]>
Commit | Line | Data |
---|---|---|
1 | ############################################################################### | |
2 | # # | |
3 | # IPFire.org - A linux based firewall # | |
4 | # Copyright (C) 2007-2013 IPFire Team <info@ipfire.org> # | |
5 | # # | |
6 | # This program is free software: you can redistribute it and/or modify # | |
7 | # it under the terms of the GNU General Public License as published by # | |
8 | # the Free Software Foundation, either version 3 of the License, or # | |
9 | # (at your option) any later version. # | |
10 | # # | |
11 | # This program is distributed in the hope that it will be useful, # | |
12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of # | |
13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # | |
14 | # GNU General Public License for more details. # | |
15 | # # | |
16 | # You should have received a copy of the GNU General Public License # | |
17 | # along with this program. If not, see <http://www.gnu.org/licenses/>. # | |
18 | # # | |
19 | ############################################################################### | |
20 | ||
21 | ############################################################################### | |
22 | # Definitions | |
23 | ############################################################################### | |
24 | ||
25 | include Config | |
26 | ||
27 | VER = ipfire | |
28 | ||
29 | THISAPP = configroot | |
30 | DIR_APP = $(DIR_SRC)/$(THISAPP) | |
31 | TARGET = $(DIR_INFO)/$(THISAPP) | |
32 | ||
33 | ############################################################################### | |
34 | # Top-level Rules | |
35 | ############################################################################### | |
36 | ||
37 | install : $(TARGET) | |
38 | ||
39 | check : | |
40 | ||
41 | download : | |
42 | ||
43 | md5 : | |
44 | ||
45 | ############################################################################### | |
46 | # Installation Details | |
47 | ############################################################################### | |
48 | ||
49 | $(TARGET) : | |
50 | @$(PREBUILD) | |
51 | ||
52 | # Create all directories | |
53 | for i in addon-lang auth backup ca certs connscheduler crls ddns dhcp dhcpc dns dnsforward \ | |
54 | ethernet extrahd/bin fwlogs isdn key langs logging mac main menu.d modem net-traffic \ | |
55 | ethernet extrahd/bin fwlogs fwhosts forward forward/bin isdn key langs logging mac main menu.d modem net-traffic \ | |
56 | net-traffic/templates nfs optionsfw \ | |
57 | ovpn patches pakfire portfw ppp private proxy/advanced/cre \ | |
58 | proxy/calamaris/bin qos/bin red remote sensors snort time tripwire/report \ | |
59 | updatexlrator/bin updatexlrator/autocheck urlfilter/autoupdate urlfilter/bin upnp vpn \ | |
60 | wakeonlan wireless ; do \ | |
61 | mkdir -p $(CONFIG_ROOT)/$$i; \ | |
62 | done | |
63 | ||
64 | # Touch empty files | |
65 | for i in auth/users backup/include.user backup/exclude.user \ | |
66 | certs/index.txt ddns/config ddns/noipsettings ddns/settings ddns/ipcache dhcp/settings \ | |
67 | dhcp/fixleases dhcp/advoptions dhcp/dhcpd.conf.local dns/settings dnsforward/config ethernet/aliases ethernet/settings ethernet/known_nics ethernet/scanned_nics \ | |
68 | extrahd/scan extrahd/devices extrahd/partitions extrahd/settings forward/settings forward/config forward/input forward/outgoing forward/dmz \ | |
69 | fwhosts/customnetworks fwhosts/customhosts fwhosts/customgroups fwhosts/customservicegrp fwlogs/ipsettings fwlogs/portsettings \ | |
70 | isdn/settings mac/settings main/disable_nf_sip main/hosts main/routing main/settings net-traffic/settings optionsfw/settings \ | |
71 | ovpn/ccd.conf ovpn/ccdroute ovpn/ccdroute2 pakfire/settings portfw/config ppp/settings-1 ppp/settings-2 ppp/settings-3 ppp/settings-4 \ | |
72 | ppp/settings-5 ppp/settings proxy/settings proxy/advanced/settings proxy/advanced/cre/enable remote/settings qos/settings qos/classes qos/subclasses qos/level7config qos/portconfig \ | |
73 | qos/tosconfig snort/settings tripwire/settings upnp/settings vpn/config vpn/settings vpn/ipsec.conf \ | |
74 | vpn/ipsec.secrets vpn/caconfig wakeonlan/clients.conf wireless/config wireless/settings; do \ | |
75 | touch $(CONFIG_ROOT)/$$i; \ | |
76 | done | |
77 | ||
78 | # Copy initial configfiles | |
79 | cp $(DIR_SRC)/config/cfgroot/header.pl $(CONFIG_ROOT)/ | |
80 | cp $(DIR_SRC)/config/cfgroot/general-functions.pl $(CONFIG_ROOT)/ | |
81 | cp $(DIR_SRC)/config/cfgroot/lang.pl $(CONFIG_ROOT)/ | |
82 | cp $(DIR_SRC)/config/cfgroot/countries.pl $(CONFIG_ROOT)/ | |
83 | cp $(DIR_SRC)/config/cfgroot/graphs.pl $(CONFIG_ROOT)/ | |
84 | cp $(DIR_SRC)/config/cfgroot/advoptions-list $(CONFIG_ROOT)/dhcp/advoptions-list | |
85 | cp $(DIR_SRC)/config/cfgroot/connscheduler-lib.pl $(CONFIG_ROOT)/connscheduler/lib.pl | |
86 | cp $(DIR_SRC)/config/cfgroot/connscheduler.conf $(CONFIG_ROOT)/connscheduler | |
87 | cp $(DIR_SRC)/config/extrahd/* $(CONFIG_ROOT)/extrahd/bin/ | |
88 | cp $(DIR_SRC)/config/cfgroot/sensors-settings $(CONFIG_ROOT)/sensors/settings | |
89 | cp $(DIR_SRC)/config/menu/* $(CONFIG_ROOT)/menu.d/ | |
90 | cp $(DIR_SRC)/config/cfgroot/modem-defaults $(CONFIG_ROOT)/modem/defaults | |
91 | cp $(DIR_SRC)/config/cfgroot/modem-settings $(CONFIG_ROOT)/modem/settings | |
92 | cp $(DIR_SRC)/config/cfgroot/net-traffic-lib.pl $(CONFIG_ROOT)/net-traffic/net-traffic-lib.pl | |
93 | cp $(DIR_SRC)/config/cfgroot/net-traffic-admin.pl $(CONFIG_ROOT)/net-traffic/net-traffic-admin.pl | |
94 | cp $(DIR_SRC)/config/cfgroot/nfs-server $(CONFIG_ROOT)/nfs/nfs-server | |
95 | cp $(DIR_SRC)/config/cfgroot/proxy-acl $(CONFIG_ROOT)/proxy/acl-1.4 | |
96 | cp $(DIR_SRC)/config/qos/* $(CONFIG_ROOT)/qos/bin/ | |
97 | cp $(DIR_SRC)/config/cfgroot/ssh-settings $(CONFIG_ROOT)/remote/settings | |
98 | cp $(DIR_SRC)/config/cfgroot/time-settings $(CONFIG_ROOT)/time/settings | |
99 | cp $(DIR_SRC)/config/cfgroot/logging-settings $(CONFIG_ROOT)/logging/settings | |
100 | cp $(DIR_SRC)/config/cfgroot/useragents $(CONFIG_ROOT)/proxy/advanced | |
101 | cp $(DIR_SRC)/config/cfgroot/ethernet-vlans $(CONFIG_ROOT)/ethernet/vlans | |
102 | cp $(DIR_SRC)/langs/list $(CONFIG_ROOT)/langs/ | |
103 | cp $(DIR_SRC)/config/forwardfw/rules.pl $(CONFIG_ROOT)/forward/bin/rules.pl | |
104 | cp $(DIR_SRC)/config/forwardfw/convert-xtaccess /usr/sbin/convert-xtaccess | |
105 | cp $(DIR_SRC)/config/forwardfw/convert-outgoingfw /usr/sbin/convert-outgoingfw | |
106 | cp $(DIR_SRC)/config/forwardfw/p2protocols $(CONFIG_ROOT)/forward/p2protocols | |
107 | cp $(DIR_SRC)/config/forwardfw/firewall-lib.pl $(CONFIG_ROOT)/forward/bin/firewall-lib.pl | |
108 | cp $(DIR_SRC)/config/forwardfw/firewall-policy /usr/sbin/firewall-policy | |
109 | cp $(DIR_SRC)/config/fwhosts/icmp-types $(CONFIG_ROOT)/fwhosts/icmp-types | |
110 | cp $(DIR_SRC)/config/fwhosts/customservices $(CONFIG_ROOT)/fwhosts/customservices | |
111 | # Oneliner configfiles | |
112 | echo "ENABLED=off" > $(CONFIG_ROOT)/vpn/settings | |
113 | echo "VPN_DELAYED_START=0" >>$(CONFIG_ROOT)/vpn/settings | |
114 | echo "01" > $(CONFIG_ROOT)/certs/serial | |
115 | echo "nameserver 1.2.3.4" > $(CONFIG_ROOT)/ppp/fake-resolv.conf | |
116 | echo "DROPNEWNOTSYN=on" >> $(CONFIG_ROOT)/optionsfw/settings | |
117 | echo "DROPINPUT=on" >> $(CONFIG_ROOT)/optionsfw/settings | |
118 | echo "DROPFORWARD=on" >> $(CONFIG_ROOT)/optionsfw/settings | |
119 | echo "FWPOLICY=DROP" >> $(CONFIG_ROOT)/optionsfw/settings | |
120 | echo "FWPOLICY1=DROP" >> $(CONFIG_ROOT)/optionsfw/settings | |
121 | echo "DROPPORTSCAN=on" >> $(CONFIG_ROOT)/optionsfw/settings | |
122 | echo "DROPOUTGOING=on" >> $(CONFIG_ROOT)/optionsfw/settings | |
123 | echo "SHOWREMARK=on" >> $(CONFIG_ROOT)/optionsfw/settings | |
124 | echo "SHOWCOLORS=off" >> $(CONFIG_ROOT)/optionsfw/settings | |
125 | echo "SHOWTABLES=on" >> $(CONFIG_ROOT)/optionsfw/settings | |
126 | echo "SHOWDROPDOWN=off" >> $(CONFIG_ROOT)/optionsfw/settings | |
127 | echo "POLICY=MODE2" >> $(CONFIG_ROOT)/forward/settings | |
128 | echo "POLICY1=MODE2" >> $(CONFIG_ROOT)/forward/settings | |
129 | ||
130 | # set rules.pl executable | |
131 | chmod 755 $(CONFIG_ROOT)/forward/bin/rules.pl | |
132 | ||
133 | # set converters executable | |
134 | chmod 755 /usr/sbin/convert-* | |
135 | ||
136 | # Modify variables in header.pl | |
137 | sed -i -e "s+CONFIG_ROOT+$(CONFIG_ROOT)+g" \ | |
138 | -e "s+VERSION+$(VERSION)+g" \ | |
139 | $(CONFIG_ROOT)/header.pl | |
140 | ||
141 | # Modify variables in general-functions.pl | |
142 | sed -i -e "s+CONFIG_ROOT+$(CONFIG_ROOT)+g" \ | |
143 | -e "s+VERSION+$(VERSION)+g" \ | |
144 | $(CONFIG_ROOT)/general-functions.pl | |
145 | ||
146 | # Modify CONFIG_ROOT in lang.pl | |
147 | sed -i -e "s+CONFIG_ROOT+$(CONFIG_ROOT)+g" \ | |
148 | $(CONFIG_ROOT)/lang.pl | |
149 | ||
150 | # Language files | |
151 | cp $(DIR_SRC)/langs/*/cgi-bin/*.pl $(CONFIG_ROOT)/langs/ | |
152 | ||
153 | # Configroot permissions | |
154 | chown -R nobody:nobody $(CONFIG_ROOT) | |
155 | chown root:root $(CONFIG_ROOT) | |
156 | for i in backup/ header.pl general-functions.pl lang.pl addon-lang/ langs/ red/ ; do \ | |
157 | chown -R root:root $(CONFIG_ROOT)/$$i; \ | |
158 | done | |
159 | chown root:nobody $(CONFIG_ROOT)/dhcpc | |
160 | ||
161 | ||
162 | @$(POSTBUILD) |