diff options
-rw-r--r-- | INITIAL-COMMANDS.md | 31 | ||||
-rw-r--r-- | README.md | 2 | ||||
-rw-r--r-- | initial-commands | 23 |
3 files changed, 32 insertions, 24 deletions
diff --git a/INITIAL-COMMANDS.md b/INITIAL-COMMANDS.md new file mode 100644 index 0000000..d7625c0 --- /dev/null +++ b/INITIAL-COMMANDS.md @@ -0,0 +1,31 @@ +Initial commands +================ + +[◀ Go back to main README](README.md) + +These command are inteneded for initial setup. If you are not aware of the +procedure please follow [the long way in detail](README.md#the-long-way-in-detail). + + { + / tool fetch "https://git.eworm.de/cgit/routeros-scripts/plain/certs/Let%27s%20Encrypt%20Authority%20X3.pem" dst-path="letsencrypt.pem"; + :delay 1s; + / certificate { + import file-name=letsencrypt.pem passphrase=""; + set name="ISRG-Root-X1" [ find where fingerprint="96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6" ]; + set name="Let-s-Encrypt-Authority-X3" [ find where fingerprint="731d3d9cfaa061487a1d71445a42f67df0afca2a6c2d2f98ff7b3ce112b1f568" ]; + set name="DST-Root-CA-X3" [ find where fingerprint="0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739" ]; + } + :if ([ / certificate print count-only where fingerprint="96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6" or fingerprint="731d3d9cfaa061487a1d71445a42f67df0afca2a6c2d2f98ff7b3ce112b1f568" or fingerprint="0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739" ] != 3) do={ + :error "Something is wrong with your certificates!"; + } + / file remove "letsencrypt.pem"; + :foreach Script in={ "global-config"; "global-config-overlay"; "global-functions"; "script-updates" } do={ + / system script add name=$Script source=([ / tool fetch check-certificate=yes-without-crl ("https://git.eworm.de/cgit/routeros-scripts/plain/" . $Script) output=user as-value]->"data"); + } + / system script { run global-config; run global-config-overlay; run global-functions; } + / system scheduler add name="global-scripts" start-time=startup on-event="/ system script { run global-config; run global-config-overlay; run global-functions; }" + } + +--- +[◀ Go back to main README](README.md) +[▲ Go back to top](#top) @@ -25,7 +25,7 @@ Initial setup ### Get me ready! If you know how things work just copy and paste the -[initial commands](initial-commands). Remember to edit and rerun +[initial commands](INITIAL-COMMANDS.md). Remember to edit and rerun `global-config-overlay`! First time users should take the long way below. diff --git a/initial-commands b/initial-commands deleted file mode 100644 index 79036e6..0000000 --- a/initial-commands +++ /dev/null @@ -1,23 +0,0 @@ -#!rsc -# RouterOS script: initial-commands -# Copyright (c) 2018-2020 Christian Hesse <mail@eworm.de> - -{ - / tool fetch "https://git.eworm.de/cgit/routeros-scripts/plain/certs/Let%27s%20Encrypt%20Authority%20X3.pem" dst-path="letsencrypt.pem"; - :delay 1s; - / certificate { - import file-name=letsencrypt.pem passphrase=""; - set name="ISRG-Root-X1" [ find where fingerprint="96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6" ]; - set name="Let-s-Encrypt-Authority-X3" [ find where fingerprint="731d3d9cfaa061487a1d71445a42f67df0afca2a6c2d2f98ff7b3ce112b1f568" ]; - set name="DST-Root-CA-X3" [ find where fingerprint="0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739" ]; - } - :if ([ / certificate print count-only where fingerprint="96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6" or fingerprint="731d3d9cfaa061487a1d71445a42f67df0afca2a6c2d2f98ff7b3ce112b1f568" or fingerprint="0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739" ] != 3) do={ - :error "Something is wrong with your certificates!"; - } - / file remove "letsencrypt.pem"; - :foreach Script in={ "global-config"; "global-config-overlay"; "global-functions"; "script-updates" } do={ - / system script add name=$Script source=([ / tool fetch check-certificate=yes-without-crl ("https://git.eworm.de/cgit/routeros-scripts/plain/" . $Script) output=user as-value]->"data"); - } - / system script { run global-config; run global-config-overlay; run global-functions; } - / system scheduler add name="global-scripts" start-time=startup on-event="/ system script { run global-config; run global-config-overlay; run global-functions; }" -} |