illumos/onarm: usr/src/cmd/ipf/svc/ipfilter annotate

annotate usr/src/cmd/ipf/svc/ipfilter @ 4:1a15d5aaf794

synchronized with onnv_86 (6202) in onnv-gate

author	Koji Uno <koji.uno@sun.com>
date	Mon, 31 Aug 2009 14:38:03 +0900
parents	c9caec207d52
children

rev	line source
0 c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	1 #!/sbin/sh
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	2 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	3 # CDDL HEADER START
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	4 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	5 # The contents of this file are subject to the terms of the
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	6 # Common Development and Distribution License (the "License").
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	7 # You may not use this file except in compliance with the License.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	8 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	9 # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	10 # or http://www.opensolaris.org/os/licensing.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	11 # See the License for the specific language governing permissions
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	12 # and limitations under the License.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	13 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	14 # When distributing Covered Code, include this CDDL HEADER in each
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	15 # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	16 # If applicable, add the following below this CDDL HEADER, with the
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	17 # fields enclosed by brackets "[]" replaced with your own identifying
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	18 # information: Portions Copyright [yyyy] [name of copyright owner]
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	19 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	20 # CDDL HEADER END
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	21 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	22 #
4 1a15d5aaf794 synchronized with onnv_86 (6202) in onnv-gate Koji Uno <koji.uno@sun.com> parents: 0 diff changeset	23 # ident "%Z%%M% %I% %E% SMI"
0 c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	24 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	25 # Copyright 2007 Sun Microsystems, Inc. All rights reserved.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	26 # Use is subject to license terms.
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	27 #
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	28
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	29 . /lib/svc/share/smf_include.sh
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	30
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	31 PATH=${PATH}:/usr/sbin:/usr/lib/ipf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	32 PIDFILE=/var/run/ipmon.pid
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	33 IPFILCONF=/etc/ipf/ipf.conf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	34 IP6FILCONF=/etc/ipf/ipf6.conf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	35 IPNATCONF=/etc/ipf/ipnat.conf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	36 IPPOOLCONF=/etc/ipf/ippool.conf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	37 PFILCHECKED=no
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	38
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	39 zone=`smf_zonename`
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	40 ipfid=`/usr/sbin/modinfo 2>&1 \| awk '/ipf/ { print $1 } ' - 2>/dev/null`
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	41 if [ -f $PIDFILE ] ; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	42 pid=`cat $PIDFILE 2>/dev/null`
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	43 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	44 pid=`pgrep -z $zone ipmon`
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	45 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	46
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	47 logmsg()
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	48 {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	49 logger -p daemon.warning -t ipfilter "$1"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	50 echo "$1" >&2
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	51 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	52
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	53 load_ipf() {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	54 bad=0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	55 if [ -r ${IPFILCONF} ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	56 ipf -IFa -f ${IPFILCONF} >/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	57 if [ $? != 0 ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	58 echo "$0: load of ${IPFILCONF} into alternate set failed"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	59 bad=1
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	60 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	61 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	62 if [ -r ${IP6FILCONF} ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	63 ipf -6IFa -f ${IP6FILCONF} >/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	64 if [ $? != 0 ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	65 echo "$0: load of ${IP6FILCONF} into alternate set failed"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	66 bad=1
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	67 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	68 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	69 if [ $bad -eq 0 ] ; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	70 ipf -s -y >/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	71 return 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	72 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	73 echo "Not switching config due to load error."
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	74 return 1
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	75 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	76 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	77
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	78
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	79 load_ipnat() {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	80 if [ -r ${IPNATCONF} ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	81 ipnat -CF -f ${IPNATCONF} >/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	82 if [ $? != 0 ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	83 echo "$0: load of ${IPNATCONF} failed"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	84 return 1
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	85 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	86 ipf -y >/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	87 return 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	88 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	89 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	90 return 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	91 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	92 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	93
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	94
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	95 load_ippool() {
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	96 if [ -r ${IPPOOLCONF} ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	97 ippool -F >/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	98 ippool -f ${IPPOOLCONF} >/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	99 if [ $? != 0 ]; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	100 echo "$0: load of ${IPPOOLCONF} failed"
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	101 return 1
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	102 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	103 return 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	104 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	105 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	106 return 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	107 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	108 }
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	109
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	110
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	111 case "$1" in
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	112 start)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	113 [ ! -f ${IPFILCONF} -a ! -f ${IPNATCONF} ] && exit 0
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	114 ipf -E
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	115 [ -n "$pid" ] && kill -TERM $pid 2>/dev/null
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	116 if load_ippool && load_ipf && load_ipnat ; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	117 /usr/sbin/ipmon -Ds
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	118 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	119 exit $SMF_EXIT_ERR_CONFIG
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	120 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	121 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	122
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	123 stop)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	124 [ -n "$pid" ] && kill -TERM $pid
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	125 ipf -D
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	126 [ -n "$ipfid" ] && modunload -i $ipfid
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	127 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	128
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	129 pause)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	130 ipfs -l
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	131 ipfs -NS -w
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	132 ipf -D
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	133 if [ -f $PIDFILE ] ; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	134 if kill -0 $pid; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	135 kill -TERM $pid
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	136 else
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	137 cp /dev/null $PIDFILE
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	138 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	139 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	140 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	141
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	142 resume)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	143 ipf -E
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	144 ipfs -R
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	145 load_ippool
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	146 load_ipf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	147 load_ipnat
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	148 if [ -f $PIDFILE -a -n "$pid" ] ; then
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	149 /usr/sbin/ipmon -Ds
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	150 fi
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	151 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	152
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	153 reload)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	154 load_ippool
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	155 load_ipf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	156 load_ipnat
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	157 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	158
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	159 reipf)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	160 load_ipf
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	161 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	162
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	163 reipnat)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	164 load_ipnat
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	165 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	166
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	167 *)
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	168 echo "Usage: $0 \c" >&2
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	169 echo "(start\|stop\|reload\|reipf\|reipnat\|pause\|resume)" >&2
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	170 exit 1
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	171 ;;
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	172
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	173 esac
c9caec207d52 Initial porting based on b86 Koji Uno <koji.uno@sun.com> parents: diff changeset	174 exit $SMF_EXIT_OK

Mercurial > illumos > onarm

annotate usr/src/cmd/ipf/svc/ipfilter @ 4:1a15d5aaf794