Custom Search
|
#!/bin/sh # Startup script to manage iptables. # # Script Author: Joshua Jensen# -- hacked up by gafton with help from notting # -- adapted from ipchains by brent krkosska on Feb 22, 2001 # -- reworked-over by the same krkosska on May 08, 2005 # . /etc/rc.d/init.d/functions if [ ! -x /sbin/iptables ]; then exit 0 echo "No /sbin/iptables file" fi case "$1" in bs-me) echo "WOW! You are so good at this! Keep it up!" ;; start) echo "Flushing all current rules and user defined chains:" /sbin/iptables -F echo "Clearing all current rules and user defined chains:" /sbin/iptables -X echo "Applying iptables firewall rules: " /bin/sh /root/iptables-server.sh echo "Done" ;; stop) echo "Flushing all chains:" /sbin/iptables -F echo "Removing user defined chains:" /sbin/iptables -X echo "Resetting built-in chains to the unsafe ACCEPT policy:" echo "" /sbin/iptables -P INPUT ACCEPT && \ /sbin/iptables -P FORWARD ACCEPT && \ /sbin/iptables -P OUTPUT ACCEPT && \ success "Resetting built-in chains to the unsafe ACCEPT policy" || \ failure "Failure" echo "Done" ;; status) /sbin/iptables -L -n --line-numbers |less ;; panic) echo "Changing target policies to DROP: " /sbin/iptables -P INPUT DROP && /sbin/iptables -P FORWARD DROP && \ /sbin/iptables -P OUTPUT DROP && \ echo "" echo "Flushing all chains:" /sbin/iptables -F echo "Removing user defined chains:" /sbin/iptables -X echo "" success "Changing target policies to DROP" || \ failure "EXCITING, EYE-CATCHING FAILURE MESSAGE!" ;; *) echo "Usage: $0 { start...runs /root/iptables-server.sh stop...flush all rules and set policies to ACCEPT status...output of iptables -nL panic...set policies to DROP and flush all rules bs-me...Optimistic pontification }" exit 1 esac exit 0
Custom Search
|