBQqIWHAwdAAAADnRlc3RzY2hsw7xzc2VsAQIDBA==
|
||||||
|
-----END OPENSSH PRIVATE KEY-----
|
1
neu.pub
Normal file
1
neu.pub
Normal file
|
@ -0,0 +1 @@
|
||||||
|
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQCmHrow/EEUcz6lyGK9LYSD4T/CGoj0OHXutzHWMH3jN779KW+bRS4HNQ+tYwGptxh/O8a+vhBRl+Tids9b5eAclOyJ0w76IR4ndW5xuIrer9h0wh1NT7Ljw/eEk4aTFMkGUv0R7ufuqnb2xdL8AbNUAZ7PUZqFIC6IEGfhrAxRT/tIoQ8U1JLkZaobfJygdGw8Gi79DNgowlb1RN7KzL3sMlY4g9FAHEszBfbfsfLnnvXWMvRX0B9lZQr1YOfy8TnUuJwRYuC2eM5Hgpe7iY02uieprZJJadW7ZmKmi0Ak6PqLDK4idcupUH9rKYwqdOHLezPU4WF3CVi6QZog0SxbXtYSOXj33kHwfNqtyXQ1Q/+ZC2lvvJ7I0JfOrEpemBNK5GPFMcIRsSEarSjGTeAki7879z1IfLe5zn6bfqC21A9A/GpEMfAmJLEVPWMs1UTsx6LnkH1rQVaEI+UaQm+9JpvwDQUXge7AH1TM8dsChxTQwzzJ6iuVOxUygizat4EdhQQtT7BVRzsf+kgw3rQK4Zzhe/C/340Es5aPDlFmiSaoC+bye02jbhUEGnoAwu3wNp9f2cgFiaGG1w/cp7rd7WeOc8EWdY0vytnAkK1SZp6HHpXozNz/jCocnFieS5sh/flLhizj/eHB9EFV6AQRssl0niQ//aaC6WnfVtnbiw== testschlüssel
|
39
x
Normal file
39
x
Normal file
|
@ -0,0 +1,39 @@
|
||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
# setze Variable
|
||||||
|
devices="rb5009.grote.lan,/home/mg/oxidized-selfmade/neu
|
||||||
|
hex.grote.lan,/ssh/keys/hex"
|
||||||
|
GIT_REPO_PATH=/home/mg/oxidized-selfmade
|
||||||
|
|
||||||
|
|
||||||
|
# Save the current value of IFS to restore later
|
||||||
|
OLD_IFS=$IFS
|
||||||
|
|
||||||
|
# Set the IFS to a comma to split the values
|
||||||
|
IFS=','
|
||||||
|
|
||||||
|
# Loop through the lines in the variable
|
||||||
|
while read -r fqdn path; do
|
||||||
|
# Print the variables (you can perform any actions you need here)
|
||||||
|
fqdn=$(echo $fqdn | tr -d "[:space:]")
|
||||||
|
|
||||||
|
ssh -n -i ${path} ${fqdn} "/export show-sensitive" > config_${fqdn}.rsc
|
||||||
|
done <<< "$devices"
|
||||||
|
|
||||||
|
# Restore the original IFS value
|
||||||
|
IFS=$OLD_IFS
|
||||||
|
|
||||||
|
if [ -d "$GIT_REPO_PATH" ]; then
|
||||||
|
cd "$GIT_REPO_PATH"
|
||||||
|
if [ -d ".git" ]; then
|
||||||
|
git pull origin master
|
||||||
|
else
|
||||||
|
echo "Error: The directory exists but is not a Git repository."
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
else
|
||||||
|
git clone "$GIT_REPO_URL" "$GIT_REPO_PATH"
|
||||||
|
fi
|
||||||
|
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue