webadmin/bpfire
1
0
Fork 0
mirror of https://github.com/vincentmli/bpfire.git synced 2026-04-18 23:12:59 +02:00
Code Issues Packages Projects Releases Wiki Activity
13,381 Commits 2 Branches 1 Tag
40407aee99546b4f25632bcaeb796d2a53cb1bcb
Commit Graph

87 Commits

Author SHA1 Message Date
Stefan Schantl
8117fff863 IDS: Call helper script when red interface gets up 
The helper script will be automatically called when the red interface gets up
and will re-generate the HOME_NET file, to take care if the IP-address of this
interface has changed.

Fixes #11989

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2019-02-06 15:40:19 +01:00
Stefan Schantl
c1a3401235 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next-suricata 2019-01-21 13:04:13 +01:00
Michael Tremer
7d5caee6bd Add initscript for conntrackd 
The daemon will be started by default when a configuration
file exists.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2019-01-06 08:59:25 +00:00
Stefan Schantl
a13ddf04d9 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into next-suricata 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-12-12 09:27:59 +01:00
Michael Tremer
f354601bbe initscripts: Import pakfire keys before importing AWS configuration 
This is useful when the user-data script is installing
packages. For that it will need valid keys for course.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-12-07 11:38:55 +00:00
Stefan Schantl
cb52183c6a Fix merge conflicts during merge of next and the suricata branch 2018-08-23 10:34:17 +02:00
Michael Tremer
84cd9b9162 Drop the network-trigger script 
This is done at boot time and doesn't normally need to be done again.

On AWS or in the setup, renaming any network interfaces is being
handled automatically.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-08-22 14:05:43 +01:00
Stefan Schantl
843a8c570c snort: Drop package 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-08-03 10:19:35 +02:00
Stefan Schantl
914cca3d8e initscripts: Link against suricata initscript in runlevels and red.up hook 
Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-08-03 10:02:34 +02:00
Stefan Schantl
d72b3e64c2 suricata: Introduce basic initscript 
Add a very basic initscript, which currently allows to start/stop/restart suricata and
check if the daemon is running.

The script will detect when starting suricata how many CPU cores are present on the system and
will launch suricata in inline mode (NFQUEUE) and listen to as much queues as CPU cores are
detected.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2018-08-02 19:54:22 +02:00
Arne Fitzenreiter
1ac0d5c598 Merge branch 'aarch64' into next 
Conflicts:
	config/rootfiles/core/121/filelists/acpid
	config/rootfiles/core/121/filelists/apache2
	config/rootfiles/core/121/filelists/apr
	config/rootfiles/core/121/filelists/aprutil
	config/rootfiles/core/121/filelists/armv5tel/files
	config/rootfiles/core/121/filelists/armv5tel/linux-initrd-kirkwood
	config/rootfiles/core/121/filelists/armv5tel/linux-initrd-multi
	config/rootfiles/core/121/filelists/armv5tel/linux-kirkwood
	config/rootfiles/core/121/filelists/armv5tel/linux-multi
	config/rootfiles/core/121/filelists/armv5tel/rpi-firmware
	config/rootfiles/core/121/filelists/armv5tel/u-boot
	config/rootfiles/core/121/filelists/armv5tel/u-boot-kirkwood
	config/rootfiles/core/121/filelists/armv5tel/u-boot-mkimage
	config/rootfiles/core/121/filelists/beep
	config/rootfiles/core/121/filelists/cmake
	config/rootfiles/core/121/filelists/crda
	config/rootfiles/core/121/filelists/dhcp
	config/rootfiles/core/121/filelists/flex
	config/rootfiles/core/121/filelists/i586/grub
	config/rootfiles/core/121/filelists/i586/intel-microcode
	config/rootfiles/core/121/filelists/i586/linux
	config/rootfiles/core/121/filelists/i586/linux-initrd
	config/rootfiles/core/121/filelists/iw
	config/rootfiles/core/121/filelists/jwhois
	config/rootfiles/core/121/filelists/libidn
	config/rootfiles/core/121/filelists/multipath-tools
	config/rootfiles/core/121/filelists/pcre
	config/rootfiles/core/121/filelists/tar
	config/rootfiles/core/121/filelists/unbound
	config/rootfiles/core/121/filelists/wget
	config/rootfiles/core/121/filelists/x86_64/grub
	config/rootfiles/core/121/filelists/x86_64/intel-microcode
	config/rootfiles/core/121/filelists/x86_64/linux
	config/rootfiles/core/121/filelists/x86_64/linux-initrd
	config/rootfiles/core/122/filelists/aarch64/files
	config/rootfiles/core/122/filelists/acpid
	config/rootfiles/core/122/filelists/apache2
	config/rootfiles/core/122/filelists/apr
	config/rootfiles/core/122/filelists/aprutil
	config/rootfiles/core/122/filelists/armv5tel/linux-initrd-kirkwood
	config/rootfiles/core/122/filelists/armv5tel/linux-initrd-multi
	config/rootfiles/core/122/filelists/armv5tel/linux-kirkwood
	config/rootfiles/core/122/filelists/armv5tel/linux-multi
	config/rootfiles/core/122/filelists/armv5tel/rpi-firmware
	config/rootfiles/core/122/filelists/armv5tel/u-boot
	config/rootfiles/core/122/filelists/armv5tel/u-boot-kirkwood
	config/rootfiles/core/122/filelists/armv5tel/u-boot-mkimage
	config/rootfiles/core/122/filelists/beep
	config/rootfiles/core/122/filelists/cmake
	config/rootfiles/core/122/filelists/crda
	config/rootfiles/core/122/filelists/dhcp
	config/rootfiles/core/122/filelists/flex
	config/rootfiles/core/122/filelists/i586/grub
	config/rootfiles/core/122/filelists/i586/intel-microcode
	config/rootfiles/core/122/filelists/i586/linux
	config/rootfiles/core/122/filelists/i586/linux-initrd
	config/rootfiles/core/122/filelists/iw
	config/rootfiles/core/122/filelists/jwhois
	config/rootfiles/core/122/filelists/libidn
	config/rootfiles/core/122/filelists/multipath-tools
	config/rootfiles/core/122/filelists/pcre
	config/rootfiles/core/122/filelists/tar
	config/rootfiles/core/122/filelists/unbound
	config/rootfiles/core/122/filelists/wget
	config/rootfiles/core/122/filelists/x86_64/grub
	config/rootfiles/core/122/filelists/x86_64/intel-microcode
	config/rootfiles/core/122/filelists/x86_64/linux
	config/rootfiles/core/122/filelists/x86_64/linux-initrd
	config/rootfiles/core/123/filelists/unbound
	config/rootfiles/oldcore/121/filelists/acpid
	config/rootfiles/oldcore/121/filelists/apache2
	config/rootfiles/oldcore/121/filelists/apr
	config/rootfiles/oldcore/121/filelists/aprutil
	config/rootfiles/oldcore/121/filelists/armv5tel/files
	config/rootfiles/oldcore/121/filelists/armv5tel/linux-initrd-kirkwood
	config/rootfiles/oldcore/121/filelists/armv5tel/linux-initrd-multi
	config/rootfiles/oldcore/121/filelists/armv5tel/linux-initrd-rpi
	config/rootfiles/oldcore/121/filelists/armv5tel/linux-kirkwood
	config/rootfiles/oldcore/121/filelists/armv5tel/linux-multi
	config/rootfiles/oldcore/121/filelists/armv5tel/linux-rpi
	config/rootfiles/oldcore/121/filelists/armv5tel/rpi-firmware
	config/rootfiles/oldcore/121/filelists/armv5tel/u-boot
	config/rootfiles/oldcore/121/filelists/armv5tel/u-boot-kirkwood
	config/rootfiles/oldcore/121/filelists/armv5tel/u-boot-mkimage
	config/rootfiles/oldcore/121/filelists/beep
	config/rootfiles/oldcore/121/filelists/cmake
	config/rootfiles/oldcore/121/filelists/crda
	config/rootfiles/oldcore/121/filelists/dhcp
	config/rootfiles/oldcore/121/filelists/flex
	config/rootfiles/oldcore/121/filelists/i586/grub
	config/rootfiles/oldcore/121/filelists/i586/intel-microcode
	config/rootfiles/oldcore/121/filelists/i586/linux
	config/rootfiles/oldcore/121/filelists/i586/linux-initrd
	config/rootfiles/oldcore/121/filelists/iw
	config/rootfiles/oldcore/121/filelists/jwhois
	config/rootfiles/oldcore/121/filelists/libidn
	config/rootfiles/oldcore/121/filelists/multipath-tools
	config/rootfiles/oldcore/121/filelists/pcre
	config/rootfiles/oldcore/121/filelists/tar
	config/rootfiles/oldcore/121/filelists/wget
	config/rootfiles/oldcore/121/filelists/x86_64/grub
	config/rootfiles/oldcore/121/filelists/x86_64/intel-microcode
	config/rootfiles/oldcore/121/filelists/x86_64/linux
	config/rootfiles/oldcore/121/filelists/x86_64/linux-initrd
	make.sh
 2018-07-03 11:52:05 +01:00
Arne Fitzenreiter
4838034131 random: update initskript for machines with low entropy 
the script wait until crng is correct initialized before restore the
random seed and make some disc io to work around low entropy at boot
on some machines. Not really a fix but it should be better than reverting
CVE-2018-1108 fixes from kernel.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2018-06-28 20:48:58 +02:00
Michael Tremer
bd3bcb45d6 AWS: Import aws setup script 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-25 10:55:39 +01:00
Michael Tremer
1c21ebf8d5 Add initscript that automatically configures IPFire on AWS EC2 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-06-21 16:45:40 +01:00
Arne Fitzenreiter
69acde2ecd acpid: build also on arm 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2018-04-14 18:42:00 +02:00
Michael Tremer
eb68e27dd2 pakfire: Import key when system boots up 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-03-19 19:44:50 +00:00
Michael Tremer
a350ea6dea Drop mISDN userspace tools 
This is unsupported for quite a while and nobody should be using this.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-02-12 11:41:50 +00:00
Michael Tremer
fbcb5b749a Drop mediatomb 
This didn't build and run in ages and has been removed from
the repositories quite a while ago.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2018-01-05 13:26:33 +00:00
Jonatan Schlag
8bc8c282c9 Move all Initscripts of the system, into an extra directory 
Till now all init scripts going into src/initscripts/init.d so they are
installed by the lfs file initscripts. Because of that they also appear
in the rootfile of the "package" initscripts.

This has some disadvantages:
- the initscripts of the packages appear in the 3 rootfiles (one for
each arch) which are annoying because for every package with an
initscript 4 rootfiles (the 3 of the initscript package + the rootfile
of the package) are important.
- The rootfiles for a package are installed by lfs/initscripts but this
should happen only in the build of the package

To solve this issues all rootfiles for the core system are moved into
src/initscripts/init.d/common. Only the initscript in this directory are
installed by lfs/initscripts. So all initscripts for packages are
located in src/initscripts/init.d and are not installed by
lfs/initscripts.
So only the initscripts of the system appear in the 3 rootfiles of the
initscripts package. The initscript of a package appear only in the
rootfile of the package. This makes the maintaining of initscript
easier.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
 2017-02-22 10:23:10 +01:00
Arne Fitzenreiter
c9791eaa2a initscripts: fix arm rootfile 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2017-02-01 10:25:44 +01:00
Michael Tremer
5056b4f104 Drop mldonkey files 
The packages has been dropped years ago. However, some
files remained in the source tree.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2017-01-16 16:53:35 +00:00
Arne Fitzenreiter
693928d781 unbound: start prior network 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-10-12 23:01:51 +02:00
Michael Tremer
5edc06b701 Remove IPAC stuff 
This is unused for a very very very long time and serves
no purpose any more.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-10-02 15:13:55 +01:00
Michael Tremer
f5ab60e9aa Rootfile update 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-09-15 11:04:11 +01:00
Michael Tremer
811f3d3050 unbound: Start service after network has been brought up 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-09-12 21:13:25 +01:00
Michael Tremer
a66c4880d9 unbound: Start service at system boot 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-09-12 20:11:47 +01:00
Michael Tremer
266735a12f Rootfile update 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-09-12 11:07:44 +01:00
Michael Tremer
1b4f2493a5 unbound: Update dynamically configured DNS servers after connecting RED 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-08-06 19:41:27 +01:00
Michael Tremer
61b4250af5 Drop dnsmasq 
This will be replaced by unbound

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-08-06 19:25:48 +01:00
Stefan Schantl
a11aaa91b3 guardian: Update to 2.0. 
Update guardian to the re-written version.

Signed-off-by: Stefan Schantl <stefan.schantl@ipfire.org>
 2016-07-29 13:19:14 +02:00
Michael Tremer
71f578bbfc freeradius: New package 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-07-19 14:54:50 +01:00
Arne Fitzenreiter
48c8961a4f libvirt: move initskript to package. 
this also fix build on arm.

Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2016-06-13 07:19:05 +02:00
Jonatan Schlag
272ac1b454 New package libvirt 
Libvirt is buidl only on i585 and x86_64 because qemu is build only
on this arches.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-06-01 22:26:01 +01:00
Jonatan Schlag
e93a0b06fe Replace portmap with rpcbind 
Portmap is not maintained anymore that's why it is replaced by rpcbind.
Rpcbind provides also rpcinfo which is quite useful for debugging.

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-05-17 14:08:47 +01:00
Michael Tremer
b5a50b494e rtpproxy: Add initscript 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2016-04-29 21:07:13 +01:00
Arne Fitzenreiter
b94e0ffc68 dnsdist: rootfile update. 
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
 2015-12-26 17:34:13 +01:00
Michael Tremer
0909a0a1d8 Update rootfiles 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-12 11:52:18 +00:00
Michael Tremer
24f05f3271 Update rootfiles 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-04 22:22:41 +00:00
Alexander Marx
c4a451eead Remove ramdisks for RRD databases 
Ramdisks are very limited in space and as new graphs
are generated for OpenVPN N2N connections, etc. more
space is necessary.

This patch will enable ramdisks for all systems with more
than 490M of memory and allows the user to force using
a ramdisk on systems with less memory.

Signed-off-by: Alexander Marx <alexander.marx@ipfire.org>
Acked-by: Arne Fitzenreiter <arne.fitzenreiter@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-12-03 13:14:23 +00:00
Michael Tremer
3db584817d Remove old VLAN initscript 
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
 2015-08-05 12:43:53 +01:00
Stefan Schantl
b8fe6ca756 Roofile updates for GeoIP related files. 2015-04-16 19:40:53 +02:00
Arne Fitzenreiter
c98cc4ae90 Merge branch 'master' into next 2015-03-17 14:05:56 +01:00
Michael Tremer
600b99fb31 network: Configure device names from /var/ipfire/ethernet/settings 
Instead of creating a copy of the configuration values and
for better extensibility, we will have udev execute a script
that parses /var/ipfire/ethernet/settings and will return the
correct name of the corresponding device (green0, blue0, ...).
 2015-03-09 16:31:59 +01:00
Arne Fitzenreiter
4a0e9b6318 initskripts: rootfile update. 2015-03-07 10:17:17 +01:00
Michael Tremer
3ed94afdc8 teamspeak: Remove package 
This is an old version any way and just used to download the
pre-compiled data from the servers of the vendor.
 2015-03-03 21:11:34 +01:00
Michael Tremer
de0ccf8f8c Merge branch 'master' into next 
Conflicts:
	make.sh
 2015-02-04 13:24:05 +01:00
Arne Fitzenreiter
ffeb717f2d add swconfig for lamobo-r1 switch setup. 2015-01-27 20:21:17 +01:00
Dirk Wagner
f0dd065425 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into monit 
Conflicts:
	config/etc/logrotate.conf
 2015-01-06 15:51:29 +01:00
Dirk Wagner
5ae99dd2d1 Merge branch 'next' of ssh://git.ipfire.org/pub/git/ipfire-2.x into monit 2014-10-15 22:38:13 +02:00
Michael Tremer
722b419dea initscripts: Mount /var/lock after all other FSes have been mounted. 
For example /var/lock does not exist, yet when mountkernfs is
called.
 2014-09-04 11:12:41 +02:00