Skip to content

GitLab

awall
awall
Switch branch/tag
Find file Normal viewHistoryPermalink
ipset.lua 951 Bytes
Newer Older
Kaarle Ritvanen's avatar
dumping and testing functions separated  
Kaarle Ritvanen committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 
--[[
Ipset file dumper for Alpine Wall
Copyright (C) 2012 Kaarle Ritvanen
Licensed under the terms of GPL2
]]--


module(..., package.seeall)

local function commands()
   local config = awall.config
   local res = {}
   if config.ipset then
      for name, params in pairs(config.ipset) do
	 if not params.type then error('Type not defined for set '..name) end
	 local line = 'create '..name..' '..params.type
	 if params.family then line = line..' family '..params.family end
	 table.insert(res, line..'\n')
      end
   end
   return res
end

function create()
   for i, line in ipairs(commands()) do
      local pid, stdin = lpc.run('ipset', '-!', 'restore')
      stdin:write(line)
      stdin:close()
      if lpc.wait(pid) ~= 0 then
	 io.stderr:write('ipset command failed: '..line)
      end
   end
end

function dump(ipsfile)
   local file = io.output(ipsfile)
   for i, line in ipairs(commands()) do file:write(line) end
   file:close()
end