550.ipfwlimit (87514) | 550.ipfwlimit (87852) |
---|---|
1#!/bin/sh - 2# 3# Copyright (c) 2001 The FreeBSD Project 4# All rights reserved. 5# 6# Redistribution and use in source and binary forms, with or without 7# modification, are permitted provided that the following conditions 8# are met: --- 10 unchanged lines hidden (view full) --- 19# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 20# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 21# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 22# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 23# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 24# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 25# SUCH DAMAGE. 26# | 1#!/bin/sh - 2# 3# Copyright (c) 2001 The FreeBSD Project 4# All rights reserved. 5# 6# Redistribution and use in source and binary forms, with or without 7# modification, are permitted provided that the following conditions 8# are met: --- 10 unchanged lines hidden (view full) --- 19# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 20# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 21# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 22# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 23# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 24# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 25# SUCH DAMAGE. 26# |
27# $FreeBSD: head/etc/periodic/security/550.ipfwlimit 87514 2001-12-07 23:57:39Z cjc $ | 27# $FreeBSD: head/etc/periodic/security/550.ipfwlimit 87852 2001-12-14 08:58:21Z ru $ |
28# 29 30# Show ipfw rules which have reached the log limit 31# 32 33# If there is a global system configuration file, suck it in. 34# 35if [ -r /etc/defaults/periodic.conf ] 36then 37 . /etc/defaults/periodic.conf 38 source_periodic_confs 39fi 40 41TMP=/var/run/_secure.$$ 42rc=0 43 44case "$daily_status_security_ipfwlimit_enable" in 45 [Yy][Ee][Ss]) 46 IPFW_LOG_LIMIT=`sysctl -n net.inet.ip.fw.verbose_limit 2> /dev/null` | 28# 29 30# Show ipfw rules which have reached the log limit 31# 32 33# If there is a global system configuration file, suck it in. 34# 35if [ -r /etc/defaults/periodic.conf ] 36then 37 . /etc/defaults/periodic.conf 38 source_periodic_confs 39fi 40 41TMP=/var/run/_secure.$$ 42rc=0 43 44case "$daily_status_security_ipfwlimit_enable" in 45 [Yy][Ee][Ss]) 46 IPFW_LOG_LIMIT=`sysctl -n net.inet.ip.fw.verbose_limit 2> /dev/null` |
47 if [ $? -eq 0 -a "${IPFW_LOG_LIMIT}" -ne 0 ]; then | 47 if [ $? -eq 0 ] && [ "${IPFW_LOG_LIMIT}" -ne 0 ]; then |
48 ipfw -a l | grep " log " | perl -n -e \ 49 '/^\d+\s+(\d+)/; print if ($1 >= '$IPFW_LOG_LIMIT')' > ${TMP} 50 if [ -s "${TMP}" ]; then 51 rc=1 52 echo "" 53 echo 'ipfw log limit reached:' 54 cat ${TMP} 55 fi 56 fi 57 rm -f ${TMP};; 58 *) rc=0;; 59esac 60 61exit $rc | 48 ipfw -a l | grep " log " | perl -n -e \ 49 '/^\d+\s+(\d+)/; print if ($1 >= '$IPFW_LOG_LIMIT')' > ${TMP} 50 if [ -s "${TMP}" ]; then 51 rc=1 52 echo "" 53 echo 'ipfw log limit reached:' 54 cat ${TMP} 55 fi 56 fi 57 rm -f ${TMP};; 58 *) rc=0;; 59esac 60 61exit $rc |