changed Files: config_ hex.grote.lan.rsc

config_hex.grote.lan.rsc
config_rb5009.grote.lan.rsc
docker-compose.yml
keys/git
keys/git.pub
keys/rb5009
keys/rb5009.pub
neu
neu.pub
x

Signed-off-by: Michael Grote <michael.grote@posteo.de>
This commit is contained in:
Michael Grote 2023-07-21 18:40:45 +02:00
parent b803f56c04
commit 696c4b901d
No known key found for this signature in database
GPG key ID: 4D4C2CD4AE7F095E
11 changed files with 3678 additions and 1 deletions

View file

174
config_hex.grote.lan.rsc Normal file
View file

@ -0,0 +1,174 @@
# 2023-07-21 18:40:20 by RouterOS 7.10
# software id = NPZE-DVQU
#
# model = RB750Gr3
# serial number = CC210C7265A3
/interface ethernet
set [ find default-name=ether1 ] disabled=yes
set [ find default-name=ether3 ] disabled=yes
set [ find default-name=ether4 ] disabled=yes
set [ find default-name=ether5 ] disabled=yes
/interface wireguard
add listen-port=13233 mtu=1420 name=wireguard_clients private-key=\
"4EsatRG85+HxsoPF1gm6A5vZQ88xRo/fHb0xsdJMb3w="
add listen-port=13232 mtu=1420 name=wireguard_s2s_hex private-key=\
"ABE3o3tWAw2GeLfJDAKeNqG9OwudiOLFhT+ghQ6P1Fc="
/interface list
add name=LAN
add name=VPN
add name=winbox-access
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/port
set 1 name=serial0
/routing ospf instance
add disabled=no name=ospf-instance-s2s redistribute=connected router-id=\
10.25.26.2
/routing ospf area
add area-id=0.0.0.1 disabled=no instance=ospf-instance-s2s name=ospf-area-1
/snmp community
set [ find default=yes ] read-access=no security=private
add addresses=::/0 authentication-password=9IEYe5R-usuhdH7y-LEcJpWcfeQ319 \
authentication-protocol=SHA1 encryption-password=\
GjYze03kkkeRMH3sDVbAJp9Gl6WC-I encryption-protocol=AES name=librenms-v3
/system logging action
set 0 memory-lines=10000
/ip neighbor discovery-settings
set discover-interface-list=winbox-access
/ip settings
set tcp-syncookies=yes
/ipv6 settings
set disable-ipv6=yes max-neighbor-entries=8192
/interface list member
add interface=ether2 list=LAN
add interface=wireguard_s2s_hex list=VPN
add interface=wireguard_clients list=LAN
add interface=wireguard_s2s_hex list=winbox-access
add interface=wireguard_clients list=winbox-access
add interface=ether2 list=winbox-access
/interface ovpn-server server
set auth=sha1,md5
/interface wireguard peers
add allowed-address=0.0.0.0/0 endpoint-address=mgrote.net endpoint-port=13232 \
interface=wireguard_s2s_hex persistent-keepalive=10s public-key=\
"/drwUkzCR7umH4YFTRa+D9WB8KOvTXIZxRf/9gC9kkM="
add allowed-address=10.25.27.2/24 comment=iphone_andreas interface=\
wireguard_clients public-key=\
"Y/3GVIZsdAUpKr2XJ42MVPte4qJvPpe6ZWj7lQIjPEM="
add allowed-address=10.25.27.200/32 comment=iphone_maximilian interface=\
wireguard_clients public-key=\
"45IEON4osDmTxIv/pkDTWwdUb6X33uTmZFbebkrkdHo="
add allowed-address=10.25.27.100/24 comment=ipad_maximilian interface=\
wireguard_clients public-key=\
"45/22voZXBbjYhtLLQqwPQ00tMZVB6sglrLbkEnlTUM="
/ip address
add address=10.25.26.2/30 interface=wireguard_s2s_hex network=10.25.26.0
add address=10.25.27.1/24 interface=wireguard_clients network=10.25.27.0
/ip cloud
set ddns-enabled=yes ddns-update-interval=5m
/ip dhcp-client
add interface=ether2
/ip firewall address-list
add address=192.168.2.0/24 list=subnet2
add address=192.168.2.0/24 list=mgmt_access
add address=192.168.3.0/24 list=subnet3
add address=10.25.25.0/24 list=subnet2525
add address=10.25.26.0/24 list=mgmt_access
add address=10.25.26.0/24 list=subnet2526
add address=192.168.3.0/24 list=mgmt_access
add address=10.25.27.0/24 list=subnet2527
add address=10.25.27.0/24 list=mgmt_access
add address=192.168.2.43 list=snmp_server
/ip firewall filter
add action=accept chain=input connection-state=established,related \
log-prefix="Allow established, related: "
add action=drop chain=input connection-state=invalid log-prefix=\
"Drop invalid:"
add action=accept chain=input in-interface=wireguard_s2s_hex log-prefix=\
"Allow OSPF: " protocol=ospf
add action=accept chain=input icmp-options=!5:0-255 log-prefix="Allow ICMP: " \
protocol=icmp
add action=accept chain=input dst-port=13232,13233 in-interface=ether2 \
log-prefix="Allow Wireguard: " protocol=udp
add action=accept chain=input dst-port=22,8291 log-prefix=\
"Allow ssh+winbox: " protocol=tcp src-address-list=mgmt_access
add action=drop chain=input log-prefix="INPUT: Drop anything not allowed: "
add action=fasttrack-connection chain=forward connection-state=\
established,related hw-offload=yes log-prefix="FastTrack Connection: "
add action=accept chain=forward connection-state=established,related \
log-prefix="Allow established, related: "
add action=drop chain=forward connection-state=invalid log-prefix=\
"Drop invalid:"
add action=accept chain=forward dst-address-list=subnet3 log-prefix=\
"Allow SN2 -> SN3: " src-address-list=subnet2
add action=accept chain=forward dst-address-list=subnet3 log-prefix=\
"Allow SN2526 -> SN3: " src-address-list=subnet2526
add action=accept chain=forward dst-address-list=subnet3 log-prefix=\
"Allow SN2525 -> SN3: " src-address-list=subnet2525
add action=accept chain=forward in-interface=wireguard_clients log-prefix=\
"Allow WG-Clients-> Ether2: " out-interface=ether2 src-address-list=\
subnet2527
add action=drop chain=forward disabled=yes log=yes log-prefix=\
"FORWARD: Drop anything not allowed: "
/ip firewall nat
add action=masquerade chain=srcnat log-prefix="NAT: Alles von SN2" \
out-interface=!wireguard_s2s_hex
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh address=192.168.2.0/24,192.168.3.0/24,10.25.26.0/24
set api disabled=yes
set winbox address=192.168.2.0/24,192.168.3.0/24,10.25.26.0/24
set api-ssl disabled=yes
/ip ssh
set strong-crypto=yes
/routing ospf interface-template
add area=ospf-area-1 disabled=no interfaces=wireguard_s2s_hex networks=\
10.25.26.0/30 type=ptmp
/routing ospf static-neighbor
add address=10.25.26.1%wireguard_s2s_hex area=ospf-area-1 disabled=no
/snmp
set contact="mgrote <michael.grote@posteo.de>" location="S\FCdstra\DFe" \
trap-community=librenms-v3 trap-generators=temp-exception,interfaces \
trap-version=3
/system clock
set time-zone-name=Europe/Berlin
/system identity
set name=hex
/system logging
add disabled=yes topics=ospf
/system note
set show-at-login=no
/system ntp client
set enabled=yes
/system ntp client servers
add address=0.de.pool.ntp.org
/system routerboard settings
set silent-boot=yes
/system watchdog
set automatic-supout=no ping-timeout=5m watch-address=10.25.26.1
/tool bandwidth-server
set enabled=no
/tool mac-server
set allowed-interface-list=none
/tool mac-server mac-winbox
set allowed-interface-list=winbox-access
/tool mac-server ping
set enabled=no
/tool netwatch
add disabled=no down-script="# set variables\r\
\n:local wginterface wireguard_s2s_hex\r\
\n# Valid characters in variable names are letters and digits. If variable\
\_name contains any other character, then variable name should be put in d\
ouble quotes.\r\
\n\r\
\n:log error \"wireguard-tunnel down: \$wginterface\"\r\
\n/interface/wireguard/disable \$wginterface\r\
\n:delay 20s\r\
\n/interface/wireguard/enable \$wginterface\r\
\n:log info \"Restart wireguard-tunnel: \$wginterface\"\r\
\nping 192.168.2.1\r\
\n" host=192.168.2.1 interval=30s timeout=1s type=simple

3357
config_rb5009.grote.lan.rsc Normal file

File diff suppressed because it is too large Load diff

View file

@ -14,7 +14,6 @@ services:
- ./keys/rb5009:/keys/rb5009:ro
# git
- ./keys/git:/keys/git:ro
-
# Add any other volumes or configurations needed

7
keys/git Normal file
View file

@ -0,0 +1,7 @@
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACAWEUth3wtXBSzUyKxV3XqMQM1wIJAlpua+F/gB11hf9gAAAJAF27/QBdu/
0AAAAAtzc2gtZWQyNTUxOQAAACAWEUth3wtXBSzUyKxV3XqMQM1wIJAlpua+F/gB11hf9g
AAAEDK9dPqPZ9JhaSDmTlPP4Nn4Hq1k7wyw2bnwDb0JEYWnRYRS2HfC1cFLNTIrFXdeoxA
zXAgkCWm5r4X+AHXWF/2AAAACW1nQGlyYW50dQECAwQ=
-----END OPENSSH PRIVATE KEY-----

1
keys/git.pub Normal file
View file

@ -0,0 +1 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBYRS2HfC1cFLNTIrFXdeoxAzXAgkCWm5r4X+AHXWF/2 mg@irantu

49
keys/rb5009 Normal file
View file

@ -0,0 +1,49 @@
-----BEGIN OPENSSH PRIVATE KEY-----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-----END OPENSSH PRIVATE KEY-----

1
keys/rb5009.pub Normal file
View file

@ -0,0 +1 @@
ssh-rsa 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 mg@irantu

49
neu Normal file
View file

@ -0,0 +1,49 @@
-----BEGIN OPENSSH PRIVATE KEY-----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-----END OPENSSH PRIVATE KEY-----

1
neu.pub Normal file
View file

@ -0,0 +1 @@
ssh-rsa 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 testschlüssel

39
x Normal file
View file

@ -0,0 +1,39 @@
#!/bin/bash
# setze Variable
devices="rb5009.grote.lan,/home/mg/oxidized-selfmade/neu
hex.grote.lan,/ssh/keys/hex"
GIT_REPO_PATH=/home/mg/oxidized-selfmade
# Save the current value of IFS to restore later
OLD_IFS=$IFS
# Set the IFS to a comma to split the values
IFS=','
# Loop through the lines in the variable
while read -r fqdn path; do
# Print the variables (you can perform any actions you need here)
fqdn=$(echo $fqdn | tr -d "[:space:]")
ssh -n -i ${path} ${fqdn} "/export show-sensitive" > config_${fqdn}.rsc
done <<< "$devices"
# Restore the original IFS value
IFS=$OLD_IFS
if [ -d "$GIT_REPO_PATH" ]; then
cd "$GIT_REPO_PATH"
if [ -d ".git" ]; then
git pull origin master
else
echo "Error: The directory exists but is not a Git repository."
exit 1
fi
else
git clone "$GIT_REPO_URL" "$GIT_REPO_PATH"
fi