优化了一下脚本结构,以及新增部分功能
#!/bin/bash
# 检查是否以root用户运行脚本
check_root() {
if [[ $EUID -ne 0 ]]; then
echo "此脚本需要以root权限运行"
exit 1
fi
}
# 初始化安全策略
init_security_policy() {
while true; do
echo "***选择你需要进行的操作***"
echo "***1. 关闭防火墙***"
echo "***2. 设置防火墙开机不自启动***"
echo "***3. 启动防火墙***"
echo "***4. 设置防火墙开机自启动***"
echo "***5. 清空iptables规则组***"
echo "***6. 查看iptables规则组***"
echo "***7. 查看防火墙状态***"
echo "***quit. 退出***"
read -p "请输入数字选择对应安全策略: " answer
case $answer in
1)
systemctl stop firewalld && echo "防火墙已关闭" || echo "关闭防火墙失败"
;;
2)
systemctl disable firewalld && echo "防火墙设置为开机不自启动。" || echo "设置开机不自启动失败"
;;
3)
systemctl start firewalld && echo "防火墙已启动。" || echo "启动防火墙失败"
;;
4)
systemctl enable firewalld && echo "防火墙设置为开机自启动。" || echo "设置开机自启动失败"
;;
5)
iptables -F && echo "规则组已清空。" || echo "清空规则组失败"
;;
6)
iptables -L && echo "规则组已显示。" || echo "显示规则组失败"
;;
7)
systemctl status firewalld && echo "正在查看防火墙状态。" || echo "查看防火墙状态失败"
;;
quit)
echo "退出安全策略配置。"
break
;;
*)
echo "无效的输入,请重新输入。"
;;
esac
done
}
# 配置YUM源
config_yum_source() {
ALIYUN_REPO_URL="https://mirrors.aliyun.com/repo/Centos-7.repo"
read -p "是否配置ali YUM 源[y/n]: " ali
case $ali in
[Yy]* )
echo "开始配置阿里yum源"
if [ -f /etc/yum.repos.d/CentOS-Base.repo ]; then
mv /etc/yum.repos.d/CentOS-Base.repo /etc/yum.repos.d/CentOS-Base.repo.backup && echo "开始备份原有CentOS源到CentOS-Base.repo.backup"
fi
curl -o /etc/yum.repos.d/CentOS-Base.repo $ALIYUN_REPO_URL && echo "阿里云YUM源已安装。" || echo "配置阿里云YUM源失败"
yum clean all && yum makecache
;;
[Nn]* )
echo "用户取消配置"
;;
* )
echo "无效的操作"
;;
esac
}
# 查看远程IP连接
view_remote_ip() {
netstat -atn | awk '{print $5}' | awk '{print $1}' | sort -nr | uniq -c
}
# 查看可登录账户
view_login_accounts() {
grep "bash$" /etc/passwd
}
# 查看系统信息
view_system_info() {
KERNEL_DIR="/etc/redhat-release"
CPU_DIR="/proc/cpuinfo"
SYSTEM_DATE=$(/usr/bin/date)
SYSTEM_VERSION=$(cat ${KERNEL_DIR})
SYSTEM_CPU=$(cat ${CPU_DIR} | grep 'model name' | head -1 | awk -F: '{print $2}' | sed 's#^[ \t]*##g')
SYSTEM_CPU_NUMS=$(cat ${CPU_DIR} | grep 'model name' -c)
SYSTEM_KERNEL=$(uname -a | awk '{print $3}')
SYSTEM_IPADDR=$(hostname -I | awk '{print $1}')
SYSTEM_HOSTNANE=$(hostname)
echo "操作系统名称: ${SYSTEM_HOSTNANE}"
echo "服务器IP地址: ${SYSTEM_IPADDR}"
echo "操作系统版本: ${SYSTEM_VERSION}"
echo "系统内核版本: ${SYSTEM_KERNEL}"
echo "处理器的型号: ${SYSTEM_CPU}"
echo "处理器的核数: ${SYSTEM_CPU_NUMS}"
echo "系统当前时间: ${SYSTEM_DATE}"
}
# 主菜单
main_menu() {
while true; do
echo "-------------输入你想进行的操作-------------"
echo "***1. 安全策略防火墙相关***"
echo "***2. yum源相关配置***"
echo "***3. 查看远程IP连接***"
echo "***4. 查看可登录账户***"
echo "***5. 查看系统信息***"
echo "***quit. 退出***"
read -p "请输入数字选择对应操作: " aa
case $aa in
1)
init_security_policy
;;
2)
config_yum_source
;;
3)
view_remote_ip
;;
4)
view_login_accounts
;;
5)
view_system_info
;;
quit)
echo "退出脚本。"
break
;;
*)
echo "无效的输入,请重新输入。"
;;
esac
done
}
# 执行
check_root
main_menu