Главная Обзор Помощь
Вход
yosoyhendrix
/
vesta
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Ветка: revert-1065-patch-12
Ветки Метки
vesta
/
bin
/
v-stop-firewall

v-stop-firewall 2.1 KB
Постоянная ссылка История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. #!/bin/bash
    2. 

  2. # info: stop system firewall
    3. 

  3. # options: NONE
    4. 

  4. #
    5. 

  5. # The function stops  iptables
    6. 

  6. 

  7. 

  8. #----------------------------------------------------------#
    9. 

  9. #                    Variable&Function                     #
    10. 

  10. #----------------------------------------------------------#
    11. 

  11. 

  12. # Defining absolute path for iptables and modprobe
    13. 

  13. iptables="/sbin/iptables"
    14. 

  14. modprobe="/sbin/modprobe"
    15. 

  15. 

  16. # Includes
    17. 

  17. source /etc/profile.d/vesta.sh
    18. 

  18. source $VESTA/func/main.sh
    19. 

  19. source $VESTA/conf/vesta.conf
    20. 

  20. 

  21. 

  22. #----------------------------------------------------------#
    23. 

  23. #                    Verifications                         #
    24. 

  24. #----------------------------------------------------------#
    25. 

  25. 

  26. #is_system_enabled "$FIREWALL_SYSTEM" 'FIREWALL_SYSTEM'
    27. 

  27. 

  28. 

  29. #----------------------------------------------------------#
    30. 

  30. #                       Action                             #
    31. 

  31. #----------------------------------------------------------#
    32. 

  32. 

  33. # Creating temporary file
    34. 

  34. tmp=$(mktemp)
    35. 

  35. 

  36. # Flushing INPUT chain
    37. 

  37. echo "$iptables -P INPUT ACCEPT" >> $tmp
    38. 

  38. echo "$iptables -F INPUT" >> $tmp
    39. 

  39. 

  40. # Deleting vesta chain
    41. 

  41. echo "$iptables -X vesta" >> $tmp
    42. 

  42. 

  43. # Deleting custom chains
    44. 

  44. chains=$(cat $VESTA/data/firewall/chains.conf 2>/dev/null)
    45. 

  45. IFS=$'\n'
    46. 

  46. for chain in $chains; do
    47. 

  47.     eval $chain
    48. 

  48.     echo "$iptables -F fail2ban-$CHAIN" >> $tmp
    49. 

  49.     echo "$iptables -X fail2ban-$CHAIN" >> $tmp
    50. 

  50. done
    51. 

  51. 

  52. # Applying rules
    53. 

  53. bash $tmp 2>/dev/null
    54. 

  54. 

  55. # Deleting temporary file
    56. 

  56. rm -f $tmp
    57. 

  57. 

  58. # Saving rules to the master iptables file
    59. 

  59. if [ -e "/etc/redhat-release" ]; then
    60. 

  60.     /sbin/iptables-save > /etc/sysconfig/iptables
    61. 

  61.     if [ -z "$(ls /etc/rc3.d/S*iptables 2>/dev/null)" ]; then
    62. 

  62.         /sbin/chkconfig iptables off
    63. 

  63.     fi
    64. 

  64. else
    65. 

  65.     /sbin/iptables-save > /etc/iptables.rules
    66. 

  66.     preup="/etc/network/if-pre-up.d/iptables"
    67. 

  67.     if [ ! -e "$preup" ]; then
    68. 

  68.         echo '#!/bin/sh' > $preup
    69. 

  69.         echo "/sbin/iptables-restore < /etc/iptables.rules" >> $preup
    70. 

  70.         echo "exit 0" >> $preup
    71. 

  71.         chmod +x $preup
    72. 

  72.     fi
    73. 

  73. fi
    74. 

  74. 

  75. 

  76. #----------------------------------------------------------#
    77. 

  77. #                       Vesta                              #
    78. 

  78. #----------------------------------------------------------#
    79. 

  79. 

  80. exit
    81.