update

inc/certs.inc

@@ -216,7 +216,7 @@ LISTCERTS(){
 	fi
 	
 	# if [ ! -z ${LOCAL_SERVICES+x} ]; then
-	# 	NCMD="ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_HOSTS['LB'][0]}"
+	# 	NCMD="ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_HOSTS['LB'][0]}"
 	# 	#${NCMD} rm -f /tmp/ssllist
 	# 	#${NCMD} 'for certdir in ${NM_CERTPATH}/live/*/ ; do echo $certdir; done' > /tmp/ssllist
 	# else
@@ -479,7 +479,7 @@ LISTCERTS_NPM(){
 	done
 	unset IFS
 	if [ ! -z ${LOCAL_SERVICES+x} ]; then
-		NCMD="ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${MYSQL_HOSTS[0]}"
+		NCMD="ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${MYSQL_HOSTS[0]}"
 		${NCMD} rm -f /tmp/ssllist
 		${NCMD} 'for certdir in ${NM_CERTPATH}/live/*/ ; do echo $certdir; done' > /tmp/ssllist
 	else
@@ -675,17 +675,17 @@ export PDNS_Token='${NM_PDNS_APIKEY}'
 export PDNS_Ttl=60
 		" >> /tmp/vcenter-update-ssl.sh
 	
-		if ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} [ ! -d ${NM_VC_ACMEFOLDER} ]; then
+		if ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} [ ! -d ${NM_VC_ACMEFOLDER} ]; then
 			echo -e "${idsCL[Yellow]}Installing acme.sh scripts onto vCenter ... ${idsCL[Default]}\n"
 			until [ "${le_email}" != "" ]; do
 				echo -en "${idsCL[LightCyan]}Enter your email to register with LetsEncrypt: ${idsCL[Default]}"
 				read le_email
 				echo
 			done
-			ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "wget -O -  https://get.acme.sh | sh -s email=${le_email}"
+			ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "wget -O -  https://get.acme.sh | sh -s email=${le_email}"
 		else
 			echo -e "${idsCL[Green]}Verified acme.sh scripts are installed on vCenter, checking for updates ... ${idsCL[Default]}\n"
-			ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "${NM_VC_ACMEFOLDER}/${NM_VC_ACMESCRIPT} --upgrade"
+			ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "${NM_VC_ACMEFOLDER}/${NM_VC_ACMESCRIPT} --upgrade"
 		fi
 		
 		if [ ! -d ${NM_VC_ACMEFOLDER}/${NM_VC_HOSTNAME} ];then
@@ -701,10 +701,10 @@ export PDNS_Ttl=60
 			fi
 		fi
 		
-		ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} 'sed -i "/PDNS_Token/d" /root/.acme.sh/account.conf'
-		ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} 'sed -i "/PDNS_Url/d" /root/.acme.sh/account.conf'
+		ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} 'sed -i "/PDNS_Token/d" /root/.acme.sh/account.conf'
+		ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} 'sed -i "/PDNS_Url/d" /root/.acme.sh/account.conf'
 		scp -q /tmp/vcenter-update-ssl.sh root@${NM_VC_HOSTNAME}:/tmp/vcenter-update-ssl.sh
-		ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "bash /tmp/vcenter-update-ssl.sh"
+		ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "bash /tmp/vcenter-update-ssl.sh"
 		
 		if [ ! -f ${NM_VC_ACMEFOLDER}/${NM_VC_HOSTNAME}/${NM_VC_HOSTNAME}.cer ]; then
 			echo -e "${idsCL[LightYellow]}No certificate was created${idsCL[Default]}\n"
@@ -713,8 +713,8 @@ export PDNS_Ttl=60
 			echo -e "${idsCL[LightYellow]}The certificate was unable to be updated${idsCL[Default]}\n"
 			exit 0
 		else
-			LIVEMD5=$(ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "md5sum /etc/vmware-rhttpproxy/ssl/rui.crt | cut -d\  -f1")
-			CURRENTMD5=$(ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "md5sum ${VC_CERT} | cut -d\  -f1")
+			LIVEMD5=$(ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "md5sum /etc/vmware-rhttpproxy/ssl/rui.crt | cut -d\  -f1")
+			CURRENTMD5=$(ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "md5sum ${VC_CERT} | cut -d\  -f1")
 			if [ "$LIVEMD5" == "$CURRENTMD5" ] && [ "${1}" != "force" ]; then
 				echo -e "${idsCL[LightYellow]}Certificates remains the same, no newer certificates exist${idsCL[Default]}\n"
 				exit 0
@@ -725,12 +725,12 @@ export PDNS_Ttl=60
 		echo -e "${idsCL[LightCyan]}This process make take up to 10mins${idsCL[Default]}"
 		echo
 	
-		ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "(printf '1\n%s\n' '${NM_VC_USER}'; sleep 1; printf '%s\n' '${NM_VC_PASS}'; sleep 1; printf '2\n'; sleep 1; printf '%s\n%s\n%s\ny\n\n' '${VC_CERT}' '${VC_KEY}' '${VC_CHAIN}') | setsid /usr/lib/vmware-vmca/bin/certificate-manager"
+		ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "(printf '1\n%s\n' '${NM_VC_USER}'; sleep 1; printf '%s\n' '${NM_VC_PASS}'; sleep 1; printf '2\n'; sleep 1; printf '%s\n%s\n%s\ny\n\n' '${VC_CERT}' '${VC_KEY}' '${VC_CHAIN}') | setsid /usr/lib/vmware-vmca/bin/certificate-manager"
 		
 		SENDNOTICE "vCenter SSL Updated" "Refresh/Reconnect any systems connecting to vCenter, like Veeam Dummy!"
 		echo "$(date +%Y-%m-%d-%H-%M-%S) VCENTER SSL HAS BEEN UPDATED" >> ${NM_LOGFOLDER}/vc-ssl.log
 		
-		ssh -q -o ConnectTimeout=1 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "rm -f /tmp/vcenter-update-ssl.sh"
+		ssh -q -o ConnectTimeout=3 -o ConnectionAttempts=1 root@${NM_VC_HOSTNAME} "rm -f /tmp/vcenter-update-ssl.sh"
 		rm -f /tmp/vcenter-update-ssl.sh
 	
 		echo -e "\n${idsCL[Green]}The vCenter certifcate has been updated${idsCL[Default]}"