-
Notifications
You must be signed in to change notification settings - Fork 0
/
_block-ipv4-redo.sh
52 lines (43 loc) · 1.14 KB
/
_block-ipv4-redo.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
#!/bin/sh
### Check & Reload IPv4 address via `ip`;
# working directoy;
cd "SSFWROOT/PREFIX_tools-dir";
# temp output file;
T="../txt";
# IPv4 block directory;
D="../PREFIX_block-dir/ipv4";
# (option) log file
L="../PREFIX_log-dir/monitor-ipv4.sshd";
# error debugging log;
E="../PREFIX_log-dir/redo-debug.ipv4";
# utility to use
B="./PREFIX_block-ipv4-addr.sh";
if [ "$1" = "--from-reboot" ]; then
R="/var/log/blocked-at-reboot.ipv4";
echo -n "" > $R;
for xADDR in $(ls -1 $D/ 2>/dev/null); do
$B $xADDR false >> $R;
done;
echo "$(date -Iseconds)#$$#0#redo#added: $(cat $R | wc -l) at reboot" >> $L;
exit;
fi;
#ip route show | grep blackhole | cut -d \ -f 2 > $T;
ip r | grep blackhole > $T;
for xADDR in $(ls -1 $D/ 2>/dev/null); do
S=$(echo "$xADDR" | wc -c);
if [ $S -lt 7 ]; then
rm -f $D/$xADDR;
else
M=$(grep " $xADDR " $T);
if [ -f "$L" ]; then
if [ "$M" = "" ]; then
echo -n "$(date -Iseconds)#$$#0#redo#" >> "$L";
#echo "$(date -Iseconds)#$$#$xADDR" >> "$E";
$B "$xADDR" false >> "$L";
echo "$$:redo: added $xADDR";
fi;
else
test -z "$M" && $B $xADDR false;
fi;
fi;
done;