mirror of https://gitlab.com/hp3icc/emq-TE1.git
54 lines
1.6 KiB
Plaintext
54 lines
1.6 KiB
Plaintext
###menu
|
|
sudo cat > /bin/menu-ufw <<- "EOF"
|
|
#!/bin/bash
|
|
while : ; do
|
|
choix=$(whiptail --title "Raspbian Proyect HP3ICC Menu UFW Firewall" --menu "Nota: puede agregar o remover puertos uno a uno , o agregar multiples puertos separados por coma, ejemplo: 80,9000,62031" 20 75 11 \
|
|
1 " Enable Firewall" \
|
|
2 " Disable Firewall " \
|
|
3 " List Port open " \
|
|
4 " List IP auto reject " \
|
|
5 " Add or Remove port ( In, Out or Both ) " \
|
|
6 " Protection standard (all port out is open) " \
|
|
7 " Protection strong (only 53,5353,80,443 out open) " \
|
|
8 " Menu Principal " 3>&1 1>&2 2>&3)
|
|
exitstatus=$?
|
|
#on recupere ce choix
|
|
#exitstatus=$?
|
|
if [ $exitstatus = 0 ]; then
|
|
echo "Your chosen option:" $choix
|
|
else
|
|
echo "You chose cancel."; break;
|
|
fi
|
|
# case : action en fonction du choix
|
|
case $choix in
|
|
1)
|
|
ufw enable && sudo systemctl stop fail2ban.service && sudo systemctl start fail2ban.service && sudo systemctl enable fail2ban.service;;
|
|
2)
|
|
ufw disable && sudo systemctl stop fail2ban.service && sudo systemctl disable fail2ban.service;;
|
|
3)
|
|
ufw status | grep ALLOW >> /tmp/port0.txt && nano /tmp/port0.txt && rm /tmp/port0.txt;;
|
|
4)
|
|
ufw status | grep REJECT >> /tmp/port0.txt && nano /tmp/port0.txt && rm /tmp/port0.txt;;
|
|
5)
|
|
sh /bin/auto-ufw.sh ;;
|
|
6)
|
|
sudo ufw delete allow out to any port 53
|
|
sudo ufw delete allow out to any port 5353
|
|
sudo ufw delete allow out to any port 80
|
|
sudo ufw delete allow out to any port 443
|
|
sudo ufw default allow outgoing ;;
|
|
7)
|
|
sudo ufw allow out to any port 53
|
|
sudo ufw allow out to any port 80
|
|
sudo ufw allow out to any port 443 ;;
|
|
8)
|
|
break;
|
|
esac
|
|
done
|
|
exit 0
|
|
|
|
|
|
|
|
EOF
|
|
chmod +x /bin/menu-ufw
|