1、清空防火墙规则
iptables -F
2、查看防火墙规则
iptables -L -n
3、编写脚本
vim iptables.sh
#!/bin/bash
function ASK(){
read -ep "是否继续添加规则(y|n):" ask
case $ask in
n|N)
echo "退出程序"
break
;;
y|Y)
continue
esac
}
while true
do
echo -e "\033[36m 1.放行端口
2.封锁端口
3.放行ip
4.封锁ip\033[0m"
read -ep "请输入你的选项:" mean
case $mean in
1)
read -ep "请输入要放行的端口:" PORT
echo "正在放行$PORT......"
sleep 1
iptables -I INPUT -p tcp --dport $PORT -j ACCEPT
echo "放行$PORT成功"
ASK
;;
2)
read -ep "请输入要封锁的端口:" PORT
echo "正在封锁$PORT......"
sleep 1
iptables -I INPUT -p tcp --dport $PORT -j DROP
echo "封锁$PORT成功"
ASK
;;
3)
read -ep "请输入要放行的IP:" IP
echo "正在放行$IP......"
sleep 1
iptables -I INPUT -s $IP -j ACCEPT
echo "放行$IP成功"
ASK
;;
4)
read -ep "请输入要封锁的IP:" IP
echo "正在封锁$IP......"
sleep 1
iptables -I INPUT -s $IP -j DROP
echo "封锁$IP成功"
ASK
;;
*)
echo "输入有误"
break
esac
done
sh iptables.sh