DebianSOURCE=ftp://ftp.tw.debian.org
DIST_SOURCE=$DebianSOURCE/debian/dists
POOL_SOURCE=$DebianSOURCE/debian/pool
DIST_DEST=/mnt/dists
POOL_DEST=/mnt/pool
#dd if=/dev/zero of=deb_mirror.img bs=2G count=1
#mkfs.ext4 deb_mirror.img
#mount deb_mirror.img /mnt
#mount /opt/iso/debian-7.2.0-amd64-netinst.iso /media
#cp -av /media/* /mnt
#cd /mnt/dists
for i in `echo squeeze wheezy wheezy-updates jessie oldstable stable testing unstable sid`; do
wget -N $DIST_SOURCE/$i/Release -P $DIST_DEST/$i
wget -N $DIST_SOURCE/$i/Release.gpg -P $DIST_DEST/$i
done
wget -N $DIST_SOURCE/wheezy/main/binary-amd64/Packages.gz -P $DIST_DEST/wheezy/main/binary-amd64/
wget -N $DIST_SOURCE/wheezy/main/binary-amd64/Packages.bz2 -P $DIST_DEST/wheezy/main/binary-amd64/
----------------
這一行有問題
wget -N $DIST_SOURCE/wheezy/main/binary-amd64/Packages -P $DIST_DEST/wheezy/main/binary-amd64/
----------------
wget -N $DIST_SOURCE/wheezy/main/debian-installer/binary-amd64/Packages.gz -P $DIST_DEST/wheezy/main/debian-installer/binary-amd64/
wget -N $DIST_SOURCE/wheezy/main/debian-installer/binary-amd64/Packages.bz2 -P $DIST_DEST/wheezy/main/debian-installer/binary-amd64/
wget -N $DIST_SOURCE/wheezy/main/debian-installer/binary-amd64/Packages -P $DIST_DEST/wheezy/main/debian-installer/binary-amd64/
# Grab Missing files
for i in `cat filelist.txt`;do
wget -N $POOL_SOURCE/main/l/linux/$i -P $POOL_DEST/main/l/linux/
done
wget -N $POOL_SOURCE/main/p/pcre3/libpcre3-udeb_8.30-5_amd64.udeb \
-P $POOL_DEST/main/p/pcre3/
wget -N $POOL_SOURCE/main/i/ispell/ispell_3.3.02-6_amd64.deb \
-P $POOL_DEST/main/i/ispell/
wget -N $POOL_SOURCE/main/i/ispell/ienglish-common_3.3.02-6_all.deb \
-P $POOL_DEST/main/i/ispell/
wget -N $POOL_SOURCE/main/i/ispell/iamerican_3.3.02-6_all.deb \
-P $POOL_DEST/main/i/ispell/
wget -N $POOL_SOURCE/main/i/ispell/ibritish_3.3.02-6_all.deb \
-P $POOL_DEST/main/i/ispell/
wget -N $POOL_SOURCE/main/t/tasksel/task-english_3.14.1_all.deb \
-P $POOL_DEST/main/t/tasksel/
wget -N $POOL_SOURCE/main/t/tasksel/task-chinese-t_3.14.1_all.deb \
-P $POOL_DEST/main/t/tasksel/
wget -N $POOL_SOURCE/main/u/unicon/unicon-imc2_3.0.4-13_amd64.deb \
-P $POOL_DEST/main/u/unicon/
wget -N $POOL_SOURCE/main/u/util-linux/util-linux-locales_2.20.1-5.3_all.deb \
-P $POOL_DEST/main/u/util-linux/
wget -N $POOL_SOURCE/main/z/zhcon/zhcon_0.2.6-10_amd64.deb \
-P $POOL_DEST/main/z/zhcon/
wget -N -nH -m $DIST_SOURCE/wheezy-updates/main/i18n -P /mnt
wget -N -nH -m $DIST_SOURCE/wheezy/main/source -P /mnt
wget -N -nH -m $DIST_SOURCE/wheezy-updates/main/binary-amd64 -P /mnt
#http://ftp.tw.debian.org/debian/pool/main/e/eglibc/libc6-udeb_2.13-38_amd64.udeb
2014年5月13日 星期二
2014年5月8日 星期四
test
所有的relles要改成666
chmod 666 /var/www/debian/dists/jessie/Release
chmod 666 /var/www/debian/dissts/sid/Release
chmod 666 /var/www/debian/dists/squeeze/Releasechmod 666 /var/www/debian/dists/wheezy/Release
desktop下執行
mkdir -p /mnt/dists/wheezy/main/binary-amd64/
wget -P /mnt/dists/wheezy/main/binary-amd64/ ftp://ftp.debian.org/debian/dists/wheezy/main/binary-amd64/Release
wget -P /mnt/dists/wheezy ftp://ftp.debian.org/debian/dists/wheezy/Release.gpg
<附錄> wget 參數
chmod 666 /var/www/debian/dists/jessie/Release
chmod 666 /var/www/debian/dissts/sid/Release
chmod 666 /var/www/debian/dists/squeeze/Releasechmod 666 /var/www/debian/dists/wheezy/Release
desktop下執行
mkdir -p /mnt/dists/wheezy/main/binary-amd64/
wget -P /mnt/dists/wheezy/main/binary-amd64/ ftp://ftp.debian.org/debian/dists/wheezy/main/binary-amd64/Release
wget -P /mnt/dists/wheezy ftp://ftp.debian.org/debian/dists/wheezy/Release.gpg
<附錄> wget 參數
# -t0: 設定重試次數。當連結中斷或超時,wget會重新連接。-t0代表把重試次數設為無窮多。 # -c: 設定續傳功能。 # -nH: 不建立該網站名稱的子目錄 /example.com/,而直接在當前目錄下建立鏡像的目錄結構。 # -np: 不遍歷父目錄,如果有連結連到目標資料夾的parent或其他目錄,不下載。 # -m: 鏡像,相當同時使用-r和-N。 # -r: 遞迴下載,把文件中所有的連結都下載回來。 # -N: 下載時檢查timestamp,只下載有更新的文件,如果檔案大小和最修改日期都一樣就不下載。 # -P: 指定下載到本機的某個目錄下
2014年4月16日 星期三
建制伺服器
TFTP伺服器
請執行底下指令以安裝 tftp 套件:# apt-get install tftpd-hpa
# wget ftp://ftp.debian.org/debian/dists/wheezy/main/installer-amd64/current/images/netboot/netboot.tar.gz
如出現 ping 8.8.8.8 [正常] 而 ping www.google.com [失敗]
錯誤訊息例 : know host www.google.com 則輸入:
# echo "nameserver 120.117.2.1" >> /etc/resolv.conf
然後將 netboot.tar.gz 解開在 /srv/tftp 目錄,指令如下:
# tar xfva netboot.tar.gz -C /srv/tft
# /etc/init.d/tftpd-hpa restart
[ ok ] Restarting HPA's tftpd: in.tftpd.
DHCP伺服器
先要安裝 isc-dhcp-server 套件# apt-get install isc-dhcp-server
在/etc/dhcp/dhcpd.conf 加入以下
option domain−name " example . org " ;
option domain−name−servers 8.8.8.8;
default−lease−time 600;
max−lease−time 7200;
allow booting ;
subnet 192.168.10.0 netmask 255.255.255.0{
range 192.168.10.100 192.168.10.200;
option subnet−mask 255.255.255.0;
option broadcast−address 192.168.10.255;
option routers 192.168.10.1;
option domain−name−servers 8.8.8.8;
next−server 192.168.10.254;
filename "pxelinux.0";
}
# /etc/init.d/isc-dhcp-server restart
# update-rc.d isc-dhcp-server defaults
發生問題 :
在/etc/default/isc-dhcp-server增加下列
INTERFACES="eth0"
apache 伺服器
# apt-get install apache2 \Enter# mkdir -p /var/www/debian
# fidsk -lu
會發現2G的deb_mirror.img掛載在/dev/sdb1
# blkid /dev/sdb1 \Enter
找出UUID
在 /etc/fstab 底下新增
UUID=b43e1707-19c5-42cb-9424-f4bf7118d39a /var/www/debian ext4 defaults 0 2
或者
UUID=sdb1 /var/www/debian ext4 defaults 0 2
# /etc/init.d/apache2 restart \Enter
[ ok ] Restarting web server: apache2 ... waiting .
# mount /dev/sdb1 /var/www/debian
SSH 執行問題
WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
0d:4f:e1:7f:e3:29:14:4a:98:68:97:4e:65:86:a0:ed.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /root/.ssh/known_hosts:1
ECDSA host key for 192.168.10.254 has changed and you have requested strict checking.
Host key verification failed.
root@nora:/test# sh clear_iptable.sh
root@nora:/test# ssh -l -L 192.168.10.254
如果出現以上訊息
就刪除以下檔案
/root/.ssh/known_hosts
shell script
建置PXE環境
-----------------------buildpxe.sh---------------------------
#IP=192.168.2.254 pxeserver.example.org
CPU=host
SMP=2
MEMORY=1024
HDA=pxeserver.img
MAC="DE:AD:BE:CF:EC:B7"
BRIDGE=br10
CDROM=/test/debian-7.4.0-i386-netinst.iso
qemu-system-x86_64 -enable-kvm -cpu $CPU -smp $SMP -m $MEMORY \
-hda $HDA \
-cdrom $CDROM -boot d \
-net nic,macaddr=$MAC -net bridge,br=$BRIDGE
CPU=host
SMP=2
MEMORY=1024
HDA=pxeserver.img
MAC="DE:AD:BE:CF:EC:B7"
BRIDGE=br10
CDROM=/test/debian-7.4.0-i386-netinst.iso
qemu-system-x86_64 -enable-kvm -cpu $CPU -smp $SMP -m $MEMORY \
-hda $HDA \
-cdrom $CDROM -boot d \
-net nic,macaddr=$MAC -net bridge,br=$BRIDGE
-------------------------------------------------------------
執行PXE 伺服器
------------------------runpxe.sh----------------------------
#IP=192.168.10.254
# PXE Server
# PXE Server
CPU=host
SMP=2
MEMORY=1024
HDA=pxeserver.img
HDB=deb_mirror.img
MAC="DE:AD:BE:CF:EC:B7"
BRIDGE=br10
CDROM=/test/debian-7.4.0-i386-netinst.iso
qemu-system-x86_64 -enable-kvm -cpu $CPU -smp $SMP -m $MEMORY \
-hda $HDA \
-hdb $HDB \
-cdrom $CDROM \
-net nic,macaddr=$MAC -net bridge,br=$BRIDGE
SMP=2
MEMORY=1024
HDA=pxeserver.img
HDB=deb_mirror.img
MAC="DE:AD:BE:CF:EC:B7"
BRIDGE=br10
CDROM=/test/debian-7.4.0-i386-netinst.iso
qemu-system-x86_64 -enable-kvm -cpu $CPU -smp $SMP -m $MEMORY \
-hda $HDA \
-hdb $HDB \
-cdrom $CDROM \
-net nic,macaddr=$MAC -net bridge,br=$BRIDGE
-------------------------------------------------------------
檢察IPv4規範
檢察IPv4規範
---------------------check_ip_forward.sh------------------
echo "1" > /proc/sys/net/ipv4/ip_forward
cat /proc/sys/net/ipv4/ip_forward
cat /proc/sys/net/ipv4/ip_forward
-------------------------------------------------------------
清除防火牆規則
----------------------clear_iptable.sh-----------------------
iptables -F
iptables -X
iptables -t nat -F
iptables -t nat -X
iptables -t mangle -F
iptables -t mangle -X
iptables -P INPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -P OUTPUT ACCEPT
iptables -X
iptables -t nat -F
iptables -t nat -X
iptables -t mangle -F
iptables -t mangle -X
iptables -P INPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -P OUTPUT ACCEPT
-------------------------------------------------------------
增加防火牆規則 [ 什麼都不檔 ]
-----------------------out_iptable.sh------------------------
iptables -t nat -A POSTROUTING -s 192.168.10.0/24 -j MASQUERADE
-------------------------------------------------------------
在這裡就可以進行CLI連接PXE server
# SSH -L 連接地帳號 192.168.10.254
執行使用者安裝
-----------------------runlinux.sh------------------------CPU=host
SMP=2
MEMORY=1024
HDA=linux.img
MAC="DE:AD:BE:EF:EC:A8"
BRIDGE=br10
qemu-system-x86_64 -enable-kvm -cpu $CPU -smp $SMP -m $MEMORY \
-hda $HDA \
-net nic,macaddr=$MAC -net bridge,br=$BRIDGE \
-------------------------------------------------------------
2014年4月1日 星期二
訂閱:
文章 (Atom)