Update v-add-firewall-chain

Obtains the SSH port from the service configuration file (originally it was hardcoded). This allow the correct creation of ssh chain when this service has a custom port.
2025-08-14 02:28:03 -07:00 · 2019-02-07 16:49:43 +01:00 · 2019-02-07 16:49:43 +01:00 · d334ddc501
commit d334ddc501
parent 0d85c88d18
1 changed files with 7 additions and 1 deletions
--- a/bin/v-add-firewall-chain
+++ b/bin/v-add-firewall-chain
@ -47,7 +47,13 @@ is_system_enabled "$FIREWALL_SYSTEM" 'FIREWALL_SYSTEM'

 # Checking known chains
 case $chain in
-    SSH)        port=22; protocol=TCP ;;
+    SSH)        # Get ssh port by reading ssh config file.
+                sshport=$(grep '^Port ' /etc/ssh/sshd_config | head -1 | cut -d ' ' -f 2)
+                if [ -z "$sshport" ]; then
+                    sshport=22
+                fi
+                port=$sshport; 
+                protocol=TCP ;;
    FTP)        port=21; protocol=TCP  ;;
    MAIL)       port='25,465,587,2525,110,995,143,993'; protocol=TCP  ;;
    DNS)        port=53; protocol=UDP  ;;