forked from evolix/evobackup
Emit a warning if no firewall file is configured
This commit is contained in:
parent
bdc6b4fa4d
commit
11f84a9f7b
|
@ -23,13 +23,18 @@ iptables_input_accept() {
|
||||||
}
|
}
|
||||||
|
|
||||||
if [ -n "${FIREWALL_RULES}" ]; then
|
if [ -n "${FIREWALL_RULES}" ]; then
|
||||||
|
# remove existing rules for this jail
|
||||||
[ -f "${FIREWALL_RULES}" ] && sed -i "/#${jail_name}$/d" "${FIREWALL_RULES}"
|
[ -f "${FIREWALL_RULES}" ] && sed -i "/#${jail_name}$/d" "${FIREWALL_RULES}"
|
||||||
if [ -d "${jail_path}" ]; then
|
if [ -d "${jail_path}" ]; then
|
||||||
port=$("${LIBDIR}/bkctld-port" "${jail_name}")
|
port=$("${LIBDIR}/bkctld-port" "${jail_name}")
|
||||||
|
# Add a rule for each IP
|
||||||
for ip in $("${LIBDIR}/bkctld-ip" "${jail_name}"); do
|
for ip in $("${LIBDIR}/bkctld-ip" "${jail_name}"); do
|
||||||
iptables_input_accept "${jail_name}" "${port}" "${ip}" >> "${FIREWALL_RULES}"
|
iptables_input_accept "${jail_name}" "${port}" "${ip}" >> "${FIREWALL_RULES}"
|
||||||
done
|
done
|
||||||
|
# Restart the firewall
|
||||||
[ -f /etc/init.d/minifirewall ] && /etc/init.d/minifirewall restart >/dev/null
|
[ -f /etc/init.d/minifirewall ] && /etc/init.d/minifirewall restart >/dev/null
|
||||||
fi
|
fi
|
||||||
notice "${jail_name}: firewall rules have been updated."
|
notice "${jail_name}: firewall rules have been updated."
|
||||||
|
else
|
||||||
|
warning "${jail_name}: skipping firewall update, FIREWALL_RULES variable is empty."
|
||||||
fi
|
fi
|
||||||
|
|
Loading…
Reference in a new issue