Enable firewall activation for exam-mode
For working exam-mode we need to block direct internet access by firewall. Users have to use squid-proxy on firewall, which can be disabled for exam-users. To allow VM-traffic (anonymous user), we use a local squid server with users kerberos-ticket to authenticate on the parent squid. When using VMs on teacherdevices offsite, the local squid has to use direct internet access. So we need two squid configs. When switching between offsite and onsite, the squid has to be restartet with corresponding config.
This commit is contained in:
Raphael Dannecker
parent
99d7bd64db
commit
23a9b6ff97
6 changed files with 46 additions and 8 deletions
|
|
@ -287,11 +287,7 @@ fi
|
|||
|
||||
VM_NAME=$1
|
||||
|
||||
# check, if we have to start squid
|
||||
if ! killall -s 0 squid; then
|
||||
echo "starting squid."
|
||||
/usr/sbin/squid -f /etc/squid/squid-usermode.conf
|
||||
fi
|
||||
systemctl --user restart usersquid.service &
|
||||
|
||||
# check, if persistent VM is really wanted
|
||||
if [[ "${PERSISTENT}" == 1 ]] && [[ ! -f "${VM_DIR_PERSISTENT}/${VM_NAME}.qcow2" ]]; then
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue