Regex is cool. But have you ever tried to grep IPv4 / IPv6 Adresses from a File or extract from a bunch of data ? Did you use Google Search and found lot of Links, Tip’s and Examples ? And non of them worked well ?
I can highly recommend CyberChef for stuff like that … https://gchq.github.io/CyberChef/
If you wanna use Regex in your own Scripts, here is a little Extract from Cyberchef.
We’re all dealing with MAC Addresses, some times … there are different formats on different systems. this little script convert it to all formats and you can choise the appropriate ones.
$ maconvert aa:bb:cc:dd:ee:ff
aabbccddeeff
aa:bb:cc:dd:ee:ff
aa-bb-cc-dd-ee-ff
aabb.ccdd.eeff
Copy/Paste will work on OpenBSD, Linux needs some small Modifications (as there is no doas for example …)
doas su -
cat << 'EOFSCRIPT' > /usr/local/bin/maconvert
#!/usr/bin/env bash
# v0.1, 2021, by Christian Henschel
# v0.2, 2021-12-29, Stöge -> add OpenBSD Support & install gawk if needed
if [ OpenBSD == $(uname -s) ]; then
which gawk &>/dev/null || doas pkg_add gawk
_awk=$(which gawk)
else
_awk=$(which awk)
fi
if [ -z "$1" ]; then
cat <<'EOF'
no mac address entered, valid format are:
cafedeadbeef
cafe.dead.beef
ca:fe:de:ad:be:ef
ca-fe-de-ad-be-ef
EOF
exit 1
else
mac=$(echo $1 | sed -e 's/[.:-]//g')
maccolon=$(echo $mac | $_awk '{gsub(/..\B/,"&:")}1')
macdash=$(echo $mac | $_awk '{gsub(/..\B/,"&-")}1')
macpoint=$(echo $mac | $_awk '{gsub(/....\B/,"&.")}1')
fi
cat <<EOF
$mac
$maccolon
$macdash
$macpoint
EOF
exit 0
EOFSCRIPT
doas chmod 755 /usr/local/bin/maconvert
maconvert
NJoy!
you may know what RPKI is …
It’s a PKI Framework for improving Security for the Internet Routing Infrastructure based on BGP.
As a HomeUser or Small/Medium Size Company, you normally don’t have a Full BGP Table and multipe Upstream Providers. You have one Internet Router or Firewall and you get a Default Route from your ISP.
With OpenBGPD and the current rpki extensions, you “just” need a Full BGP Feed and then, you can filter all invalid ROA’s and keep your Routing (and Internet Access) more Secure.
assuming you have a apu2|apu3|apu4 from pcengines or a virtual machine running on KVM/Qemu. And you don’t have vga/dvi/hdmi whatever kind of video output. of course, you can install and run OpenBSD (or Linux) on this boxes.
write openbsdxx.img to an USB Stick. On MacOS, you can use Balena Etcher for example.
if you wanna install from an USB Stick, set the correct Port and Speed before booting.
We all know the Situation when we’re working on some Maschines, locally or through ssh and asking ourself what ip address we get when reach out the internet.
My Dude “m2m” was so kind to wrote a litte Service years ago.
and you get the anwer, for ipv4 and ipv6 on one page. With IP, PTR, SAS and other information. Without AD, Tracking Cookies and all the other Shit.
apt-get -y update
apt-get -y upgrade
apt-get -y distupgrade
apt-get -y install vim
apt-get install apt-transport-https
echo "deb [trusted=yes] https://packages.netsec.inf.ethz.ch/debian all main" | tee /etc/apt/sources.list.d/scionlab.list
apt-get update
apt-get install scionlab
scionlab-config --host-id=1fcf8axxxxxxxxxxxxxxxxxxxxxxxxxx --host-secret=4ef93cxxxxxxxxxxxxxxxxxxxxxxxxxx
root@scionlab:~# ip address show dev tun0
4: tun0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UNKNOWN group default qlen 100
link/none
inet 10.1.1.52/16 brd 10.1.255.255 scope global tun0
valid_lft forever preferred_lft forever
inet6 fe80::aa8a:c135:f627:bcff/64 scope link stable-privacy
valid_lft forever preferred_lft forever
root@scionlab:~# grep Interfaces -A15 /etc/scion/gen/ISD*/AS*/endhost/topology.json
"Interfaces": {
"1": {
"Bandwidth": 1000,
"ISD_AS": "17-ffaa:0:1107",
"LinkTo": "PARENT",
"MTU": 1472,
"Overlay": "UDP/IPv4",
"PublicOverlay": {
"Addr": "10.1.1.52",
"OverlayPort": 50000
},
"RemoteOverlay": {
"Addr": "10.1.0.1",
"OverlayPort": 50229
}
}
root@scionlab:~# systemctl list-dependencies scionlab.target
scionlab.target
● ├─scion-border-router@17-ffaa_1_d85-1.service
● ├─scion-control-service@17-ffaa_1_d85-1.service
● ├─scion-daemon@17-ffaa_1_d85.service
● └─scion-dispatcher.service
root@scionlab:~# scmp echo -remote 20-ffaa:0:1404,[0.0.0.0]
Using path:
Hops: [17-ffaa:1:d85 1>230 17-ffaa:0:1107 1>4 17-ffaa:0:1102 3>4 17-ffaa:0:1108 2>8 17-ffaa:0:1101 3>2 20-ffaa:0:1401 6>1 20-ffaa:0:1402 2>1 20-ffaa:0:1404] MTU: 1472, NextHop: 127.0.0.1:30042
176 bytes from 20-ffaa:0:1404,[0.0.0.0] scmp_seq=0 time=258.282ms
176 bytes from 20-ffaa:0:1404,[0.0.0.0] scmp_seq=1 time=259.515ms
176 bytes from 20-ffaa:0:1404,[0.0.0.0] scmp_seq=2 time=264.142ms
176 bytes from 20-ffaa:0:1404,[0.0.0.0] scmp_seq=3 time=257.675ms
root@scionlab:~# scmp tr -remote 21-ffaa:0:1501,[0.0.0.0]
Using path:
Hops: [17-ffaa:1:d85 1>230 17-ffaa:0:1107 1>4 17-ffaa:0:1102 3>4 17-ffaa:0:1108 2>8 17-ffaa:0:1101 3>2 20-ffaa:0:1401 4>3 21-ffaa:0:1501] MTU: 1472, NextHop: 127.0.0.1:30042
0 17-ffaa:1:d85,[127.0.0.1] IfID=1 474µs 460µs 303µs
1 17-ffaa:0:1107,[192.33.93.195] IfID=230 9.533ms 10.099ms 9.75ms
2 17-ffaa:0:1107,[192.33.93.195] IfID=1 10.152ms 10.12ms 9.651ms
3 17-ffaa:0:1102,[129.132.121.164] IfID=4 11.151ms 11.874ms 9.675ms
4 17-ffaa:0:1102,[192.33.92.68] IfID=3 10.419ms 11.829ms 11.886ms
5 17-ffaa:0:1108,[195.176.0.11] IfID=4 14.57ms 11.859ms 11.739ms
6 17-ffaa:0:1108,[195.176.28.157] IfID=2 16.276ms 15.704ms 15.417ms
7 17-ffaa:0:1101,[193.247.172.154] IfID=8 15.862ms 16.496ms 16.473ms
8 17-ffaa:0:1101,[193.247.172.130] IfID=3 22.882ms 23.789ms 22.081ms
9 20-ffaa:0:1401,[134.75.250.114] IfID=2 252.212ms 252.403ms 253.067ms
10 20-ffaa:0:1401,[134.75.250.114] IfID=4 253.937ms 251.94ms 251.649ms
11 21-ffaa:0:1501,[202.255.44.48] IfID=3 314.05ms 313.705ms 313.292ms
12 21-ffaa:0:1501,[0.0.0.0] 314.419ms 313.534ms 314.605ms
sha256: 0719a8bbc818ec97a796c90b7de0027ee6905fd5d889d6eb6b500b519b968dcc
sudo apt-get install vlan
root@mint:~# sudo modprobe 8021q
root@mint:~# ifconfig
ens19: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 10.10.18.83 netmask 255.255.255.0 broadcast 10.10.18.255
inet6 2001:db8:1:2:9506:5fcd:1c61:1279 prefixlen 64 scopeid 0x0<global>
inet6 2001:db8:1:2:a9:c50b:1348:1ec6 prefixlen 64 scopeid 0x0<global>
inet6 2001:db8:1:2:e064:b0ec:a08f:7fd8 prefixlen 64 scopeid 0x0<global>
inet6 2001:db8:1:2:a015:7ec:eef0:1a75 prefixlen 64 scopeid 0x0<global>
inet6 2001:db8:1:2:a028:b890:ffe8:5231 prefixlen 64 scopeid 0x0<global>
inet6 2001:db8:1:2:c80:addb:1273:95d5 prefixlen 64 scopeid 0x0<global>
inet6 fe80::9cc2:b22d:cc15:2946 prefixlen 64 scopeid 0x20<link>
ether 4e:e5:10:00:06:83 txqueuelen 1000 (Ethernet)
RX packets 181 bytes 58337 (58.3 KB)
RX errors 0 dropped 7 overruns 0 frame 0
TX packets 271 bytes 48413 (48.4 KB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 138 bytes 13723 (13.7 KB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 138 bytes 13723 (13.7 KB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
root@mint:~# vconfig add ens19 158
Added VLAN with VID == 158 to IF -:ens18:-
root@mint:~#
root@mint:~# ip addr add 100.60.100.83/24 dev ens19.158
root@mint:~#
root@mint:~# ip link set up ens19.158
root@mint:~#
sudo su -c 'echo "8021q" >> /etc/modules'
/etc/network/interfaces
auto ens19.158
iface ens19.158 inet static
address 100.60.100.83
netmask 255.255.255.0
vlan-raw-device ens19.158
up route add -net 10.0.0.0 netmask 255.0.0.0 gw 100.60.100.1
sha256: e69d61613b45307405014943049154d70c8cf140d2a3bcf5bbf7679fbefa798f
https://docs.librenms.org/Installation/Installation-Ubuntu-1804-Apache/
apt-get install acl apache2 borgbackup curl fping hping3 htop ipcalc jq lftp lynx mlocate mtr nmap pwgen rsync sipcalc tmate tree tshark unzip vim vnstat wget zip curl apache2 composer fping git graphviz imagemagick python-memcache python-mysqldb rrdtool snmp snmpd whois mariadb-client mariadb-server mtr-tiny nmap libapache2-mod-php7.3
apt-get install php7.3-cli php7.3-curl php7.3-gd php7.3-json php7.3-mbstring php7.3-mysql php7.3-snmp php7.3-xml php7.3-zip
useradd librenms -d /opt/librenms -M -r
usermod -a -G librenms www-data
cd /opt
git clone https://github.com/librenms/librenms.git
chown -R librenms:librenms /opt/librenms
chmod 770 /opt/librenms
setfacl -d -m g::rwx /opt/librenms/rrd /opt/librenms/logs /opt/librenms/bootstrap/cache/ /opt/librenms/storage/
setfacl -R -m g::rwx /opt/librenms/rrd /opt/librenms/logs /opt/librenms/bootstrap/cache/ /opt/librenms/storage/
su - librenms
./scripts/composer_wrapper.php install --no-dev
exit
systemctl restart mysql
mysql -uroot -p
CREATE DATABASE librenms CHARACTER SET utf8 COLLATE utf8_unicode_ci;
CREATE USER 'librenms'@'localhost' IDENTIFIED BY 'password';
GRANT ALL PRIVILEGES ON librenms.* TO 'librenms'@'localhost';
FLUSH PRIVILEGES;
exit
vi /etc/mysql/mariadb.conf.d/50-server.cnf
Within the [mysqld] section please add:
innodb_file_per_table=1
lower_case_table_names=0
systemctl restart mysql
vi /etc/php/7.3/apache2/php.ini
[Date]
date.timezone = Europe/Zurich
vi /etc/php/7.3/cli/php.ini
[Date]
date.timezone = Europe/Zurich
a2enmod php7.3
a2dismod mpm_event
a2enmod mpm_prefork
cat << EOF > /etc/apache2/sites-available/librenms.conf
<VirtualHost *:80>
DocumentRoot /opt/librenms/html/
ServerName host211.planet
AllowEncodedSlashes NoDecode
<Directory "/opt/librenms/html/">
Require all granted
AllowOverride All
Options FollowSymLinks MultiViews
</Directory>
</VirtualHost>
EOF
a2ensite librenms.conf
a2enmod rewrite
systemctl restart apache2
cp /opt/librenms/snmpd.conf.example /etc/snmp/snmpd.conf
vi /etc/snmp/snmpd.conf
curl -o /usr/bin/distro https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/distro
chmod +x /usr/bin/distro
systemctl restart snmpd
cp /opt/librenms/librenms.nonroot.cron /etc/cron.d/librenms
cp /opt/librenms/misc/librenms.logrotate /etc/logrotate.d/librenms
http://host211.planet/install.php
chown librenms:librenms /opt/librenms/config.php
sha256: 9f39db52f8279c0fbb2f3072bc1da003c2334bb210d5aef9a3878e7ff55fbd13