Added tcpdump service commands as well as permission to use it on eac…

…h machine
iArcanic · Jul 24, 2023 · 5b35848 · 5b35848
1 parent c3868a2
commit 5b35848
Show file tree

Hide file tree

Showing 20 changed files with 69 additions and 0 deletions.
diff --git a/Admin.startup b/Admin.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Management-switch
 ip route add default via 10.0.6.2 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Central-router.startup b/Central-router.startup
@@ -101,3 +101,6 @@ iptables -A FORWARD -s 10.0.2.0/24 -d 10.0.5.3 -p icmp --icmp-type 8 -m state --
 
 # Drop incoming ICMP Echo Request (ping) from LDAP to External subnet
 iptables -A FORWARD -s 10.0.5.3 -d 10.0.2.0/24 -p icmp --icmp-type 8 -m state --state NEW,ESTABLISHED -j DROP
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/DMZ-switch.startup b/DMZ-switch.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Central-router
 ip route add default via 10.0.1.1 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Ext-DNS.startup b/Ext-DNS.startup
@@ -8,3 +8,6 @@ ip route add default via 10.0.2.2 dev eth0
 # Start DNS service
 chmod +r /etc/dnsmasq_static_hosts.conf
 systemctl start dnsmasq
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Ext-Office.startup b/Ext-Office.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Route to External-switch
 ip route add default via 10.0.2.2 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Ext-WWW.startup b/Ext-WWW.startup
@@ -9,3 +9,6 @@ ip route add default via 10.0.2.2 dev eth0
 a2enmod ssl
 a2ensite default-ssl
 systemctl start apache2
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/External-switch.startup b/External-switch.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Central-router
 ip route add default via 10.0.2.1 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Int-DNS.startup b/Int-DNS.startup
@@ -8,3 +8,6 @@ ip route add default via 10.0.4.2 dev eth0
 # Start DNS service
 chmod +r /etc/dnsmasq_static_hosts.conf
 systemctl start dnsmasq
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Int-WWW.startup b/Int-WWW.startup
@@ -9,3 +9,6 @@ ip route add default via 10.0.4.2 dev eth0
 a2enmod ssl
 a2ensite default-ssl
 systemctl start apache2
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/LDAP.startup b/LDAP.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Server-switch
 ip route add default via 10.0.5.2 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Management-switch.startup b/Management-switch.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Central-router
 ip route add default via 10.0.6.1 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/OpenVPN.startup b/OpenVPN.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Server-switch
 ip route add default via 10.0.5.2 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Server-switch.startup b/Server-switch.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Central-router
 ip route add default via 10.0.5.1 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Services-switch.startup b/Services-switch.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Central-router
 ip route add default via 10.0.4.1 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Squid.startup b/Squid.startup
@@ -9,3 +9,6 @@ ip route add default via 10.0.1.2 dev eth0
 touch /var/log/squid/access.log
 chmod 777 /var/log/squid/access.log
 systemctl start squid.service
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Staff-1.startup b/Staff-1.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Route to Staff-switch
 ip route add default via 10.0.3.2 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Staff-2.startup b/Staff-2.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Staff-switch
 ip route add default via 10.0.3.2 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Staff-3.startup b/Staff-3.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Staff-switch
 ip route add default via 10.0.3.2 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/Staff-switch.startup b/Staff-switch.startup
@@ -4,3 +4,6 @@ ip link set up dev eth0
 
 # Gateway IP to Central-router
 ip route add default via 10.0.3.1 dev eth0
+
+# Start tcpdump service
+systemctl start tcpdump
diff --git a/shared/usr/lib/systemd/system/tcpdump.service b/shared/usr/lib/systemd/system/tcpdump.service
@@ -0,0 +1,12 @@
+[Unit]
+Description=Tcpdump from @device to /hostlab/.output/<filename>.pcap
+Documentation=man:tcpdump(1)
+After=networking.service
+
+[Service]
+Type=simple
+ExecStartPre=/usr/bin/mkdir --parents /hostlab/.output
+ExecStart=/usr/local/bin/tcpdump -s0 -i %i -w /hostlab/.output/%fn.pcap
+
+[Install]
+WantedBy=multi-user.target