…
This appears to be an I2C issue on Pi3 (and possibly earlier, but not Pi4) that causes the touchpanel regulator to lock up.
Adding «dtparam=i2c_vc_baudrate=50000» and «enable_uart=0» to /boot/config.txt seems to fix it for now, and I’ll look at what’s actually going on.
http://digistump.com/wiki/digispark/tutorials/connecting
https://startingelectronics.org/tutorials/arduino/digispark/digispark-linux-setup/
Add udev Rules to the System
sudo vim /etc/udev/rules.d/49-micronucleus.rules
# UDEV Rules for Micronucleus boards including the Digispark.
# This file must be placed at:
#
# /etc/udev/rules.d/49-micronucleus.rules (preferred location)
# or
# /lib/udev/rules.d/49-micronucleus.rules (req'd on some broken systems)
#
# After this file is copied, physically unplug and reconnect the board.
#
SUBSYSTEMS=="usb", ATTRS{idVendor}=="16d0", ATTRS{idProduct}=="0753", MODE:="0666"
KERNEL=="ttyACM*", ATTRS{idVendor}=="16d0", ATTRS{idProduct}=="0753", MODE:="0666", ENV{ID_MM_DEVICE_IGNORE}="1"
#
# If you share your linux system with other users, or just don't like the
# idea of write permission for everybody, you can replace MODE:="0666" with
# OWNER:="yourusername" to create the device owned by you, or with
# GROUP:="somegroupname" and mange access using standard unix groups.
chmod 644 49-micronucleus.rules
sudo udevadm control --reload-rules
/etc/ssh/sshd_config
ChallengeResponseAuthentication yes
UsePAM yes
AuthenticationMethods publickey,keyboard-interactive:pam
PasswordAuthentication no
/etc/pam.d/sshd
#@include common-auth
auth required /usr/local/lib/security/pam_google_authenticator.so
Дано: сервер локальной сети ourproxy.provider.ru, доступный извне.
Требуется: получить из дома доступ к ресурсам внутри локальной сети, например,
к интранет-серверу 10.10.5.1:80
Решение: выполнить на домашней машине команду, пробрасывающую туннель к
искомому IP-адресу через ourproxy.provider.ru:
ssh -f -N user@ourproxy.provider.ru -L 8080:10.10.5.1:80
Опция -f говорит ssh, что после соединения нужно уйти в background.
Опция -N указывает, что никаких команд выполнять не нужно
Ключ -L означает, что соединения к localhost на порт 8080 нужно перенаправлять
на 80 порт IP-адреса 10.10.5.1
Таким образом, набирая в браузере адрес http://localhost:8080, попадаем на нужный сервер.
https://www.opennet.ru/tips/1691_ssh_tunnel_socks.shtml
|
1 |
ip link add link DEVNAME name VLANNAME type vlan id VLAN-ID reorder_hdr on|off |
loose_binding on|off gvrp on|off
ingress-qos-map FROM:TO egress-qos-map FROM:TO
|
1 2 3 4 5 6 |
#cat /etc/rc.local vconfig add eth0 418 ip l s up eth0.418 ip a a 192.168.168.21/24 dev eth0.418 ip r a default via 192.168.168.1 |
Here’s how to disable the protocol on a Red Hat-based system:
|
1 2 |
# sysctl -w net.ipv6.conf.all.disable_ipv6=1 # sysctl -w net.ipv6.conf.default.disable_ipv6=1 |
To re-enable IPv6, issue the following commands:
|
1 2 |
# sysctl -w net.ipv6.conf.all.disable_ipv6=0 # sysctl -w net.ipv6.conf.default.disable_ipv6=0 |
Here’s how to disable the protocol on a Debian-based machine.
1. Open a terminal window.
2. Issue the command sudo nano /etc/sysctl.conf
3. Add the following at the bottom of the file:
|
1 2 3 |
# net.ipv6.conf.all.disable_ipv6 = 1 # net.ipv6.conf.default.disable_ipv6 = 1 # net.ipv6.conf.lo.disable_ipv6 = 1 |
4. Save and close the file.
5. Reboot the machine.
To re-enable IPv6, remove the above lines from /etc/sysctl.conf and reboot the machine.
|
1 2 |
# apt-get install samba # apt-get install samba-client |
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
#vi /etc/samba/smb.conf [global] workgroup = WORKGROUP server string = Samba Server %v netbios name = OPI security = user map to guest = bad user dns proxy = no hosts allow = 192.168.0.0/255.255.255.0 hosts deny = all interfaces = eth0 socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=65536 SO_SNDBUF=65536 [Downloads] comment = Downloads read only = no locking = no path = /home/user/Downloads guest ok = no |
Add Samba users
Samba uses it’s own password system so users need to be added by root. Note that the users have to exist in /etc/passwd
|
1 2 |
# smbpasswd -a me # smbpasswd -a you |
You will be prompted for a password for each of those users.
To list existing Samba users:
|
1 |
# pdbedit -w -L |
Restart the Samba daemon
|
1 |
# /etc/init.d/samba restart |
or, if you are using systemd
|
1 |
# /usr/sbin/service smbd restart |
Try to access the shares (as a normal user)
Try locally first, then from another machine on the network which also installed samba client. When prompted, use the password entered when adding the user to Samba.
To access my share:
|
1 |
$ smbclient //ourmachine/me |
To access your share:
|
1 |
$ smbclient -U you //ourmachine/you |
To access our shared(!) share:
|
1 |
$ smbclient //ourmachine/ourfiles |
#https://wiki.debian.org/SambaServerSimple
mount smb dir from remote machine:
|
1 |
sbin/mount.cifs //192.168.1.99/films /mnt/smbsrv/films -o username=USERNAME(,password=PASSWORD) |
Второй вариант без авторизации.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 |
<strong>% cat /etc/samba/smb.conf</strong> [global] workgroup = 9_3 server string = buk hosts allow = 127. 10. 192.168. netbios name = buk usershare allow guests = yes security = user map to guest = Bad User guest account = root [share] comment = share read only = no writable = yes locking = no path = /home/user guest ok = yes browseable = yes public = yes #printable = no guest only = yes |
To enable wifi connection from command line run: sudo nmcli -a d wifi connect and enter your wifi credentials
Зло! apt-get remove network-manager (:
|
1 2 |
iw dev wlp4s0 scan | grep -i ssid wpa_passphrase ssid pswd |
/etc/wpa_supplicant.conf
|
1 2 3 4 5 6 7 8 |
ap_scan=1 ctrl_interface=/var/run/wpa_supplicant network={ ssid="xxxxxx" scan_ssid=1 psk="yyyyyyy" } |
/etc/network/interfaces
|
1 2 3 4 |
auto wlan0 iface wlan0 inet dhcp pre-up sudo wpa_supplicant -B -iwlan0 -c/etc/wpa_supplicant.conf -Dnl80211 post-down sudo killall -q wpa_supplicant |
Fedora:
https://ask.fedoraproject.org/en/question/59278/how-can-i-enable-wpa_supplicant-on-boot/
1. IOS не NPE, т.е. без NPE в назнавнии, т.е., например, вот такой: c2900-universalk9-mz.SPA.151-3.T.bin. У вас — нпе. http://pig.lsd-25.ru/uploads/ios/ (меня разбанили)
2. ИОС не ниже версий: 15.0(1)M4, 15.1(1)T2, 15.1(2)T2, 15.1(3)T. У вас — сами угадаете?
3. Зайти на роутере в привелегированный режим и в режим глобальной конфигурации. Это может быть проблемой. Но это обязательное условие.
4. Ползуясь подсказками (нажимая кнопку «?») написать что-то вроде:
license boot module c2900 technology-package securityk9
license boot module c2900 technology-package uck9
license boot module c2900 technology-package datak9
и после вводка каждой из строк согласиться с EULA.
5. Выйти из режима глобального конфигурирования.
6. Сохранить конфигурацию командой copy system:running-config nvram:startup-config
7. Ответить утвердительно на команду reload.
8. Получить профит.
#sh ver
#sh lic
http://www.anticisco.ru/forum/viewtopic.php?f=2&t=1615&sid=8efe01d4a3dfc3aa990a78d206f8276f
Configuration on Cisco IOS router:
version 12.4
!
hostname L2TP
!
!
aaa new-model
!
!
aaa authentication ppp VPDN_AUTH local
!
!
vpdn enable
!
vpdn-group L2TP
! Default L2TP VPDN group
accept-dialin
protocol l2tp
virtual-template 1
no l2tp tunnel authentication
!
!
!
username cisco privilege 15 password 0 cisco
!
!
crypto isakmp policy 1
encr 3des
hash sha
authentication pre-share
group 2
lifetime 86400
!
!
crypto isakmp key cisco123 address 0.0.0.0 0.0.0.0
!
!
crypto ipsec transform-set L2TP-Set2 esp-3des esp-sha-hmac
mode transport
!
crypto dynamic-map dyn-map 10
set nat demux
set transform-set L2TP-Set2 L2TP-Set
!
!
crypto map outside_map 65535 ipsec-isakmp dynamic dyn-map
!
!
!
interface Loopback0
ip address 192.168.47.1 255.255.255.0
ip nat inside
ip virtual-reassembly
!
interface Loopback1
description loopback for IPsec-pool
ip address 1.1.1.11 255.255.255.255
!
interface FastEthernet0/0
ip address 47.47.47.2 255.255.255.0
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
crypto map outside_map
!
!
interface Virtual-Template1
ip unnumbered Loopback1
peer default ip address pool l2tp-pool
ppp authentication ms-chap-v2 VPDN_AUTH
!
!
!
ip local pool l2tp-pool 1.1.1.1 1.1.1.10
ip route 0.0.0.0 0.0.0.0 47.47.47.1
!
ip nat inside source list NAT interface FastEthernet0/0 overload
!
ip access-list extended NAT
deny ip 192.168.47.0 0.0.0.255 1.1.1.0 0.0.0.255
permit ip 192.167.47.0 0.0.0.255 any
!
!
!
End
https://supportforums.cisco.com/document/9878401/l2tp-over-ipsec-cisco-ios-router-using-windows-8