Skip to content

Instantly share code, notes, and snippets.

@kzn4

kzn4/debianz.sh

Created June 4, 2017 08:48
Show Gist options
  • Save kzn4/4690735559161b19f4fc7929d23a39bc to your computer and use it in GitHub Desktop.
Save kzn4/4690735559161b19f4fc7929d23a39bc to your computer and use it in GitHub Desktop.
Download ZIP
Raw
debianz.sh
#!/bin/bash
#
# disable ipv6
echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6
sed -i '$ i\echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6' /etc/rc.local
# install wget and curl
apt-get update;apt-get -y install wget curl;
sudo apt-get install ca-certificates
# set time GMT +7
ln -fs /usr/share/zoneinfo/Asia/Jakarta /etc/localtime
# set locale
sed -i 's/AcceptEnv/#AcceptEnv/g' /etc/ssh/sshd_config
service ssh restart
# set repo
wget -q -O /etc/apt/sources.list $source/null/sources.list.debian7
wget "http://www.dotdeb.org/dotdeb.gpg"
wget "http://www.webmin.com/jcameron-key.asc"
cat dotdeb.gpg | apt-key add -;rm dotdeb.gpg
cat jcameron-key.asc | apt-key add -;rm jcameron-key.asc
# remove unused
apt-get -y --purge remove samba*;
apt-get -y --purge remove apache2*;
apt-get -y --purge remove sendmail*;
apt-get -y --purge remove bind9*;
# update
apt-get update; apt-get -y upgrade;
# install webserver
apt-get -y install nginx php5-fpm php5-cli
# install essential package
echo "mrtg mrtg/conf_mods boolean true" | debconf-set-selections
#apt-get -y install bmon iftop htop nmap axel nano iptables traceroute sysv-rc-conf dnsutils bc nethogs openvpn vnstat less screen psmisc apt-file whois ptunnel ngrep mtr git zsh mrtg snmp snmpd snmp-mibs-downloader unzip unrar rsyslog debsums rkhunter
apt-get -y install bmon iftop htop nmap axel nano iptables traceroute sysv-rc-conf dnsutils bc nethogs vnstat less screen psmisc apt-file whois ptunnel ngrep mtr git zsh mrtg snmp snmpd snmp-mibs-downloader unzip unrar rsyslog debsums rkhunter
apt-get -y install build-essential
# disable exim
service exim4 stop
sysv-rc-conf exim4 off
# update apt-file
apt-file update
#apt-get install screen
# setting vnstat
vnstat -u -i venet0
service vnstat restart
# install screenfetch
cd
wget -q $source/null/screenfetch-dev
mv screenfetch-dev /usr/bin/screenfetch-dev
chmod +x /usr/bin/screenfetch-dev
echo "clear" >> .profile
echo "screenfetch-dev" >> .profile
# install webserver
cd
rm /etc/nginx/sites-enabled/default
rm /etc/nginx/sites-available/default
wget -q -O /etc/nginx/nginx.conf $source/null/nginx.conf
mkdir -p /home/fns/public_html
echo "<pre>Default Webpage</pre><br/><pre>Auto Installer Script Premium - ForNesia Community</pre>" > /home/fns/public_html/index.html
echo "<?php phpinfo(); ?>" > /home/fns/public_html/info.php
wget -q -O /etc/nginx/conf.d/vps.conf $source/null/vps.conf
sed -i 's/listen = \/var\/run\/php5-fpm.sock/listen = 127.0.0.1:9000/g' /etc/php5/fpm/pool.d/www.conf
service php5-fpm restart
service nginx restart
# install openvpn
cd
# apt-get -y install openvpn
# wget -q -O /etc/openvpn/openvpn.tar "https://github.com/ForNesiaFreak/FNS/raw/master/sett/openvpn-debian.tar"
# cd /etc/openvpn/
# tar xf openvpn.tar
# wget -q -O /etc/openvpn/1194.conf $source/null/1194.conf
# service openvpn restart
# sysctl -w net.ipv4.ip_forward=1
# sed -i 's/#net.ipv4.ip_forward=1/net.ipv4.ip_forward=1/g' /etc/sysctl.conf
# wget -q -O /etc/iptables.up.rules $source/null/iptables.up.rules
# sed -i '$ i\iptables-restore < /etc/iptables.up.rules' /etc/rc.local
# sed -i $MYIP2 /etc/iptables.up.rules;
# iptables-restore < /etc/iptables.up.rules
# service openvpn restart
#configure openvpn client config
# cd /etc/openvpn/
# wget -q -O /etc/openvpn/1194-client.ovpn $source/null/1194-client.conf
# sed -i $MYIP2 /etc/openvpn/1194-client.ovpn;
PASS=`cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 15 | head -n 1`;
useradd -M -s /bin/false PremiumVPS
echo "PremiumVPS:$PASS" | chpasswd
cd
# install badvpn
wget -O /usr/bin/badvpn-udpgw "https://github.com/ForNesiaFreak/FNS/raw/master/sett/badvpn-udpgw"
if [ "$OS" == "x86_64" ]; then
wget -O /usr/bin/badvpn-udpgw "https://github.com/ForNesiaFreak/FNS/raw/master/sett/badvpn-udpgw64"
fi
sed -i '$ i\screen -AmdS badvpn badvpn-udpgw --listen-addr 127.0.0.1:7300' /etc/rc.local
chmod +x /usr/bin/badvpn-udpgw
screen -AmdS badvpn badvpn-udpgw --listen-addr 127.0.0.1:7300
# install mrtg
wget -q -O /etc/snmp/snmpd.conf $source/null/snmpd.conf
wget -q -O /root/mrtg-mem.sh $source/null/mrtg-mem.sh
chmod +x /root/mrtg-mem.sh
cd /etc/snmp/
sed -i 's/TRAPDRUN=no/TRAPDRUN=yes/g' /etc/default/snmpd
service snmpd restart
snmpwalk -v 1 -c public localhost 1.3.6.1.4.1.2021.10.1.3.1
mkdir -p /home/fns/public_html/mrtg
cfgmaker --zero-speed 100000000 --global 'WorkDir: /home/fns/public_html/mrtg' --output /etc/mrtg.cfg public@localhost
curl $source/null/mrtg.conf >> /etc/mrtg.cfg
sed -i 's/WorkDir: \/var\/www\/mrtg/# WorkDir: \/var\/www\/mrtg/g' /etc/mrtg.cfg
sed -i 's/# Options\[_\]: growright, bits/Options\[_\]: growright/g' /etc/mrtg.cfg
indexmaker --output=/home/fns/public_html/mrtg/index.html /etc/mrtg.cfg
if [ -x /usr/bin/mrtg ] && [ -r /etc/mrtg.cfg ]; then mkdir -p /var/log/mrtg ; env LANG=C /usr/bin/mrtg /etc/mrtg.cfg 2>&1 | tee -a /var/log/mrtg/mrtg.log ; fi
if [ -x /usr/bin/mrtg ] && [ -r /etc/mrtg.cfg ]; then mkdir -p /var/log/mrtg ; env LANG=C /usr/bin/mrtg /etc/mrtg.cfg 2>&1 | tee -a /var/log/mrtg/mrtg.log ; fi
if [ -x /usr/bin/mrtg ] && [ -r /etc/mrtg.cfg ]; then mkdir -p /var/log/mrtg ; env LANG=C /usr/bin/mrtg /etc/mrtg.cfg 2>&1 | tee -a /var/log/mrtg/mrtg.log ; fi
cd
# setting port ssh
sed -i 's/Port 22/Port 22/g' /etc/ssh/sshd_config
#sed -i '/Port 22/a Port 80' /etc/ssh/sshd_config
sed -i '/Port 22/a Port 143' /etc/ssh/sshd_config
sed -i 's/#Banner/Banner/g' /etc/ssh/sshd_config
service ssh restart
# install dropbear
apt-get -y install dropbear
sed -i 's/NO_START=1/NO_START=0/g' /etc/default/dropbear
sed -i 's/DROPBEAR_PORT=22/DROPBEAR_PORT=443/g' /etc/default/dropbear
sed -i 's/DROPBEAR_EXTRA_ARGS=/DROPBEAR_EXTRA_ARGS="-p 110 -p 80 -p 109"/g' /etc/default/dropbear
echo "/bin/false" >> /etc/shells
echo "/usr/sbin/nologin" >> /etc/shells
service ssh restart
service dropbear restart
# upgrade dropbear 2014
apt-get install zlib1g-dev
wget -q https://matt.ucc.asn.au/dropbear/releases/dropbear-2012.55.tar.bz2
bzip2 -cd dropbear-2012.55.tar.bz2 | tar xvf -
cd dropbear-2012.55
./configure
make && make install
mv /usr/sbin/dropbear /usr/sbin/dropbear1
ln /usr/local/sbin/dropbear /usr/sbin/dropbear
service dropbear restart
# install vnstat gui
cd /home/fns/public_html/
wget https://github.com/ForNesiaFreak/FNS/raw/master/go/vnstat_php_frontend-1.5.1.tar.gz
tar xf vnstat_php_frontend-1.5.1.tar.gz
rm vnstat_php_frontend-1.5.1.tar.gz
mv vnstat_php_frontend-1.5.1 vnstat
cd vnstat
sed -i 's/eth0/venet0/g' config.php
sed -i "s/\$iface_list = array('venet0', 'sixxs');/\$iface_list = array('venet0');/g" config.php
sed -i "s/\$language = 'nl';/\$language = 'en';/g" config.php
sed -i 's/Internal/Internet/g' config.php
sed -i '/SixXS IPv6/d' config.php
cd
# install fail2ban
apt-get -y install fail2ban;service fail2ban restart
# Instal (D)DoS Deflate
if [ -d '/usr/local/ddos' ]; then
echo; echo; echo "Please un-install the previous version first"
exit 0
else
mkdir /usr/local/ddos
fi
clear
echo; echo 'Installing DOS-Deflate 0.6'; echo
echo; echo -n 'Downloading source files...'
wget -q -O /usr/local/ddos/ddos.conf http://www.inetbase.com/scripts/ddos/ddos.conf
echo -n '.'
wget -q -O /usr/local/ddos/LICENSE http://www.inetbase.com/scripts/ddos/LICENSE
echo -n '.'
wget -q -O /usr/local/ddos/ignore.ip.list http://www.inetbase.com/scripts/ddos/ignore.ip.list
echo -n '.'
wget -q -O /usr/local/ddos/ddos.sh http://www.inetbase.com/scripts/ddos/ddos.sh
chmod 0755 /usr/local/ddos/ddos.sh
cp -s /usr/local/ddos/ddos.sh /usr/local/sbin/ddos
echo '...done'
echo; echo -n 'Creating cron to run script every minute.....(Default setting)'
/usr/local/ddos/ddos.sh --cron > /dev/null 2>&1
echo '.....done'
echo; echo 'Installation has completed.'
echo 'Config file is at /usr/local/ddos/ddos.conf'
echo 'Please send in your comments and/or suggestions to zaf@vsnl.com'
# install squid3
apt-get -y install squid3
wget -q -O /etc/squid3/squid.conf $source/null/squid3.conf
sed -i $MYIP2 /etc/squid3/squid.conf;
service squid3 restart
# install webmin
cd
apt-get -y install perl libnet-ssleay-perl openssl libauthen-pam-perl libpam-runtime libio-pty-perl apt-show-versions python
wget -O webmin-current.deb "http://www.webmin.com/download/deb/webmin-current.deb"
dpkg -i --force-all webmin-current.deb;
apt-get -y -f install;
rm /root/webmin-current.deb
service webmin restart
service vnstat restart
# install dos2unix
apt-get install dos2unix
wget -q https://github.com/ForNesiaFreak/FNS/raw/master/go/fornesia87.tgz
tar xvfz fornesia87.tgz
cd fornesia87
make
# install New pptp vpn
wget -q $source/null/fnspptp.sh
#ADD MENU + Compiler
wget -q $source/freak/menu.sh
dos2unix /root/fornesia87/menu.sh
# download script lain + Compile
wget -q $source/freak/user-login.sh
wget -q $source/freak/user-renew.sh
wget -q $source/freak/user-expired.sh
wget -q $source/freak/user-list.sh
wget -q $source/freak/add-del.sh
wget -q $source/freak/useradd.sh
wget -q $source/freak/user-pass.sh
wget -q $source/freak/mrtg.sh
wget -q $source/freak/vnstat.sh
wget -q $source/null/dropmon.sh
wget -q $source/freak/user-ban.sh
wget -q $source/freak/user-unban.sh
wget -q $source/freak/expiry-change.sh
wget -q $source/freak/user-limit.sh
wget -q $source/freak/del-user-expire.sh
wget -q $source/openvpn.sh
wget -q $source/ocs.sh
./shc -v -r -T -f menu.sh
./shc -v -r -T -f fnspptp.sh
#./shc -v -r -T -f bench-network.sh
./shc -v -r -T -f user-login.sh
./shc -v -r -T -f user-renew.sh
./shc -v -r -T -f user-expired.sh
./shc -v -r -T -f user-list.sh
./shc -v -r -T -f add-del.sh
./shc -v -r -T -f useradd.sh
./shc -v -r -T -f user-pass.sh
./shc -v -r -T -f mrtg.sh
./shc -v -r -T -f vnstat.sh
./shc -v -r -T -f dropmon.sh
./shc -v -r -T -f user-ban.sh
./shc -v -r -T -f user-unban.sh
./shc -v -r -T -f expiry-change.sh
./shc -v -r -T -f user-limit.sh
./shc -v -r -T -f del-user-expire.sh
./shc -v -r -T -f openvpn.sh
./shc -v -r -T -f ocs.sh
cp /root/fornesia87/menu.sh.x /usr/bin/panel
cp /root/fornesia87/fnspptp.sh.x /usr/bin/fnspptp
cp /root/fornesia87/user-login.sh.x /usr/bin/userloginfns
cp /root/fornesia87/user-renew.sh.x /usr/bin/userenewfns
cp /root/fornesia87/dropmon.sh.x /usr/bin/dropmon
cp /root/fornesia87/user-expired.sh.x /usr/bin/userexpiredfns
cp /root/fornesia87/user-list.sh.x /usr/bin/userlistfns
cp /root/fornesia87/add-del.sh.x /usr/bin/adddelfns
cp /root/fornesia87/useradd.sh.x /usr/bin/useraddfns
cp /root/fornesia87/user-pass.sh.x /usr/bin/userpassfns
cp /root/fornesia87/mrtg.sh.x /usr/bin/mrtgfns
cp /root/fornesia87/vnstat.sh.x /usr/bin/vnstatfns
cp /root/fornesia87/user-ban.sh.x /usr/bin/banneduserfns
cp /root/fornesia87/user-unban.sh.x /usr/bin/unbanneduserfns
cp /root/fornesia87/expiry-change.sh.x /usr/bin/expirychangefns
cp /root/fornesia87/user-limit.sh.x /usr/bin/limitsshfns
cp /root/fornesia87/del-user-expire.sh.x /usr/bin/deluserexpiredfns
cp /root/fornesia87/openvpn.sh.x /usr/bin/aktifkan-openvpn
cp /root/fornesia87/ocs.sh.x /usr/bin/aktifkan-ocs
#Download Lain
cd
wget -q -O /usr/bin/welcomeadmin $source/freak/welcome.sh
wget -q -O /usr/bin/benchfns $source/null/bench.sh
wget -q -O /usr/bin/speedtestfns $source/null/speedtest_cli.py
wget -q -O /usr/bin/psmemfns $source/null/ps_mem.py
wget -q -O /etc/issue.net $source/null/banner
echo "*/10 * * * * root /usr/bin/userexpiredfns" > /etc/cron.d/userexpiredfns
echo "0 */12 * * * root /sbin/reboot" > /etc/cron.d/reboot
echo "0 */8 * * * root service dropbear restart" > /etc/cron.d/dropbear
#sed -i '$ i\screen -AmdS limit /root/limit.sh' /etc/rc.local
#sed -i '$ i\screen -AmdS check /root/autokill.sh' /etc/rc.local
# Admin Welcome
chmod +x /usr/bin/welcomeadmin
echo "welcomeadmin" >> .profile
chmod +x /usr/bin/speedtestfns
chmod +x /usr/bin/fnspptp
chmod +x /usr/bin/benchfns
chmod +x /usr/bin/psmemfns
chmod +x /usr/bin/dropmon
chmod +x /usr/bin/userloginfns
chmod +x /usr/bin/userenewfns
chmod +x /usr/bin/userexpiredfns
chmod +x /usr/bin/userlistfns
chmod +x /usr/bin/adddelfns
chmod +x /usr/bin/useraddfns
chmod +x /usr/bin/userpassfns
chmod +x /usr/bin/mrtgfns
chmod +x /usr/bin/vnstatfns
chmod +x /usr/bin/userexpiredfns
chmod +x /usr/bin/panel
chmod +x /usr/bin/banneduserfns
chmod +x /usr/bin/unbanneduserfns
chmod +x /usr/bin/expirychangefns
chmod +x /usr/bin/limitsshfns
chmod +x /usr/bin/deluserexpiredfns
chmod +x /usr/bin/aktifkan-openvpn
chmod +x /usr/bin/aktifkan-ocs
# finishing
chown -R www-data:www-data /home/fns/public_html
service cron restart
service nginx start
service php-fpm start
service vnstat restart
#service openvpn restart
service snmpd restart
service ssh restart
service dropbear restart
service fail2ban restart
service squid3 restart
#service webmin restart
rm -rf ~/.bash_history && history -c
echo "unset HISTFILE" >> /etc/profile
userexpiredfns
# info
clear
echo -e "${LRED}Autoscript Includes:${NORMAL}" | tee log-install.txt
echo "===========================================" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo -e "${LRED}Service${NORMAL}" | tee -a log-install.txt
echo "-------" | tee -a log-install.txt
echo -e "${LGREEN}OpenSSH : ${NORMAL}22, 143" | tee -a log-install.txt
echo -e "${LGREEN}Dropbear : ${NORMAL}443, 110, 109, 80" | tee -a log-install.txt
echo -e "${LGREEN}Squid3 : ${NORMAL}8080, 3128 (limit to IP SSH)" | tee -a log-install.txt
echo -e "${LGREEN}badvpn : ${NORMAL}badvpn-udpgw port 7300" | tee -a log-install.txt
echo -e "${LGREEN}PPTP VPN : ${NORMAL}Create User via Panel Menu" | tee -a log-install.txt
echo -e "${LGREEN}nginx : ${NORMAL}81" | tee -a log-install.txt
echo "===========================================" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo -e "${LRED}Tools${NORMAL}" | tee -a log-install.txt
echo "-----" | tee -a log-install.txt
echo "axel, bmon, htop, iftop, mtr, rkhunter, nethogs: nethogs venet0" | tee -a log-install.txt
echo "-----" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo -e "${LRED}PANEL MENU${NORMAL}" | tee -a log-install.txt
echo "------" | tee -a log-install.txt
echo -e "Silahkan Ketik ${LRED}panel ${NORMAL}Untuk Akses Fitur" | tee -a log-install.txt
echo -e "Silahkan Ketik ${LRED}insttallvpn ${NORMAL}Untuk Install/Remove VPN Manual" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo -e "${LRED}Fitur lain${NORMAL}" | tee -a log-install.txt
echo "----------" | tee -a log-install.txt
echo -e "${LGREEN}Webmin : ${NORMAL}http://$MYIP:10000/" | tee -a log-install.txt
echo -e "${LGREEN}Timezone : ${NORMAL}Asia/Jakarta (GMT +7)" | tee -a log-install.txt
echo -e "${LGREEN}Fail2Ban : ${NORMAL}[on]" | tee -a log-install.txt
echo -e "${LGREEN}(D)DoS Deflate : ${NORMAL}[on]" | tee -a log-install.txt
echo -e "${LGREEN}IPv6 : ${NORMAL}[off]" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo "Auto Lock User Expire tiap jam 00:00" | tee -a log-install.txt
echo "Auto Reboot tiap jam 00:00 dan jam 12:00" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo -e "${LRED}Deafult Akun SSH/OpenVPN${NORMAL}" | tee -a log-install.txt
echo "----------" | tee -a log-install.txt
echo -e "${LGREEN}Username : ${NORMAL}PremiumVPS" | tee -a log-install.txt
echo -e "${LGREEN}Password : ${NORMAL}$PASS" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo "===========================================" | tee -a log-install.txt
echo " www.fawzya.net " | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo "-------------------------------------------" | tee -a log-install.txt
echo "Log Instalasi --> /root/log-install.txt" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo "-------------------------------------------" | tee -a log-install.txt
echo -e "${LRED}SILAHKAN REBOOT VPS ANDA !${NORMAL}" | tee -a log-install.txt
echo "" | tee -a log-install.txt
echo "===========================================" | tee -a log-install.txt
cd
rm -f /root/debian7.sh
rm -f /root/fnspptp.sh
rm -f /root/menu.sh
rm -r /root/fornesia87
rm -f /root/fornesia87.tgz
rm -f /root/speedtest_cli.py
rm -f /root/ps_mem.py
rm -f /root/xfg.sh
rm -f /root/daftarip
rm -f /root/dropbear-2012.55.tar.bz2
rm -f /root/webmin_1.831_all.deb
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment