vasco/FSI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

le interfaces

Browse Source
This commit is contained in:
Vasco
2026-04-19 23:21:36 +01:00
parent e3337475e0
commit f03caf7a35
5 changed files with 105 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
README.md
View File

@@ -0,0 +1,6 @@
# Coisas para leres que sao fixes wowowowowowow !!!!! (Assignment 2)
- Os slides (duh)
- Okay o mais importante é os slides.
- [X.509 (ssl.com)](https://www.ssl.com/faqs/what-is-an-x-509-certificate/)
- [X.509 (youtube)](https://www.youtube.com/watch?v=kAaIYRJoJkc)

15
VM_APACHE.sh Normal file
View File

@@ -0,0 +1,15 @@
#!/bin/sh
# Configuração para a máquina virtual de CentOS 9
# que contém o APACHE server.
# Rede interna (enp0s8)
# --- variaveis aqui pf joao fr fr fr aaaaa ---#
helloworld="print"
if_dentro="enp0s8"
ip_dentro="10.60.0.2"
# --- instalar packages ---
yum install -y epel-release
# --- interfaces ---
ifconfig $if_dentro $ip_dentro netmask 255.255.255.0

15
VM_OPENSSL.sh Normal file
View File

@@ -0,0 +1,15 @@
#!/bin/bash
# Configuração para a máquina virtual de CentOS 9
# que contém o OPENSSL server.
# Rede interna (enp0s8)
# --- variaveis aqui pf joao fr fr fr aaaaa ---#
helloworld="print"
if_dentro="enp0s8"
ip_dentro="10.60.0.1"
# --- instalar packages ---
yum install -y openssl
# --- interfaces ---
ifconfig $if_dentro $ip_dentro netmask 255.255.255.0

19
VM_ROAD_WARRIOR.sh Normal file
View File

@@ -0,0 +1,19 @@
#!/bin/bash
# O road warrior ou gateway client liga a vpn gateway
# Via a rede externa 193.136.212.0/24
# Rede externa (enp0s8)
# --- variaveis aqui pf joao fr fr fr aaaaa ---#
helloworld="print"
# --- instalar packages --- #
yum install -y epel-release
yum install -y openvpn
# --- interfaces --- #
ifconfig enp0s8 193.136.212.10 netmask 255.255.255.0
route add default gw 193.136.212.1 # default gateway LIKE A SHEEP
# --- copiar certificados da CA --- #
# todo

50
VM_VPN_GATEWAY.sh Normal file
View File

@@ -0,0 +1,50 @@
#!/bin/bash
# Temos que configurar a VPN gateway (duh)
# O VPN client é o nosso telemovel, eu suponho
# Ou qualquer dispositivo ligado pela rede externa
# ao VPN.
#
# O gateway client é a pont entre a rede externa 193.136.212.0/24
# E a rede interna 10.60.0.0/24
# NOTE(vasco):
# Ao configurar a maquina virtual em si deixei a rede externa primeiro (enp0s8)
# E a rede interna como a segunda interface (enp0s9).
# --- variaveis aqui pf joao fr fr fr aaaaa ---#
helloworld="print"
if_fora="enp0s8"
if_dentro="enp0s9"
ip_fora="193.136.212.1"
ip_dentro="10.60.0.3"
mega_tunel="tun0"
ip_mega_tunel="10.8.0.1/24"
# --- interfaces ---
ifconfig $if_fora $ip_fora netmask 255.255.255.0
ifconfig $if_dentro $ip_dentro netmask 255.255.255.0
# --- instalar packages ---
yum install -y epel-release openvpn iptables-services
# --- desativar firewalld ---
systemctl stop firewalld
systemctl disable firewalld
systemctl mask firewalld
systemctl enable iptables
iptables -F
# ativar poen vpn
systemctl enable --now openvpn
# --- ip forwarding --- #
echo "net.ipv4.ip_forward = 1" >> /etc/sysctl.conf
sysctl -p /etc/sysctl.conf
# --- nat forwardin de vpn para clientes --- #
iptables -A INPUT -p udp --dport 1194 -j ACCEPT # :O
iptables -A FORWARD -i $mega_tunel -o $if_dentro -j ACCEPT # :P
iptables -A FORWARD -i $if_dentro -o $mega_tunel -j ACCEPT # ;)
iptables -t nat -A POSTROUTING -s $ip_mega_tunel -o $if_fora -j MASQUERADE # :D
iptables-save > /etc/sysconfig/iptables # :3