Subversion Repositories ALCASAR

Rev

Rev 3046 | Rev 3103 | Go to most recent revision | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log

Rev 3046 Rev 3099
Line 1... Line 1...
1 
#!/bin/bash
 1 
#!/bin/bash
2 
# $Id: alcasar-iptables.sh 3046 2022-07-30 22:07:33Z rexy $
 2 
# $Id: alcasar-iptables.sh 3099 2022-12-28 11:30:30Z rexy $
3 
# Script de mise en place des regles du parefeu d'Alcasar (mode normal)
 3 
# Script de mise en place des regles du parefeu d'Alcasar (mode normal)
4 
# This script writes the netfilter rules for ALCASAR
 4 
# This script writes the netfilter rules for ALCASAR
5 
# Rexy - 3abtux - CPN
 5 
# Rexy - 3abtux - CPN
6 
#
 6 
#
7 
# Reminders
 7 
# Reminders
Line 163... Line 163...
163 
do
 163 
do
164 
    ipset add site_direct $site
 164 
    ipset add site_direct $site
165 
done
 165 
done
166 
 
 166 
 
167 
###### WL set  ###########
 167 
###### WL set  ###########
168 
# taille fixe, car peuplé par dnsmasq / fixe length due to dnsmasq dynamic loading
 168 
# taille fixe, car peuplé par unbound / fixe length due to unbound dynamic loading
169 
wl_set_length=65536
 169 
wl_set_length=65536
170 
# Chargement Loading
 170 
# Chargement Loading
171 
echo "create wl_ip_allowed hash:net family inet hashsize 1024 maxelem $wl_set_length" > $TMP_set_save
 171 
echo "create wl_ip_allowed hash:net family inet hashsize 1024 maxelem $wl_set_length" > $TMP_set_save
172 
#get ip-wl files from ACC
 172 
#get ip-wl files from ACC
173 
for category in `ls -1 $WL_IP_CAT |cut -d '@' -f1`
 173 
for category in `ls -1 $WL_IP_CAT |cut -d '@' -f1`