turbine/sysadmin_scripts
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: turbine:9749e418360d7c508c56bf3efa086f0d1057b9a6
Branches Tags
turbine:main
..
compare: turbine:f0422dc9f0fa7f04d8fe2c7764e6df91f03dff6d
Branches Tags
turbine:main

No commits in common. "9749e418360d7c508c56bf3efa086f0d1057b9a6" and "f0422dc9f0fa7f04d8fe2c7764e6df91f03dff6d" have entirely different histories.
9749e41836 ... f0422dc9f0

6 changed files with 95 additions and 185 deletions
Show stats Expand all files Collapse all files

9
README.md
View file

@ -1,9 +0,0 @@
# Collection of handmade system administration scripts
## [autonginx](autonginx/README.md)
handles creation and installation of nginx config file and installation of SSL certificate via certbot
## [pingu](pingu/README.md)
checks if IPv4 are reachable using ping

93
autonginx Normal file
View file

@ -0,0 +1,93 @@
#!/usr/bin/env sh
USAGE="usage: autonginx <URL> <IP> <PORT>
URL: url à laquelle le service sera accessible (exemple.urlab.be)
IP: adresse ip locale du service (127.0.0.1 si sur cette machine, 172.23.100.X sinon)
PORT: port utilisé par le service (entre 1 et 65535; certains ports sont déjà utilisés)"
error() {
echo "$@" >&2
exit 1
}
sanitize() {
if ! [ "$PORT" -eq "$PORT" ] 2> /dev/null; then
error "$USAGE"
fi
if [ "$PORT" -lt 1 ] || [ "$PORT" -gt 65535 ]; then
error "$USAGE"
fi
case "$URL" in
*.urlab.be) SUBDOMAIN=${URL%.urlab.be} ;;
*) error "$USAGE";;
esac
if [ "$SUBDOMAIN" = "" ]; then
error "$USAGE"
fi
if [ "$(expr "$SUBDOMAIN" : '[A-Za-z0-9][A-Za-z0-9\-]\{0,61\}[A-Za-z0-9]\{0,1\}')" != "${#SUBDOMAIN}" ]; then
error "$USAGE"
fi
if [ "$IP" != "127.0.0.1" ]; then
case "$IP" in
127.0.0.1) ;;
172.23.100.[0-9]*)
LAST=${IP#172.23.100.}
if [ "$LAST" -lt 2 ] || [ "$LAST" -gt 254 ]; then
error "$USAGE"
fi ;;
*) error "$USAGE";;
esac
fi
}
verify() {
if ! ping -c 1 -W 1 "$IP" >/dev/null 2>/dev/null ; then
error "Error : Cannot reach host $IP"
fi
if ! timeout 1 sh -c "(echo > /dev/tcp/$IP/$PORT) >/dev/null 2>&1"; then
error "Error : Port $PORT isn't open"
fi
}
main() {
if [ "$(id -u)" -ne 0 ]; then
error "Please run as root." >&2
fi
if [ $# != 3 ]; then
error "$USAGE"
fi
URL="$1"
IP="$2"
PORT="$3"
NGINX="server {
listen 80;
listen [::]:80;
server_name $URL;
location / {
proxy_pass http://$IP:$PORT/;
include proxy_params;
}
}"
sanitize
verify
mkdir -p /etc/nginx/sites-available
mkdir -p /etc/nginx/sites-enabled
sh -c 'echo "${0}" > /etc/nginx/sites-available/${1}' "$NGINX" "$URL"
ln -s "/etc/nginx/sites-available/$URL" "/etc/nginx/sites-enabled/$URL"
if nginx -t >/dev/null 2>/dev/null; then
rm -f "/etc/nginx/sites-available/$URL" "/etc/nginx/sites-enabled/$URL"
error "Error : Nginx config failed"
fi
if certbot run --nginx -d "$URL"; then
rm -f "/etc/letsencrypt/live/$URL" "/etc/letsencrypt/archive/$URL"
error "Error : certbot failure"
fi
}
main "$@"

32
autonginx/README.md
View file

@ -1,32 +0,0 @@
# autonginx
## wtf is it?
autonginx is a script that handles nginx config file creation and installation as well as installing a SSL certificate with certbot for a specific service.
This service must be hosted on a machine in the same subnetwork as the reverse proxy's whether it's the exact same machine or another.
## Prerequisites
- have the (sub)domain name you want to use point to the public IP of the reverse proxy
- nginx
- certbot
## Usage
```sh
./autonginx <URL> <IP> <PORT>
```
`URL`: url à laquelle le service sera accessible (domain.tld ou sub.domain.tld)
`IP`: adresse ip locale du service
`PORT`: port utilisé par le service (entre 1 et 65535; certains ports peuvent être déjà utilisés)
## The future
Ideas to improve this script:
- handle IPv6
- colored output
- add options to enable/disable features

124
autonginx/autonginx
View file

@ -1,124 +0,0 @@
#!/usr/bin/env sh
USAGE="usage: ./autonginx <URL> <IP> <PORT>
URL: url à laquelle le service sera accessible (sub.domain.tld)
IP: adresse ip locale du service
PORT: port utilisé par le service (entre 1 et 65535; certains ports peuvent être déjà utilisés)"
error() {
printf "%s\n" "$@" >&2
exit 1
}
isvalid() {
if [ "$1" -lt "$2" ] || [ "$1" -gt "$3" ]; then
error "BAD NUMBER IN IP" "$USAGE"
fi
}
sanitize() {
if ! [ "$PORT" -eq "$PORT" ] 2> /dev/null; then
error "PORT IS NAN" "$USAGE"
fi
if [ "$PORT" -lt 1 ] || [ "$PORT" -gt 65535 ]; then
error "BAD PORT" "$USAGE"
fi
#case "$URL" in
# *.urlab.be) SUBDOMAIN=${URL%.urlab.be} ;;
# *) error "$USAGE";;
#esac
#if [ "$SUBDOMAIN" = "" ]; then
# error "$USAGE"
#fi
#if [ "$(expr "$SUBDOMAIN" : '[A-Za-z0-9][A-Za-z0-9\-]\{0,61\}[A-Za-z0-9]\{0,1\}')" != "${#SUBDOMAIN}" ]; then
# error "$USAGE"
#fi
case "$IP" in
localhost)
;;
127.0.0.1)
;;
10.[0-9]*.[0-9]*.[0-9]*)
LAST=${IP#10.[0-9]*.[0-9]*.}
REST=${IP%?"$LAST"}
BEFLAST=${REST#10.[0-9]*.}
REST=${REST%?"$BEFLAST"}
BEFBEFLAST=${REST#10.}
isvalid "$LAST" 2 254
isvalid "$BEFLAST" 2 254
isvalid "$BEFBEFLAST" 2 254
;;
172.[0-9]*.[0-9]*.[0-9]*)
LAST=${IP#172.[0-9]*.[0-9]*.}
REST=${IP%?"$LAST"}
BEFLAST=${REST#172.[0-9]*.}
REST=${REST%?"$BEFLAST"}
BEFBEFLAST=${REST#172.}
isvalid "$LAST" 2 254
isvalid "$BEFLAST" 2 254
isvalid "$BEFBEFLAST" 16 31
;;
192.168.[0-9]*.[0-9]*)
LAST=${IP#192.168.[0-9]*.}
REST=${IP%?"$LAST"}
BEFLAST=${REST#192.168.}
isvalid "$LAST" 2 254
isvalid "$BEFLAST" 2 254
;;
*)
error "BAD IP" "$USAGE"
;;
esac
}
verify() {
if ! ping -c 1 -W 1 "$IP" >/dev/null 2>/dev/null ; then
error "Error : Cannot reach host $IP"
fi
if ! timeout 1 sh -c "(echo > /dev/tcp/$IP/$PORT) >/dev/null 2>&1"; then
error "Error : Port $PORT isn't open"
fi
}
main() {
if [ "$(id -u)" -ne 0 ]; then
error "Please run as root." >&2
fi
if [ $# != 3 ]; then
error "BAD ARG NUM" "$USAGE"
fi
URL="$1"
IP="$2"
PORT="$3"
NGINX="server {
listen 80;
listen [::]:80;
server_name $URL;
location / {
proxy_pass http://$IP:$PORT/;
include proxy_params;
}
}"
sanitize
verify
mkdir -p /etc/nginx/sites-available
mkdir -p /etc/nginx/sites-enabled
sh -c 'echo "${0}" > /etc/nginx/sites-available/${1}' "$NGINX" "$URL"
ln -s "/etc/nginx/sites-available/$URL" "/etc/nginx/sites-enabled/$URL"
if ! nginx -t >/dev/null 2>/dev/null; then
rm -f "/etc/nginx/sites-available/$URL" "/etc/nginx/sites-enabled/$URL"
error "Error : Nginx config failed"
fi
if ! certbot run --nginx -d "$URL"; then
rm -f "/etc/letsencrypt/live/$URL" "/etc/letsencrypt/archive/$URL"
error "Error : certbot failure"
fi
}
main "$@"

17
pingu/README.md
View file

@ -1,17 +0,0 @@
# pingu
## wtf is it?
pingu is a small script that pings several IPv4 given as arguments to check whether they're reachable or not.
## Usage
```sh
./pingu <IPv4> ...
```
## The future
Some ideas I have to improve this script:
- handle IPv6
- colored output

5
pingu/pingu → wgtest Executable file → Normal file
View file

@ -1,11 +1,10 @@
#!/usr/bin/env sh #!/usr/bin/env sh
USAGE="NOOT NOOT USAGE="usage : wgtest <IP address> ..."
USAGE : ./pingu <IP address> ..."
if [ $# -eq 0 ]; then if [ $# -eq 0 ]; then
echo "$USAGE" echo "$USAGE"
exit 1 return
fi fi
for host in $@; do for host in $@; do