mirror of
https://github.com/Ysurac/openmptcprouter-feeds.git
synced 2025-02-13 02:51:50 +00:00
Fix for IPv6 fw
This commit is contained in:
Ycarus (Yannick Chabanois)
parent
7a549a6628
commit
a7bfd7cac7
1 changed files with 45 additions and 12 deletions
|
|
@ -884,6 +884,7 @@ _vps_firewall_redirect_port() {
|
||||||
config_get v2ray $1 v2ray "0"
|
config_get v2ray $1 v2ray "0"
|
||||||
config_get name $1 name
|
config_get name $1 name
|
||||||
config_get dmz $1 dmz "0"
|
config_get dmz $1 dmz "0"
|
||||||
|
config_get target $1 target "REDIRECT"
|
||||||
if [ -z "$src_dport" ] && [ -n "$dest_port" ]; then
|
if [ -z "$src_dport" ] && [ -n "$dest_port" ]; then
|
||||||
src_dport=$dest_port
|
src_dport=$dest_port
|
||||||
fi
|
fi
|
||||||
|
|
@ -918,42 +919,74 @@ _vps_firewall_redirect_port() {
|
||||||
iptables-save --counters | sed "s:-d $src_dip/32::g" | iptables-restore -w
|
iptables-save --counters | sed "s:-d $src_dip/32::g" | iptables-restore -w
|
||||||
}
|
}
|
||||||
[ -n "$src_ip" ] && comment=" from $src_ip"
|
[ -n "$src_ip" ] && comment=" from $src_ip"
|
||||||
checkfw=$(echo "$vpsfwlist" | grep "# OMR $username redirect router $src_dport port $protoi${comment}")
|
if [ "$target" = "ACCEPT" ]; then
|
||||||
|
checkfw=$(echo "$vpsfwlist" | grep "# OMR $username open router $src_dport port $protoi${comment}")
|
||||||
|
else
|
||||||
|
checkfw=$(echo "$vpsfwlist" | grep "# OMR $username redirect router $src_dport port $protoi${comment}")
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
if [ "$src_dip" = "" ] && [ "$src_ip" = "" ]; then
|
if [ "$src_dip" = "" ] && [ "$src_ip" = "" ]; then
|
||||||
checkfw=$(echo "$vpsfw6list" | grep "$src_dport # OMR $username redirect router $src_dport port $protoi")
|
if [ "$target" = "ACCEPT" ]; then
|
||||||
|
checkfw=$(echo "$vpsfw6list" | grep "$src_dport # OMR $username open router $src_dport port $protoi")
|
||||||
|
else
|
||||||
|
checkfw=$(echo "$vpsfw6list" | grep "$src_dport # OMR $username redirect router $src_dport port $protoi")
|
||||||
|
fi
|
||||||
else
|
else
|
||||||
comment=""
|
comment=""
|
||||||
[ -n "$src_dip" ] && comment=" to $src_dip"
|
[ -n "$src_dip" ] && comment=" to $src_dip"
|
||||||
[ -n "$src_ip" ] && comment=" from $src_ip"
|
[ -n "$src_ip" ] && comment=" from $src_ip"
|
||||||
checkfw=$(echo "$vpsfw6list" | grep "# OMR $username redirect router $src_dport port $protoi${comment}")
|
if [ "$target" = "ACCEPT" ]; then
|
||||||
|
checkfw=$(echo "$vpsfw6list" | grep "# OMR $username open router $src_dport port $protoi${comment}")
|
||||||
|
else
|
||||||
|
checkfw=$(echo "$vpsfw6list" | grep "# OMR $username redirect router $src_dport port $protoi${comment}")
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
if [ "$checkfw" = "" ]; then
|
if [ "$checkfw" = "" ]; then
|
||||||
settings='{"name" : "router '$src_dport'","port" : "'$src_dport'","source_dip" : "'$src_dip'","source_ip" : "'$src_ip'","proto" : "'$protoi'","fwtype" : "DNAT","ipproto" : "'$family'"}'
|
settings='{"name" : "router '$src_dport'","port" : "'$src_dport'","source_dip" : "'$src_dip'","source_ip" : "'$src_ip'","proto" : "'$protoi'","fwtype" : "'$target'","ipproto" : "'$family'"}'
|
||||||
_set_json "shorewallopen" "$settings"
|
_set_json "shorewallopen" "$settings"
|
||||||
fi
|
fi
|
||||||
if [ "$family" = "ipv4" ]; then
|
if [ "$family" = "ipv4" ]; then
|
||||||
if [ "$src_dip" = "" ] && [ "$src_ip" = "" ]; then
|
if [ "$src_dip" = "" ] && [ "$src_ip" = "" ]; then
|
||||||
vpsfwlist=$(echo "$vpsfwlist" | grep -v "$src_dport # OMR $username redirect router $src_dport port $protoi")
|
if [ "$target" = "ACCEPT" ]; then
|
||||||
[ "$username" = "openmptcprouter" ] && vpsfwlist=$(echo "$vpsfwlist" | grep -v "$src_dport # OMR redirect router $src_dport port $protoi")
|
vpsfwlist=$(echo "$vpsfwlist" | grep -v "$src_dport # OMR $username open router $src_dport port $protoi")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfwlist=$(echo "$vpsfwlist" | grep -v "$src_dport # OMR open router $src_dport port $protoi")
|
||||||
|
else
|
||||||
|
vpsfwlist=$(echo "$vpsfwlist" | grep -v "$src_dport # OMR $username redirect router $src_dport port $protoi")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfwlist=$(echo "$vpsfwlist" | grep -v "$src_dport # OMR redirect router $src_dport port $protoi")
|
||||||
|
fi
|
||||||
else
|
else
|
||||||
comment=""
|
comment=""
|
||||||
[ -n "$src_dip" ] && comment=" to $src_dip"
|
[ -n "$src_dip" ] && comment=" to $src_dip"
|
||||||
[ -n "$src_ip" ] && comment=" from $src_ip"
|
[ -n "$src_ip" ] && comment=" from $src_ip"
|
||||||
vpsfwlist=$(echo "$vpsfwlist" | grep -v "# OMR $username redirect router $src_dport port $protoi${comment}")
|
if [ "$target" = "ACCEPT" ]; then
|
||||||
[ "$username" = "openmptcprouter" ] && vpsfwlist=$(echo "$vpsfwlist" | grep -v "# OMR redirect router $src_dport port $protoi${comment}")
|
vpsfwlist=$(echo "$vpsfwlist" | grep -v "# OMR $username open router $src_dport port $protoi${comment}")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfwlist=$(echo "$vpsfwlist" | grep -v "# OMR open router $src_dport port $protoi${comment}")
|
||||||
|
else
|
||||||
|
vpsfwlist=$(echo "$vpsfwlist" | grep -v "# OMR $username redirect router $src_dport port $protoi${comment}")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfwlist=$(echo "$vpsfwlist" | grep -v "# OMR redirect router $src_dport port $protoi${comment}")
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
if [ "$src_dip" = "" ] && [ "$src_ip" = "" ]; then
|
if [ "$src_dip" = "" ] && [ "$src_ip" = "" ]; then
|
||||||
vpsfw6list=$(echo "$vpsfw6list" | grep -v "$src_dport # OMR $username redirect router $src_dport port $protoi")
|
if [ "$target" = "ACCEPT" ]; then
|
||||||
[ "$username" = "openmptcprouter" ] && vpsfw6list=$(echo "$vpsfw6list" | grep -v "$src_dport # OMR redirect router $src_dport port $protoi")
|
vpsfw6list=$(echo "$vpsfw6list" | grep -v "$src_dport # OMR $username open router $src_dport port $protoi")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfw6list=$(echo "$vpsfw6list" | grep -v "$src_dport # OMR open router $src_dport port $protoi")
|
||||||
|
else
|
||||||
|
vpsfw6list=$(echo "$vpsfw6list" | grep -v "$src_dport # OMR $username redirect router $src_dport port $protoi")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfw6list=$(echo "$vpsfw6list" | grep -v "$src_dport # OMR redirect router $src_dport port $protoi")
|
||||||
|
fi
|
||||||
else
|
else
|
||||||
[ -n "$src_dip" ] && comment=" to $src_dip"
|
[ -n "$src_dip" ] && comment=" to $src_dip"
|
||||||
[ -n "$src_ip" ] && comment=" from $src_ip"
|
[ -n "$src_ip" ] && comment=" from $src_ip"
|
||||||
vpsfw6list=$(echo "$vpsfw6list" | grep -v "# OMR $username redirect router $src_dport port $protoi${comment}")
|
if [ "$target" = "ACCEPT" ]; then
|
||||||
[ "$username" = "openmptcprouter" ] && vpsfw6list=$(echo "$vpsfw6list" | grep -v "# OMR redirect router $src_dport port $protoi${comment}")
|
vpsfw6list=$(echo "$vpsfw6list" | grep -v "# OMR $username open router $src_dport port $protoi${comment}")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfw6list=$(echo "$vpsfw6list" | grep -v "# OMR open router $src_dport port $protoi${comment}")
|
||||||
|
else
|
||||||
|
vpsfw6list=$(echo "$vpsfw6list" | grep -v "# OMR $username redirect router $src_dport port $protoi${comment}")
|
||||||
|
[ "$username" = "openmptcprouter" ] && vpsfw6list=$(echo "$vpsfw6list" | grep -v "# OMR redirect router $src_dport port $protoi${comment}")
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue