mirrors/vm
2
0
Fork 0
mirror of https://github.com/nextcloud/vm.git synced 2025-10-26 11:27:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
b2f3f2d3d7
vm/menu/fail2ban_menu.sh
Daniel Hansson b2f3f2d3d7
happy new year! (#2609)
2024-01-13 01:48:25 +01:00

85 lines
2.9 KiB
Bash
Raw Blame History

#!/bin/bash
# T&M Hansson IT AB © - 2024, https://www.hanssonit.se/
true
SCRIPT_NAME="Fail2ban Menu"
# shellcheck source=lib.sh
source /var/scripts/fetch_lib.sh
# Check for errors + debug code and abort if something isn't right
# 1 = ON
# 0 = OFF
DEBUG=0
debug_mode
# Must be root
root_check
# Set the startup switch
if [ -f "$SCRIPTS/nextcloud-startup-script.sh" ]
then
STARTUP_SWITCH="ON"
else
STARTUP_SWITCH="OFF"
fi
# Set the FAIL2BAN switch
if is_this_installed fail2ban && [ -f "/etc/fail2ban/filter.d/nextcloud.conf" ]
then
FAIL2BAN_SWITCH="ON"
else
FAIL2BAN_SWITCH="OFF"
fi
choice=$(whiptail --title "$TITLE" --checklist \
"Automatically install and configure Fail2ban.
$CHECKLIST_GUIDE\n\n$RUN_LATER_GUIDE" "$WT_HEIGHT" "$WT_WIDTH" 4 \
"Install-Fail2ban" "(Install Fail2ban and protect Nextcloud + SSH)" "$STARTUP_SWITCH" \
"Fail2ban-Statuscheck" "(Check status of currently blocked attacks)" "$FAIL2BAN_SWITCH" \
"Fail2ban-UnbanIP" "(Unban blocked IP addresses)" "$FAIL2BAN_SWITCH" 3>&1 1>&2 2>&3)
case "$choice" in
*"Install-Fail2ban"*)
print_text_in_color "$ICyan" "Downloading the Fail2ban install script..."
run_script APP fail2ban
;;&
*"Fail2ban-Statuscheck"*)
SUBTITLE="Fail2ban Statuscheck"
if is_this_installed fail2ban && [ -f "/etc/fail2ban/filter.d/nextcloud.conf" ]
then
msg_box "$(fail2ban-client status nextcloud && fail2ban-client status sshd && iptables -L -n)" "$SUBTITLE"
else
msg_box "Fail2ban isn't installed. Please run 'sudo bash /var/scripts/menu.sh' to install it." "$SUBTITLE"
fi
;;&
*"Fail2ban-UnbanIP"*)
SUBTITLE="Fail2ban Unban IP"
if is_this_installed fail2ban && [ -f "/etc/fail2ban/filter.d/nextcloud.conf" ]
then
UNBANIP="$(input_box_flow 'Enter the IP address that you want to unban.')"
if ! iptables -L -n | grep -q "$UNBANIP"
then
msg_box "It seems that $UNBANIP isn't banned. Please run the Fail2ban statuscheck to check currently banned IP addresses." "$SUBTITLE"
run_script MENU fail2ban_menu
else
if fail2ban-client set nextcloud unbanip "$UNBANIP" >/dev/null 2>&1
then
msg_box "$UNBANIP was successfully removed from the Nextcloud block list!" "$SUBTITLE"
elif fail2ban-client set sshd unbanip "$UNBANIP" >/dev/null 2>&1
then
msg_box "$UNBANIP was successfully removed from the SSH block list!" "$SUBTITLE"
else
msg_box "It seems like something went wrong, please report this issue to $ISSUES." "$SUBTITLE"
exit
fi
fi
else
msg_box "Fail2ban isn't installed. Please run 'sudo bash /var/scripts/menu.sh' to install it." "$SUBTITLE"
fi
;;&
*)
;;
esac
exit
Reference in New Issue View Git Blame Copy Permalink