Завтра буду (тоесть уже сегодня), пробовать снова ставить.
И все пошагово буду здесь рисовать.
P.S. Вроде не полный дурак. Настраивал же системы, а тут где то туплю и все.
И так есть серверное железко. 2 сетевухи.
С интернета скачал образ Ubuntu 10.04 AMD64.
Установка не особо сложная.
Указал основной сетевой интерфейс, и настроил АйПи адреса.
Разметка диска: «Авто – использовать весь диск и настроить LVM»
«Установка базовой системы» заняла примерно 8 минут.
Создал пользователя. И указал что система не будет использовать автоматическое обновление.
«Выбор программного обеспечения»
Выбрал только OpenSSH server, что бы с помощью Путти подключиться можно было. Все остальное потом установлю.
Установка ОС завершена, диск вынул и жду когда загрузится.
root@rpz2:/home/mapki3# sudo apt-get install vlan
root@rpz2:/home/mapki3# apt-get install mcifconfigroot@rpz2:/home/mapki3# ifconfig
eth0 Link encap:Ethernet HWaddr 00:17:08:5a:8e:05
inet addr:194.44.166.137 Bcast:194.44.166.143 Mask:255.255.255.240
eth1 Link encap:Ethernet HWaddr 00:17:08:5a:8e:04
inet addr:192.168.160.1 Bcast:192.168.160.255 Mask:255.255.255.0
eth1.2 Link encap:Ethernet HWaddr 00:17:08:5a:8e:04
inet addr:172.30.0.1 Bcast:172.30.0.255 Mask:255.255.255.0
lo Link encap:Локальная петля (Loopback)
inet addr:127.0.0.1 Mask:255.0.0.0
root@rpz2:/home/mapki3# ping ubuntu.com
PING ubuntu.com (91.189.94.156) 56(84) bytes of data.
64 bytes from vostok.canonical.com (91.189.94.156): icmp_req=1 ttl=50 time=41.3 ms
64 bytes from vostok.canonical.com (91.189.94.156): icmp_req=2 ttl=50 time=41.1 ms
^C
--- ubuntu.com ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1001ms
rtt min/avg/max/mdev = 41.194/41.253/41.313/0.211 ms
root@rpz2:/home/mapki3# apt-get update
Чтение списков пакетов... Готово
root@rpz2:/home/mapki3# apt-get dist-upgrade
Хотите продолжить [Д/н]? y #Заняло около 10 минут.
root@rpz2:/home/mapki3# reboot
После рестарта ничего страшного не случилось, все работает.
Сеть работает нормально, видит все сети и Влан2.
root@rpz2:/home/mapki3# apt-get install mysql-server mysql-client libmysqlclient15-dev apache2 apache2-doc apache2-mpm-prefork apache2-utils libexpat1 ssl-cert libapache2-mod-php5 php5 php5-common php5-curl php5-dev php5-gd php5-idn php-pear php5-imagick php5-imap php5-mcrypt libdbi-perl libdbd-mysql-perl libdigest-md4-perl libdigest-sha1-perl libcrypt-des-perl freeradius radiusclient1 radiusclient1 pptpd
Вот только не пойму зачем в конце два раза написано radiusclient1 radiusclient1.
Но ушло еще 5 минут.
Пароль для MySQL указал.
root@rpz2:/home/mapki3# a2enmod ssl
Enabling module ssl.
See /usr/share/doc/apache2.2-common/README.Debian.gz on how to configure SSL and create self-signed certificates.
Run '/etc/init.d/apache2 restart' to activate new configuration!
root@rpz2:/home/mapki3#
root@rpz2:/home/mapki3# a2enmod rewrite
Enabling module rewrite.
Run '/etc/init.d/apache2 restart' to activate new configuration!
root@rpz2:/home/mapki3# a2enmod rewrite
Module rewrite already enabled
root@rpz2:/home/mapki3# a2enmod suexec
Enabling module suexec.
Run '/etc/init.d/apache2 restart' to activate new configuration!
root@rpz2:/home/mapki3# a2enmod include
Enabling module include.
Run '/etc/init.d/apache2 restart' to activate new configuration!
root@rpz2:/home/mapki3# /etc/init.d/apache2 restart
* Restarting web server apache2 ... waiting [ OK ]
root@rpz2:/home/mapki3# wget http://downloads.sourceforge.net/project/abills/abills/0.51/abills-0.51.tgz
2011-02-06 11:48:24 (1,12 MB/s) - «abills-0.51.tgz» saved [3676063/3676063]
#Сразу же разпаковал в /usr/abills
root@rpz2:/home/mapki3# mkdir /usr/abills/backup
root@rpz2:/home/mapki3# chown -R www-data:www-data /usr/abills/backup
root@rpz2:/home/mapki3# mkdir /usr/abills/cgi-bin/admin/nets
root@rpz2:/home/mapki3# chown -R www-data:www-data /usr/abills/cgi-bin/
root@rpz2:/home/mapki3# mkdir /usr/abills/var
root@rpz2:/home/mapki3# mkdir /usr/abills/var/log
root@rpz2:/home/mapki3# chown -R freerad:freerad /usr/abills/var
root@rpz2:/home/mapki3# nano /etc/sudoers
# /etc/sudoers
#
# This file MUST be edited with the 'visudo' command as root.
#
# See the man page for details on how to write a sudoers file.
#
Defaults env_reset
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root ALL=(ALL) ALL
# Allow members of group sudo to execute any command
# (Note that later entries override this, so you might need to move
# it further down)
%sudo ALL=(ALL) ALL
#
#includedir /etc/sudoers.d
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
www-data ALL=NOPASSWD: /usr/abills/misc/pppd_kill
root@rpz2:/home/mapki3# cp /etc/freeradius/radiusd.conf /etc/freeradius/radiusd.conf.sample
root@rpz2:/home/mapki3# nano /etc/freeradius/radiusd.conf
# -*- text -*-
## radiusd.conf -- FreeRADIUS server configuration file.
## http://www.freeradius.org/
## $Id$
prefix = /usr
exec_prefix = /usr
sysconfdir = /etc
localstatedir = /var
sbindir = ${exec_prefix}/sbin
logdir = /var/log/freeradius
raddbdir = /etc/freeradius
radacctdir = ${logdir}/radacct
# name of the running server. See also the "-n" command-line option.
name = freeradius
# Location of config and logfiles.
confdir = ${raddbdir}
run_dir = ${localstatedir}/run/${name}
# Should likely be ${localstatedir}/lib/radiusd
db_dir = ${raddbdir}
# make install
libdir = /usr/lib/freeradius
# e.g.: kill -HUP `cat /var/run/radiusd/radiusd.pid`
pidfile = ${run_dir}/${name}.pid
#chroot = /path/to/chroot/directory
#
user = freerad
group = freerad
# Useful range of values: 5 to 120
max_request_time = 30
# Useful range of values: 2 to 10
cleanup_delay = 5
# Useful range of values: 256 to infinity
max_requests = 1024
listen {
type = auth
ipaddr = *
# ipv6addr = :: # any. ::1 == localhost
port = 0
# interface = eth0
# clients = per_socket_clients
}
# This second "listen" section is for listening on the accounting
# port, too.
listen {
ipaddr = *
# ipv6addr = ::
port = 0
type = acct
# interface = eth0
# clients = per_socket_clients
}
# allowed values: {no, yes}
hostname_lookups = no
# allowed values: {no, yes}
allow_core_dumps = no
# If they're set to "no" at configure time, then setting them to "yes"
# WILL NOT WORK. It will give you an error.
regular_expressions = yes
extended_expressions = yes
log {
destination = files
file = ${logdir}/radius.log
#requests = ${logdir}/radiusd-%{%{Virtual-Server}:-DEFAULT}-%Y%m%d.log
syslog_facility = daemon
# allowed values: {no, yes}
stripped_names = no
# allowed values: {no, yes}
auth = no
# allowed values: {no, yes}
auth_badpass = no
auth_goodpass = no
# msg_goodpass = ""
# msg_badpass = ""
}
# The program to execute to do concurrency checks.
checkrad = ${sbindir}/checkrad
security {
# Setting this number to 0 means "allow any number of attributes"
max_attributes = 200
# Useful ranges: 1 to 5
reject_delay = 1
# See also raddb/sites-available/status
status_server = yes
}
# allowed values: {no, yes}
proxy_requests = yes
$INCLUDE proxy.conf
# Client configuration is defined in "clients.conf".
$INCLUDE clients.conf
thread pool {
start_servers = 5
max_servers = 32
min_spare_servers = 3
max_spare_servers = 10
max_requests_per_server = 0
}
modules {
$INCLUDE ${confdir}/modules/
$INCLUDE eap.conf
# $INCLUDE sql.conf
# $INCLUDE sql/mysql/counter.conf
# IP addresses managed in an SQL table.
# $INCLUDE sqlippool.conf
#abills_preauth
exec abills_preauth {
program = "/usr/abills/libexec/rauth.pl pre_auth"
wait = yes
input_pairs = request
shell_escape = yes
#output = no
output_pairs = config
}
#abills_postauth
exec abills_postauth {
program = "/usr/abills/libexec/rauth.pl post_auth"
wait = yes
input_pairs = request
shell_escape = yes
#output = no
output_pairs = config
}
#abills_auth
exec abills_auth {
program = "/usr/abills/libexec/rauth.pl"
wait = yes
input_pairs = request
shell_escape = yes
output = no
output_pairs = reply
}
#abills_acc
exec abills_acc {
program = "/usr/abills/libexec/racct.pl"
wait = yes
input_pairs = request
shell_escape = yes
output = no
output_pairs = reply
}
}
instantiate {
# e.g. Framed-Pool = `%{exec:/bin/echo foo}`
exec
expr
# daily
expiration
logintime
#redundant redundant_sql {
# sql1
# sql2
#}
}
$INCLUDE policy.conf
$INCLUDE sites-enabled/
root@rpz2:/home/mapki3# nano /etc/freeradius/modules/exec
# -*- text -*-
# $Id$
exec {
wait = yes
input_pairs = request
shell_escape = yes
output = none
output_pairs = reply
}
root@rpz2:/home/mapki3# nano /etc/freeradius/sites-enabled/default
authorize {
preprocess
abills_preauth
# auth_log
# chap
mschap
# digest
# wimax
# IPASS
# suffix
# ntdomain
# eap {
# ok = return
# }
# unix
files
abills_auth
# sql
# etc_smbpasswd
# ldap
# daily
# checkval
# expiration
# logintime
# pap
# Autz-Type Status-Server {
#
# }
}
authenticate {
Auth-Type PAP {
pap
}
Auth-Type CHAP {
chap
}
Auth-Type MS-CHAP {
mschap
}
# digest
# pam
unix
# Auth-Type LDAP {
# ldap
# }
eap
# Auth-Type eap {
# eap {
# handled = 1
# }
# if (handled && (Response-Packet-Type == Access-Challenge)) {
# attr_filter.access_challenge.post-auth
# handled # override the "updated" code from attr_filter
# }
# }
}
preacct {
preprocess
abills_acc
# update request {
# FreeRADIUS-Acct-Session-Start-Time = "%{expr: %l - %{%{Acct-Session-Time}:-0} - %{%{Acct-Delay-T$
# }
# acct_unique
# IPASS
# suffix
# ntdomain
# files
}
accounting {
detail
# daily
unix
radutmp
# sradutmp
# main_pool
# sql
# if (noop) {
# ok
# }
# sql_log
# pgsql-voip
attr_filter.accounting_response
# Acct-Type Status-Server {
#
# }
}
session {
radutmp
# sql
}
post-auth {
# main_pool
# reply_log
# sql
# sql_log
# ldap
# exec
# wimax
Post-Auth-Type REJECT {
abills_postauth
# sql
# attr_filter.access_reject
}
}
pre-proxy {
# attr_rewrite
# files
# attr_filter.pre-proxy
# pre_proxy_log
}
post-proxy {
# post_proxy_log
# attr_rewrite
# attr_filter.post-proxy
eap
# Post-Proxy-Type Fail {
# detail
# }
}
root@rpz2:/home/mapki3# nano /etc/freeradius/users
#Здесь же я немного не понял, дописать в файл или же заменить все имеющеся?
DEFAULT Framed-Protocol == PPP
Framed-Protocol = PPP,
Framed-Compression = Van-Jacobson-TCP-IP
DEFAULT Hint == "CSLIP"
Framed-Protocol = SLIP,
Framed-Compression = Van-Jacobson-TCP-IP
DEFAULT Hint == "SLIP"
Framed-Protocol = SLIP
DEFAULT Auth-Type = Accept
root@rpz2:/home/mapki3# nano /etc/freeradius/clients.conf
client localhost {
ipaddr = 127.0.0.1
secret = radsecret
shortname = shortname
}
root@rpz2:/home/mapki3# nano /etc/freeradius/dictionary
# $Id$
$INCLUDE /usr/share/freeradius/dictionary
#
# If you want to add entries to the dictionary file,
# which are NOT going to be placed in a RADIUS packet,
# add them here. The numbers you pick should be between
# 3000 and 4000.
#
#ATTRIBUTE My-Local-String 3000 string
#ATTRIBUTE My-Local-IPAddr 3001 ipaddr
#ATTRIBUTE My-Local-Integer 3002 integer
# Limit session traffic
ATTRIBUTE Session-Octets-Limit 227 integer
# What to assume as limit - 0 in+out, 1 in, 2 out, 3 max(in,out)
ATTRIBUTE Octets-Direction 228 integer
# Connection Speed Limit
ATTRIBUTE PPPD-Upstream-Speed-Limit 230 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit 231 integer
ATTRIBUTE PPPD-Upstream-Speed-Limit-1 232 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit-1 233 integer
ATTRIBUTE PPPD-Upstream-Speed-Limit-2 234 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit-2 235 integer
ATTRIBUTE PPPD-Upstream-Speed-Limit-3 236 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit-3 237 integer
ATTRIBUTE Acct-Interim-Interval 85 integer
root@rpz2:/home/mapki3# /etc/init.d/freeradius restart
* Stopping FreeRADIUS daemon freeradius [ OK ]
* Starting FreeRADIUS daemon freeradius [ OK ]
root@rpz2:/home/mapki3# nano /etc/radiusclient/servers
# Make sure that this file is mode 600 (readable only to owner)!
#
#Server Name or Client/Server pair Key
#---------------- ---------------
#portmaster.elemental.net hardlyasecret
#portmaster2.elemental.net donttellanyone
127.0.0.1 radsecret
root@rpz2:/home/mapki3# wget
http://cakebilling.googlecode.com/files/etc.tar.bz22011-02-06 12:26:09 (35,7 KB/s) - «etc.tar.bz2» saved [11843/11843]
dictionary.microsoft кладем в /etc/radiusclient/ #Сделал
root@rpz2:/home/mapki3# nano /etc/radiusclient/dictionary
# Example:
# ATTRIBUTE VALUE
# --------------- -----
# Framed-Protocol = PPP
# 7 = 1 (integer encoding)
ATTRIBUTE User-Name 1 string
ATTRIBUTE Password 2 string
ATTRIBUTE CHAP-Password 3 string
ATTRIBUTE NAS-IP-Address 4 ipaddr
ATTRIBUTE NAS-Port-Id 5 integer
ATTRIBUTE Service-Type 6 integer
ATTRIBUTE Framed-Protocol 7 integer
ATTRIBUTE Framed-IP-Address 8 ipaddr
ATTRIBUTE Framed-IP-Netmask 9 ipaddr
ATTRIBUTE Framed-Routing 10 integer
ATTRIBUTE Filter-Id 11 string
ATTRIBUTE Framed-MTU 12 integer
ATTRIBUTE Framed-Compression 13 integer
ATTRIBUTE Login-IP-Host 14 ipaddr
ATTRIBUTE Login-Service 15 integer
ATTRIBUTE Login-TCP-Port 16 integer
ATTRIBUTE Reply-Message 18 string
ATTRIBUTE Callback-Number 19 string
ATTRIBUTE Callback-Id 20 string
ATTRIBUTE Framed-Route 22 string
ATTRIBUTE Framed-IPX-Network 23 ipaddr
ATTRIBUTE State 24 string
ATTRIBUTE Session-Timeout 27 integer
ATTRIBUTE Idle-Timeout 28 integer
ATTRIBUTE Termination-Action 29 integer
ATTRIBUTE Called-Station-Id 30 string
ATTRIBUTE Calling-Station-Id 31 string
ATTRIBUTE Acct-Status-Type 40 integer
ATTRIBUTE Acct-Delay-Time 41 integer
ATTRIBUTE Acct-Input-Octets 42 integer
ATTRIBUTE Acct-Output-Octets 43 integer
ATTRIBUTE Acct-Session-Id 44 string
ATTRIBUTE Acct-Authentic 45 integer
ATTRIBUTE Acct-Session-Time 46 integer
ATTRIBUTE Acct-Input-Packets 47 integer
ATTRIBUTE Acct-Output-Packets 48 integer
ATTRIBUTE Acct-Terminate-Cause 49 integer
ATTRIBUTE Chap-Challenge 60 string
ATTRIBUTE NAS-Port-Type 61 integer
ATTRIBUTE Port-Limit 62 integer
ATTRIBUTE Connect-Info 77 string
#
# Experimental Non Protocol Attributes used by Cistron-Radiusd
#
ATTRIBUTE Huntgroup-Name 221 string
ATTRIBUTE User-Category 1029 string
ATTRIBUTE Group-Name 1030 string
ATTRIBUTE Simultaneous-Use 1034 integer
ATTRIBUTE Strip-User-Name 1035 integer
ATTRIBUTE Fall-Through 1036 integer
ATTRIBUTE Add-Port-To-IP-Address 1037 integer
ATTRIBUTE Exec-Program 1038 string
ATTRIBUTE Exec-Program-Wait 1039 string
ATTRIBUTE Hint 1040 string
#
# Non-Protocol Attributes
# These attributes are used internally by the server
#
ATTRIBUTE Expiration 21 date
ATTRIBUTE Auth-Type 1000 integer
ATTRIBUTE Menu 1001 string
ATTRIBUTE Termination-Menu 1002 string
ATTRIBUTE Prefix 1003 string
ATTRIBUTE Suffix 1004 string
ATTRIBUTE Group 1005 string
ATTRIBUTE Crypt-Password 1006 string
ATTRIBUTE Connect-Rate 1007 integer
#
# Integer Translations
#
# User Types
VALUE Service-Type Login-User 1
VALUE Service-Type Framed-User 2
VALUE Service-Type Callback-Login-User 3
VALUE Service-Type Callback-Framed-User 4
VALUE Service-Type Outbound-User 5
VALUE Service-Type Administrative-User 6
VALUE Service-Type NAS-Prompt-User 7
# Framed Protocols
VALUE Framed-Protocol PPP 1
VALUE Framed-Protocol SLIP 2
# Framed Routing Values
VALUE Framed-Routing None 0
VALUE Framed-Routing Broadcast 1
VALUE Framed-Routing Listen 2
VALUE Framed-Routing Broadcast-Listen 3
# Framed Compression Types
VALUE Framed-Compression None 0
VALUE Framed-Compression Van-Jacobson-TCP-IP 1
# Login Services
VALUE Login-Service Telnet 0
VALUE Login-Service Rlogin 1
VALUE Login-Service TCP-Clear 2
VALUE Login-Service PortMaster 3
# Status Types
VALUE Acct-Status-Type Start 1
VALUE Acct-Status-Type Stop 2
VALUE Acct-Status-Type Accounting-On 7
VALUE Acct-Status-Type Accounting-Off 8
# Authentication Types
VALUE Acct-Authentic RADIUS 1
VALUE Acct-Authentic Local 2
VALUE Acct-Authentic PowerLink128 100
# Termination Options
VALUE Termination-Action Default 0
VALUE Termination-Action RADIUS-Request 1
# NAS Port Types, available in 3.3.1 and later
VALUE NAS-Port-Type Async 0
VALUE NAS-Port-Type Sync 1
VALUE NAS-Port-Type ISDN 2
VALUE NAS-Port-Type ISDN-V120 3
VALUE NAS-Port-Type ISDN-V110 4
# Acct Terminate Causes, available in 3.3.2 and later
VALUE Acct-Terminate-Cause User-Request 1
VALUE Acct-Terminate-Cause Lost-Carrier 2
VALUE Acct-Terminate-Cause Lost-Service 3
VALUE Acct-Terminate-Cause Idle-Timeout 4
VALUE Acct-Terminate-Cause Session-Timeout 5
VALUE Acct-Terminate-Cause Admin-Reset 6
VALUE Acct-Terminate-Cause Admin-Reboot 7
VALUE Acct-Terminate-Cause Port-Error 8
VALUE Acct-Terminate-Cause NAS-Error 9
VALUE Acct-Terminate-Cause NAS-Request 10
VALUE Acct-Terminate-Cause NAS-Reboot 11
VALUE Acct-Terminate-Cause Port-Unneeded 12
VALUE Acct-Terminate-Cause Port-Preempted 13
VALUE Acct-Terminate-Cause Port-Suspended 14
VALUE Acct-Terminate-Cause Service-Unavailable 15
VALUE Acct-Terminate-Cause Callback 16
VALUE Acct-Terminate-Cause User-Error 17
VALUE Acct-Terminate-Cause Host-Request 18
#
# Non-Protocol Integer Translations
#
VALUE Auth-Type Local 0
VALUE Auth-Type System 1
VALUE Auth-Type SecurID 2
VALUE Auth-Type Crypt-Local 3
VALUE Auth-Type Reject 4
#
# Cistron extensions
#
VALUE Auth-Type Pam 253
VALUE Auth-Type None 254
#
# Experimental Non-Protocol Integer Translations for Cistron-Radiusd
#
VALUE Fall-Through No 0
VALUE Fall-Through Yes 1
VALUE Add-Port-To-IP-Address No 0
VALUE Add-Port-To-IP-Address Yes 1
#
# Configuration Values
# uncomment these two lines to turn account expiration on
#
#VALUE Server-Config Password-Expiration 30
#VALUE Server-Config Password-Warning 5
INCLUDE /etc/radiusclient/dictionary.microsoft
# Limit session traffic
ATTRIBUTE Session-Octets-Limit 227 integer
# What to assume as limit - 0 in+out, 1 in, 2 out, 3 max(in,out)
ATTRIBUTE Octets-Direction 228 integer
# Connection Speed Limit
ATTRIBUTE PPPD-Upstream-Speed-Limit 230 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit 231 integer
ATTRIBUTE PPPD-Upstream-Speed-Limit-1 232 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit-1 233 integer
ATTRIBUTE PPPD-Upstream-Speed-Limit-2 234 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit-2 235 integer
ATTRIBUTE PPPD-Upstream-Speed-Limit-3 236 integer
ATTRIBUTE PPPD-Downstream-Speed-Limit-3 237 integer
ATTRIBUTE Acct-Interim-Interval 85 integer
root@rpz2:/home/mapki3# nano /etc/hosts
127.0.0.1 localhost rpz2 vpn2
194.44.166.137 rpz2.rv.ua rpz2
root@rpz2:/home/mapki3# apt-get install phpmyadminЧерез пхпмайадмин создал: пользователя и базу. И сразу же выполнил запрос: abills.sql
root@rpz2:/home/mapki3# cd /usr/abills/libexec
root@rpz2:/usr/abills/libexec# cp config.pl.default config.pl
root@rpz2:/usr/abills/libexec# nano config.pl
$conf{dbhost}='localhost';
$conf{dbname}='abills';
$conf{dbuser}='abills';
$conf{dbpasswd}='*************';
$conf{dbcharset}='cp1251';
$conf{default_language}='russian';
$conf{periodic_check}='yes';
$conf{ERROR_ALIVE_COUNT} = 10;
$conf{secretkey}="test123345678901234567890";
$conf{RADIUS2}=1;
@MODULES = ('Dv',
# 'Voip',
# 'Docs',
# 'Mail',
'Sqlcmd');
root@rpz2:/usr/abills/libexec# nano /usr/abills/Abills/defs.conf
.......
#SNMP Communities For checker and other SNMP base function
$SNMPWALK = '/usr/bin/snmpwalk';
$SNMPSET = '/usr/bin/snmpset';
$GZIP = '/bin/gzip';
$TAR='/bin/tar';
$MYSQLDUMP = '/usr/bin/mysqldump';
$IFCONFIG='/sbin/ifconfig';
$IPFW='/sbin/ipfw';
#$MYSQLDUMP = '/usr/local/mysql/bin/mysqldump';
1
root@rpz2:/usr/abills/libexec# mkdir /etc/apache2/ssl
root@rpz2:/usr/abills/libexec# make-ssl-cert /usr/share/ssl-cert/ssleay.cnf /etc/apache2/ssl/apache.pem
root@rpz2:/usr/abills/libexec# a2enmod ssl
Module ssl already enabled
root@rpz2:/usr/abills/libexec# nano /etc/apache2/conf.d/charset
root@rpz2:/usr/abills/libexec# nano /etc/apache2/sites-available/default-ssl
<VirtualHost *:443>
SSLEngine On
SSLCertificateFile /etc/apache2/ssl/apache.pem
DocumentRoot /usr/abills/cgi-bin/
Alias /abills "/usr/abills/cgi-bin/"
<Directory "/usr/abills/cgi-bin">
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule ^(.*) - [E=HTTP_CGI_AUTHORIZATION:%1]
Options Indexes ExecCGI SymLinksIfOwnerMatch
</IfModule>
AddHandler cgi-script .cgi
Options Indexes ExecCGI FollowSymLinks
AllowOverride none
DirectoryIndex index.cgi
#Options ExecCGI
<Files ~ ".(db|log)$">
Order allow,deny
Deny from all
</Files>
</Directory>
#Admin interface
<Directory "/usr/abills/cgi-bin/admin">
AddHandler cgi-script .cgi
Options Indexes ExecCGI FollowSymLinks
AllowOverride none
DirectoryIndex index.cgi
order deny,allow
allow from all
</Directory>
ErrorLog /var/log/apache2/error-abills.log
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
LogLevel warn
CustomLog /var/log/apache2/access-abills.log combined
</virtualhost>
root@rpz2:/usr/abills/libexec# nano /etc/pptpd.conf
ppp /usr/sbin/pppd
option /etc/ppp/pptpd-options
#debug
# Specifies timeout (in seconds) on starting ctrl connection
# stimeout 10
#noipparam
# Use wtmp(5) to record client connections and disconnections.
logwtmp
# Turns on broadcast relay to clients from interface <if>
#bcrelay eth1
connections 500
localip 192.168.160.1
remoteip 192.168.160.1-254
root@rpz2:/usr/abills/libexec# nano /etc/ppp/options
root@rpz2:/usr/abills/libexec# nano /etc/ppp/pptpd-options
# Name of the local system for authentication purposes
# (must match the second field in /etc/ppp/chap-secrets entries)
name pptpd
# Optional: domain name to use for authentication
# domain mydomain.net
#chapms-strip-domain
refuse-pap
refuse-chap
refuse-mschap
require-mschap-v2
require-mppe-128
#ms-dns 10.0.0.1
#ms-dns 10.0.0.2
#ms-wins 10.0.0.3
#ms-wins 10.0.0.4
proxyarp
# Debian: do not replace the default route
nodefaultroute
# Logging
#debug
#dump
lock
# Disable BSD-Compress compression
nobsdcomp
ms-dns 8.8.8.8
ma-dns 194.44.245.244 # или любой удобный для вас днс сервер
asyncmap 0
lcp-echo-failure 30
lcp-echo-interval 5
ipcp-accept-local
ipcp-accept-remote
plugin radius.so
plugin radattr.so
Тема: [HOWTO] Ubuntu 11.04+abills0.5 для малого офиса или мелкого провайдера. (Прочитано 125359 раз)
