Home Explore Help
Sign In
rajven
/
Eye
mirror of https://github.com/rajven/Eye
1
0
Fork 0
Files Issues 0 Wiki
Tree: ed76039f5a
Branches Tags
Eye
/
docs
/
systemd
/
init.d
/
ipset

ipset 2.2 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. #! /bin/bash
    2. 

  2. 

  3. #
    4. 

  4. ### BEGIN INIT INFO
    5. 

  5. # Provides: ipset
    6. 

  6. # Required-Start: $local_fs $network $remote_fs $syslog
    7. 

  7. # Required-Stop: $local_fs $network $remote_fs $syslog
    8. 

  8. # Default-Start:  2 3 4 5
    9. 

  9. # Default-Stop: 0 1 6
    10. 

  10. # Short-Description: start and stop the ipset lists
    11. 

  11. # Description: start and stop the ipset lists
    12. 

  12. ### END INIT INFO
    13. 

  13. 

  14. if [ -r "/lib/lsb/init-functions" ]; then
    15. 

  15.         . /lib/lsb/init-functions
    16. 

  16. else
    17. 

  17.         log_success_msg() {
    18. 

  18.                 echo "$@"
    19. 

  19.         }
    20. 

  20.         log_warning_msg() {
    21. 

  21.                 echo "$@" >&2
    22. 

  22.         }
    23. 

  23.         log_failure_msg() {
    24. 

  24.                 echo "$@" >&2
    25. 

  25.         }
    26. 

  26. fi
    27. 

  27. 

  28. 

  29. IPSET='/sbin/ipset'
    30. 

  30. IPSET_DIR='/etc/ipset.d'
    31. 

  31. 

  32. # if the ip configuration utility isn't around we can't function.
    33. 

  33. [ -x ${IPSET} ] || exit 1
    34. 

  34. 

  35. stop_ipset() {
    36. 

  36. ls -x -1 "${IPSET_DIR}/"*.conf | while read IPSET_FILE; do
    37. 

  37. ipset_name=`grep -P "^create\s+(\S+)\s+" "${IPSET_FILE}"  | awk '{ print $2 }' | sed 's/_new//'`
    38. 

  38. [ -z "${ipset_name}" ] && continue
    39. 

  39. echo -n $"Destroy ${ipset_name} ipset"
    40. 

  40. ${IPSET} destroy ${ipset_name} >/dev/null 2>&1
    41. 

  41. echo
    42. 

  42. done
    43. 

  43. return 0
    44. 

  44. }
    45. 

  45. 

  46. start_ipset() {
    47. 

  47. ls -x -1 "${IPSET_DIR}/"*.conf | while read IPSET_FILE; do
    48. 

  48. ipset_name=`grep -P "^create\s+(\S+)\s+" "${IPSET_FILE}"  | awk '{ print $2 }' | sed 's/_new//'`
    49. 

  49. if [ ! -e "${IPSET_DIR}/${ipset_name}.ipset" ]; then
    50. 

  50.     cat "${IPSET_FILE}" | sed 's/_new//' >"${IPSET_DIR}/${ipset_name}.ipset"
    51. 

  51.     fi
    52. 

  52. echo -n $"Load ${ipset_name} ipset"
    53. 

  53. ${IPSET} restore -file "${IPSET_DIR}/${ipset_name}.ipset" >/dev/null 2>&1
    54. 

  54. echo
    55. 

  55. done
    56. 

  56. return 0
    57. 

  57. }
    58. 

  58. 

  59. save_ipset() {
    60. 

  60. ls -x -1 "${IPSET_DIR}/"*.conf | while read IPSET_FILE; do
    61. 

  61. ipset_name=`grep -P "^create\s+(\S+)\s+" "${IPSET_FILE}"  | awk '{ print $2 }' | sed 's/_new//'`
    62. 

  62. [ -z "${ipset_name}" ] && continue
    63. 

  63. echo -n $"Save ${ipset_name} ipset"
    64. 

  64. ${IPSET} save ${ipset_name} -file "${IPSET_DIR}/${ipset_name}.ipset" >/dev/null 2>&1
    65. 

  65. echo
    66. 

  66. done
    67. 

  67. return 0
    68. 

  68. }
    69. 

  69. 

  70. # See how we were called.
    71. 

  71. case "$1" in
    72. 

  72.   start)
    73. 

  73.         start_ipset
    74. 

  74.         RET=$?
    75. 

  75.         ;;
    76. 

  76.   stop)
    77. 

  77.         stop_ipset
    78. 

  78.         RET=$?
    79. 

  79.         ;;
    80. 

  80.   save)
    81. 

  81.         save_ipset
    82. 

  82.         RET=$?
    83. 

  83.         ;;
    84. 

  84.   restart|reload)
    85. 

  85.         stop_ipset
    86. 

  86.         start_ipset
    87. 

  87.         RET=$?
    88. 

  88.         ;;
    89. 

  89.   *)
    90. 

  90.         echo $"Usage: $0 {start|stop|restart|reload}"
    91. 

  91.         exit 1
    92. 

  92. esac
    93. 

  93. 

  94. exit ${RET}
    95. 

  95.