aboutsummaryrefslogtreecommitdiffstats
path: root/awall/iptables.lua
diff options
context:
space:
mode:
Diffstat (limited to 'awall/iptables.lua')
-rw-r--r--awall/iptables.lua46
1 files changed, 30 insertions, 16 deletions
diff --git a/awall/iptables.lua b/awall/iptables.lua
index e127e96..a571c63 100644
--- a/awall/iptables.lua
+++ b/awall/iptables.lua
@@ -22,9 +22,19 @@ local families = {inet={cmd='iptables', file='rules-save'},
local builtin = {'INPUT', 'FORWARD', 'OUTPUT',
'PREROUTING', 'POSTROUTING'}
+local backupdir = '/var/run/awall'
+
local BaseIPTables = class(awall.object.Object)
+function BaseIPTables:dump(dir)
+ for family, tbls in pairs(families) do
+ local file = io.output(dir..'/'..families[family].file)
+ self:dumpfile(family, file)
+ file:close()
+ end
+end
+
function BaseIPTables:restore(...)
for family, params in pairs(families) do
local pid, stdin, stdout = lpc.run(params.cmd..'-restore', unpack(arg))
@@ -69,27 +79,31 @@ function IPTables:dumpfile(family, iptfile)
end
end
-function IPTables:dump(dir)
- for family, tbls in pairs(self.config) do
- self:dumpfile(family, io.output(dir..'/'..families[family].file))
- end
+
+local Current = class(BaseIPTables)
+
+function Current:dumpfile(family, iptfile)
+ local pid, stdin, stdout = lpc.run(families[family].cmd..'-save')
+ stdin:close()
+ for line in stdout:lines() do iptfile:write(line..'\n') end
+ stdout:close()
+ assert(lpc.wait(pid) == 0)
end
-Backup = class(BaseIPTables)
+local Backup = class(BaseIPTables)
-function Backup:init()
- for family, params in pairs(families) do
- self[family] = io.tmpfile()
- local pid, stdin, stdout = lpc.run(params.cmd..'-save')
- stdin:close()
- for line in stdout:lines() do self[family]:write(line..'\n') end
- stdout:close()
- assert(lpc.wait(pid) == 0)
+function Backup:dumpfile(family, iptfile)
+ for line in io.lines(backupdir..'/'..families[family].file) do
+ iptfile:write(line..'\n')
end
end
-function Backup:dumpfile(family, iptfile)
- self[family]:seek('set')
- for line in self[family]:lines() do iptfile:write(line..'\n') end
+
+function backup()
+ Current.new():dump(backupdir)
+end
+
+function revert()
+ Backup.new():activate()
end
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-13 08:57:24 +0000