Ссылки:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 |
https://archlinux.org/ https://wiki.archlinux.org/title/KVM https://wiki.archlinux.org/title/Libvirt https://wiki.archlinux.org/title/Open_vSwitch https://wiki.archlinux.org/title/systemd-networkd https://wiki.archlinux.org/title/systemd-networkd_(%D0%A0%D1%83%D1%81%D1%81%D0%BA%D0%B8%D0%B9) https://habr.com/ru/company/selectel/blog/313150/ https://habr.com/ru/company/ruvds/blog/309010/ https://www.balena.io/etcher/ |
pacman — установка софта
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 |
pacman -Syu - обновления списка пакетов и установка обновлений pacman -Ss name_packeg - поиск пакета pacman -Sy name_packeg - установка пакета pacman -Scc - очистка кэша пакетов sudo pacman -Syu sudo pacman -Sy telegram-desktop sudo pacman -Sy --needed git base-devel zsh htop mc hunspell hunspell-ru hunspell-en_us hunspell-en_gb telegram-desktop docker docker-compose libreoffice-fresh libreoffice-fresh-ru gwenview spectacle peek neofetch ark unzip unrar noto-fonts-emoji element-desktop partitionmanager filelight ntfs-3g adobe-source-han-sans-otc-fonts networkmanager-l2tp strongswan networkmanager-openvpn cups print-manager dnsutils whois wine gnupg keychain bluez bluez-utils net-tools traceroute kgpg inetutils sudo pacman -Sy --needed linssid qalculate-gtk remmina freerdp gtk-vnc pycharm-community-edition gnome-keyring libsecret libgnome-keyring qbittorrent okular sudo pacman -Sy --needed chromium sudo pacman -Sy --needed bash-completion sudo pacman -Ss bash sudo pacman -Ss libvirt sudo pacman -Ss kvm sudo pacman -Sy libvirt virt-install sudo pacman -Si libvirt sudo pacman -Ss sudo pacman -Ss kvm sudo pacman -Si virt-manager sudo pacman -Sy virt-manager sudo pacman -Sy man sudo pacman -Ss openvswitch sudo pacman -Sy openvswitch |
yay
|
1 2 3 4 |
sudo pacman -Sy --needed git base-devil git clone https://aur.archlinux.org/yay.git cd yay/ makepkg -si |
цвет консоли и репы
|
1 2 3 4 5 6 7 8 9 10 11 12 13 |
vim /etc/pacman.conf -------------------- [multilib] Include = /etc/pacman.d/mirrorlist # Misc options #UseSyslog Color #NoProgressBar CheckSpace #VerbosePkgLists #ParallelDownloads = 5 -------------------- |
locale — русский язык
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
0. редактируем "/etc/locale.gen" vim /etc/locale.gen ------------------- ru_RU.UTF-8 UTF-8 ------------------- 1. генерируем localectl set-locale ru_RU.UTF-8 #localectl set-x11-keymap --no-convert us,ru pc105 "" grp:alt_shift_toggle 2. раскладка языка vim /etc/vconsole.conf ---------------------- KEYMAP=ru ---------------------- |
iptables + route
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 |
0. редактируем vim /etc/systemd/system/sex-sec.service --------------------------------------- [Unit] Description= add iptables route After=network.target [Service] Type=simple TimeoutStartSec=10 ExecStart=/etc/iptables/sex_sec.sh [Install] WantedBy=multi-user.target --------------------------------------- 1. Включаем демон systemctl daemon-reload systemctl status sex-sec.service systemctl --failed 2. Редактируем vim /etc/iptables/sex_sec.sh ---------------------------- #!/bin/bash iptables-restore /etc/iptables/iptable.4 ip6tables-restore /etc/iptables/iptable.6 sleep 10 ip route add 192.168.55.0/24 via 192.168.16.55 ---------------------------- |
/etc/iptables/iptable.4
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 |
*filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -i lo -j ACCEPT -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -s 192.168.16.126/24 -m state --state NEW -p tcp --dport 22 -j ACCEPT #-A INPUT -s 10.0.3.6/32 -j ACCEPT -m comment --comment "backup" #-A INPUT -s 10.1.2.1/32 -m state --state NEW -p tcp --dport 10050 -j ACCEPT # ICMP -A INPUT -p icmp -m icmp --icmp-type 8 -m limit --limit 100/sec -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 3 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 4 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 11 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 12 -j ACCEPT COMMIT |
/etc/iptables/iptable.6
|
1 2 3 4 5 6 7 8 |
*filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -i lo -j ACCEPT -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p ipv6-icmp -j ACCEPT COMMIT |
qemu + kvm
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
0. установка pacman -Sy qemu pacman -Sy fuse2 gnutls libpciaccess libssh libxml2 numactl parted polkit yajl dmidecode virt-viewer libvirt-python perl-sys-virt libvirt-python libvirt-glib libguestfs systemctl enable libvirtd.service usermod -aG libvirt ey usermod -aG libvirt-qemu ey systemctl start libvirtd.service virtlogd.service systemctl enable libvirtd.service virtlogd.service 1. Редактируем vim /etc/libvirt/libvirt.conf ----------------------------- uri_default = "qemu:///system" listen_tls = 0 listen_tcp = 1 auth_tcp="none" ----------------------------- |
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
!!! можно собрать default 0. Редактируем файл vim ovsbr0.xml --------------- <network> <name>ovsbr0</name> <forward mode='bridge'/> <bridge name='ovsbr0'/> <virtualport type='openvswitch'/> </network> --------------- 1. Добавляем пулы virsh pool-destroy --pool default virsh pool-define-as --type dir --target /kvm/images --name images virsh pool-define-as --type dir --target /kvm/iso --name iso virsh pool-autostart --pool images iso virsh pool-autostart --pool images virsh pool-autostart --pool iso virsh pool-autostart --disable --pool default |
ping bash
|
1 2 3 |
#!/bin/bash ping -s 1 -c 4 IP_a remmina |
systemd network
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
vim /etc/systemd/network/20-wired.network ----------------------------------------- [Match] Name=enp1s0 [Network] DHCP=yes ----------------------------------------- vim /etc/systemd/network/20-wired.network ----------------------------------------- [Match] Name=enp1s0 [Network] Address=10.1.10.9/24 Gateway=10.1.10.1 DNS=10.1.10.1 ----------------------------------------- |