#!/bin/bashmc_port=25565regex="^([[:digit:]\.]+):[[:digit:]]+$"ips=()w

1. #!/bin/bash
2. mc_port=25565
3.  
4. regex="^([[:digit:]\.]+):[[:digit:]]+$"
5. ips=()
6. while read -r line ; do
7.     if [[ $line =~ $regex ]] ; then
8.         ips+=(${BASH_REMATCH[1]})
9.     fi  
10. done < <(netstat -n --protocol inet | grep ':22022' | awk '{print $5}')
11.  
12. #flush existing rules
13. /sbin/iptables -F
14. for i in "${!ips[@]}" ; do
15.     #allow connection for ip ${ips[$i]}
16.     /sbin/iptables -A INPUT -p tcp --destination-port $mc_port -s ${ips[$i]} -j ACCEPT
17. done
18.  
19. #disallow all other connections
20. /sbin/iptables -A INPUT -p tcp --destination-port $mc_port -j DROP