aredn/files/usr/local/bin/mesh-firewall

75 lines
2.1 KiB
Plaintext
Raw Normal View History

#!/bin/sh
<<'LICENSE'
2024-05-29 01:45:25 -06:00
Part of AREDN® -- Used for creating Amateur Radio Emergency Data Networks
Copyright (C) 2015 Conrad Lara
See Contributors file for additional contributors
This program is free software: you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation version 3 of the License.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>.
Additional Terms:
2024-05-29 01:45:25 -06:00
Additional use restrictions exist on the AREDN® trademark and logo.
See AREDNLicense.txt for more info.
2024-05-29 01:45:25 -06:00
Attributions to the AREDN® Project must be retained in the source code.
If importing this code into a new or existing project attribution
2024-05-29 01:45:25 -06:00
to the AREDN® project must be added to the source code.
You must not misrepresent the origin of the material contained within.
Modified versions must be modified to attribute to the original source
and be marked in reasonable ways as differentiate it from the original
version.
LICENSE
### Lets export some variables to help other scripts we call later.
#Are we in NAT mode
if [ "$(/sbin/uci -q get aredn.@dmz[0].mode)" != "0" ]
then
export MESHFW_NATLAN=0
else
export MESHFW_NATLAN=1
fi
#Is this node a meshgw
export MESHFW_MESHGW
MESHFW_MESHGW=$(/sbin/uci -q get aredn.@wan[0].olsrd_gw)
# Are tunnels 'enabled'
if [ -x "/usr/sbin/vtund" ]
then
export MESHFW_TUNNELS_ENABLED=1
else
export MESHFW_TUNNELS_ENABLED=0
fi
# Is Wireguard 'enabled'
if [ -x "/usr/bin/wg" ]
then
export MESHFW_WG_TUNNELS_ENABLED=1
else
export MESHFW_WG_TUNNELS_ENABLED=0
fi
# Lets execute each include file
for file in /etc/local/mesh-firewall/*
do
if ( [ -x "$file" ] && [ -f "$file" ] ); then
echo "mesh-firewall: Executing $file"
$file
fi
done