ansible/roles/firewall/templates/14-ipset.j2

59 lines
792 B
Plaintext
Raw Permalink Normal View History

2019-08-25 02:06:19 +00:00
#!/bin/sh
SAVE_PATH={{ firewall_ipset_save_path }}
set -e
rc=0
load_ipset()
{
if [ ! -f $SAVE_PATH ]; then
echo "Warning: skipping, no set to load"
else
/sbin/ipset restore -exist < $SAVE_PATH 2> /dev/null
if [ $? -ne 0 ]; then
rc=1
fi
fi
}
save_ipset()
{
touch $SAVE_PATH
chmod 0640 $SAVE_PATH
/sbin/ipset save > $SAVE_PATH
if [ $? -ne 0 ]; then
rc=1
fi
}
flush_ipset()
{
/sbin/ipset flush
if [ $? -ne 0 ]; then
rc=1
fi
}
case "$1" in
start|restart|reload|force-reload)
load_ipset
;;
save)
save_ipset
;;
stop)
echo "Automatic flushing disabled, use \"flush\" instead of \"stop\""
;;
flush)
flush_ipset
;;
*)
echo "Usage: $0 {start|restart|reload|force-reload|save|flush}" >&2
exit 1
;;
esac
exit $rc