docs: 📝 update readme
This commit is contained in:
jqtmviyu
parent
4e2a986248
commit
23a7eabcb2
61
README.md
61
README.md
|
|
@ -24,10 +24,9 @@ username="用户名"
|
||||||
password="密码"
|
password="密码"
|
||||||
host="127.0.0.1"
|
host="127.0.0.1"
|
||||||
port=9091
|
port=9091
|
||||||
ipv4_chain="OUTPUT" # 定义IPv4主链名称
|
chain="OUTPUT" # 定义主链名称
|
||||||
ipv6_chain="OUTPUT" # 定义IPv6主链名称
|
custom_chain_ipv4="CUSTOM_CHAIN_IPV4" # 定义IPv4自定义链名称
|
||||||
ipv4_custom_chain="CUSTOM_CHAIN_IPV4" # 定义IPv4自定义链名称
|
custom_chain_ipv6="CUSTOM_CHAIN_IPV6" # 定义IPv6自定义链名称
|
||||||
ipv6_custom_chain="CUSTOM_CHAIN_IPV6" # 定义IPv6自定义链名称
|
|
||||||
|
|
||||||
# 获取所有传输任务的对等节点IP地址
|
# 获取所有传输任务的对等节点IP地址
|
||||||
echo "获取传输任务对等节点的IP地址..."
|
echo "获取传输任务对等节点的IP地址..."
|
||||||
|
|
@ -40,28 +39,42 @@ hour=$(date "+%H")
|
||||||
|
|
||||||
# 如果当前时间是每4小时的半小时(例如,0:30,4:30等)
|
# 如果当前时间是每4小时的半小时(例如,0:30,4:30等)
|
||||||
if [ "$minute" -eq 30 ] && [ $(($hour % 4)) -eq 0 ]; then
|
if [ "$minute" -eq 30 ] && [ $(($hour % 4)) -eq 0 ]; then
|
||||||
echo "当前时间是每4小时的半小时, 清空自定义链 $ipv4_custom_chain 和 $ipv6_custom_chain"
|
echo "当前时间是每4小时的半小时, 清空自定义链 $custom_chain_ipv4 和 $custom_chain_ipv6"
|
||||||
iptables -F $ipv4_custom_chain # 清空IPv4自定义链
|
iptables -F $custom_chain_ipv4 # 清空IPv4自定义链
|
||||||
ip6tables -F $ipv6_custom_chain # 清空IPv6自定义链
|
ip6tables -F $custom_chain_ipv6 # 清空IPv6自定义链
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# 检查并创建自定义链(如果不存在)
|
# 检查并创建自定义链(如果不存在)
|
||||||
echo "检查并创建自定义链(如果不存在)..."
|
echo "检查并创建自定义链(如果不存在)..."
|
||||||
iptables -L $ipv4_custom_chain &> /dev/null || (echo "创建IPv4自定义链 $ipv4_custom_chain"; iptables -N $ipv4_custom_chain)
|
iptables -L $custom_chain_ipv4 &> /dev/null || (echo "创建IPv4自定义链 $custom_chain_ipv4"; iptables -N $custom_chain_ipv4)
|
||||||
ip6tables -L $ipv6_custom_chain &> /dev/null || (echo "创建IPv6自定义链 $ipv6_custom_chain"; ip6tables -N $ipv6_custom_chain)
|
ip6tables -L $custom_chain_ipv6 &> /dev/null || (echo "创建IPv6自定义链 $custom_chain_ipv6"; ip6tables -N $custom_chain_ipv6)
|
||||||
|
|
||||||
# 确保自定义链在主链中被调用
|
# 确保自定义链在主链中被调用
|
||||||
echo "确保自定义链在主链中被调用..."
|
echo "确保自定义链在主链中被调用..."
|
||||||
iptables -C $ipv4_chain -j $ipv4_custom_chain &> /dev/null || (echo "添加 $ipv4_custom_chain 到 $ipv4_chain"; iptables -A $ipv4_chain -j $ipv4_custom_chain)
|
iptables -C $chain -j $custom_chain_ipv4 &> /dev/null || (echo "添加 $custom_chain_ipv4 到 $chain"; iptables -A $chain -j $custom_chain_ipv4)
|
||||||
ip6tables -C $ipv6_chain -j $ipv6_custom_chain &> /dev/null || (echo "添加 $ipv6_custom_chain 到 $ipv6_chain"; ip6tables -A $ipv6_chain -j $ipv6_custom_chain)
|
ip6tables -C $chain -j $custom_chain_ipv6 &> /dev/null || (echo "添加 $custom_chain_ipv6 到 $chain"; ip6tables -A $chain -j $custom_chain_ipv6)
|
||||||
|
|
||||||
# 获取当前的自定义链规则
|
# 获取当前的自定义链规则
|
||||||
echo "获取当前自定义链规则..."
|
echo "获取当前自定义链规则..."
|
||||||
ipv4_rules=$(iptables -nL $ipv4_custom_chain)
|
ipv4_rules=$(iptables -nL $custom_chain_ipv4)
|
||||||
ipv6_rules=$(ip6tables -nL $ipv6_custom_chain)
|
ipv6_rules=$(ip6tables -nL $custom_chain_ipv6)
|
||||||
echo "当前IPv4自定义链规则: $ipv4_rules"
|
echo "当前IPv4自定义链规则: $ipv4_rules"
|
||||||
echo "当前IPv6自定义链规则: $ipv6_rules"
|
echo "当前IPv6自定义链规则: $ipv6_rules"
|
||||||
|
|
||||||
|
# 检查是否为私有 IPv4 地址
|
||||||
|
is_private_ipv4() {
|
||||||
|
local ip=$1
|
||||||
|
# Check for private IPv4 addresses
|
||||||
|
ipcalc -n $ip | grep -q 'Network: 10.0.0.0/8\|172.16.0.0/12\|192.168.0.0/16'
|
||||||
|
}
|
||||||
|
|
||||||
|
# 检查是否为私有 IPv6 地址
|
||||||
|
is_private_ipv6() {
|
||||||
|
local ip=$1
|
||||||
|
# Check for private IPv6 addresses
|
||||||
|
echo $ip | grep -qE '^fc00:|^fd00:|^fe80:'
|
||||||
|
}
|
||||||
|
|
||||||
# 遍历指定的客户端名称
|
# 遍历指定的客户端名称
|
||||||
for client in xunlei xl thunder gt0002 xl0012 xfplay dandanplay dl3760 qq hp dt xm go taibei sp StellarPlayer flashget torrentstorm github ljyun cacao "-tt" "qbittorrent/3.3.15"
|
for client in xunlei xl thunder gt0002 xl0012 xfplay dandanplay dl3760 qq hp dt xm go taibei sp StellarPlayer flashget torrentstorm github ljyun cacao "-tt" "qbittorrent/3.3.15"
|
||||||
do
|
do
|
||||||
|
|
@ -76,13 +89,23 @@ do
|
||||||
echo -n "$i 不在规则中, " # 如果不在规则中,输出IP并说明未在规则中
|
echo -n "$i 不在规则中, " # 如果不在规则中,输出IP并说明未在规则中
|
||||||
# 检查是否为IPv6地址
|
# 检查是否为IPv6地址
|
||||||
if echo "$i" | grep -q ":" ; then
|
if echo "$i" | grep -q ":" ; then
|
||||||
# 如果是IPv6地址,添加DROP规则到IPv6自定义链
|
# 如果是IPv6地址,检查是否为私有地址
|
||||||
echo "添加IPv6地址 $i 到自定义链 $ipv6_custom_chain"
|
if is_private_ipv6 $i; then
|
||||||
ip6tables -I $ipv6_custom_chain -d $i -j DROP
|
echo "$i 是私有IPv6地址, 忽略."
|
||||||
|
else
|
||||||
|
# 如果是IPv6地址,添加DROP规则到IPv6自定义链
|
||||||
|
echo "添加IPv6地址 $i 到自定义链 $custom_chain_ipv6"
|
||||||
|
ip6tables -I $custom_chain_ipv6 -d $i -j DROP
|
||||||
|
fi
|
||||||
else
|
else
|
||||||
# 如果是IPv4地址,添加DROP规则到IPv4自定义链
|
# 如果是IPv4地址,检查是否为私有地址
|
||||||
echo "添加IPv4地址 $i 到自定义链 $ipv4_custom_chain"
|
if is_private_ipv4 $i; then
|
||||||
iptables -I $ipv4_custom_chain -d $i -j DROP
|
echo "$i 是私有IPv4地址, 忽略."
|
||||||
|
else
|
||||||
|
# 如果是IPv4地址,添加DROP规则到IPv4自定义链
|
||||||
|
echo "添加IPv4地址 $i 到自定义链 $custom_chain_ipv4"
|
||||||
|
iptables -I $custom_chain_ipv4 -d $i -j DROP
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
fi
|
fi
|
||||||
done
|
done
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue