mirror of
https://github.com/borekon/Blocklists.git
synced 2025-06-07 14:04:26 +02:00
Full path to iptables
This commit is contained in:
parent
ddaead417f
commit
73ffeee0d1
|
@ -15,6 +15,7 @@ TO_DOWNLOAD[2]="http://lists.blocklist.de/lists/apache.txt"
|
|||
CHAINNAME="blocklist-de"
|
||||
ACTION="REJECT" # Can be DROP
|
||||
PRINT_REPORT=1
|
||||
IPTABLES_PATH="/sbin/iptables"
|
||||
|
||||
########## Do not edit anything below this line ##########
|
||||
|
||||
|
@ -50,14 +51,14 @@ amountAfterSortAndUnique=`cat $fileFiltered | wc -l`
|
|||
#
|
||||
## Create chain if it does not exist
|
||||
#
|
||||
iptables --new-chain $CHAINNAME >/dev/null 2>&1
|
||||
$IPTABLES_PATH --new-chain $CHAINNAME >/dev/null 2>&1
|
||||
|
||||
# Insert rule (if necesarry) into INPUT chain so the chain above will also be used
|
||||
if [ `iptables -L INPUT | grep $CHAINNAME | wc -l` -eq 0 ]
|
||||
if [ `$IPTABLES_PATH -L INPUT | grep $CHAINNAME | wc -l` -eq 0 ]
|
||||
then
|
||||
|
||||
# Insert rule because it is not present
|
||||
iptables -I INPUT -j $CHAINNAME
|
||||
$IPTABLES_PATH -I INPUT -j $CHAINNAME
|
||||
|
||||
fi
|
||||
|
||||
|
@ -68,7 +69,7 @@ while read currentIP
|
|||
do
|
||||
|
||||
# Check via command
|
||||
iptables -C $CHAINNAME -s $currentIP -j $ACTION >/dev/null 2>&1
|
||||
$IPTABLES_PATH -C $CHAINNAME -s $currentIP -j $ACTION >/dev/null 2>&1
|
||||
|
||||
# Now we have to check the exit code of iptables via $?
|
||||
#
|
||||
|
@ -79,7 +80,7 @@ do
|
|||
then
|
||||
|
||||
# Append the IP
|
||||
iptables -A $CHAINNAME -s $currentIP -j $ACTION >/dev/null 2>&1
|
||||
$IPTABLES_PATH -A $CHAINNAME -s $currentIP -j $ACTION >/dev/null 2>&1
|
||||
|
||||
# Increment the counter
|
||||
amountInserted=$((amountInserted + 1))
|
||||
|
@ -96,14 +97,14 @@ do
|
|||
then
|
||||
# Delete the rule by its rulenumber
|
||||
# Because changing the action would result in errors
|
||||
iptables -D $CHAINNAME -s $currentIP -j $ACTION >/dev/null 2>&1
|
||||
$IPTABLES_PATH -D $CHAINNAME -s $currentIP -j $ACTION >/dev/null 2>&1
|
||||
|
||||
# Increment the counter
|
||||
amountDeleted=$((amountDeleted + 1))
|
||||
|
||||
fi
|
||||
|
||||
done <<< "`iptables -n -L blocklist-de | awk '{print $4}'`"
|
||||
done <<< "`$IPTABLES_PATH -n -L blocklist-de | awk '{print $4}'`"
|
||||
|
||||
## Print report
|
||||
if [ $PRINT_REPORT -eq 1 ]
|
||||
|
@ -124,4 +125,4 @@ fi
|
|||
## Cleanup
|
||||
#
|
||||
rm -f /tmp/blocklist-ips-unfiltered.txt
|
||||
rm -f /tmp/blocklist-ips-filtered.txt
|
||||
rm -f /tmp/blocklist-ips-filtered.txt
|
||||
|
|
Loading…
Reference in New Issue
Block a user