diff --git a/CHANGELOG.md b/CHANGELOG.md index bc59c6b..d50109f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,4 +1,9 @@ +0.3.0 [28-Ene-2021] +--------------------- + - Script para iniciar VPN de soporte. + + 0.2.0 [28-Ene-2021] --------------------- - Script para respaldar localmente la base de datos. diff --git a/VERSION b/VERSION index 0ea3a94..0d91a54 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -0.2.0 +0.3.0 diff --git a/source/app.py b/source/app.py index 526b187..b5e002b 100755 --- a/source/app.py +++ b/source/app.py @@ -61,9 +61,7 @@ def _backup(): path = _join(PATH_BK, f'{f}.bk') _call(cmd.format(f, path)) - log.info('\t\tRespaldado localmente...') - - # ~ _send_to_seafile(f, path) + log.info('\t\tRespaldada localmente...') msg = 'Base de datos respaldadas...' log.info(msg) diff --git a/source/bin/ca.crt b/source/bin/ca.crt new file mode 100644 index 0000000..9a7e001 --- /dev/null +++ b/source/bin/ca.crt @@ -0,0 +1,5 @@ +-----BEGIN NEBULA CERTIFICATE----- +Cj4KDFB1cm9zIEN1YXRlcyjxovf9BTDxifyMBjogcMShrWfz7wXDt0dmXbqcPK/I +SXTxf0mBkaj8vmeb9RVAARJAVvXIiNLhz8Q/G/IvIHnbKpPUuKDbaGPd2ZQPGj8b +Hdc8qYR3N6kixeZM5AtWOnzGRcf+JR9NVDcNEwNknp+FBA== +-----END NEBULA CERTIFICATE----- diff --git a/source/bin/config.yml b/source/bin/config.yml new file mode 100644 index 0000000..79fe209 --- /dev/null +++ b/source/bin/config.yml @@ -0,0 +1,90 @@ +pki: + # every node needs a copy of the CA certificate, + # and its own certificate and key, ONLY. + ca: /home/empresa/util/bin/ca.crt + cert: /home/empresa/util/bin/empresalibre.crt + key: /home/empresa/util/bin/empresalibre.key + +static_host_map: + # how to find one or more lighthouse nodes + # you do NOT need every node to be listed here! + # + # format "Nebula IP": ["public IP or hostname:port"] + # + "174.174.74.1": ["164.68.124.143:4242"] + +lighthouse: + interval: 60 + + # if you're a lighthouse, say you're a lighthouse + # + am_lighthouse: false + + hosts: + # If you're a lighthouse, this section should be EMPTY + # or commented out. If you're NOT a lighthouse, list + # lighthouse nodes here, one per line, in the following + # format: + # + - "174.174.74.1" + +listen: + # 0.0.0.0 means "all interfaces," which is probably what you want + # + host: 0.0.0.0 + port: 4242 + +# "punchy" basically means "send frequent keepalive packets" +# so that your router won't expire and close your NAT tunnels. +# +punchy: true + +# "punch_back" allows the other node to try punching out to you, +# if you're having trouble punching out to it. Useful for stubborn +# networks with symmetric NAT, etc. +# +punch_back: true + +tun: + # sensible defaults. don't monkey with these unless + # you're CERTAIN you know what you're doing. + # + dev: nebula1 + drop_local_broadcast: false + drop_multicast: false + tx_queue: 500 + mtu: 1300 + routes: + +logging: + level: info + format: text + +# you NEED this firewall section. +# +# Nebula has its own firewall in addition to anything +# your system has in place, and it's all default deny. +# +# So if you don't specify some rules here, you'll drop +# all traffic, and curse and wonder why you can't ping +# one node from another. +# +firewall: + conntrack: + tcp_timeout: 120h + udp_timeout: 3m + default_timeout: 10m + max_connections: 100000 + +# since everything is default deny, all rules you +# actually SPECIFY here are allow rules. +# + outbound: + - port: any + proto: any + host: any + + inbound: + - port: any + proto: any + host: any diff --git a/source/bin/empresalibre.crt b/source/bin/empresalibre.crt new file mode 100644 index 0000000..1bf074d --- /dev/null +++ b/source/bin/empresalibre.crt @@ -0,0 +1,6 @@ +-----BEGIN NEBULA CERTIFICATE----- +CmoKDGVtcHJlc2FsaWJyZRIK5ZS59QqA/v//Dyihp8yABjDwifyMBjogW+IthhEK +JpJGPqUgl/MtbwGic3OWcEnoTk0yAk8bBWRKIMbv+ybW+mYKcuwusijL/nG8Dnom +zwF6BtK1okHNEMobEkAM+P/jhkCX5PEVh0gb/BDClS+XwdDBedHxaLPMdqErh3gd +9X9EBUo3M6xE4CngZO8OJN5/EVKaykoofD9TMwcE +-----END NEBULA CERTIFICATE----- diff --git a/source/bin/empresalibre.key b/source/bin/empresalibre.key new file mode 100644 index 0000000..f28391d --- /dev/null +++ b/source/bin/empresalibre.key @@ -0,0 +1,3 @@ +-----BEGIN NEBULA X25519 PRIVATE KEY----- +uuTFSbPr/LvsyUJc3rKs5UW9ENUoAhl9JOfIsT9/Tq4= +-----END NEBULA X25519 PRIVATE KEY----- diff --git a/source/bin/nebula b/source/bin/nebula new file mode 100755 index 0000000..c3c2912 Binary files /dev/null and b/source/bin/nebula differ diff --git a/source/nebula.sh b/source/nebula.sh new file mode 100755 index 0000000..7aebb9e --- /dev/null +++ b/source/nebula.sh @@ -0,0 +1,3 @@ + #!/bin/bash + +sudo ~/util/bin/nebula -config ~/util/bin/config.yml