Christian Samsel csamsel
csamsel
/ wildcard.sh
Last active
March 14, 2018 12:43
certbot command to request wildcard certificate, requires certbot => 0.22.0
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| certbot certonly --manual --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory -d *.domain.tld |
csamsel
/ gist:d004b0242a98529353642d89b001bd55
Created
February 22, 2018 11:02
delete broken symlinks in runlevel scripts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| find -L /etc/runlevels -type l -delete |
csamsel
/ etc radvd.conf
Created
February 20, 2018 10:37
radvd configuration to announce WAN route to local lan
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| interface eth1 # local network interface | |
| { | |
| AdvSendAdvert on; | |
| MaxRtrAdvInterval 300; | |
| MinRtrAdvInterval 30; | |
| prefix ::/64 # derives prefix from interface IP | |
| { | |
| AdvOnLink on; | |
| AdvAutonomous on; | |
| AdvRouterAddr on; |
csamsel
/ etc conf.d net
Last active
June 6, 2018 08:23
Gentoo router network configuration for NetAachen / NetCologne using Draytek VigorNIC 132
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # PPPoE username and password as provided by NetAachen / NetCologne | |
| username_ppp0="[email protected]" | |
| password_ppp0="XXXXXX" | |
| modules="tuntap ethtool pppoe arping dhcpcd iproute2 !ip6rd !wpa_supplicant !iwconfig !ssidnet !apipa !dhclient !pump !bond !bridge" | |
| #LAN | |
| config_eth1="192.168.2.1/24" # Router IP | |
| vlans_eth1="12 20 34" # used VLANs, configure to your likings | |
| config_eth1_12="192.168.12.1/24" # IoT |
csamsel
/ openvpn-udp.conf
Created
February 7, 2018 12:58
secure OpenVPN configuration using easy-rsa
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| dev vpn0 | |
| port 5000 | |
| tls-server | |
| key /etc/openvpn/easy-rsa/pki/private/openvpn.key | |
| cert /etc/openvpn/easy-rsa/pki/issued/openvpn.crt | |
| ca /etc/openvpn/easy-rsa/pki/ca.crt | |
| dh /etc/openvpn/easy-rsa/pki/dh.pem | |
| tls-crypt /etc/openvpn/easy-rsa/pki/openvpn.tlsauth | |
| crl-verify /etc/openvpn/easy-rsa/pki/crl.pem |
csamsel
/ logrotate.conf
Last active
March 2, 2023 15:42
use lzma for logrotate instead of gzip for better compression
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ... | |
| # compress rotated log files. | |
| compress | |
| compresscmd lzma | |
| uncompresscmd lzmadec | |
| compressext .xz | |
| delaycompress | |
| # ... |
csamsel
/ gist:4a45318fa94394acf124f7250e8fe31c
Created
February 6, 2018 10:52
remove invalid VMs from ESXi inventory without vCenter
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| for a in $(vim-cmd vmsvc/getallvms 2>&1 |grep invalid |awk '{print $4}'|cut -d \' -f2);do vim-cmd vmsvc/unregister $a;done |
csamsel
/ gist:a0001e604035886a1839f307473e8bbd
Created
January 29, 2018 18:17
Increase btrfs gpt partition after enlarging the virtual drive
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| oxygen-system-vm ~ # fdisk -l /dev/sda | |
| GPT PMBR size mismatch (41943039 != 62914559) will be corrected by w(rite). | |
| Disk /dev/sda: 30 GiB, 32212254720 bytes, 62914560 sectors | |
| Units: sectors of 1 * 512 = 512 bytes | |
| Sector size (logical/physical): 512 bytes / 512 bytes | |
| I/O size (minimum/optimal): 512 bytes / 512 bytes | |
| Disklabel type: gpt | |
| Disk identifier: 10B93AE8-1045-434C-A36E-F7801B17CE32 | |
| Device Start End Sectors Size Type |
csamsel
/ generate-ovpn.sh
Last active
April 19, 2019 15:56
Generate ovpn file for mobile OpenVPN clients for easy-rsa directory
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #/bin/sh | |
| cp template.ovpn $1.ovpn | |
| echo "<ca>" >>$1.ovpn | |
| cat pki/ca.crt >>$1.ovpn | |
| echo "</ca>" >>$1.ovpn | |
| echo "<cert>" >>$1.ovpn | |
| cat pki/issued/$1.crt >>$1.ovpn | |
| echo "</cert>" >>$1.ovpn | |
| echo "<key>" >>$1.ovpn |
csamsel
/ syslog-ng.conf
Last active
January 26, 2018 20:42
syslog-ng configuration for loghost (receive)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| source s_extern { | |
| network( | |
| transport("udp") | |
| ); | |
| network( | |
| transport("tcp") | |
| ); | |
| }; |