#!/bin/bash # from # https://github.com/spiritLHLS/pve # 2023.07.02 # cd /root >/dev/null 2>&1 _red() { echo -e "\033[31m\033[01m$@\033[0m"; } _green() { echo -e "\033[32m\033[01m$@\033[0m"; } _yellow() { echo -e "\033[33m\033[01m$@\033[0m"; } _blue() { echo -e "\033[36m\033[01m$@\033[0m"; } reading(){ read -rp "$(_green "$1")" "$2"; } export DEBIAN_FRONTEND=noninteractive utf8_locale=$(locale -a 2>/dev/null | grep -i -m 1 -E "UTF-8|utf8") if [[ -z "$utf8_locale" ]]; then echo "No UTF-8 locale found" else export LC_ALL="$utf8_locale" export LANG="$utf8_locale" export LANGUAGE="$utf8_locale" echo "Locale set to $utf8_locale" fi temp_file_apt_fix="/tmp/apt_fix.txt" ########## 定义部分需要使用的函数和组件预安装 remove_duplicate_lines() { chattr -i "$1" # 预处理:去除行尾空格和制表符 sed -i 's/[ \t]*$//' "$1" # 去除重复行并跳过空行和注释行 if [ -f "$1" ]; then awk '{ line = $0; gsub(/^[ \t]+/, "", line); gsub(/[ \t]+/, " ", line); if (!NF || !seen[line]++) print $0 }' "$1" > "$1.tmp" && mv -f "$1.tmp" "$1" fi chattr +i "$1" } install_package() { package_name=$1 if command -v $package_name > /dev/null 2>&1 ; then _green "$package_name already installed" _green "$package_name 已经安装" else apt-get install -y $package_name if [ $? -ne 0 ]; then apt_output=$(apt-get install -y $package_name --fix-missing 2>&1) fi if [ $? -ne 0 ] && [ "$package_name" != "proxmox-ve" ]; then _green "$package_name tried to install but failed, exited the program" _green "$package_name 已尝试安装但失败,退出程序" exit 1 elif [ $? -ne 0 ] && [ "$package_name" == "proxmox-ve" ]; then if echo "$apt_output" | grep -qE 'DEBIAN_FRONTEND=dialog dpkg --configure grub-pc' && echo "$apt_output" | grep -qE 'dpkg --configure -a' && echo "$apt_output" | grep -qE 'dpkg: error processing package grub-pc \(--configure\):' then # 手动选择 # DEBIAN_FRONTEND=dialog dpkg --configure grub-pc # 设置debconf的选择 echo "grub-pc grub-pc/install_devices multiselect /dev/sda" | sudo debconf-set-selections # 配置grub-pc并自动选择第一个选项确认 sudo DEBIAN_FRONTEND=noninteractive dpkg --configure grub-pc dpkg --configure -a if [ $? -ne 0 ]; then _green "$package_name tried to install but failed, exited the program" _green "$package_name 已尝试安装但失败,退出程序" exit 1 fi apt-get install -y $package_name --fix-missing fi fi _green "$package_name tried to install" _green "$package_name 已尝试安装" fi } rebuild_cloud_init(){ if [ -f "/etc/cloud/cloud.cfg" ]; then chattr -i /etc/cloud/cloud.cfg if grep -q "preserve_hostname: true" "/etc/cloud/cloud.cfg"; then : else sed -E -i 's/preserve_hostname:[[:space:]]*false/preserve_hostname: true/g' "/etc/cloud/cloud.cfg" echo "change preserve_hostname to true" fi if grep -q "disable_root: false" "/etc/cloud/cloud.cfg"; then : else sed -E -i 's/disable_root:[[:space:]]*true/disable_root: false/g' "/etc/cloud/cloud.cfg" echo "change disable_root to false" fi chattr -i /etc/cloud/cloud.cfg content=$(cat /etc/cloud/cloud.cfg) line_number=$(grep -n "^system_info:" "/etc/cloud/cloud.cfg" | cut -d ':' -f 1) if [ -n "$line_number" ]; then lines_after_system_info=$(echo "$content" | sed -n "$((line_number+1)),\$p") if [ -n "$lines_after_system_info" ]; then updated_content=$(echo "$content" | sed "$((line_number+1)),\$d") echo "$updated_content" > "/etc/cloud/cloud.cfg" fi fi sed -i '/^\s*- set-passwords/s/^/#/' /etc/cloud/cloud.cfg chattr +i /etc/cloud/cloud.cfg fi } rebuild_interfaces(){ # 修复部分网络加载没实时加载 if [[ -f "/etc/network/interfaces.new" && -f "/etc/network/interfaces" ]]; then chattr -i /etc/network/interfaces cp -f /etc/network/interfaces.new /etc/network/interfaces chattr +i /etc/network/interfaces fi # 合并文件 if [ -d "/etc/network/interfaces.d/" ]; then if [ ! -f "/etc/network/interfaces" ]; then touch /etc/network/interfaces fi if grep -q '^source \/etc\/network\/interfaces\.d\/' "/etc/network/interfaces" || grep -q '^source-directory \/etc\/network\/interfaces\.d' "/etc/network/interfaces"; then chattr -i /etc/network/interfaces for file in /etc/network/interfaces.d/*; do if [ -f "$file" ]; then cat "$file" >> /etc/network/interfaces chattr -i "$file" rm "$file" fi done chattr +i /etc/network/interfaces else for file in /etc/network/interfaces.d/*; do if [ -f "$file" ]; then chattr -i "$file" rm "$file" fi done fi fi if [ -d "/run/network/interfaces.d/" ]; then if [ ! -f "/etc/network/interfaces" ]; then touch /etc/network/interfaces fi if grep -q '^source \/run\/network\/interfaces\.d\/' "/etc/network/interfaces" || grep -q '^source-directory \/run\/network\/interfaces\.d' "/etc/network/interfaces"; then chattr -i /etc/network/interfaces for file in /run/network/interfaces.d/*; do if [ -f "$file" ]; then cat "$file" >> /etc/network/interfaces chattr -i "$file" rm "$file" fi done chattr +i /etc/network/interfaces else for file in /run/network/interfaces.d/*; do if [ -f "$file" ]; then chattr -i "$file" rm "$file" fi done fi fi # 修复部分网络运行部分未空 if [ ! -e /run/network/interfaces.d/* ]; then if [ -f "/etc/network/interfaces" ]; then chattr -i /etc/network/interfaces if ! grep -q "^#.*source-directory \/run\/network\/interfaces\.d" /etc/network/interfaces; then sed -i '/source-directory \/run\/network\/interfaces.d/s/^/#/' /etc/network/interfaces fi chattr +i /etc/network/interfaces fi if [ -f "/etc/network/interfaces.new" ]; then chattr -i /etc/network/interfaces.new if ! grep -q "^#.*source-directory \/run\/network\/interfaces\.d" /etc/network/interfaces.new; then sed -i '/source-directory \/run\/network\/interfaces.d/s/^/#/' /etc/network/interfaces.new fi chattr +i /etc/network/interfaces.new fi fi # 去除引用 if [ -f "/etc/network/interfaces" ]; then chattr -i /etc/network/interfaces if ! grep -q '^#source \/etc\/network\/interfaces\.d\/' "/etc/network/interfaces"; then sed -i '/^source \/etc\/network\/interfaces\.d\// { /^#/! s/^/#/ }' "/etc/network/interfaces" fi if ! grep -q '^#source-directory \/etc\/network\/interfaces\.d' "/etc/network/interfaces"; then sed -i 's/^source-directory \/etc\/network\/interfaces\.d/#source-directory \/etc\/network\/interfaces.d/' "/etc/network/interfaces" fi chattr +i /etc/network/interfaces fi if [ -f "/etc/network/interfaces.new" ]; then chattr -i /etc/network/interfaces.new if ! grep -q '^#source \/etc\/network\/interfaces\.d\/' "/etc/network/interfaces.new"; then sed -i '/^source \/etc\/network\/interfaces\.d\// { /^#/! s/^/#/ }' "/etc/network/interfaces.new" fi if ! grep -q '^#source-directory \/etc\/network\/interfaces\.d' "/etc/network/interfaces.new"; then sed -i 's/^source-directory \/etc\/network\/interfaces\.d/#source-directory \/etc\/network\/interfaces.d/' "/etc/network/interfaces.new" fi chattr +i /etc/network/interfaces.new fi # 反加载 if [[ -f "/etc/network/interfaces.new" && -f "/etc/network/interfaces" ]]; then chattr -i /etc/network/interfaces.new cp -f /etc/network/interfaces /etc/network/interfaces.new chattr +i /etc/network/interfaces.new fi # 去除空行之外的重复行 remove_duplicate_lines "/etc/network/interfaces" if [ -f "/etc/network/interfaces.new" ]; then remove_duplicate_lines "/etc/network/interfaces.new" fi } fix_interfaces_ipv6_auto_type(){ chattr -i $1 while IFS= read -r line do # 检测以 "iface" 开头且包含 "inet6 auto" 的行 if [[ $line == "iface ${interface} inet6 auto" ]]; then output=$(ip addr) matches=$(echo "$output" | grep "inet6.*global dynamic") if [ -n "$matches" ]; then # SLAAC动态分配,暂不做IPV6的处理 sed -i "/iface $interface inet6 auto/d" $1 echo "$interface" > "/root/iface_auto.txt" else # 将 "auto" 替换为 "static" modified_line="${line/auto/static}" echo "$modified_line" # 添加静态IPv6配置信息 ipv6_prefixlen=$(ifconfig ${interface} | grep -oP 'prefixlen \K\d+' | head -n 1) # 获取IPv6地址 # ipv6_address=$(ifconfig ${interface} | grep -oE 'inet6 ([0-9a-fA-F:]+)' | awk '{print $2}' | head -n 1) ipv6_address=$(ip -6 addr show dev ${interface} | awk '/inet6 .* scope global dynamic/{print $2}') # 提取地址部分 ipv6_address=${ipv6_address%%/*} ipv6_gateway=$(ip -6 route show | awk '/default via/{print $3}') echo " address ${ipv6_address}/${ipv6_prefixlen}" echo " gateway ${ipv6_gateway}" fi else echo "$line" fi done < $1 > /tmp/interfaces.modified chattr -i $1 mv -f /tmp/interfaces.modified $1 chattr +i $1 rm -rf /tmp/interfaces.modified } check_cdn() { local o_url=$1 for cdn_url in "${cdn_urls[@]}"; do if curl -sL -k "$cdn_url$o_url" --max-time 6 | grep -q "success" > /dev/null 2>&1; then export cdn_success_url="$cdn_url" return fi sleep 0.5 done export cdn_success_url="" } check_cdn_file() { check_cdn "https://raw.githubusercontent.com/spiritLHLS/ecs/main/back/test" if [ -n "$cdn_success_url" ]; then _yellow "CDN available, using CDN" else _yellow "No CDN available, no use CDN" fi } prebuild_ifupdown2(){ if [ ! -f "/root/ifupdown2_installed.txt" ]; then cdn_urls=("https://cdn.spiritlhl.workers.dev/" "https://cdn3.spiritlhl.net/" "https://cdn1.spiritlhl.net/" "https://ghproxy.com/" "https://cdn2.spiritlhl.net/") check_cdn_file wget ${cdn_success_url}https://raw.githubusercontent.com/spiritLHLS/pve/main/extra_scripts/install_ifupdown2.sh -O /root/install_ifupdown2.sh wget ${cdn_success_url}https://raw.githubusercontent.com/spiritLHLS/pve/main/extra_scripts/ifupdown2-install.service -O /etc/systemd/system/ifupdown2-install.service chmod 777 install_ifupdown2.sh chmod 777 /etc/systemd/system/ifupdown2-install.service if [ -f "install_ifupdown2.sh" ]; then # _green "This script will automatically reboot the system after 5 seconds, please wait a few minutes to log into SSH and execute this script again" # _green "本脚本将在5秒后自动重启系统,请待几分钟后退出SSH再次执行本脚本" systemctl daemon-reload systemctl enable ifupdown2-install.service # sleep 5 # echo "1" > "/root/reboot_pve.txt" # systemctl start ifupdown2-install.service fi fi } is_private_ipv4() { local ip_address=$1 local ip_parts if [[ -z $ip_address ]]; then return 0 # 输入为空 fi IFS='.' read -r -a ip_parts <<< "$ip_address" # 检查IP地址是否符合内网IP地址的范围 # 去除 回环,REC 1918,多播 地址 if [[ ${ip_parts[0]} -eq 10 ]] || [[ ${ip_parts[0]} -eq 172 && ${ip_parts[1]} -ge 16 && ${ip_parts[1]} -le 31 ]] || [[ ${ip_parts[0]} -eq 192 && ${ip_parts[1]} -eq 168 ]] || [[ ${ip_parts[0]} -eq 127 ]] || [[ ${ip_parts[0]} -eq 0 ]] || [[ ${ip_parts[0]} -ge 224 ]] then return 0 # 是内网IP地址 else return 1 # 不是内网IP地址 fi } check_ipv4(){ IPV4=$(ip -4 addr show | grep global | awk '{print $2}' | cut -d '/' -f1 | head -n 1) if is_private_ipv4 "$IPV4"; then # 由于是内网IPV4地址,需要通过API获取外网地址 IPV4="" local API_NET=("ipv4.ip.sb" "ipget.net" "ip.ping0.cc" "https://ip4.seeip.org" "https://api.my-ip.io/ip" "https://ipv4.icanhazip.com" "api.ipify.org") for p in "${API_NET[@]}"; do response=$(curl -s4m8 "$p") sleep 1 if [ $? -eq 0 ] && ! echo "$response" | grep -q "error"; then IP_API="$p" IPV4="$response" break fi done fi export IPV4 } statistics_of_run-times() { COUNT=$( curl -4 -ksm1 "https://hits.seeyoufarm.com/api/count/incr/badge.svg?url=https%3A%2F%2Fgithub.com%2FspiritLHLS%2Fpve&count_bg=%2379C83D&title_bg=%23555555&icon=&icon_color=%23E7E7E7&title=&edge_flat=true" 2>&1 || curl -6 -ksm1 "https://hits.seeyoufarm.com/api/count/incr/badge.svg?url=https%3A%2F%2Fgithub.com%2FspiritLHLS%2Fpve&count_bg=%2379C83D&title_bg=%23555555&icon=&icon_color=%23E7E7E7&title=&edge_flat=true" 2>&1) && TODAY=$(expr "$COUNT" : '.*\s\([0-9]\{1,\}\)\s/.*') && TOTAL=$(expr "$COUNT" : '.*/\s\([0-9]\{1,\}\)\s.*') } # 前置环境安装 if [ "$(id -u)" != "0" ]; then _red "This script must be run as root" 1>&2 exit 1 fi # 确保apt没有问题 apt-get update -y apt-get full-upgrade -y if [ $? -ne 0 ]; then apt-get install debian-keyring debian-archive-keyring -y apt-get update -y && apt-get full-upgrade -y fi apt_update_output=$(apt-get update 2>&1) echo "$apt_update_output" > "$temp_file_apt_fix" if grep -q 'NO_PUBKEY' "$temp_file_apt_fix"; then public_keys=$(grep -oE 'NO_PUBKEY [0-9A-F]+' "$temp_file_apt_fix" | awk '{ print $2 }') joined_keys=$(echo "$public_keys" | paste -sd " ") _yellow "No Public Keys: ${joined_keys}" apt-key adv --keyserver keyserver.ubuntu.com --recv-keys ${joined_keys} apt-get update if [ $? -eq 0 ]; then _green "Fixed" fi fi rm "$temp_file_apt_fix" # 部分安装包提前安装 install_package wget install_package curl install_package sudo install_package bc install_package iptables install_package lshw install_package net-tools install_package service install_package ipcalc install_package dmidecode install_package dnsutils # 部分信息检测 main_ipv4=$(ip -4 addr show | grep global | awk '{print $2}' | cut -d '/' -f1 | head -n 1) # 检测物理接口和MAC地址 interface_1=$(lshw -C network | awk '/logical name:/{print $3}' | head -1) interface_2=$(lshw -C network | awk '/logical name:/{print $3}' | sed -n '2p') if [ -z "$interface_1" ]; then interface="eth0" fi if ! grep -q "$interface_1" "/etc/network/interfaces"; then if [ -f "/etc/network/interfaces.d/50-cloud-init" ];then if ! grep -q "$interface_1" "/etc/network/interfaces.d/50-cloud-init" && grep -q "$interface_2" "/etc/network/interfaces.d/50-cloud-init"; then interface=${interface_2} else interface=${interface_1} fi else if grep -q "$interface_2" "/etc/network/interfaces"; then interface=${interface_2} else interface=${interface_1} fi fi else interface=${interface_1} fi # mac_address=$(ip -o link show dev ${interface} | awk '{print $17}') # 检查是否存在特定行 if [ -f "/etc/network/interfaces.d/50-cloud-init" ]; then if grep -Fxq "# /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg with the following:" /etc/network/interfaces.d/50-cloud-init && grep -Fxq "# network: {config: disabled}" /etc/network/interfaces.d/50-cloud-init; then if [ ! -f "/etc/cloud/cloud.cfg.d/99-disable-network-config.cfg" ]; then echo "Creating /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg." echo "network: {config: disabled}" > /etc/cloud/cloud.cfg.d/99-disable-network-config.cfg fi fi fi if [ ! -f "/etc/network/interfaces" ]; then touch "/etc/network/interfaces" # 获取ipv4、subnet、gateway信息 gateway=$(ip route | awk '/default/ {print $3}') interface_info=$(ip -o -4 addr show dev $interface | awk '{print $4}') ipv4=$(echo $interface_info | cut -d'/' -f1) subnet=$(echo $interface_info | cut -d'/' -f2) subnet=$(ipcalc -n "$ipv4/$subnet" | grep -oP 'Netmask:\s+\K.*' | awk '{print $1}') chattr -i /etc/network/interfaces echo "auto lo" >> /etc/network/interfaces echo "iface lo inet loopback" >> /etc/network/interfaces echo "iface $interface inet static" >> /etc/network/interfaces echo " address $ipv4" >> /etc/network/interfaces echo " netmask $subnet" >> /etc/network/interfaces echo " gateway $gateway" >> /etc/network/interfaces echo " dns-nameservers 8.8.8.8 8.8.4.4" >> /etc/network/interfaces chattr +i /etc/network/interfaces fi # 网络配置修改 rebuild_interfaces rebuild_cloud_init fix_interfaces_ipv6_auto_type /etc/network/interfaces # 特殊处理Hetzner output=$(dmidecode -t system) if [[ $output == *"Hetzner_vServer"* ]]; then prebuild_ifupdown2 fi # # 特殊处理OVH # if dig -x $main_ipv4 | grep -q "vps.ovh"; then # prebuild_ifupdown2 # fi # 统计运行次数 statistics_of_run-times # 检测是否已重启过 if [ ! -f "/root/reboot_pve.txt" ]; then echo "1" > "/root/reboot_pve.txt" _green "Please execute reboot to reboot the system and then execute this script again" _green "Please wait at least 20 seconds after logging in with SSH again before executing this script." _green "请执行 reboot 重启系统后再次执行本脚本,再次使用SSH登录后请等待至少20秒再执行本脚本" exit 1 fi ########## 正式开始安装 ## 更改网络优先级为IPV4优先 sed -i 's/.*precedence ::ffff:0:0\/96.*/precedence ::ffff:0:0\/96 100/g' /etc/gai.conf && systemctl restart networking # cloud-init文件修改 rebuild_cloud_init # /etc/hosts文件修改 hostname=$(hostname) if [ "${hostname}" != "pve" ]; then chattr -i /etc/hosts hosts=$(grep -E "^[^#]*\s+${hostname}\s+${hostname}\$" /etc/hosts | grep -v "${main_ipv4}") if [ -n "${hosts}" ]; then # 注释掉查询到的行 sudo sed -i "s/^$(echo ${hosts} | sed 's/\//\\\//g')/# &/" /etc/hosts # 添加新行 # echo "${main_ipv4} ${hostname} ${hostname}" | sudo tee -a /etc/hosts > /dev/null # _green "已将 ${main_ipv4} ${hostname} ${hostname} 添加到 /etc/hosts 文件中" else _blue "A record for ${main_ipv4} ${hostname} ${hostname} already exists, no need to add it" _blue "已存在 ${main_ipv4} ${hostname} ${hostname} 的记录,无需添加" fi chattr -i /etc/hostname hostnamectl set-hostname pve chattr +i /etc/hostname hostname=$(hostname) if ! grep -q "::1 localhost" /etc/hosts; then echo "::1 localhost" >> /etc/hosts echo "Added ::1 localhost to /etc/hosts" fi if grep -q "^127\.0\.1\.1" /etc/hosts; then sed -i '/^127\.0\.1\.1/s/^/#/' /etc/hosts echo "Commented out lines starting with 127.0.1.1 in /etc/hosts" fi if ! grep -q "^127\.0\.0\.1 localhost\.localdomain localhost$" /etc/hosts; then # 127.0.1.1 echo "${main_ipv4} ${hostname}.localdomain ${hostname}" >> /etc/hosts echo "Added ${main_ipv4} ${hostname}.localdomain ${hostname} to /etc/hosts" fi chattr +i /etc/hosts fi ## ChinaIP检测 if [[ -z "${CN}" ]]; then if [[ $(curl -m 10 -s https://ipapi.co/json | grep 'China') != "" ]]; then _yellow "根据ipapi.co提供的信息,当前IP可能在中国" read -e -r -p "是否选用中国镜像完成安装? [Y/n] " input case $input in [yY][eE][sS] | [yY]) echo "使用中国镜像" CN=true ;; [nN][oO] | [nN]) echo "不使用中国镜像" ;; *) echo "使用中国镜像" CN=true ;; esac fi fi # 再次预检查 apt-get install gnupg -y if [ $(uname -m) != "x86_64" ] || [ ! -f /etc/debian_version ] || [ $(grep MemTotal /proc/meminfo | awk '{print $2}') -lt 2000000 ] || [ $(grep -c ^processor /proc/cpuinfo) -lt 2 ] || [ $(ping -c 3 google.com > /dev/null 2>&1; echo $?) -ne 0 ]; then _red "Error: This system does not meet the minimum requirements for Proxmox VE installation." _yellow "Do you want to continue the installation? (Enter to not continue the installation by default) (y/[n])" reading "是否要继续安装?(回车则默认不继续安装) (y/[n]) " confirm echo "" if [ "$confirm" != "y" ]; then exit 1 fi else _green "The system meets the minimum requirements for Proxmox VE installation." fi # 新增pve源 apt-get install lsb-release -y version=$(lsb_release -cs) case $version in stretch|buster|bullseye|bookworm) repo_url="deb http://download.proxmox.com/debian/pve ${version} pve-no-subscription" if [[ -n "${CN}" ]]; then repo_url="deb https://mirrors.tuna.tsinghua.edu.cn/proxmox/debian/pve ${version} pve-no-subscription" fi ;; # bookworm) # repo_url="deb http://download.proxmox.com/debian/pve ${version} pvetest" # if [[ -n "${CN}" ]]; then # repo_url="deb https://mirrors.tuna.tsinghua.edu.cn/proxmox/debian/pve ${version} pvetest" # fi # ;; *) _red "Error: Unsupported Debian version" _yellow "Do you want to continue the installation? (Enter to not continue the installation by default) (y/[n])" reading "是否要继续安装(识别到不是Debian9~Debian12的范围)?(回车则默认不继续安装) (y/[n]) " confirm echo "" if [ "$confirm" != "y" ]; then exit 1 fi repo_url="deb http://download.proxmox.com/debian/pve bullseye pve-no-subscription" if [[ -n "${CN}" ]]; then repo_url="deb https://mirrors.tuna.tsinghua.edu.cn/proxmox/debian/pve bullseye pve-no-subscription" fi ;; esac case $version in stretch) if [ ! -f "/etc/apt/trusted.gpg.d/proxmox-ve-release-4.x.gpg" ]; then wget http://download.proxmox.com/debian/proxmox-ve-release-4.x.gpg -O /etc/apt/trusted.gpg.d/proxmox-ve-release-4.x.gpg chmod +r /etc/apt/trusted.gpg.d/proxmox-ve-release-4.x.gpg fi if [ ! -f "/etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg" ]; then wget http://download.proxmox.com/debian/proxmox-ve-release-6.x.gpg -O /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg chmod +r /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg fi ;; buster) if [ ! -f "/etc/apt/trusted.gpg.d/proxmox-ve-release-5.x.gpg" ]; then wget http://download.proxmox.com/debian/proxmox-ve-release-5.x.gpg -O /etc/apt/trusted.gpg.d/proxmox-ve-release-5.x.gpg chmod +r /etc/apt/trusted.gpg.d/proxmox-ve-release-5.x.gpg fi if [ ! -f "/etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg" ]; then wget http://download.proxmox.com/debian/proxmox-ve-release-6.x.gpg -O /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg chmod +r /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg fi ;; bullseye) if [ ! -f "/etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg" ]; then wget http://download.proxmox.com/debian/proxmox-ve-release-6.x.gpg -O /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg chmod +r /etc/apt/trusted.gpg.d/proxmox-ve-release-6.x.gpg fi if [ ! -f "/etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg" ]; then wget http://download.proxmox.com/debian/proxmox-release-bullseye.gpg -O /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg chmod +r /etc/apt/trusted.gpg.d/proxmox-release-bullseye.gpg fi ;; bookworm) if [ ! -f "/etc/apt/trusted.gpg.d/proxmox-release-bookworm.gpg" ]; then wget http://download.proxmox.com/debian/proxmox-release-bookworm.gpg -O /etc/apt/trusted.gpg.d/proxmox-release-bookworm.gpg chmod +r /etc/apt/trusted.gpg.d/proxmox-release-bookworm.gpg fi ;; *) _red "Error: Unsupported Debian version" _yellow "Do you want to continue the installation? (Enter to not continue the installation by default) (y/[n])" reading "是否要继续安装(识别到不是Debian9~Debian12的范围)?(回车则默认不继续安装) (y/[n]) " confirm echo "" if [ "$confirm" != "y" ]; then exit 1 fi ;; esac if ! grep -q "^deb.*pve-no-subscription" /etc/apt/sources.list; then echo "$repo_url" >> /etc/apt/sources.list fi # 备份网络设置 cp /etc/network/interfaces /etc/network/interfaces.bak cp /etc/network/interfaces.new /etc/network/interfaces.new.bak rebuild_interfaces # 下载pve # 确保apt没有问题 apt-get update -y && apt-get full-upgrade -y if [ $? -ne 0 ]; then apt-get install debian-keyring debian-archive-keyring -y apt-get update -y && apt-get full-upgrade -y fi apt_update_output=$(apt-get update 2>&1) echo "$apt_update_output" > "$temp_file_apt_fix" if grep -q 'NO_PUBKEY' "$temp_file_apt_fix"; then public_keys=$(grep -oE 'NO_PUBKEY [0-9A-F]+' "$temp_file_apt_fix" | awk '{ print $2 }') joined_keys=$(echo "$public_keys" | paste -sd " ") _yellow "No Public Keys: ${joined_keys}" apt-key adv --keyserver keyserver.ubuntu.com --recv-keys ${joined_keys} apt-get update if [ $? -eq 0 ]; then _green "Fixed" fi fi rm "$temp_file_apt_fix" output=$(apt-get update 2>&1) if echo $output | grep -q "NO_PUBKEY"; then _yellow "try sudo apt-key adv --keyserver keyserver.ubuntu.com --recvrebuild_interface-keys missing key" exit 1 fi # 修复可能存在的auto类型 rebuild_interfaces fix_interfaces_ipv6_auto_type /etc/network/interfaces # 部分机器中途service丢失了,尝试修复 install_package service # 正式安装 install_package proxmox-ve install_package postfix install_package open-iscsi rebuild_interfaces # 如果是国内服务器则替换CT源为国内镜像源 if [[ -n "${CN}" ]]; then cp -rf /usr/share/perl5/PVE/APLInfo.pm /usr/share/perl5/PVE/APLInfo.pm.bak sed -i 's|http://download.proxmox.com|https://mirrors.tuna.tsinghua.edu.cn/proxmox|g' /usr/share/perl5/PVE/APLInfo.pm sed -i 's|http://mirrors.ustc.edu.cn/proxmox|https://mirrors.tuna.tsinghua.edu.cn/proxmox|g' /usr/share/perl5/PVE/APLInfo.pm fi # 安装必备模块并替换apt源中的无效订阅 cp /etc/apt/sources.list.d/pve-enterprise.list /etc/apt/sources.list.d/pve-enterprise.list.bak # echo "deb http://download.proxmox.com/debian/pve $(lsb_release -sc) pve-no-subscription" > /etc/apt/sources.list.d/pve-enterprise.list rm -rf /etc/apt/sources.list.d/pve-enterprise.list apt-get update install_package sudo install_package iproute2 case $version in stretch) install_package ifupdown ;; buster) install_package ifupdown2 ;; bullseye) install_package ifupdown2 ;; bookworm) install_package ifupdown2 ;; *) exit 1 ;; esac install_package novnc install_package cloud-init rebuild_cloud_init # install_package isc-dhcp-server # 打印内核 running_kernel=$(uname -r) _green "Running kernel: $(pveversion)" installed_kernels=($(dpkg -l 'pve-kernel-*' | awk '/^ii/ {print $2}' | cut -d'-' -f3- | sort -V)) latest_kernel=${installed_kernels[-1]} _green "PVE latest kernel: $latest_kernel" _green "Wait 5 seconds to start network" sleep 5 if [ -f "/etc/network/interfaces" ]; then # 检查/etc/network/interfaces文件中是否有iface xxxx inet auto行 if grep -q "iface $interface inet auto" /etc/network/interfaces; then # 获取ipv4、subnet、gateway信息 gateway=$(ip route | awk '/default/ {print $3}') interface_info=$(ip -o -4 addr show dev $interface | awk '{print $4}') ipv4=$(echo $interface_info | cut -d'/' -f1) subnet=$(echo $interface_info | cut -d'/' -f2) subnet=$(ipcalc -n "$ipv4/$subnet" | grep -oP 'Netmask:\s+\K.*' | awk '{print $1}') chattr -i /etc/network/interfaces sed -i "/iface $interface inet auto/c\ iface $interface inet static\n\ address $ipv4\n\ netmask $subnet\n\ gateway $gateway\n\ dns-nameservers 8.8.8.8 8.8.4.4" /etc/network/interfaces fi chattr +i /etc/network/interfaces fi systemctl restart networking if [ ! -s "/etc/resolv.conf" ] then cp /etc/resolv.conf /etc/resolv.conf.bak echo -e "nameserver 1.1.1.1\nnameserver 8.8.8.8\nnameserver 8.8.4.4\nnameserver 2606:4700:4700::1111\nnameserver 2001:4860:4860::8888\nnameserver 2001:4860:4860::8844" >> /etc/resolv.conf fi wget ${cdn_success_url}https://raw.githubusercontent.com/spiritLHLS/pve/main/extra_scripts/check-dns.sh -O /usr/local/bin/check-dns.sh wget ${cdn_success_url}https://raw.githubusercontent.com/spiritLHLS/pve/main/extra_scripts/check-dns.service -O /etc/systemd/system/check-dns.service chmod +x /usr/local/bin/check-dns.sh chmod +x /etc/systemd/system/check-dns.service systemctl daemon-reload systemctl enable check-dns.service systemctl start check-dns.service # 清除防火墙 install_package ufw ufw disable # 查询公网IPV4 check_ipv4 # 打印安装后的信息 url="https://${IPV4}:8006/" _green "Installation complete, please open HTTPS web page $url" _green "The username and password are the username and password used by the server (e.g. root and root user's password)" _green "If the login is correct please do not rush to reboot the system, go to execute the commands of the pre-configured environment and then reboot the system" _green "If there is a problem logging in the web side is not up, wait 10 seconds and restart the system to see" _green "安装完毕,请打开HTTPS网页 $url" _green "用户名、密码就是服务器所使用的用户名、密码(如root和root用户的密码)" _green "如果登录无误请不要急着重启系统,去执行预配置环境的命令后再重启系统" _green "如果登录有问题web端没起来,等待10秒后重启系统看看" rm -rf /root/reboot_pve.txt rm -rf /root/ifupdown2_installed.txt