urmic_digital_encoder_decoder/encoder/firewall.php

<?php include 'header.php' ?>
<?php

$jsonFile = __DIR__ . '/firewall.json';

$defaults = [
    '80'   => '',
    '443'  => '',
    '1935' => '',
    '1937' => '',
    '8080' => '',
];

$data = $defaults;

if (is_file($jsonFile)) {
    $stored = json_decode(file_get_contents($jsonFile), true);
    if (is_array($stored)) {
        $data =  $stored;
    }
}

if ($_SERVER['REQUEST_METHOD'] === 'POST') {

    exec("echo y | sudo ufw reset");
    exec("sudo ufw default allow outgoing");
    exec("sudo ufw default deny incoming");
    exec("sudo ufw allow from 172.16.111.112 to 172.16.111.111 port 8080");
    exec("sudo ufw allow proto udp to 224.0.0.0/4");
    exec("sudo ufw route allow proto udp to 224.0.0.0/4");
    exec("sudo ufw deny out to 239.255.254.254 port 39000 proto udp");

    foreach ($defaults as $port => $_) {
        $data[$port] = trim($_POST["port_$port"] ?? '');
    }

    $tmp = $jsonFile . '.tmp';
    file_put_contents(
        $tmp,
        json_encode($data, JSON_PRETTY_PRINT | JSON_UNESCAPED_SLASHES)
    );
    rename($tmp, $jsonFile);

    foreach ($data as $port => $value) {
        $tmp = array_filter(
            array_map('trim', explode(',', (string)$value)),
            'strlen'
        );
        if (count($tmp) > 0) {
            foreach ($tmp as $ip) {
                exec("sudo ufw allow in on " . $port . " from " . $ip);
            }
        } else {
            exec("sudo ufw allow " . $port);
        }
    }

    exec("sudo ufw --force enable");
}
?>

?>

<style>
    body {
        font-family: system-ui, sans-serif;
        background: #f5f7fa;
    }

    .container {
        max-width: 520px;
        margin: 40px auto;
        background: #fff;
        padding: 24px;
        border-radius: 10px;
        box-shadow: 0 10px 30px rgba(0, 0, 0, .08);
    }

    h2 {
        margin-bottom: 20px;
        font-size: 20px;
    }

    .row {
        margin-bottom: 16px;
    }

    label {
        display: block;
        font-weight: 600;
        margin-bottom: 6px;
    }

    input[type=text] {
        width: 100%;
        padding: 16px 14px;
        border-radius: 8px;
        border: 1px solid #ccc;
        font-size: 11px;
        line-height: 1.4;
    }

    textarea {
        width: 100%;
        padding: 14px;
        border-radius: 8px;
        border: 1px solid #ccc;
        font-size: 17px;
        line-height: 1.5;
        resize: vertical;
    }


    input[type=text]:invalid {
        border-color: #d33;
    }

    small {
        color: #666;
    }

    input[type=text]:focus {
        outline: none;
        border-color: #2563eb;
        box-shadow: 0 0 0 2px rgba(37, 99, 235, .15);
    }

    button {
        margin-top: 20px;
        padding: 12px 18px;
        border: none;
        border-radius: 8px;
        background: #2563eb;
        color: #fff;
        font-size: 15px;
        cursor: pointer;
    }

    button:hover {
        background: #1e4ed8;
    }
</style>

<script>
    function validateIPs(input) {
        if (!input.value.trim()) return true;

        const ips = input.value.split(',').map(i => i.trim());

        const ipv4 =
            /^(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}$/;

        const ipv6 =
            /^(([0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}|::1|::)$/;

        for (const ip of ips) {
            if (!(ipv4.test(ip) || ipv6.test(ip))) {
                return false;
            }
        }
        return true;
    }

    function attachValidation() {
        document.querySelectorAll('input[type=text]').forEach(inp => {
            inp.addEventListener('input', () => {
                inp.setCustomValidity(
                    validateIPs(inp) ? '' : 'Invalid IPv4 or IPv6 address'
                );
            });
        });
    }
    window.onload = attachValidation;
</script>
<div class="containerindex">
    <div class="grid">
        <div class="card wide">
            <h2>Limit Access</h2>

            <form method="post">
                <?php foreach ($data as $port => $value): ?>
                    <div class="row">
                        <label>Port <?= htmlspecialchars($port) ?></label>
                        <textarea
                            name="port_<?= $port ?>"
                            rows="3"
                            placeholder="IPv4, IPv6 (comma separated)"><?= htmlspecialchars($value) ?></textarea>

                        <small>Example: 192.168.1.10/24, 2001:db8::1</small>
                    </div>
                <?php endforeach; ?>

                <button type="submit">Limit Access</button>
                <br>
                <br>
                <br>
                <br>
            </form>
        </div>
    </div>
</div>
<?php include 'footer.php' ?>