Ïðîñòàÿ íàñòðîéêà ðîóòåðà äî òîððåíòîâ

Quote:

Originally Posted by couger

ïîòîìó êàê â ðòîððåíòå òàê íå ñäåëàòü.
íî åñëè ïîìîæåò:

Code:

#!/bin/sh /opt/etc/init.d/S99rtorrent stop sleep 10s /opt/etc/init.d/S99rtorrent start

Ñïàñèáî. À êàê òåïåðü ýòî ñêîðìèòü êðîíó?

Quote:

Originally Posted by ValZ

À äëÿ ÷åãî ñíàðóæè îòêðûò? Åñëè ñòðîêó óäàëèòü, ïðîáëåì íå áóäåò íàäåþñü?

×òîáû ñíàðóæè ìîæíî áûëî óïðàâëÿòü òîððåíòàìè :)
Ïîëàãàþ ÷òî íå áóäåò :)

Quote:

Originally Posted by vit01

Ñïàñèáî. À êàê òåïåðü ýòî ñêîðìèòü êðîíó?

Cîçäàòü ôàéë, íàçíà÷èòü åìó àòòðèáóòû (chmod +x), ïîëîæèòü â äèðåêòîðèþ cron.hourly íàïðèìåð.

Quote:

Originally Posted by fanex

Cîçäàòü ôàéë, íàçíà÷èòü åìó àòòðèáóòû (chmod +x), ïîëîæèòü â äèðåêòîðèþ cron.hourly íàïðèìåð.

Êñòàòè, òâîð÷åñêè ïîêîâûðÿë rtorrent.conf , åñòü òàì êîìàíäà schedule, è íà íå¸ ïîõîæèå ïðèáëóäû âåøàþò, íî êàê çàñòàâèòü äåëàòü òî ÷òî íàäî? Äóìàþ ýòî ïðàâèëüíåå, ÷åì êðîíîì áèòü ïî áàøêå, à çàòåì ðåàíèìèðîâàòü.

Quote:

Originally Posted by ValZ

Áëèí! Êòî èùåò òîò íàéäåò... ðæàë êàê ñëîí... è âåðíî:
â post-firewall íà ñàìîì äåëå òóïî íåò â íà÷àëå #!/bin/sh
È îí åñåñíî òóïî íå âûïîëíÿåòñÿ. -((
Êòî òî òóò ñ òåì æå áèëñÿ.
Âåðíåå äàâàéòå òàê... ïîñìîòðèòå, ÷òîáû ó âàñ òàì áûëî:
#!/bin/sh
iptables -I INPUT -p tcp --dport 8081 -j ACCEPT
iptables -I INPUT -p tcp --dport 51777:51780 -j ACCEPT
iptables -I INPUT -p udp --dport 51777:51780 -j ACCEPT
iptables -A INPUT -p tcp -d 0.0.0.0/0 --dport 51777 -j ACCEPT
iptables -A INPUT -p all -d 0.0.0.0/0 -j DROP

Íó èëè òèïà òîãî. Åäèíñòâåííîå, ÷åãî ÿ íå ïîíÿë, ýòî äëÿ êàêîãî îòêðûâàåòñÿ 8081? ß åå óäàëÿòü íå ñòàë, çàïèñü áûëà â ôàéëå óæå. ×òî ýòî?

Ïðîñòè, à íå ïîäñêàæèòå ïî ïóíêòàì, êàê ñäåëàòü ýòî. Â Ëèíóêñå ÿ ïîëíûé íîëü

Quote:

Originally Posted by Scrooge McDuck

Ïðîñòè, à íå ïîäñêàæèòå ïî ïóíêòàì, êàê ñäåëàòü ýòî. Â Ëèíóêñå ÿ ïîëíûé íîëü

Èñõîäíîå: âàøè ïîðòû 51777:51780 (òàêèå æå, êàê ïðîïèñàííû â íàñòðîéêå â òîððåíòå èëè, ïîñëå óñòàíîâêè ñêðèïîòîì òàêèå ñòîÿëè). Åñëè ó âàñ äðóãèå, òî ïðîñòî ñâîè ïèøåòå âìåñòî ïðèâåäåííûõ.
Òåïåðü çàõîäèì òåëíåòîì íà ðîóòåð (â âèíäå êîìàíäà telnet, äàëåå o 192.168.1.1). íàáèðàåì:
vi /tmp/local/sbin/post-firewall

êëàâèøåé ins ïåðåõîäèøü â ðåäàêòèðîâàíèå... ïèøåøü âñå êàê íèæå â ôàéëå...

#!/bin/sh
iptables -I INPUT -p tcp --dport 8081 -j ACCEPT
iptables -I INPUT -p tcp --dport 51777:51780 -j ACCEPT
iptables -I INPUT -p udp --dport 51777:51780 -j ACCEPT

Íàæèìàåøü esc ÷òîáû âûéòè â ðåæèì êîìàíä... íàáèðàåøü :x è íàæèìàåøü enter
Òåïåðü:
flashfs save
flashfs commit
flashfs enable
reboot
B ïðîâåðÿåøü ïîñëå ïåðåçàãðóçêå, ÷òîáû ïî êîìàíäå iptables -L ó òåáÿ â ñåêöèè "Chain INPUT (policy ACCEPT)" ïîÿâèëèñü ýòè ïîðòû è íàïðîòèâ íèõ íàïèñàííî ACCEPT.
Óñå.

Ãîñïîäà.... êàê âû ïðîïèñûâàåòå ïîëüçîâàòåëåé âî âíåøíþþ ñàìáó?
smbpwd -a user
ðóãàåòñÿ, ÷òî íåò smb.conf â êàòàëîêå /etc
Ïîìîæåò òóäà ln ñäåëàòü? Ìîæåò ïðîùå? Ãäå îíè õðàíÿòñÿ òî ó âíåøíåé? Â /opt/share/samba òîëüêî smb.conf åñòü.
Êîðî÷å... ãäå ëåæèò smbpasswd? Èëè ìîæåò åãî ïðîñòî ñîçäàòü â /opt/share/samba?

À òî äîìà òî ïîëíàÿ øàðà óñòðàèâàåò... à âîò íà ðàáîòå íàäî äîñòóï îãðàíè÷èòü.

Quote:

Originally Posted by Scrooge McDuck

Ïðîñòè, à íå ïîäñêàæèòå ïî ïóíêòàì, êàê ñäåëàòü ýòî. Â Ëèíóêñå ÿ ïîëíûé íîëü

Â ìîåé ïîäïèñè ïðåäïîñëåäíþþ ññûëêó òûðê, è âïåðåä, â íîâûå çíàíèÿ!

Quote:

Originally Posted by ValZ

Ãîñïîäà.... êàê âû ïðîïèñûâàåòå ïîëüçîâàòåëåé âî âíåøíþþ ñàìáó?
smbpwd -a user
ðóãàåòñÿ, ÷òî íåò smb.conf â êàòàëîêå /etc
Ïîìîæåò òóäà ln ñäåëàòü? Ìîæåò ïðîùå? Ãäå îíè õðàíÿòñÿ òî ó âíåøíåé? Â /opt/share/samba òîëüêî smb.conf åñòü.
Êîðî÷å... ãäå ëåæèò smbpasswd? Èëè ìîæåò åãî ïðîñòî ñîçäàòü â /opt/share/samba?

À òî äîìà òî ïîëíàÿ øàðà óñòðàèâàåò... à âîò íà ðàáîòå íàäî äîñòóï îãðàíè÷èòü.

Ñàìáà âñòðîåííàÿ, èëè èç ïàêåòîâ?

Quote:

Originally Posted by vectorm

Ñàìáà âñòðîåííàÿ, èëè èç ïàêåòîâ?

Èç ïàêåòîâ.

ps ïðî âñòðîåííóþ òîæå ïðîñòî ëþáîïûòíî... -) Îíà æ ïåðåçàïèñûâàåò smb.conf êàæäûé ðàç, íî çàòî þçåðîâ çàâîäèò. -))) À êàê òàì smb.conf ñâîé ñîõðàíÿòü?

Quote:

Originally Posted by ValZ

Èç ïàêåòîâ.

ps ïðî âñòðîåííóþ òîæå ïðîñòî ëþáîïûòíî... -) Îíà æ ïåðåçàïèñûâàåò smb.conf êàæäûé ðàç, íî çàòî þçåðîâ çàâîäèò. -))) À êàê òàì smb.conf ñâîé ñîõðàíÿòü?

Â .files äîáàâèòü íàäî /etc/smb.conf

Quote:

Originally Posted by gostest

Íó âåäü íàïèñàíî æå íà 1-îé ñòðàíèöå â 1-îì ïîñòå, ÷òî ýòè ôàéëû ïåðåçàòèðàþòñÿ! Òåïåðü îäèí âàðèàíò - íàïèñàòü èõ ñíîâà.

Äðóã, ÿ ñïðàøèâàë íå ïî÷åìó èõ íåò, à ïî÷åìó íå èñïîëíÿþòñÿ - ñàìè ôàéëû åñòü, â íèõ âñ¸ íåîáõîäèìîå ïðîïèñàíî!!! Íî îíè ïðîñòî íå èñïîëíÿþòñÿ...

Quote:

Originally Posted by ValZ

Áëèí! Êòî èùåò òîò íàéäåò... ðæàë êàê ñëîí... è âåðíî:â post-firewall íà ñàìîì äåëå òóïî íåò â íà÷àëå #!/bin/sh
È îí åñåñíî òóïî íå âûïîëíÿåòñÿ. -((

Äà! Â post-firewall íåò #!/bin/sh. Äîáàâèë. ÍÅ èñïîëíÿåòñÿ...
Åñòü åù¸ âàðèàíòû?!

Åñëè êîíêðåòíåå, òî ÿ äîáàâëÿþ:

iptables -I INPUT -p tcp --dport 8081 -j ACCEPT
iptables -I INPUT -p tcp --dport 22 -j ACCEPT

Äîáàâëÿë êàê â post-boot, òàê, è â post-firewall... Èçâíå íèôèãà íå ðàáîòàåò. Ðàáîòàåò, òîëüêî ïîñëå òîãî, êàê èç äîìàøíåé ñåòè ñ Ïóòòè ïîñûëàòü ýòî, ïîñëå ýòîãî äîñòóï èçâíå âîçìîæåí...

UPD: Ïðîøó ïðîùåíèÿ, âñ¸ äåéñòâèòåëüíî çàðàáîòàëî ñ ïîâòîðíîãî ðåáóòà!!! Ñïàñèáî ValZ!!!

Quote:

Originally Posted by ValZ

B ïðîâåðÿåøü ïîñëå ïåðåçàãðóçêå, ÷òîáû ïî êîìàíäå iptables -L ó òåáÿ â ñåêöèè "Chain INPUT (policy ACCEPT)" ïîÿâèëèñü ýòè ïîðòû è íàïðîòèâ íèõ íàïèñàííî ACCEPT.
Óñå.

Ñïàñèáî, ñäåëàë êàê Âû íàïèñàëè. Âîò òåïåðü ÷òî ïîÿâëÿåòñÿ ïîñëå êîìàíäû iptables -L

Quote:

login as: admin
admin@192.168.1.1's password:
[admin@ASUS500 root]$ iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp dpts:51777:51780
ACCEPT tcp -- anywhere anywhere tcp dpts:51777:51780
ACCEPT tcp -- anywhere anywhere tcp dpt:tproxy
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
logdrop all -- anywhere anywhere state INVALID
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state NEW
ACCEPT all -- anywhere anywhere state NEW
ACCEPT igmp -- anywhere BASE-ADDRESS.MCAST.NET/4
ACCEPT udp -- anywhere BASE-ADDRESS.MCAST.NET/4udp dpt:!upnp
SECURITY all -- anywhere anywhere state NEW
ACCEPT tcp -- anywhere anywhere tcp dpt:ftp
logdrop all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:51777
DROP all -- anywhere anywhere

Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere
logdrop all -- anywhere anywhere state INVALID
ACCEPT udp -- anywhere BASE-ADDRESS.MCAST.NET/4
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
logdrop all -- anywhere anywhere
SECURITY all -- anywhere anywhere state NEW
ACCEPT all -- anywhere anywhere ctstate DNAT
logdrop all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain MACS (0 references)
target prot opt source destination

Chain SECURITY (2 references)
target prot opt source destination
RETURN udp -- anywhere anywhere udp dpts:16002:16254
RETURN tcp -- anywhere anywhere tcp flags:SYN,RST,ACK/SYN limit: avg 1/sec burst 5
RETURN tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5
RETURN udp -- anywhere anywhere limit: avg 5/sec burst 5
RETURN icmp -- anywhere anywhere limit: avg 5/sec burst 5
logdrop all -- anywhere anywhere

Chain logaccept (0 references)
target prot opt source destination
LOG all -- anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `ACCEPT '
ACCEPT all -- anywhere anywhere

Chain logdrop (6 references)
target prot opt source destination
LOG all -- anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `DROP '
DROP all -- anywhere anywhere
[admin@ASUS500 root]$

Quote:

Originally Posted by Scrooge McDuck

Ñïàñèáî, ñäåëàë êàê Âû íàïèñàëè. Âîò òåïåðü ÷òî ïîÿâëÿåòñÿ ïîñëå êîìàíäû iptables -L

Âñå îê. Ïîðòû îòêðûòûå. Èõ æå ïðîïèñûâàéòå â òîðåíòå (ïî äåôîëòó îíè âðîäå è åñòü) è âñå äîëæíî ðàáîòàòü.

Äðóçüÿ, âîò òàêàÿ âîò ïðîáëåìà, êîñâåííî êàñàåìàÿ äàííîé òåìû...
Ïðîøó ïîìîùè...