Nemcio/CyberPanel
1
0
Fork 0
mirror of https://github.com/usmannasir/cyberpanel.git synced 2025-11-12 08:16:11 +01:00
Code Issues Packages Projects Releases Wiki Activity

Firewall rules (intermediate version)

Browse Source
This commit is contained in:
rperper
2018-11-14 12:39:42 -05:00
parent 54c423c311
commit 457bd42dcb
1 changed files with 24 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
install/firewallUtilities.py
View File

@@ -14,19 +14,21 @@ class FirewallUtilities:
@staticmethod @staticmethod
def addRule(proto,port): def addRule(proto,port):
try: try:
if port == "21": command = 'sudo firewall-cmd --permanent --zone-public --add-port=' + port + '/' + proto
command = "sudo firewall-cmd --add-service=ftp --permanent"
cmd = shlex.split(command)
res = subprocess.call(cmd)
ipAddress = "0.0.0.0/0" #if port == "21":
# command = "sudo firewall-cmd --add-service=ftp --permanent"
# cmd = shlex.split(command)
# res = subprocess.call(cmd)
ruleFamily = 'rule family="ipv4"' #ipAddress = "0.0.0.0/0"
sourceAddress = 'source address="' + ipAddress + '"'
ruleProtocol = 'port protocol="' + proto + '"'
rulePort = 'port="' + port + '"'
command = "sudo firewall-cmd --permanent --zone=public --add-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'" #ruleFamily = 'rule family="ipv4"'
#sourceAddress = 'source address="' + ipAddress + '"'
#ruleProtocol = 'port protocol="' + proto + '"'
#rulePort = 'port="' + port + '"'
#command = "sudo firewall-cmd --permanent --zone=public --add-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
cmd = shlex.split(command) cmd = shlex.split(command)
@@ -50,19 +52,21 @@ class FirewallUtilities:
@staticmethod @staticmethod
def deleteRule(proto, port): def deleteRule(proto, port):
try: try:
if port=="21": command = 'sudo firewall-cmd --permanent --zone-public --remove-port=' + port + '/' + proto
command = "sudo firewall-cmd --remove-service=ftp --permanent"
cmd = shlex.split(command)
res = subprocess.call(cmd)
ipAddress = "0.0.0.0/0" #if port=="21":
# command = "sudo firewall-cmd --remove-service=ftp --permanent"
# cmd = shlex.split(command)
# res = subprocess.call(cmd)
ruleFamily = 'rule family="ipv4"' #ipAddress = "0.0.0.0/0"
sourceAddress = 'source address="' + ipAddress + '"'
ruleProtocol = 'port protocol="' + proto + '"'
rulePort = 'port="' + port + '"'
command = "sudo firewall-cmd --permanent --zone=public --remove-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'" #ruleFamily = 'rule family="ipv4"'
#sourceAddress = 'source address="' + ipAddress + '"'
#ruleProtocol = 'port protocol="' + proto + '"'
#rulePort = 'port="' + port + '"'
#command = "sudo firewall-cmd --permanent --zone=public --remove-rich-rule='" + ruleFamily + " " + sourceAddress + " " + ruleProtocol + " " + rulePort + " " + "accept'"
cmd = shlex.split(command) cmd = shlex.split(command)