scripts: tools for iptables rules

Signed-off-by: HeshamTB <hishaminv@gmail.com>
2024-03-31 22:57:32 +03:00 · 2024-03-31 22:57:32 +03:00 · 825424a1de
commit 825424a1de
parent 489ecd65fb
1 changed files with 39 additions and 0 deletions
--- a/scripts/set_rules.sh
+++ b/scripts/set_rules.sh
@ -0,0 +1,39 @@
+#!/usr/bin/env bash 
+
+iptables=iptables
+
+cmd="${1}"
+wgIface="${2}"
+uplinkIface="${3}"
+
+cmd() {
+	echo "[#] $*" >&2
+	"$@"
+}
+
+add_rules() {
+    trap 'rm_rules; exit' INT TERM EXIT
+    cmd ${iptables} -A FORWARD -i ${wgIface} -j ACCEPT 
+    cmd ${iptables} -A FORWARD -o ${wgIface} -j ACCEPT
+    cmd ${iptables} -t nat -A POSTROUTING -o ${uplinkIface} -j MASQUERADE || exit 1
+    trap - INT TERM EXIT
+}
+
+rm_rules() {
+    cmd ${iptables} -D FORWARD -i ${wgIface} -j ACCEPT
+    cmd ${iptables} -D FORWARD -o ${wgIface} -j ACCEPT
+    cmd ${iptables} -t nat -D POSTROUTING -o ${uplinkIface} -j MASQUERADE
+}
+
+if [ "${cmd}" == "set" ]
+then
+    add_rules
+
+elif [ "${cmd}" == "unset" ]; 
+then
+    rm_rules
+else
+   # cat << "Invalid command. Use set or unset" >&2
+   echo "Invalid command. Use set or unset"
+fi
+