admin/demo2026-1
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

1

Browse Source
This commit is contained in:
shiraorie
2025-11-01 10:26:59 +05:00
parent 5015e4920a
commit 0c607321d4
5 changed files with 14 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
README.md
View File

@@ -1493,10 +1493,14 @@ htpasswd c /etc/nginx/.htpasswd WEB
>chmod 700 /etc/pki/CA/private
<p align="center">
<img src="picture для варинта 2\mkdir pki.png" width="600" />
</p>
Создайте корневой ключ и сертификат (RSA 4096, SHA256):
openssl req -x509 -new -nodes \
-keyout /etc/pki/CA/private/ca.key \
openssl req -x509 -new -nodes \
-keyout /etc/pki/CA/private/ca.key \
-out /etc/pki/CA/certs/ca.crt \
-days 3650 \
-sha256 \

8
files/br-rtr/nftables.conf
View File

@@ -8,8 +8,8 @@ table inet filter {
log prefix "Dropped Input: " level debug
iif lo accept
ct state established,related accept
tcp dport { 22,514,53,80,443,3015,445,139,88 } accept
udp dport { 53,123,500,4500,88,137 } accept
tcp dport { 22,514,53,80,443,3015,445,139,88,2026,8080 } accept
udp dport { 53,123,500,4500,88,137,8080 } accept
ip protocol icmp accept
ip protocol esp accept
ip protocol gre accept
@@ -20,8 +20,8 @@ table inet filter {
log prefix "Dropped forward: " level debug
iif lo accept
ct state established,related accept
tcp dport { 22,514,53,80,443,3015,445,139,88 } accept
udp dport { 53,123,500,4500,88,137 } accept
tcp dport { 22,514,53,80,443,3015,445,139,88,2026,8080 } accept
udp dport { 53,123,500,4500,88,137,8080 } accept
ip protocol icmp accept
ip protocol esp accept
ip protocol gre accept

8
files/hq-rtr/nftables.conf
View File

@@ -8,8 +8,8 @@ table inet filter {
log prefix "Dropped Input: " level debug
iif lo accept
ct state established,related accept
tcp dport { 22,514,53,80,443,3015,445,139,88 } accept
udp dport { 53,123,500,4500,88,137 } accept
tcp dport { 22,514,53,80,443,3015,445,139,88,2026,8080 } accept
udp dport { 53,123,500,4500,88,137,8080 } accept
ip protocol icmp accept
ip protocol esp accept
ip protocol gre accept
@@ -20,8 +20,8 @@ table inet filter {
log prefix "Dropped forward: " level debug
iif lo accept
ct state established,related accept
tcp dport { 22,514,53,80,443,3015,445,139,88 } accept
udp dport { 53,123,500,4500,88,137 } accept
tcp dport { 22,514,53,80,443,3015,445,139,88,2026,8080 } accept
udp dport { 53,123,500,4500,88,137,8080 } accept
ip protocol icmp accept
ip protocol esp accept
ip protocol gre accept

BIN
images/module2/hosts.png
View File

Binary file not shown.
Side by Side Swipe Overlay

Before

Width:  |  Height:  |  Size: 61 KiB

After

Width:  |  Height:  |  Size: 43 KiB

BIN
picture для варинта 2/mkdir pki.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 49 KiB