-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathtemplate.html
343 lines (276 loc) · 16.1 KB
/
template.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
<html>
<head>
<!-- JavaScript principal-->
<script>
var nombreLugar; //nombre del lugar
//var idLugar; //ID del lugar
var nZ; //número de zona
var nL; //número del lugar
var nAP; //número de AP
var dirExterna;
var dirExterna2;
var dirInterna;
function cargaDatos() {
nombreLugar = "rt-" + document.getElementById('idGeneral').value + "-" + document.getElementById('nombre').value;
nZ = document.getElementById('zona').value;
nL = document.getElementById('lugar').value;
nAP = document.getElementById('aps').value;
document.getElementById("muestraNombre").innerHTML = nombreLugar; //pasa el nombre al HTML
}
function verifica() {}
function armaSubredes() {
if (nZ < 10) {
subRedExterna = "10." + nZ + "0.2." + 0;
dirExterna = "10." + nZ + "0.2." + (nL * 1 + 9); //hay que transformar la string nL en decimal antes
subRedExterna2 = "10." + nZ + "0.4." + 0;
dirExterna2 = "10." + nZ + "0.4." + (nL * 1 + 9);
subRedInterna = "10." + nZ + "0.3." + (nL * 16 - 16);
dirInterna = "10." + nZ + "0.3." + (nL * 16 - 15);
primerDhcp = "10." + nZ + "0.3." + (nL * 16 - 14);
ultimoDhcp = "10." + nZ + "0.3." + (nL * 16 - 2);
vlanExterna = (nZ * 1 + 10) + "02";
} else if (nZ == 10) {
subRedExterna = "10." + nZ + "0.12." + 0;
dirExterna = "10." + nZ + "0.12." + (nL * 1 + 9);
subRedExterna2 = "10." + nZ + "0.14." + 0;
dirExterna2 = "10." + nZ + "0.14." + (nL * 1 + 9);
subRedInterna = "10." + nZ + "0.13." + (nL * 16 - 16);
dirInterna = "10." + nZ + "0.13." + (nL * 16 - 15);
primerDhcp = "10." + nZ + "0.13." + (nL * 16 - 14);
ultimoDhcp = "10." + nZ + "0.13." + (nL * 16 - 2);
vlanExterna = (nZ * 1 + 10) + "12";
} else {
subRedExterna = "10." + (nZ * 1 + 10) + "0.2." + 0;
dirExterna = "10." + (nZ * 1 + 10) + "0.2." + (nL * 1 + 9);
subRedExterna2 = "10." + (nZ * 1 + 10) + "0.4." + 0;
dirExterna2 = "10." + (nZ * 1 + 10) + "0.4." + (nL * 1 + 9);
subRedInterna = "10." + (nZ * 1 + 10) + "0.3." + (nL * 16 - 16);
dirInterna = "10." + (nZ * 1 + 10) + "0.3." + (nL * 16 - 15);
primerDhcp = "10." + (nZ * 1 + 10) + "0.3." + (nL * 16 - 14);
ultimoDhcp = "10." + (nZ * 1 + 10) + "0.3." + (nL * 16 - 2);
vlanExterna = (nZ * 1 + 10) + "02";
}
document.getElementById("redExterna").innerHTML = subRedExterna; //pasa al cuerpo HTML
document.getElementById("afuera").innerHTML = dirExterna;
document.getElementById("redExterna2").innerHTML = subRedExterna2;
document.getElementById("afuera2").innerHTML = dirExterna2;
document.getElementById("redInterna").innerHTML = subRedInterna;
document.getElementById("adentro").innerHTML = dirInterna;
document.getElementById("primera").innerHTML = primerDhcp;
document.getElementById("ultima").innerHTML = ultimoDhcp;
document.getElementById("vlanExt").innerHTML = vlanExterna;
}
function armaTxt() {
var txt = document.getElementById("plantilla").innerHTML; //script para descargar
txt = txt.replace(/%SUBREDEXTERNA%/g, subRedExterna); //el /g es para agarre TODAS las coincidencias
txt = txt.replace(/%DIREXTERNA%/g, dirExterna); //el % es para diferenciar de cualquier otro tipo de texto
txt = txt.replace(/%SUBREDEXTERNA2%/g, subRedExterna2);
txt = txt.replace(/%DIREXTERNA2%/g, dirExterna2);
txt = txt.replace(/%SUBREDINTERNA%/g, subRedInterna);
txt = txt.replace(/%DIRINTERNA%/g, dirInterna);
txt = txt.replace(/%DIRPRIMERA%/g, primerDhcp);
txt = txt.replace(/%DIRULTIMA%/g, ultimoDhcp);
txt = txt.replace(/%VLANEXT%/g, vlanExterna);
txt = txt.replace(/%NOMLUGAR%/g, nombreLugar);
txt = txt.replace(/%NUMZONA%/g, nZ);
document.getElementById("plantilla").innerHTML = txt;
//document.write(txt); //reemplaza todo por lo que hay en txt
}
function muestra() {}
</script>
</head>
<body>
<meta charset="UTF-8">
<!--para utilizar símbolos-->
<h1 align="center">Creador de plantillas para UBIQUITI</h1>
<h3>Datos del dispositivo:</h3>
Nombre del lugar: <input id="nombre" type="text"> <br> ID del lugar: <input id="idGeneral" type="text"> <br> N° de zona: <input id="zona" type="text"> <br> N° del lugar: <input id="lugar" type="text"> <br> N° de AP: <input id="aps" type="text"> <br>
<input type="button" onClick="cargaDatos();armaSubredes();armaTxt()" value="Cargar datos"> <br><br> Nombre del dispositivo = <span onChange="cargaDatos()" id="muestraNombre"></span> <br><br> Subred externa Wi-Fi 1 = <span onChange="armaSubredes()"
id="redExterna"></span>/24
<br> Dirección Wi-Fi 1= <span onChange="armaSubredes()" id="afuera"></span> <br><br> Subred externa Wi-Fi 2 = <span onChange="armaSubredes()" id="redExterna2"></span>/24 <br> Dirección Wi-Fi 2 = <span onChange="armaSubredes()" id="afuera2"></span> <br><br> VLAN = <span onChange="armaSubredes()" id="vlanExt"></span> <br> <br> Subred interna = <span onChange="armaSubredes()" id="redInterna"></span>/28 <br> Dirección = <span onChange="armaSubredes()" id="adentro"></span> <br> Primer dirección
DHCP =
<span onChange="armaSubredes()" id="primera"></span> <br> Última dirección DHCP = <span onChange="armaSubredes()" id="ultima"></span> <br> <br>
<h3>Instrucciones:</h3>
1 - Completar los datos para armar el script <br> 2 - Entrar por consola al equipo <br> 3 - $ vi plantilla <br> 4 - Pegar el texto generado <br><br>
<textarea id="plantilla" rows="80" cols="150">#!/bin/bash
run=/opt/vyatta/sbin/vyatta-cfg-cmd-wrapper
$run begin
#FIREWALL
$run set firewall all-ping enable
$run set firewall broadcast-ping disable
$run set firewall ipv6-receive-redirects disable
$run set firewall ipv6-src-route disable
$run set firewall ip-src-route disable
$run set firewall log-martians enable
$run set firewall name Clientes_WiFi default-action drop
$run set firewall name Clientes_WiFi description "Para aislar clientes de R8"
$run set firewall name Clientes_WiFi rule 1 action drop
$run set firewall name Clientes_WiFi rule 1 destination address 10.0.0.0/8
$run set firewall name Clientes_WiFi rule 1 log disable
$run set firewall name Clientes_WiFi rule 1 protocol all
$run set firewall name Clientes_WiFi rule 1 source address 192.168.0.0/16
$run set firewall name Clientes_WiFi rule 2 action drop
$run set firewall name Clientes_WiFi rule 2 destination address 192.168.0.0/16
$run set firewall name Clientes_WiFi rule 2 log disable
$run set firewall name Clientes_WiFi rule 2 protocol all
$run set firewall name Clientes_WiFi rule 2 source address 192.168.0.0/16
$run set firewall name Clientes_WiFi rule 3 action accept
$run set firewall name Clientes_WiFi rule 3 log disable
$run set firewall name Clientes_WiFi rule 3 protocol all
$run set firewall name Clientes_WiFi rule 3 source address 192.168.0.0/16
$run set firewall receive-redirects disable
$run set firewall send-redirects enable
$run set firewall source-validation disable
$run set firewall syn-cookies enable
#INTERFACES
$run set interfaces bridge br0 address %DIREXTERNA%/24
$run set interfaces bridge br0 address %DIREXTERNA2%/24
$run set interfaces bridge br0 aging 300
$run set interfaces bridge br0 bridged-conntrack disable
$run set interfaces bridge br0 description Bridge-FO
$run set interfaces bridge br0 hello-time 2
$run set interfaces bridge br0 max-age 20
$run set interfaces bridge br0 priority 32768
$run set interfaces bridge br0 promiscuous disable
$run set interfaces bridge br0 stp false
$run set interfaces bridge br1 address %DIRINTERNA%/28
$run set interfaces bridge br1 aging 300
$run set interfaces bridge br1 bridged-conntrack disable
$run set interfaces bridge br1 description Bridge-AP
$run set interfaces bridge br1 dhcp-options client-option DHCP-AP
$run set interfaces bridge br1 dhcp-options default-route update
$run set interfaces bridge br1 dhcp-options default-route-distance 210
$run set interfaces bridge br1 dhcp-options name-server update
$run set interfaces bridge br1 hello-time 2
$run set interfaces bridge br1 max-age 20
$run set interfaces bridge br1 priority 32768
$run set interfaces bridge br1 promiscuous disable
$run set interfaces bridge br1 stp false
$run set interfaces bridge br2 address 192.168.200.1/22
$run set interfaces bridge br2 aging 300
$run set interfaces bridge br2 bridged-conntrack disable
$run set interfaces bridge br2 description Bridge-WiFi
$run set interfaces bridge br2 dhcp-options client-option DHCP-Clientes_WiFi
$run set interfaces bridge br2 dhcp-options default-route update
$run set interfaces bridge br2 dhcp-options default-route-distance 210
$run set interfaces bridge br2 dhcp-options name-server update
$run set interfaces bridge br2 firewall in name Clientes_WiFi
$run set interfaces bridge br2 firewall local name Clientes_WiFi
$run set interfaces bridge br2 hello-time 2
$run set interfaces bridge br2 max-age 20
$run set interfaces bridge br2 priority 32768
$run set interfaces bridge br2 promiscuous disable
$run set interfaces bridge br2 stp false
$run set interfaces bridge br3 address 192.168.204.1/22
$run set interfaces bridge br3 aging 300
$run set interfaces bridge br3 bridged-conntrack disable
$run set interfaces bridge br3 description Bridge-WiFi2
$run set interfaces bridge br3 dhcp-options client-option DHCP-Clientes_WiFi2
$run set interfaces bridge br3 dhcp-options default-route update
$run set interfaces bridge br3 dhcp-options default-route-distance 210
$run set interfaces bridge br3 dhcp-options name-server update
$run set interfaces bridge br3 firewall in name Clientes_WiFi
$run set interfaces bridge br3 firewall local name Clientes_WiFi
$run set interfaces bridge br3 hello-time 2
$run set interfaces bridge br3 max-age 20
$run set interfaces bridge br3 priority 32768
$run set interfaces bridge br3 promiscuous disable
$run set interfaces bridge br3 stp false
#PARA DESACIVAR LA PSEUDOCONSOLA
#$run set interfaces ethernet eth0 disable
#$run set interfaces ethernet eth0 duplex auto
#$run set interfaces ethernet eth0 speed auto
$run set interfaces ethernet eth1 bridge-group bridge br1
$run set interfaces ethernet eth1 duplex auto
$run set interfaces ethernet eth1 poe output 54v-4pair
$run set interfaces ethernet eth1 speed auto
$run set interfaces ethernet eth1 vif 10 bridge-group bridge br2
$run set interfaces ethernet eth1 vif 11 bridge-group bridge br3
$run set interfaces ethernet eth2 bridge-group bridge br1
$run set interfaces ethernet eth2 duplex auto
$run set interfaces ethernet eth2 poe output 54v-4pair
$run set interfaces ethernet eth2 speed auto
$run set interfaces ethernet eth2 vif 10 bridge-group bridge br2
$run set interfaces ethernet eth2 vif 11 bridge-group bridge br3
$run set interfaces ethernet eth3 disable
$run set interfaces ethernet eth3 duplex auto
$run set interfaces ethernet eth3 speed auto
$run set interfaces ethernet eth4 disable
$run set interfaces ethernet eth4 duplex auto
$run set interfaces ethernet eth4 speed auto
$run set interfaces ethernet eth5 disable
$run set interfaces ethernet eth5 duplex auto
$run set interfaces ethernet eth5 speed auto
$run set interfaces ethernet eth6 duplex auto
$run set interfaces ethernet eth6 speed auto
$run set interfaces ethernet eth6 vif %VLANEXT% bridge-group bridge br0
$run set interfaces ethernet eth7 duplex auto
$run set interfaces ethernet eth7 speed auto
$run set interfaces ethernet eth7 vif %VLANEXT% bridge-group bridge br0
#LOOPBACK
#$run set interfaces loopback lo address %DIREXTERNA%/32
#OSPF
$run set protocols ospf area %NUMZONA%2 area-type normal
$run set protocols ospf area %NUMZONA%2 network %SUBREDEXTERNA%/24
$run set protocols ospf area %NUMZONA%2 network %SUBREDEXTERNA2%/24
$run set protocols ospf area %NUMZONA%2 network %SUBREDINTERNA%/28
$run set protocols ospf parameters abr-type cisco
$run set protocols ospf parameters router-id %DIREXTERNA%
#SERVICIOS
$run set service dhcp-server disabled false
$run set service dhcp-server hostfile-update disable
$run set service dhcp-server shared-network-name DHCP-AP authoritative disable
$run set service dhcp-server shared-network-name DHCP-AP subnet %SUBREDINTERNA%/28 default-router %DIRINTERNA%
$run set service dhcp-server shared-network-name DHCP-AP subnet %SUBREDINTERNA%/28 dns-server 8.8.8.8
$run set service dhcp-server shared-network-name DHCP-AP subnet %SUBREDINTERNA%/28 dns-server 8.8.4.4
$run set service dhcp-server shared-network-name DHCP-AP subnet %SUBREDINTERNA%/28 lease 86400
$run set service dhcp-server shared-network-name DHCP-AP subnet %SUBREDINTERNA%/28 start %DIRPRIMERA% stop %DIRULTIMA%
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi authoritative disable
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi subnet 192.168.200.0/22 default-router 192.168.200.1
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi subnet 192.168.200.0/22 dns-server 8.8.8.8
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi subnet 192.168.200.0/22 dns-server 8.8.4.4
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi subnet 192.168.200.0/22 lease 86400
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi subnet 192.168.200.0/22 start 192.168.200.2 stop 192.168.203.254
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi2 authoritative disable
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi2 subnet 192.168.204.0/22 default-router 192.168.204.1
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi2 subnet 192.168.204.0/22 dns-server 8.8.8.8
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi2 subnet 192.168.204.0/22 dns-server 8.8.4.4
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi2 subnet 192.168.204.0/22 lease 86400
$run set service dhcp-server shared-network-name DHCP-Clientes_WiFi2 subnet 192.168.204.0/22 start 192.168.204.2 stop 192.168.207.254
$run set service nat rule 5000 description Clientes_WiFi
$run set service nat rule 5000 log disable
$run set service nat rule 5000 outbound-interface br0
$run set service nat rule 5000 outside-address address %DIREXTERNA%
$run set service nat rule 5000 protocol all
$run set service nat rule 5000 source address 192.168.200.0/22
$run set service nat rule 5000 type source
$run set service nat rule 5001 description Clientes_WiFi2
$run set service nat rule 5001 log disable
$run set service nat rule 5001 outbound-interface br0
$run set service nat rule 5001 outside-address address %DIREXTERNA2%
$run set service nat rule 5001 protocol all
$run set service nat rule 5001 source address 192.168.204.0/22
$run set service nat rule 5001 type source
$run set service snmp community XXXXXXX authorization ro
$run set service snmp contact [email protected]
#SISTEMA
$run set system host-name %NOMLUGAR%
$run set system login user bkp authentication plaintext-password XXXXXXX
$run set system login user bkp full-name "Usuario Backup"
$run set system login user bkp level operator
$run delete system ntp server 0.ubnt.pool.ntp.org
$run delete system ntp server 1.ubnt.pool.ntp.org
$run delete system ntp server 2.ubnt.pool.ntp.org
$run delete system ntp server 3.ubnt.pool.ntp.org
$run set system ntp server XXX.XXX.XXX.XXX
$run set system ntp server XXX.XXX.XXX.XXX
$run set system syslog host XXX.XXX.XXX.XXX facility all level err
$run set system syslog host XXX.XXX.XXX.XXX facility protocols level err
$run set system time-zone America/Argentina/Buenos_Aires
$run set service lldp
#run set service unms connection wss://XXXXXXX
#GUARDADO
$run commit
$run save</textarea><br><br> 5 - $ chmod +x plantilla <br> 6 - $ ./plantilla <br> 7 - $ rm plantilla <br> 8 - Corregir: <b>COMUNIDAD (ro)</b>, <b>USUARIO ADMIN</b> y <b>KEY UNMS</b>.
</body>
</html>