mirror of
https://gitlab.com/shorewall/code.git
synced 2025-06-19 17:28:35 +02:00
More removal of SAVE_IPSETS=Yes logic
Signed-off-by: Tom Eastep <teastep@shorewall.net> git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@9804 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
teastep
parent
455cf4ab0b
commit
52b0b4e602
@ -295,45 +295,6 @@ save_config() {
|
|||||||
mv -f ${VARDIR}/restore-$$ ${RESTOREPATH}-iptables
|
mv -f ${VARDIR}/restore-$$ ${RESTOREPATH}-iptables
|
||||||
chmod +x $RESTOREPATH
|
chmod +x $RESTOREPATH
|
||||||
echo " Currently-running Configuration Saved to $RESTOREPATH"
|
echo " Currently-running Configuration Saved to $RESTOREPATH"
|
||||||
|
|
||||||
rm -f ${RESTOREPATH}-ipsets
|
|
||||||
|
|
||||||
case ${SAVE_IPSETS:-No} in
|
|
||||||
[Yy][Ee][Ss])
|
|
||||||
RESTOREPATH=${RESTOREPATH}-ipsets
|
|
||||||
|
|
||||||
f=${VARDIR}/restore-$$
|
|
||||||
|
|
||||||
echo "#!/bin/sh" > $f
|
|
||||||
echo "#This ipset restore file generated $(date) by Shorewall $version" >> $f
|
|
||||||
echo >> $f
|
|
||||||
echo ". ${SHAREDIR}/lib.base" >> $f
|
|
||||||
echo >> $f
|
|
||||||
cat ${VARDIR}/.modulesdir >> $f
|
|
||||||
echo >> $f
|
|
||||||
echo "reload_kernel_modules << __EOF__" >> $f
|
|
||||||
grep 'loadmodule ip_set' ${VARDIR}/.modules >> $f
|
|
||||||
echo "__EOF__" >> $f
|
|
||||||
echo >> $f
|
|
||||||
echo "ipset -U :all: :all:" >> $f
|
|
||||||
echo "ipset -U :all: :default:" >> $f
|
|
||||||
echo "ipset -F" >> $f
|
|
||||||
echo "ipset -X" >> $f
|
|
||||||
echo "ipset -R << __EOF__" >> $f
|
|
||||||
ipset -S >> $f
|
|
||||||
echo "__EOF__" >> $f
|
|
||||||
mv -f $f $RESTOREPATH
|
|
||||||
chmod +x $RESTOREPATH
|
|
||||||
echo " Current Ipset Contents Saved to $RESTOREPATH"
|
|
||||||
result=0
|
|
||||||
;;
|
|
||||||
[Nn][Oo])
|
|
||||||
;;
|
|
||||||
*)
|
|
||||||
echo " WARNING: Invalid value ($SAVE_IPSETS) for SAVE_IPSETS. Ipset contents not saved" >&2
|
|
||||||
;;
|
|
||||||
esac
|
|
||||||
|
|
||||||
run_user_exit save
|
run_user_exit save
|
||||||
else
|
else
|
||||||
rm -f ${VARDIR}/restore-$$
|
rm -f ${VARDIR}/restore-$$
|
||||||
|
|||||||
@ -530,17 +530,6 @@ start_command() {
|
|||||||
RESTOREPATH=${VARDIR}/$RESTOREFILE
|
RESTOREPATH=${VARDIR}/$RESTOREFILE
|
||||||
|
|
||||||
if [ -x $RESTOREPATH ]; then
|
if [ -x $RESTOREPATH ]; then
|
||||||
if [ -x ${RESTOREPATH}-ipsets ]; then
|
|
||||||
echo Restoring Ipsets...
|
|
||||||
#
|
|
||||||
# We must purge iptables to be sure that there are no
|
|
||||||
# references to ipsets
|
|
||||||
#
|
|
||||||
iptables -F
|
|
||||||
iptables -X
|
|
||||||
$SHOREWALL_SHELL ${RESTOREPATH}-ipsets
|
|
||||||
fi
|
|
||||||
|
|
||||||
echo Restoring Shorewall...
|
echo Restoring Shorewall...
|
||||||
$SHOREWALL_SHELL $RESTOREPATH restore
|
$SHOREWALL_SHELL $RESTOREPATH restore
|
||||||
date > ${VARDIR}/restarted
|
date > ${VARDIR}/restarted
|
||||||
@ -1867,12 +1856,6 @@ case "$COMMAND" in
|
|||||||
RESTOREPATH=${VARDIR}/$RESTOREFILE
|
RESTOREPATH=${VARDIR}/$RESTOREFILE
|
||||||
|
|
||||||
if [ -x $RESTOREPATH ]; then
|
if [ -x $RESTOREPATH ]; then
|
||||||
|
|
||||||
if [ -x ${RESTOREPATH}-ipsets ]; then
|
|
||||||
rm -f ${RESTOREPATH}-ipsets
|
|
||||||
echo " ${RESTOREPATH}-ipsets removed"
|
|
||||||
fi
|
|
||||||
|
|
||||||
rm -f $RESTOREPATH
|
rm -f $RESTOREPATH
|
||||||
rm -f ${RESTOREPATH}-iptables
|
rm -f ${RESTOREPATH}-iptables
|
||||||
echo " $RESTOREPATH removed"
|
echo " $RESTOREPATH removed"
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user