#version=RHEL7

# CentOS 7.9
# Kickstart Automation 1.3.2
# Kickstart Configuration #64,387

#Reboot after installation
reboot

# Use network installation
url --url="http://mirrors-phx-1.securedservers.com/centos/7.9.2009/os/x86_64/"
#url --url="http://vault.centos.org/centos/7.8.2003/os/x86_64"

firstboot --disable

# Keyboard layouts
keyboard --vckeymap=us --xlayouts='us'
# System language
lang en_US.UTF-8

# Network information
# Backend
network --bootproto=dhcp --device=link ipv6=auto --activate

# Frontend
# network --bootproto=static --device=enp1s0f1 --gateway=174.138.174.33 --ip=174.138.174.34 --nameserver=8.8.8.8,8.8.4.4 --netmask=255.255.255.248 --ipv6=auto --activate
# network --hostname=CLX-4210R.securedservers.com

# Root password
rootpw --plaintext 6Zauftjqgshr8G
# System services
services --enabled="chronyd"
# System timezone
timezone US/Arizona --isUtc

# Setup the user here
user --groups= --homedir=/home/pnap8871 --name=pnap8871 --password=7PQaddMta68eh --gecos="pnap8871"


# This is default partitioning


# Drive Layout - Standard Layout (w/LVM & Software RAID-1)
zerombr
clearpart     --all --initlabel --drives=sda,sdb
part raid.00 --size=512 --ondisk=sda --asprimary
part raid.01 --size=512 --ondisk=sdb --asprimary
raid /boot   --level=1 --device=md0 raid.00 raid.01
part raid.10 --size=4096 --ondisk=sda
part raid.11 --size=4096 --ondisk=sdb
raid swap    --level=1 --device=md1 raid.10 raid.11
part raid.20 --size=1 --grow --ondisk=sda --asprimary
part raid.21 --size=1 --grow --ondisk=sdb --asprimary
raid pv.0    --level=1 --device=md2 raid.20 raid.21
volgroup sys-kV3F pv.0
logvol /var/tmp --vgname=sys-kV3F --name=vartmp --size=2048
logvol /tmp --vgname=sys-kV3F --name=tmp --size=2048
logvol / --vgname=sys-kV3F --name=root --size=1 --grow

%packages
@base
@compat-libraries
@core
@performance
@perl-web
@php
@remote-system-management
@web-server
chrony
-NetworkManager
-NetworkManager-team
-NetworkManager-tui
-NetworkManager-libnm
-NetworkManager-wifi
%end

%post
sed -i -r -e 's/^#PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config

# network --bootproto=static --device=enp1s0f1 --gateway=174.138.174.33 --ip=174.138.174.34 --nameserver=8.8.8.8,8.8.4.4 --netmask=255.255.255.248 --ipv6=auto --activate
# network --hostname=CLX-4210R.securedservers.com

ETH0=$(ip ntable | grep dev | sort | uniq | sed -e 's/^.*dev //;/^lo/d' | head -n 1 | tail -n 1 | xargs)
ETH1=$(ip ntable | grep dev | sort | uniq | sed -e 's/^.*dev //;/^lo/d' | head -n 2 | tail -n 1 | xargs)
# echo $ETH1 > /etc/sysconfig/network-scripts/namedinterface
# echo "LL" >> /etc/sysconfig/network-scripts/namedinterface
# echo "$ETH1" >> /etc/sysconfig/network-scripts/namedinterface

# Configure Backend IP on eth0
sed -i 's/BOOTPROTO="dhcp"/BOOTPROTO="static"/g' /etc/sysconfig/network-scripts/ifcfg-$ETH0
sed -i 's/BOOTPROTO=dhcp/BOOTPROTO=static/g' /etc/sysconfig/network-scripts/ifcfg-$ETH0

echo "BOOTPROTO=static" > /etc/sysconfig/network-scripts/ifcfg-$ETH0
echo "DEVICE=\"$ETH0\"" >> /etc/sysconfig/network-scripts/ifcfg-$ETH0
echo "NAME=\"$ETH0\"" >> /etc/sysconfig/network-scripts/ifcfg-$ETH0
echo "ONBOOT=yes" >> /etc/sysconfig/network-scripts/ifcfg-$ETH0
echo "IPADDR=\"0.0.0.0\"" >> /etc/sysconfig/network-scripts/ifcfg-$ETH0
echo "NETMASK=\"255.255.255.255\"" >> /etc/sysconfig/network-scripts/ifcfg-$ETH0
echo "USERCTL=yes" >> /etc/sysconfig/network-scripts/ifcfg-$ETH0
echo "TYPE=Ethernet" >> /etc/sysconfig/network-scripts/ifcfg-$ETH0

# Configure Frontend IP on eth1
echo "BOOTPROTO=static" > /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "DEVICE=\"$ETH1\"" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "NAME=\"$ETH1\"" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "ONBOOT=yes" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "IPADDR=174.138.174.34" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "NETMASK=255.255.255.248" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "GATEWAY=174.138.174.33" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "USERCTL=yes" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "TYPE=Ethernet" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
echo "DEFROUTE=yes" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1

#echo "DNS1=174.138.175.115" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1
#echo "DNS2=174.138.175.116" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1


echo DEVICE=\"$ETH1:1\" > /etc/sysconfig/network-scripts/ifcfg-$ETH1:1
echo BOOTPROTO=\"static\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:1
echo IPADDR=\"174.138.174.35\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:1
echo NETMASK=\"255.255.255.248\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:1
echo ONBOOT=\"yes\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:1
echo DEVICE=\"$ETH1:2\" > /etc/sysconfig/network-scripts/ifcfg-$ETH1:2
echo BOOTPROTO=\"static\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:2
echo IPADDR=\"174.138.174.36\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:2
echo NETMASK=\"255.255.255.248\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:2
echo ONBOOT=\"yes\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:2
echo DEVICE=\"$ETH1:3\" > /etc/sysconfig/network-scripts/ifcfg-$ETH1:3
echo BOOTPROTO=\"static\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:3
echo IPADDR=\"174.138.174.37\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:3
echo NETMASK=\"255.255.255.248\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:3
echo ONBOOT=\"yes\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:3
echo DEVICE=\"$ETH1:4\" > /etc/sysconfig/network-scripts/ifcfg-$ETH1:4
echo BOOTPROTO=\"static\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:4
echo IPADDR=\"174.138.174.38\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:4
echo NETMASK=\"255.255.255.248\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:4
echo ONBOOT=\"yes\" >> /etc/sysconfig/network-scripts/ifcfg-$ETH1:4

#Find the user for password expiration
USER=''
USER=pnap8871
# Just one user?

#Set last password change to current day - without this change password is required after 1st boot
CURRENT_DATE=$(date +"%y-%m-%d")
chage --lastday $CURRENT_DATE root
chage --lastday $CURRENT_DATE $USER
#Set password expiration for 2 days
chage -M 2 root
chage -M 2 $USER

# Hostname
HOSTNAME=CLX-4210R
BRANDNAME=securedservers.com
echo "$HOSTNAME.$BRANDNAME" > /etc/hostname

mkdir /home/bootcfg/
function messenger {
echo \$1 >> /dev/console
wall \$1
echo \$1 >> /home/bootcfg/config.log
}

messenger "**** ENTERING SOFTWARE INSTALLATION PHASE ****"
# Software Installation



# Cleanup
wget -q -O /dev/null 'http://192.168.200.2/automation/updateKickstartInstallationStatus.php?kickstartInstallationId=66384&securityKey=yovfmaayebsnwglywnzyaxppxfsduent&percentComplete=99&message=Completing%20Installation'

# Complete installation before we remove nameservers
wget --timeout=30 -O /dev/null 'http://192.168.200.2/automation/completeKickstartInstallation.php?kickstartInstallationId=66384&securityKey=yovfmaayebsnwglywnzyaxppxfsduent'

echo "nameserver 8.8.8.8" > /etc/resolv.conf
echo "nameserver 8.8.4.4" >> /etc/resolv.conf

#Remove installation files
touch /clean_installation.sh
chmod 0755 /clean_installation.sh
echo "#!/bin/sh -e" > /clean_installation.sh
echo "rm -f /root/anaconda-ks.cfg" >> /clean_installation.sh
echo "rm -f /root/original-ks.cfg" >> /clean_installation.sh
echo "rm -rf /var/log/anaconda" >> /clean_installation.sh
echo "rm -f /tmp/*" >> /clean_installation.sh
echo "rm -f /clean_installation.sh" >> /clean_installation.sh
echo "exit 0" >> /clean_installation.sh

# Add the startup script to firstboot
cp /etc/rc.d/rc.local /etc/rc.d/rc.local.bck
chmod +x /etc/rc.d/rc.local
echo "sh /clean_installation.sh" >> /etc/rc.d/rc.local
echo "rm -f /etc/rc.d/rc.local" >> /etc/rc.d/rc.local
echo "mv /etc/rc.d/rc.local.bck /etc/rc.d/rc.local" >> /etc/rc.d/rc.local
echo "exit 0" >> /etc/rc.d/rc.local


%end