automated DNS-based routing

2024-07-14 13:04:53 +03:00
parent 03243e9102
commit 99263d1882
11 changed files with 232 additions and 616 deletions
--- a/scripts/opt_bin/unblock_ipset.sh
+++ b/scripts/opt_bin/unblock_ipset.sh
@@ -0,0 +1,33 @@
+#!/bin/sh
+
+until ADDRS=$(dig +short google.com @localhost) && [ -n "$ADDRS" ] > /dev/null 2>&1; do sleep 5; done
+
+while read line || [ -n "$line" ]; do
+
+  [ -z "$line" ] && continue
+  [ "${line:0:1}" = "#" ] && continue
+
+  cidr=$(echo $line | grep -Eo '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}/[0-9]{1,2}')
+
+  if [ ! -z "$cidr" ]; then
+    ipset -exist add unblock $cidr
+    continue
+  fi
+
+  range=$(echo $line | grep -Eo '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}-[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}')
+
+  if [ ! -z "$range" ]; then
+    ipset -exist add unblock $range
+    continue
+  fi
+
+  addr=$(echo $line | grep -Eo '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}')
+
+  if [ ! -z "$addr" ]; then
+    ipset -exist add unblock $addr
+    continue
+  fi
+
+  dig +short $line @localhost | grep -Eo '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' | awk '{system("ipset -exist add unblock "$1)}'
+
+done < /opt/etc/unblock.txt