Diff for scripts/shell/firewall/fw-universal.sh between version 2.117 and 2.118
version 2.117, 2018/08/23 04:34:58 |
version 2.118, 2018/12/10 11:46:12 |
|
|
# Licensed under terms of GNU General Public License. |
# Licensed under terms of GNU General Public License. |
# All rights reserved. |
# All rights reserved. |
# |
# |
# $Platon: scripts/shell/firewall/fw-universal.sh,v 2.116 2018/06/28 23:13:42 nepto Exp $ |
# $Platon: scripts/shell/firewall/fw-universal.sh,v 2.117 2018/08/23 04:34:58 nepto Exp $ |
# |
# |
# Changelog: |
# Changelog: |
# 2003-10-24 - created |
# 2003-10-24 - created |
Line 763 do_ban_single_ip() |
|
Line 763 do_ban_single_ip() |
|
return; |
return; |
fi |
fi |
for banned_ip in $*; do |
for banned_ip in $*; do |
$IPTABLES -A INPUT -s $banned_ip -j DROP; |
# This does immediate connection termination, but it must be inserted |
if [ "X$XEN_MODE" = "Xon" ]; then |
# and thus not appended into chain, otherwise connection will still |
print_info -ne " XEN_MODE "; |
# remain alive. Former forward chain rule was removed as unneccessary. |
else |
# -- Nepto [2018-08-23] |
# This does immediate connection termination, but it must be |
# -- Plantroon [2018-12-10] |
# inserted (not appended) into chain, otherwise connection |
$IPTABLES -I INPUT -s $banned_ip -j DROP; |
# will still remain alive -- Nepto [2018-08-23] |
|
$IPTABLES -I FORWARD -s $banned_ip -j DROP; |
|
fi |
|
done |
done |
} # }}} |
} # }}} |
|
|
Platon Group <platon@platon.org> http://platon.org/
|
|