hw_partner
/
urmic_digital_encoder_decoder
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
urmic_digital_encoder_decoder/encoder/firewall.php

202 lines
4.7 KiB
PHP
Raw Blame History

<?php include 'header.php' ?>
<?php
$jsonFile = __DIR__ . '/firewall.json';
$defaults = [
'80' => '',
'443' => '',
'1935' => '',
'1937' => '',
'8080' => '',
];
$data = $defaults;
if (is_file($jsonFile)) {
$stored = json_decode(file_get_contents($jsonFile), true);
if (is_array($stored)) {
$data = $stored;
}
}
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
exec("echo y | sudo ufw reset");
exec("sudo ufw default allow outgoing");
exec("sudo ufw default deny incoming");
exec("sudo ufw allow from 172.16.111.112 to 172.16.111.111 port 8080");
exec("sudo ufw allow proto udp to 224.0.0.0/4");
exec("sudo ufw route allow proto udp to 224.0.0.0/4");
exec("sudo ufw deny out to 239.255.254.254 port 39000 proto udp");
foreach ($defaults as $port => $_) {
$data[$port] = trim($_POST["port_$port"] ?? '');
}
$tmp = $jsonFile . '.tmp';
file_put_contents(
$tmp,
json_encode($data, JSON_PRETTY_PRINT | JSON_UNESCAPED_SLASHES)
);
rename($tmp, $jsonFile);
foreach ($data as $port => $value) {
$tmp = explode(",", trim($value));
error_log("tmp count is " . count($tmp));
error_log($tmp);
if (count($tmp) > 1) {
foreach ($tmp as $ip) {
exec("sudo ufw allow from " . $ip . "to any port " . $port . " proto tcp");
}
} else {
error_log("allow all port " . $port);
exec("sudo ufw allow " . $port);
}
}
exec("sudo ufw --force enable");
}
?>
?>
<style>
body {
font-family: system-ui, sans-serif;
background: #f5f7fa;
}
.container {
max-width: 520px;
margin: 40px auto;
background: #fff;
padding: 24px;
border-radius: 10px;
box-shadow: 0 10px 30px rgba(0, 0, 0, .08);
}
h2 {
margin-bottom: 20px;
font-size: 20px;
}
.row {
margin-bottom: 16px;
}
label {
display: block;
font-weight: 600;
margin-bottom: 6px;
}
input[type=text] {
width: 100%;
padding: 16px 14px;
border-radius: 8px;
border: 1px solid #ccc;
font-size: 11px;
line-height: 1.4;
}
textarea {
width: 100%;
padding: 14px;
border-radius: 8px;
border: 1px solid #ccc;
font-size: 17px;
line-height: 1.5;
resize: vertical;
}
input[type=text]:invalid {
border-color: #d33;
}
small {
color: #666;
}
input[type=text]:focus {
outline: none;
border-color: #2563eb;
box-shadow: 0 0 0 2px rgba(37, 99, 235, .15);
}
button {
margin-top: 20px;
padding: 12px 18px;
border: none;
border-radius: 8px;
background: #2563eb;
color: #fff;
font-size: 15px;
cursor: pointer;
}
button:hover {
background: #1e4ed8;
}
</style>
<script>
function validateIPs(input) {
if (!input.value.trim()) return true;
const ips = input.value.split(',').map(i => i.trim());
const ipv4 =
/^(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)(\.(25[0-5]|2[0-4]\d|1\d\d|[1-9]?\d)){3}$/;
const ipv6 =
/^(([0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}|::1|::)$/;
for (const ip of ips) {
if (!(ipv4.test(ip) || ipv6.test(ip))) {
return false;
}
}
return true;
}
function attachValidation() {
document.querySelectorAll('input[type=text]').forEach(inp => {
inp.addEventListener('input', () => {
inp.setCustomValidity(
validateIPs(inp) ? '' : 'Invalid IPv4 or IPv6 address'
);
});
});
}
window.onload = attachValidation;
</script>
<div class="containerindex">
<div class="grid">
<div class="card wide">
<h2>Limit Access</h2>
<form method="post">
<?php foreach ($data as $port => $value): ?>
<div class="row">
<label>Port <?= htmlspecialchars($port) ?></label>
<textarea
name="port_<?= $port ?>"
rows="3"
placeholder="IPv4, IPv6 (comma separated)"><?= htmlspecialchars($value) ?></textarea>
<small>Example: 192.168.1.10/24, 2001:db8::1</small>
</div>
<?php endforeach; ?>
<button type="submit">Limit Access</button>
<br>
<br>
<br>
<br>
</form>
</div>
</div>
</div>
<?php include 'footer.php' ?>
Reference in New Issue View Git Blame Copy Permalink