CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

Setup Script - Clean up hwo Ubuntu bonds

Browse Source
This commit is contained in:
Mike Reeves
2018-09-20 21:09:54 -04:00
parent d9fda61722
commit 45eb285297
1 changed files with 28 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

46
so-setup-network.sh
View File

@@ -180,37 +180,47 @@ create_bond() {
local MINT=$(awk "/auto $MNIC/,/^$/" /etc/network/interfaces) local MINT=$(awk "/auto $MNIC/,/^$/" /etc/network/interfaces)
# Let's set up the new interface file # Let's set up the new interface file
# Populate lo and the management interface # Populate lo and create file for the management interface
echo $LBACK > $TMP/interfaces IFS=$'\n'
echo $MINT >> $TMP/interfaces for line in $LBACK
do
echo $line > $TMP/interfaces
done
cp $TMP/interfaces /etc/network/interfaces cp $TMP/interfaces /etc/network/interfaces
IFS=$'\n'
for line in $MINT
do
echo $line > /etc/network/interfaces.d/$MNIC
done
# Create entries for each interface that is part of the bond. # Create entries for each interface that is part of the bond.
for BNIC in ${BNICS[@]}; do for BNIC in ${BNICS[@]}; do
BNIC=$(echo $BNIC | cut -d\" -f2) BNIC=$(echo $BNIC | cut -d\" -f2)
echo "" echo ""
echo "auto $BNIC" >> /etc/network/interfaces echo "auto $BNIC" >> /etc/network/interfaces.d/$BNIC
echo "iface $BNIC inet manual" >> /etc/network/interfaces echo "iface $BNIC inet manual" >> /etc/network/interfaces.d/$BNIC
echo " up ip link set \$IFACE promisc on arp off up" >> /etc/network/interfaces echo " up ip link set \$IFACE promisc on arp off up" >> /etc/network/interfaces.d/$BNIC
echo " down ip link set \$IFACE promisc off down" >> /etc/network/interfaces echo " down ip link set \$IFACE promisc off down" >> /etc/network/interfaces.d/$BNIC
echo " post-up ethtool -G \$IFACE rx 4096; for i in rx tx sg tso ufo gso gro lro; do ethtool -K \$IFACE \$i off; done" >> /etc/network/interfaces echo " post-up ethtool -G \$IFACE rx 4096; for i in rx tx sg tso ufo gso gro lro; do ethtool -K \$IFACE \$i off; done" >> /etc/network/interfaces.d/$BNIC
echo " post-up echo 1 > /proc/sys/net/ipv6/conf/\$IFACE/disable_ipv6" >> /etc/network/interfaces echo " post-up echo 1 > /proc/sys/net/ipv6/conf/\$IFACE/disable_ipv6" >> /etc/network/interfaces.d/$BNIC
echo " bond-master bond0" >> /etc/network/interfaces echo " bond-master bond0" >> /etc/network/interfaces.d/$BNIC
echo "" echo ""
done done
BN=("${BNICS[@]//\"/}") BN=("${BNICS[@]//\"/}")
echo "auto bond0" >> /etc/network/interfaces echo "auto bond0" >> /etc/network/interfaces.d/bond0
echo "iface bond0 inet manual" >> /etc/network/interfaces echo "iface bond0 inet manual" >> /etc/network/interfaces.d/bond0
echo " bond-mode 0" >> /etc/network/interfaces echo " bond-mode 0" >> /etc/network/interfaces.d/bond0
echo " bond-slaves $BN" >> /etc/network/interfaces echo " bond-slaves $BN" >> /etc/network/interfaces.d/bond0
echo " up ip link set \$IFACE promisc on arp off up" >> /etc/network/interfaces echo " up ip link set \$IFACE promisc on arp off up" >> /etc/network/interfaces.d/bond0
echo " down ip link set \$IFACE promisc off down" >> /etc/network/interfaces echo " down ip link set \$IFACE promisc off down" >> /etc/network/interfaces.d/bond0
echo " post-up ethtool -G \$IFACE rx 4096; for i in rx tx sg tso ufo gso gro lro; do ethtool -K \$IFACE \$i off; done" >> /etc/network/interfaces echo " post-up ethtool -G \$IFACE rx 4096; for i in rx tx sg tso ufo gso gro lro; do ethtool -K \$IFACE \$i off; done" >> /etc/network/interfaces.d/bond0
echo " post-up echo 1 > /proc/sys/net/ipv6/conf/\$IFACE/disable_ipv6" >> /etc/network/interfaces echo " post-up echo 1 > /proc/sys/net/ipv6/conf/\$IFACE/disable_ipv6" >> /etc/network/interfaces.d/bond0
fi fi
} }