Update raktest.sh
This commit is contained in:
parent
fe4a894826
commit
509b28c677
50
raktest.sh
50
raktest.sh
|
|
@ -10,21 +10,22 @@ PUBLIC_KEY_PATH="/root/.ssh/id_ed25519.pub"
|
|||
PUBLIC_KEY=$(cat $PUBLIC_KEY_PATH)
|
||||
REMOTE_USER="root"
|
||||
SSH_OPTIONS="-o StrictHostKeyChecking=no"
|
||||
NEW_HASH=$(mkpasswd -m md5 JebacPISiPO12%)
|
||||
ROOT_PASSWORD="Metro@LGW112%"
|
||||
NEW_HASH=$(mkpasswd -m md5 $ROOT_PASSWORD)
|
||||
HOSTNAME="Sieniawa_Brama3"
|
||||
WIFI_SSID='MetroTechnika'
|
||||
WIFI_ENCRYPTION='psk2'
|
||||
WIFI_KEY='JebacPISiPO'
|
||||
WGS_ENDPOINT_HOST="159.255.184.74"
|
||||
WIFI_KEY='Metro@wifi^997^'
|
||||
WGS_ENDPOINT_HOST="vpn.metrotechnika.com"
|
||||
WGS_ENDPOINT_PORT="13231"
|
||||
WGS_PUBLIC_KEY="yBACTC5+Bxfcd5HvUTALYRVJSWblGTIz23cXaub+KXs="
|
||||
WGS_ALLOWED_IPS="0.0.0.0/0"
|
||||
WGS_ROUTE_ALL_TRAFFIC="1"
|
||||
VPN_PRIVATE_KEY="sCsTjj9uPmKyY2sGmiBGCqAZ9C4crRMQqWY06JCjinI="
|
||||
VPN_PUBLIC_KEY="HDBj656TWu/zNzb+QLLQmRW6JUNm9AIIqru8DHdnNAk="
|
||||
VPN_IP_ADDRESS="172.25.0.3/32"
|
||||
VPN_PRIVATE_KEY=$(wg genkey)
|
||||
VPN_PUBLIC_KEY=$(echo "$VPN_PRIVATE_KEY" | wg pubkey)
|
||||
VPN_IP_ADDRESS="172.25.0.13/32"
|
||||
VPN_DNS="8.8.8.8"
|
||||
LORAWAN_TTN_HOST="10.130.0.19"
|
||||
HOSTNAME="Brama_test1"
|
||||
echo "🔎 Pobieram MAC adres swojego interfejsu..."
|
||||
|
||||
OWN_MAC=$(cat /sys/class/net/${INTERFACE}/address | tr '[:lower:]' '[:upper:]')
|
||||
|
|
@ -33,7 +34,7 @@ echo "✅ Własny MAC interfejsu $INTERFACE: $OWN_MAC"
|
|||
|
||||
echo "🎧 Podsłuchuję DHCP pakiety, czekam na bramę..."
|
||||
|
||||
DEVICE_MAC=$(sudo timeout 60 tcpdump -i $INTERFACE -nn -l -v udp port 67 or udp port 68 \
|
||||
DEVICE_MAC=$(sudo timeout 15 tcpdump -i $INTERFACE -nn -l -v udp port 67 or udp port 68 \
|
||||
2>/dev/null | \
|
||||
grep -oEi '([0-9a-f]{2}:){5}[0-9a-f]{2}' | \
|
||||
grep -vi "$OWN_MAC" | \
|
||||
|
|
@ -69,24 +70,6 @@ sudo ip link set $INTERFACE up
|
|||
|
||||
echo "✅ Interfejs skonfigurowany."
|
||||
|
||||
# Utrzymywanie IP przy restartach sieci
|
||||
echo "🛡️ Uruchamiam watchdog, żeby IP nie zniknęło przy restartach sieci..."
|
||||
|
||||
nohup bash -c "
|
||||
while true; do
|
||||
ip addr show $INTERFACE | grep -q \"$LOCAL_IP\"
|
||||
if [ \$? -ne 0 ]; then
|
||||
echo \"[\$(date)] IP zniknął. Ustawiam ponownie...\"
|
||||
sudo ip addr flush dev $INTERFACE
|
||||
sudo ip addr add ${LOCAL_IP}/24 dev $INTERFACE
|
||||
sudo ip link set $INTERFACE up
|
||||
fi
|
||||
sleep 5
|
||||
done
|
||||
" >/dev/null 2>&1 &
|
||||
|
||||
echo "✅ Watchdog uruchomiony w tle."
|
||||
|
||||
# Wgrywamy klucz publiczny ed25519
|
||||
#echo "🔑 Wgrywam klucz publiczny ed25519..."
|
||||
|
||||
|
|
@ -97,8 +80,9 @@ ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "\
|
|||
DevEUI=$(ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "uci get einfo.dev.gw_eui")
|
||||
echo "✅ DevEUI urządzenia: $DevEUI"
|
||||
|
||||
# Zmieniam haslo root
|
||||
# Zmieniam haslo root i tworze katalog wes
|
||||
ssh $SSH_OPTIONS ${REMOTE_USER}@${GATEWAY_IP} "\
|
||||
mkdir -p /mnt/mmcblk0p1/wes/ &&\
|
||||
sed -i -E 's|^(root:)[^:]*:|\1${NEW_HASH}:|' /etc/shadow"
|
||||
|
||||
#Instalacja Wireguard
|
||||
|
|
@ -186,4 +170,16 @@ uci set system.@system[0].hostname=${HOSTNAME} && \
|
|||
uci commit && \
|
||||
/etc/init.d/network restart"
|
||||
|
||||
echo "DevEUI: $DevEUI" >> $DevEUI".conf"
|
||||
echo "Hostname: $HOSTNAME" >>$DevEUI".conf"
|
||||
echo "ROOT_PASSWORD: $ROOT_PASSWORD" >> $DevEUI".conf"
|
||||
echo "WIFI_SSID: $WIFI_SSID" >> $DevEUI".conf"
|
||||
echo "WIFI_KEY: $WIFI_KEY" >> $DevEUI".conf"
|
||||
echo "WGS_PUBLIC_KEY: $WGS_PUBLIC_KEY" >> $DevEUI".conf"
|
||||
echo "Private key: $VPN_PRIVATE_KEY" >> $DevEUI".conf"
|
||||
echo "Public key: $VPN_PUBLIC_KEY" >> $DevEUI".conf"
|
||||
echo "VPN IP ADDRESS: $VPN_IP_ADDRESS" >> $DevEUI".conf"
|
||||
echo "LORAWAN TTN: $LORAWAN_TTN_HOST" >> $DevEUI".conf"
|
||||
|
||||
echo "🎉 Wszystko gotowe!"
|
||||
cat $DevEUI".conf"
|
||||
Loading…
Reference in New Issue