Commit 22dbd1fa authored by Jay Ta'ala's avatar Jay Ta'ala

Switched to single script which can enable, disable, or -t option. Removed...

Switched to single script which can enable, disable, or -t option.  Removed previously written on/off scripts.
parent 9ad04325
#!/bin/bash
# process arguments
while getopts ":edt:" opt; do
case ${opt} in
e)
# ENABLE KILLSWITCH
# Default policies
sudo /usr/bin/ufw default deny incoming
sudo /usr/bin/ufw default deny outgoing
# Openvpn interface (adjust interface accordingly to your configuration)
sudo /usr/bin/ufw allow out on tun0
# Openvpn (adjust port accordingly to your vpn setup)
sudo /usr/bin/ufw allow out to any port 1194
;;
d)
# DISABLE KILLSWITCH
sudo /usr/bin/ufw --force reset
sudo /usr/bin/ufw enable
# delete backUP rules from reset
sudo /usr/bin/rm /etc/ufw/*.rules.*
# reset to defaults and enable
sudo /usr/bin/ufw default deny incoming
sudo /usr/bin/ufw default allow outgoing
;;
t)
# ADD OUTGOING RULE
echo "allow outgoing traffic to $OPTARG"
sudo /usr/bin/ufw allow out to $OPTARG
;;
esac
done
if (( $OPTIND == 1 )); then
echo " "
echo -e "Please provide at least one of the following options:\n -e"
echo " enable killswitch"
echo " -d"
echo " disable killswitch"
echo " -t [CIDR]"
echo -e " open outgoing ufw rule to a specific CIDR (ip address or range)\n"
fi
#!/bin/bash
sudo /usr/bin/ufw --force reset
sudo /usr/bin/ufw enable
# delete back rules from reset
sudo /usr/bin/rm /etc/ufw/*.rules.*
# reset to defaults and enable
sudo /usr/bin/ufw default deny incoming
sudo /usr/bin/ufw default allow outgoing
#!/bin/bash
# Default policies
sudo /usr/bin/ufw default deny incoming
sudo /usr/bin/ufw default deny outgoing
# Openvpn interface (adjust interface accordingly to your configuration)
sudo /usr/bin/ufw allow out on tun0
# Openvpn (adjust port accordingly to your vpn setup)
sudo /usr/bin/ufw allow out to any port 1194
# process arguments
while getopts "t:" opt; do
case ${opt} in
t)
echo "allow outgoing traffic to $OPTARG"
sudo /usr/bin/ufw allow out to $OPTARG;;
esac
done
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment