rpms / iptables

Clone
Source Code
GIT

Blame arptables-nft-helper

f10 f11 f12 f13 f14 f15 f16 f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f30 f31 f32 f33 f34 f35 f36 f37 f38 f39 f40 f7 f8 f9 main rawhide
  1.   c7a1e984df7cbbd25916b84a2adbf662377bc689
  2.   arptables-nft-helper
Blob History Raw
51c612a 
#!/bin/sh
51c612a
51c612a 
ARPTABLES_CONFIG=/etc/sysconfig/arptables
51c612a
cdcc1ab 
# compat for removed initscripts dependency
cdcc1ab
cdcc1ab 
success() {
ff526cc 
	echo "[  OK  ]"
cdcc1ab 
	return 0
cdcc1ab 
}
cdcc1ab
cdcc1ab 
failure() {
ff526cc 
	echo "[FAILED]"
cdcc1ab 
	return 1
cdcc1ab 
}
cdcc1ab
51c612a 
start() {
51c612a 
	if [ ! -x /usr/sbin/arptables ]; then
51c612a 
		exit 4
51c612a 
	fi
51c612a
51c612a 
	# don't do squat if we don't have the config file
51c612a 
	if [ -f $ARPTABLES_CONFIG ]; then
ff526cc 
		printf "Applying arptables firewall rules: "
51c612a 
		/usr/sbin/arptables-restore < $ARPTABLES_CONFIG && \
51c612a 
			success || \
51c612a 
			failure
51c612a 
		touch /var/lock/subsys/arptables
51c612a 
	else
51c612a 
		failure
ff526cc 
		echo "Configuration file /etc/sysconfig/arptables missing"
51c612a 
		exit 6
51c612a 
	fi
51c612a 
}
51c612a
51c612a 
stop() {
ff526cc 
	printf "Removing user defined chains: "
51c612a 
	arptables -X && success || failure
ff526cc 
	printf "Flushing all chains: "
51c612a 
	arptables -F && success || failure
ff526cc 
	printf "Resetting built-in chains to the default ACCEPT policy: "
51c612a 
	arptables -P INPUT ACCEPT && \
51c612a 
		arptables -P OUTPUT ACCEPT && \
51c612a 
		success || \
51c612a 
		failure
51c612a 
	rm -f /var/lock/subsys/arptables
51c612a 
}
51c612a
51c612a 
case "$1" in
51c612a 
start)
51c612a 
	start
51c612a 
	;;
51c612a
51c612a 
stop)
51c612a 
	stop
51c612a 
	;;
51c612a
51c612a 
restart|reload)
51c612a 
	# "restart" is really just "start" as this isn't a daemon,
51c612a 
	# and "start" clears any pre-defined rules anyway.
51c612a 
	# This is really only here to make those who expect it happy
51c612a 
	start
51c612a 
	;;
51c612a
51c612a 
condrestart|try-restart|force-reload)
51c612a 
	[ -e /var/lock/subsys/arptables ] && start
51c612a 
	;;
51c612a
51c612a 
*)
51c612a 
	exit 2
51c612a 
esac
51c612a
51c612a 
exit 0
Powered by Pagure 5.14.1
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.