evolix/dump-server-state
21
0
Fork 0
Code Issues 4 Pull requests Projects Releases 4 Wiki Activity

Store iptables/nft stderr output in special files

Browse source
This commit is contained in:
Jérémy Lecour 2023-08-01 22:47:33 +02:00 committed by Jérémy Lecour
parent 80d6b5a67e
commit d29aa7887c
Signed by: jlecour
SSH key fingerprint: SHA256:h+5LgHRKwN9lS0SsdVR5yZPeFlJE4Mt+8UtL4CcP8dY
2 changed files with 8 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
CHANGELOG
View file

@ -12,6 +12,8 @@ The **patch** part changes is incremented if multiple releases happen the same m
### Added ### Added
* Store iptables/nft stderr output in special files
### Changed ### Changed
### Fixed ### Fixed

12
dump-server-state.sh
View file

@ -467,14 +467,14 @@ task_iptables() {
printf "\n#### ip6tables --table mangle --list ###############\n" printf "\n#### ip6tables --table mangle --list ###############\n"
${ip6tables_bin} --table mangle --list --numeric ${ip6tables_bin} --table mangle --list --numeric
fi fi
} > "${dump_dir}/iptables.txt") } > "${dump_dir}/iptables.txt") 2> "${dump_dir}/iptables.err"
last_rc=$? last_rc=$?
if [ ${last_rc} -eq 0 ]; then if [ ${last_rc} -eq 0 ]; then
debug "* iptables OK" debug "* iptables OK"
else else
debug "* iptables ERROR" debug "* iptables ERROR"
debug "${last_result}" debug "$(cat ${dump_dir}/iptables.err)"
# Ignore errors because we don't know if this is nft related or a real error # Ignore errors because we don't know if this is nft related or a real error
# rc=10 # rc=10
fi fi
@ -485,14 +485,14 @@ task_iptables() {
iptables_save_bin=$(command -v iptables-save) iptables_save_bin=$(command -v iptables-save)
if [ -n "${iptables_save_bin}" ]; then if [ -n "${iptables_save_bin}" ]; then
last_result=$(${iptables_save_bin} > "${dump_dir}/iptables-save.txt") ${iptables_save_bin} > "${dump_dir}/iptables-save.txt" 2> "${dump_dir}/iptables-save.err"
last_rc=$? last_rc=$?
if [ ${last_rc} -eq 0 ]; then if [ ${last_rc} -eq 0 ]; then
debug "* iptables-save OK" debug "* iptables-save OK"
else else
debug "* iptables-save ERROR" debug "* iptables-save ERROR"
debug "${last_result}" debug "$(cat ${dump_dir}/iptables-save.err)"
# Ignore errors because we don't know if this is nft related or a real error # Ignore errors because we don't know if this is nft related or a real error
# rc=10 # rc=10
fi fi
@ -503,14 +503,14 @@ task_iptables() {
nft_bin=$(command -v nft) nft_bin=$(command -v nft)
if [ -n "${nft_bin}" ]; then if [ -n "${nft_bin}" ]; then
last_result=$(${nft_bin} list ruleset > "${dump_dir}/nft-ruleset.txt") ${nft_bin} list ruleset > "${dump_dir}/nft-ruleset.txt" 2> "${dump_dir}/nft-ruleset.err"
last_rc=$? last_rc=$?
if [ ${last_rc} -eq 0 ]; then if [ ${last_rc} -eq 0 ]; then
debug "* nft ruleset OK" debug "* nft ruleset OK"
else else
debug "* nft ruleset ERROR" debug "* nft ruleset ERROR"
debug "${last_result}" debug "$(cat ${dump_dir}/nft-ruleset.err)"
rc=10 rc=10
fi fi
fi fi