mirror of
https://github.com/flynx/proxmox-utils.git
synced 2025-10-31 20:20:08 +00:00
202 lines
4.3 KiB
Bash
Executable File
202 lines
4.3 KiB
Bash
Executable File
#!/usr/bin/bash
|
|
#----------------------------------------------------------------------
|
|
|
|
cd $(dirname $0)
|
|
PATH=$PATH:$(dirname "$(pwd)")
|
|
|
|
|
|
#----------------------------------------------------------------------
|
|
|
|
source ../.pct-helpers
|
|
|
|
|
|
#----------------------------------------------------------------------
|
|
|
|
need ifreload
|
|
|
|
|
|
#----------------------------------------------------------------------
|
|
|
|
readConfig
|
|
|
|
|
|
DFL_WAN_PORT=${DFL_WAN_PORT:-enp5s0}
|
|
DFL_ADMIN_PORT=${DFL_ADMIN_PORT:-enp2s0}
|
|
|
|
DFL_HOST_ADMIN_IP=${PROXMOX_ADMIN_IP:-10.0.0.254/24}
|
|
|
|
|
|
SOFTWARE=(
|
|
ifupdown2
|
|
make
|
|
w3m links
|
|
tree
|
|
qrencode
|
|
htop iftop iotop
|
|
tmux
|
|
)
|
|
|
|
INTERFACES=/etc/network/interfaces
|
|
|
|
BRIDGES_TPL=bridges.tpl
|
|
|
|
# XXX
|
|
#readVars
|
|
|
|
|
|
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
|
|
# Bootstrap...
|
|
|
|
if ! [ -z $BOOTSTRAP_CLEAN ] \
|
|
&& [ -e "$INTERFACES".clean ] ; then
|
|
@ cp "$INTERFACES"{,.bak}
|
|
@ cp "$INTERFACES"{.clean,.new}
|
|
if reviewApplyChanges "$INTERFACES" ; then
|
|
# XXX this must be done in nohup to avoid breaking on connection lost...
|
|
if ! @ ifreload -a ; then
|
|
# reset settings back if ifreload fails...
|
|
@ cp "$INTERFACES"{.bak,}
|
|
@ ifreload -a
|
|
fi
|
|
fi
|
|
exit
|
|
fi
|
|
|
|
|
|
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
|
|
# Bootstrap...
|
|
|
|
# XXX
|
|
if ! [ -z $BOOTSTRAP ] ; then
|
|
DFL_BOOTSTRAP_PORT=${DFL_BOOTSTRAP_PORT:-none}
|
|
xread "Bootstrap port: " BOOTSTRAP_PORT
|
|
|
|
BRIDGES_BOOTSTRAP_TPL=bootstrap-bridges.tpl
|
|
fi
|
|
|
|
|
|
|
|
#----------------------------------------------------------------------
|
|
|
|
# Tools
|
|
if xreadYes "# Update system?" UPDATE ; then
|
|
@ apt update
|
|
@ apt upgrade
|
|
fi
|
|
if xreadYes "# Install additional apps?" APPS ; then
|
|
@ apt install ${SOFTWARE[@]}
|
|
fi
|
|
|
|
# Bridges...
|
|
# XXX need to:
|
|
# - bootstrap this
|
|
# - setup the gate, ssh, and wireguard
|
|
# - inalize
|
|
# XXX /etc/hosts
|
|
# XXX save config???
|
|
# XXX should we do things in ./staging ???
|
|
if xreadYes "# Create bridges?" BRIDGES ; then
|
|
xread "WAN port: " WAN_PORT
|
|
xread "ADMIN port: " ADMIN_PORT
|
|
xread "Host ADMIN IP: " HOST_ADMIN_IP
|
|
xread "Gate ADMIN IP: " GATE_ADMIN_IP
|
|
readBridgeVars
|
|
|
|
# check if new bridges already exist in interfaces...
|
|
if [ -e "$INTERFACES" ] \
|
|
&& grep -q \
|
|
"vmbr\(${WAN_BRIDGE}\|${LAN_BRIDGE}\|${ADMIN_BRIDGE}\)" \
|
|
"$INTERFACES" ; then
|
|
conflict=
|
|
#for br in WAN_BRIDGE LAN_BRIDGE ADMIN_BRIDGE ; do
|
|
for br in WAN_BRIDGE LAN_BRIDGE ; do
|
|
if grep -q "vmbr${!br}" "$INTERFACES" ; then
|
|
conflict="${conflict}, vmbr${!br} (${br})"
|
|
fi
|
|
done
|
|
if grep -q "vmbr${ADMIN_BRIDGE}" "$INTERFACES" ; then
|
|
echo "NOTE: reusing vmbr${ADMIN_BRIDGE} for ADMIN."
|
|
else
|
|
echo "ERROR: will not overwrite existing bridges: ${conflict:2}" >&2
|
|
exit 1
|
|
fi
|
|
fi
|
|
|
|
@ cp "$INTERFACES"{,.bak}
|
|
@ cp "$INTERFACES"{,.new}
|
|
|
|
BRIDGES="$(\
|
|
cat "$BRIDGES_TPL" \
|
|
| expandPCTTemplate \
|
|
LAN_BRIDGE WAN_BRIDGE ADMIN_BRIDGE BOOTSTRAP_BRIDGE \
|
|
WAN_PORT ADMIN_PORT BOOTSTRAP_ADMIN_PORT \
|
|
HOST_ADMIN_IP GATE_ADMIN_IP)"
|
|
|
|
[ -z $BRIDGES_BOOTSTRAP_TPL ] \
|
|
|| BRIDGES_BOOTSTRAP="$(\
|
|
cat "$BRIDGES_BOOTSTRAP_TPL" \
|
|
| expandPCTTemplate \
|
|
LAN_BRIDGE WAN_BRIDGE ADMIN_BRIDGE BOOTSTRAP_BRIDGE \
|
|
WAN_PORT ADMIN_PORT BOOTSTRAP_PORT \
|
|
HOST_ADMIN_IP GATE_ADMIN_IP)"
|
|
|
|
if [ -z "$DRY_RUN" ] ; then
|
|
# write both bootstrap and clean bridge configurations...
|
|
if ! [ -z $BRIDGES_BOOTSTRAP ] ; then
|
|
@ cp "$INTERFACES"{.new,.clean}
|
|
@ sed -i \
|
|
-e 's/'$ADMIN_PORT'/'$BOOTSTRAP_PORT'/' \
|
|
"$INTERFACES".clean
|
|
echo "$BRIDGES" >> "$INTERFACES".clean
|
|
BRIDGES="$BRIDGES_BOOTSTRAP"
|
|
fi
|
|
|
|
echo "$BRIDGES" >> "$INTERFACES".new
|
|
|
|
else
|
|
echo "$BRIDGES"
|
|
fi
|
|
|
|
if reviewApplyChanges "$INTERFACES" ; then
|
|
# XXX this must be done in nohup to avoid breaking on connection lost...
|
|
if ! @ ifreload -a ; then
|
|
# reset settings back if ifreload fails...
|
|
@ cp "$INTERFACES"{.bak,}
|
|
@ ifreload -a
|
|
fi
|
|
fi
|
|
fi
|
|
|
|
|
|
echo "# Building config..."
|
|
# XXX do we need any extra vars here???
|
|
buildAssets
|
|
|
|
|
|
# XXX /etc/hosts???
|
|
|
|
|
|
# DNS
|
|
if xreadYes "# Update DNS?" DNS ; then
|
|
file=/etc/resolv.conf
|
|
@ cp "staging/${file}" "${file}".new
|
|
reviewApplyChanges "${file}"
|
|
fi
|
|
|
|
|
|
# Firewall
|
|
if xreadYes "# Update firewall rules?" FIREWALL ; then
|
|
file=/etc/pve/firewall/cluster.fw
|
|
@ cp "staging/${file}" "${file}".new
|
|
reviewApplyChanges "${file}"
|
|
fi
|
|
|
|
|
|
showNotes
|
|
echo "# Done."
|
|
|
|
|
|
|
|
#----------------------------------------------------------------------
|
|
# vim:set ts=4 sw=4 :
|