github/myvesta
1
0
Fork 0
mirror of https://github.com/myvesta/vesta synced 2025-07-06 04:51:54 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

firewall service handler

Browse source
This commit is contained in:
Serghey Rodin 2014-10-23 17:07:08 +03:00
parent 14230b2316
commit cb72d66886
4 changed files with 102 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

14
bin/v-restart-service
View file

@ -27,9 +27,17 @@ check_args '1' "$#" 'SERVICE'
# Action # # Action #
#----------------------------------------------------------# #----------------------------------------------------------#
service $service restart >/dev/null 2>&1 if [ "$service" != "iptables" ]; then
if [ $? -ne 0 ]; then service $service restart >/dev/null 2>&1
exit $E_RESTART if [ $? -ne 0 ]; then
exit $E_RESTART
fi
else
$BIN/v-stop-firewall
$BIN/v-update-firewall
if [ $? -ne 0 ]; then
exit $E_RESTART
fi
fi fi

13
bin/v-start-service
View file

@ -27,9 +27,16 @@ check_args '1' "$#" 'SERVICE'
# Action # # Action #
#----------------------------------------------------------# #----------------------------------------------------------#
service $service start >/dev/null 2>&1 if [ "$service" != 'iptables' ]; then
if [ $? -ne 0 ]; then service $service start >/dev/null 2>&1
exit $E_RESTART if [ $? -ne 0 ]; then
exit $E_RESTART
fi
else
$BIN/v-update-firewall
if [ $? -ne 0 ]; then
exit $E_RESTART
fi
fi fi

71
bin/v-stop-firewall Executable file
View file

@ -0,0 +1,71 @@
#!/bin/bash
# info: stop system firewall
# options: NONE
#
# The function stops iptables
#----------------------------------------------------------#
# Variable&Function #
#----------------------------------------------------------#
# Defining absolute path for iptables and modprobe
iptables="/sbin/iptables"
modprobe="/sbin/modprobe"
# Includes
source /etc/profile.d/vesta.sh
source $VESTA/func/main.sh
source $VESTA/conf/vesta.conf
#----------------------------------------------------------#
# Verifications #
#----------------------------------------------------------#
#is_system_enabled "$FIREWALL_SYSTEM" 'FIREWALL_SYSTEM'
#----------------------------------------------------------#
# Action #
#----------------------------------------------------------#
# Creating temporary file
tmp=$(mktemp)
# Flushing INPUT chain
echo "$iptables -P INPUT ACCEPT" >> $tmp
echo "$iptables -F INPUT" >> $tmp
# Deleting vesta chain
echo "$iptables -X vesta" >> $tmp
# Applying rules
bash $tmp 2>/dev/null
# Deleting temporary file
rm -f $tmp
# Saving rules to the master iptables file
if [ -e "/etc/redhat-release" ]; then
/sbin/iptables-save > /etc/sysconfig/iptables
if [ -z "$(ls /etc/rc3.d/S*iptables 2>/dev/null)" ]; then
/sbin/chkconfig iptables off
fi
else
/sbin/iptables-save > /etc/iptables.rules
preup="/etc/network/if-pre-up.d/iptables"
if [ ! -e "$preup" ]; then
echo '#!/bin/sh' > $preup
echo "/sbin/iptables-restore < /etc/iptables.rules" >> $preup
echo "exit 0" >> $preup
chmod +x $preup
fi
fi
#----------------------------------------------------------#
# Vesta #
#----------------------------------------------------------#
exit

13
bin/v-stop-service
View file

@ -27,9 +27,16 @@ check_args '1' "$#" 'SERVICE'
# Action # # Action #
#----------------------------------------------------------# #----------------------------------------------------------#
service $service stop >/dev/null 2>&1 if [ "$service" != 'iptables' ]; then
if [ $? -ne 0 ]; then service $service stop >/dev/null 2>&1
exit $E_RESTART if [ $? -ne 0 ]; then
exit $E_RESTART
fi
else
$BIN/v-stop-firewall
if [ $? -ne 0 ]; then
exit $E_RESTART
fi
fi fi