==================重新啟動 sudo systemctl stop serial-getty@ttyS0.service sudo systemctl disable serial-getty@ttyS0.service sudo cp /etc/resolv.conf.bak /etc/resolv.conf sudo /etc/init.d/networking restart sudo systemctl stop noip2.service sudo systemctl status noip2.service sudo systemctl start noip2.service sudo systemctl restart xl2tpd.service sudo systemctl restart ipsec.service ==================重新啟動 ==================備份壓縮 tar -zcf /var/backups/home.tgz /home/ tar -zcf varx96.tgz /var/www/html/x96/ tar -zcf /var/www/html/x96/home.tgz /home/hckao/ ==================備份壓縮 ==================阻擋ping sudo iptables -A INPUT -p ICMP --icmp-type 8 -j DROP #sudo iptables -L INPUT -n --line-numbers sudo iptables -A INPUT -s 85.209.0.0/24 -j DROP sudo iptables -A INPUT -s 111.198.159.0/24 -j DROP sudo iptables -A INPUT -s 161.97.94.0/24 -j DROP #----------------------------------- # sudo iptables -L INPUT -n --line-numbers #show出行號 # sudo iptables -L --line-numbers #刪除第幾行的規則, INPUT 必須是大寫 #iptables -D INPUT 3 ==================阻擋ping ==================更改ip sudo nano /etc/ipsec.conf sudo nano /etc/ipsec.d/ikev2.conf sudo nano /etc/xl2tpd/xl2tpd.conf ==================更改ip ==================增加使用者 L2tp sudo cat /etc/ppp/chap-secrets ipsec su cd /etc/ipsec.d nano passwd 指令 openssl passwd -1 'your_vpn_password_1' 實際操作 hckao@x96:/etc$ sudo openssl passwd -1 kbt236 ikev2在home目錄裡面 ==============增加使用者===== ==============mrtg教學===== 首次 sudo cfgmaker --global "WorkDir: /var/www/html/mrtg" \ --global "Options[_]: growright,bits" \ kbt236@asuskao.ddns.net | grep -v "/var/www/html/mrtg" > /etc/mrtg.cfg 新增第二台機器 sudo cfgmaker --global "WorkDir: /var/www/html/mrtg" \ --global "Options[_]: growright,bits" \ kbt236@kaovpn.ddns.net | grep -v "/var/www/html/mrtg" >> /etc/mrtg.cfg indexmaker /etc/mrtg.cfg > /var/www/html/mrtg/index.html snmpwalk -v 2c -c kbt236 192.168.9.200 ==============mrtg教學===== ==============log file 教學 ===== 56 23 26 * * sudo cp /var/log/auth.log /var/www/html/vpn/daily/backup/01-auth-all_$(date '+%Y%m%d').log 56 23 26 * * sudo cp /var/log/syslog /var/www/html/vpn/daily/backup/01-syslog-all_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/syslog | grep l2tp > /var/www/html/vpn/daily/backup/02-syslog-l2tp_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/syslog | grep pppd > /var/www/html/vpn/daily/backup/03-syslog-pppd_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/syslog | grep openvpn > /var/www/html/vpn/daily/backup/04-syslog-openvpn_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/syslog | grep established > /var/www/html/vpn/daily/backup/051-上線時間_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/syslog | grep control_finish > /var/www/html/vpn/daily/backup/052-結束時間_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/syslog | grep minutes > /var/www/html/vpn/daily/backup/053-連線時間_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep traffic > /var/www/html/vpn/daily/backup/054-使用流量_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep instance > /var/www/html/vpn/daily/backup/055-上線離線時間_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep responding > /var/www/html/vpn/daily/backup/06-user-ip_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep ADDR > /var/www/html/vpn/daily/backup/061-使用者區域網路ip_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep traffic > /var/www/html/vpn/daily/backup/07-user-traffic_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep ikev > /var/www/html/vpn/daily/backup/08-ikev-all_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep psk > /var/www/html/vpn/daily/backup/09-psk-all_$(date '+%Y%m%d').log 56 23 26 * * sudo cat /var/log/auth.log | grep l2tp > /var/www/html/vpn/daily/backup/10-l2tp-all_$(date '+%Y%m%d').log /usr/libexec/softether/vpnserver/server_log _$(date '+%Y%m%d') sudo cat /usr/libexec/softether/vpnserver/server_log/vpn_$(date '+%Y%m%d').log refused connect from 46.19.139.42 (46.19.139.42) ==============log file 教學 ===== ============== 教學網站 ===== https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/README-zh.md 中文 配置 IKEv2 VPN 客户端(推荐) https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/ikev2-howto-zh.md 配置 IPsec/L2TP VPN 客户端 https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients-zh.md 配置 IPsec/XAuth ("Cisco IPsec") VPN 客户端 https://github.com/hwdsl2/setup-ipsec-vpn/blob/master/docs/clients-xauth-zh.md ============== 教學網站 ===== ==============log file 教學 ===== sudo cat /var/log/auth.log | grep ssh > /var/www/html/x96/authssh.txt sudo cat /var/log/auth.log | grep l2tp > /var/www/html/x96/auth_l2tp.txt sudo cat /var/log/auth.log | grep ike > /var/www/html/x96/auth_ikev2.txt sudo cat /var/log/auth.log | grep ipsec > /var/www/html/x96/auth_ipsec.txt sudo cat /var/log/auth.log | grep ike > /var/www/html/x96/auth__ikev2.txt sudo cat /var/log/syslog | grep pptp > /var/www/html/x96/syslog_pptp.txt sudo cat /var/log/syslog | grep ppp > /var/www/html/x96/syslog_ppp.txt ==============log file 教學 ===== ============== Transmission BT 教學 ===== service transmission-daemon start service transmission-daemon stop http://192.168.9.249:9091/transmission ============== Transmission BT 教學 ===== ============== 開機掛上硬碟 教學 ===== ================================================ 檢查硬碟uuid 命令查看:blkid. 文件查看:ls -l /dev/disk/by-uuid. 命令查看:vol_id /dev/sda1. https://www.itread01.com/articles/1490396402.html 3) 另一種實現開機自動掛載的方法: 修改 /etc/rc.local 文件, 加入: for dev in $(ls -1 /dev/disk/by-label/* | grep -v EFI) ; do label=$(basename $dev) mkdir -p /media/$label $(mount | grep -q /media/$label) || mount $dev /media/$label done ================================================ /dev/sda1: UUID="6040ff3e-22f1-4771-8d85-8a410f2c4f44" TYPE="ext4" PARTUUID="58a0bac8-01" 所用裝置 可開機 Start 結束 磁區 Size Id 類型 /dev/sda1 * 2048 250068991 250066944 119.2G 83 Linux ================================================ /dev/sdb1: UUID="b4037380-b40e-4aea-96c8-a3b1513a143b" TYPE="ext4" PARTUUID="367ae1fe-01" 所用裝置 可開機 Start 結束 磁區 Size Id 類型 /dev/sdb1 2048 3907028991 3907026944 1.8T 83 Linux UUID=b4037380-b40e-4aea-96c8-a3b1513a143b /media/shivam/ssd ext4 defaults 0 0 ================================================================================================ 1 – Write down the UUID of the drive that you want to mount by executing the following command: sudo blkid 2 – Then edit the fstab: sudo gedit /etc/fstab 3 – Add at the end of the file fstab: UUID=173179g9-49e1-41fb-b821-76c60102fc9f /media/share ext4 defaults 0 0 Be sure the UUID matches what you recorded in the first step 4 – Restart ============== 開機掛上硬碟 教學 ===== ============== exfat for ubuntu ===== sudo add-apt-repository universe sudo apt update sudo apt install exfat-fuse exfat-utils ============== exfat for ubuntu ===== ======================================================== E: 有部份套件檔無法取得,試著執行 apt-get update 或者試著加上 --fix-missing 選項? ======================================================== =============重新啟動mrtg 的流程======================== hckao@H96PLUS:~$ cd /etc/init.d hckao@H96PLUS:/etc/init.d$ ps -ax | grep mrtg 3223 ? Ss 0:00 /usr/bin/perl -w /usr/bin/mrtg /etc/mrtg.cfg 3578 pts/0 S+ 0:00 grep --color=auto mrtg hckao@H96PLUS:/etc/init.d$ sudo kill 3223 hckao@H96PLUS:/etc/init.d$ sudo env LANG=C /usr/bin/mrtg /etc/mrtg.cfg Daemonizing MRTG ... sudo cfgmaker kbt236@asuskao.ddns.net > /etc/mrtgtest.cfg indexmaker /etc/mrtg.cfg > /var/www/html/mrtg/index.html snmpwalk -v 2c -c kbt236 192.168.9.200 snmpwalk -v 2c -c kbt236 114.34.34.104 # Created by hckao ### Global Config Options # for Debian WorkDir: /var/www/html/mrtg EnableIPv6: no Options[_]: growright,bits RunAsDaemon: Yes Interval: 5 ======================================================== ===============磁碟( HDD & SSD )速度檢測=============== 命令 sudo hdparm -tt /dev/sdb1 (sda) 結果(4T HDD) /dev/sdb1: Timing buffered disk reads: 468 MB in 3.05 seconds = 153.36 MB/sec 結果(240G SSD) /dev/sda1: Timing buffered disk reads: 278 MB in 3.00 seconds = 92.59 MB/sec ===============磁碟( HDD & SSD )速度檢測=============== ======================================================== ===============磁碟( HDD & SSD )溫度檢測=============== 使用 hddtemp 測試硬碟溫度 如果還沒安裝那就安裝先吧 $ sudo apt-get install hddtemp 檢測硬碟溫度 $ sudo hddtemp /dev/sda /dev/sda: st31000528as: 25°c ===============磁碟( HDD & SSD )溫度檢測=============== ======================================================== ===============ufw=============== sudo apt install ufw sudo ufw allow Bind9 ===============ufw=============== ================================================================================================================ ============== owncloud 檔案存放位置 =============== ======================================================== ./www/owncloud/data/6932/files/Music/張學友flac ============== owncloud 檔案存放位置 =============== ======================================================== ============== 查詢 ubuntu 版本 =============== ======================================================== root@H96P:/etc# cat /proc/version Linux version 5.5.0-rc6-aml-s9xxx (root@vbox) (gcc version 8.3.0 (GNU Toolchain for the A-profile Architecture 8.3-2019.03 (arm-rel-8.36))) #rc1.037 SMP PREEMPT Wed Feb 5 17:28:41 MSK 2020 # # root@H96P:/etc# uname -a Linux H96P 5.5.0-rc6-aml-s9xxx #rc1.037 SMP PREEMPT Wed Feb 5 17:28:41 MSK 2020 aarch64 aarch64 aarch64 GNU/Linux # # root@H96P:/etc# lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description: Ubuntu 18.04.6 LTS Release: 18.04 Codename: bionic ========= BT 種子存放目錄=============================== :/var/lib/transmission-daemon/.config/transmission-daemon/torrents# 且只有root有權限 ======================================================== ======================================================== ======================================================== ======================================================== ======================================================== ======================================================== ========================================================