From 3046c9f262ac84eb40a71a9fdf7ab4620c1c2d60 Mon Sep 17 00:00:00 2001 From: gyurix Date: Thu, 13 Oct 2022 09:37:05 +0000 Subject: [PATCH] Syntax fixing --- firewall/firewall-add | 29 +++++++++++++++-------------- 1 file changed, 15 insertions(+), 14 deletions(-) diff --git a/firewall/firewall-add b/firewall/firewall-add index 92fd9cb..62988a0 100755 --- a/firewall/firewall-add +++ b/firewall/firewall-add @@ -166,6 +166,7 @@ prerouting() { debug "$IPTABLES -I PREROUTING -d $SOURCE_IP -p $PROTOCOL --dport $SOURCE_PORT -m comment --comment $COMMENT -j DNAT --to $TARGET_IP:$TARGET_PORT" $IPTABLES -w -I PREROUTING -d $SOURCE_IP -p $PROTOCOL --dport $SOURCE_PORT -m comment --comment "$COMMENT" -j DNAT --to $TARGET_IP:$TARGET_PORT +} postrouting() { @@ -329,23 +330,23 @@ else if [[ "$SOURCE_IP" != "" && "$TARGET_IP" != "" ]]; then - # - # DELETE UNECESSARY LINES FROM PREVIOUS RULES - IPTABLES_COMMAND="$IPTABLES -w --line-number -n --list $CHAIN | grep $PROTOCOL $GREP_OPTIONS | awk '{print \$1}'| tac"; - debug "$IPTABLES_COMMAND"; - LINES=$(eval $IPTABLES_COMMAND); + # + # DELETE UNECESSARY LINES FROM PREVIOUS RULES + IPTABLES_COMMAND="$IPTABLES -w --line-number -n --list $CHAIN | grep $PROTOCOL $GREP_OPTIONS | awk '{print \$1}'| tac"; + debug "$IPTABLES_COMMAND"; + LINES=$(eval $IPTABLES_COMMAND); - if [ -n "$LINES" ] ; then - for i in $LINES; do - debug "$IPTABLES -D $CHAIN $i" - $IPTABLES -w -D $CHAIN $i - sleep 0.1 - done - fi + if [ -n "$LINES" ] ; then + for i in $LINES; do + debug "$IPTABLES -D $CHAIN $i" + $IPTABLES -w -D $CHAIN $i + sleep 0.1 + done + fi - debug "$IPTABLES -I $CHAIN -p $PROTOCOL $IPTABLES_OPTIONS -m comment --comment "$COMMENT" -j ACCEPT" - $IPTABLES -w -I $CHAIN -p $PROTOCOL $IPTABLES_OPTIONS -m comment --comment "$COMMENT" -j ACCEPT + debug "$IPTABLES -I $CHAIN -p $PROTOCOL $IPTABLES_OPTIONS -m comment --comment "$COMMENT" -j ACCEPT" + $IPTABLES -w -I $CHAIN -p $PROTOCOL $IPTABLES_OPTIONS -m comment --comment "$COMMENT" -j ACCEPT fi ############################# fi