SHOW:
|
|
- or go back to the newest paste.
| 1 | #!/bin/bash | |
| 2 | #chkconfig: 3 10 90 | |
| 3 | - | #description lab5 (true) Mitrofanov script |
| 3 | + | #description lab5_MitrofanovDA_script |
| 4 | ||
| 5 | . /etc/init.d/functions | |
| 6 | . /etc/sysconfig/network | |
| 7 | ||
| 8 | if [ ! -f /etc/sysconfig/network ]; then | |
| 9 | exit 0 | |
| 10 | fi | |
| 11 | ||
| 12 | if [ -f /etc/sysconfig/network-scripts/ifcfg-eth1 ]; then | |
| 13 | . /etc/sysconfig/network-scripts/ifcfg-eth1 | |
| 14 | fi | |
| 15 | ||
| 16 | [ "${NETWORKING}" = "no" ] && exit 0
| |
| 17 | [ -x /sbin/ifconfig ] || exit 1 | |
| 18 | ||
| 19 | case "$1" in | |
| 20 | start) | |
| 21 | echo "Активируем eth1" | |
| 22 | ifconfig eth1 ${IPADDR} netmask ${NETMASK} up
| |
| 23 | echo "Включаем маршрутизацию, обновляем iptables" | |
| 24 | echo 1 > /proc/sys/net/ipv4/ip_forward | |
| 25 | iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE | |
| 26 | iptables -A INPUT -i eth1 -p TCP -s 0.0.0.0 --sport 22 -j DROP | |
| 27 | sleep 0.5 | |
| 28 | ifconfig eth1 | grep UP > /dev/null | |
| 29 | if [ $? = 0 ] | |
| 30 | then echo -e "\e[1;32mOK\e[0m" | |
| 31 | else echo -e "\e[1;31mОшибка: интерфейс не активирован\e[0m" | |
| 32 | fi | |
| 33 | ;; | |
| 34 | stop) | |
| 35 | echo "Деактивация eth1, отключаем маршрутизацию" | |
| 36 | ifconfig eth1 ${IPADDR} netmask ${NETMASK} down
| |
| 37 | echo 0 > /proc/sys/net/ipv4/ip_forward | |
| 38 | echo "Очищаем iptables" | |
| 39 | iptables -F | |
| 40 | ifconfig eth1 | grep UP > /dev/null | |
| 41 | if [ ! $? = 0 ] | |
| 42 | then echo -e "\e[1;32mOK\e[0m" | |
| 43 | else echo -e "\e[1;31mОшибка: интерфейс не активирован\e[0m" | |
| 44 | fi | |
| 45 | ;; | |
| 46 | status) | |
| 47 | iptables -L -n | |
| 48 | echo "--------" | |
| 49 | ifconfig | |
| 50 | echo "--------" | |
| 51 | route -n | |
| 52 | cat /proc/sys/net/ipv4/ip_forward | |
| 53 | echo "--------" | |
| 54 | ;; | |
| 55 | esac | |
| 56 | ||
| 57 | exit 0 |
