#!/bin/bash
# info: delete system ip
# options: IP
#
# The function for deleting a system ip. It does not allow to delete first ip
# on interface and do not allow to delete ip which is used by a web domain.
#----------------------------------------------------------#
# Variable&Function #
#----------------------------------------------------------#
# Argument definition
ip=$1
# Includes
source $VESTA/func/main.sh
source $VESTA/func/ip.sh
source $VESTA/func/domain.sh
source $VESTA/conf/vesta.conf
#----------------------------------------------------------#
# Verifications #
#----------------------------------------------------------#
check_args '1' "$#" 'IP'
is_format_valid 'ip'
is_ip_valid "$ip"
is_ip_key_empty '$U_WEB_DOMAINS'
is_ip_key_empty '$U_SYS_USERS'
#----------------------------------------------------------#
# Action #
#----------------------------------------------------------#
# Import ip variables
source $VESTA/data/ips/$ip
cidr=$(convert_netmask $NETMASK)
# Checking main ip on the interface
interface=$(/sbin/ip addr | grep "$ip/$cidr" | awk '{print $NF}')
if [ ! -z "$interface" ] && [ -z "$(echo $interface |cut -s -f2 -d :)" ]; then
echo "Error: can't delete main IP address"
log_event "$E_FORBIDEN" "$ARGUMENTS"
exit $E_FORBIDEN
fi
# Deleting system ip
if [ ! -z "$interface" ]; then
/sbin/ip addr del $ip/$cidr dev $INTERFACE
if [ "$?" -ne 0 ]; then
echo "Error: can't delete system ip"
log_event "$E_FORBIDEN" "$ARGUMENTS"
exit $E_FORBIDEN
fi
fi
# Deleting startup conf on RHEL/CentOS/Fedora
if [ -e "/etc/sysconfig/network-scripts/ifcfg-$interface" ]; then
rm -f /etc/sysconfig/network-scripts/ifcfg-$interface
fi
# Deleting startup conf on Debian/Ubuntu
if [ -e "/etc/network/interfaces" ]; then
ip_str=$(grep -n $ip$ /etc/network/interfaces |cut -f1 -d:)
if [ ! -z "$ip_str" ]; then
first_str=$((ip_str - 3))
last_str=$((ip_str + 1))
sed -i "$first_str,$last_str d" /etc/network/interfaces
fi
fi
# Deleting vesta ip
rm -f $VESTA/data/ips/$ip
# Deleting web config
if [ ! -z "$WEB_SYSTEM" ]; then
rm -f /etc/$WEB_SYSTEM/conf.d/$ip.conf
fi
# Deleting proxy config
if [ ! -z "$PROXY_SYSTEM" ]; then
rm -f /etc/$PROXY_SYSTEM/conf.d/$ip.conf
# mod_extract_forwarded
fw_conf="/etc/$WEB_SYSTEM/conf.d/mod_extract_forwarded.conf"
if [ -e "$fw_conf" ]; then
ips=$(grep 'MEFaccept 127.0.0.1' $fw_conf)
new_ips=$(echo "$ips" | sed "s/$ip//" )
sed -i "s/$ips/$new_ips/g" $fw_conf
fi
# mod_rpaf
rpaf_conf="/etc/$WEB_SYSTEM/mods-enabled/rpaf.conf"
if [ -e "$rpaf_conf" ]; then
ips=$(grep RPAFproxy_ips $rpaf_conf)
new_ips=$(echo "$rpaf_str" | sed "s/$ip//")
sed -i "s/$ips/$new_ips/g" $rpaf_conf
fi
#mod_remoteip
remoteip_conf="/etc/$WEB_SYSTEM/mods-enabled/remoteip.conf"
if [ -e "$remoteip_conf" ]; then
sed -i "s/RemoteIPInternalProxy $ip//g" $remoteip_conf
fi
fi
#----------------------------------------------------------#
# Vesta #
#----------------------------------------------------------#
# Updating user conf
if [ ! -z "$OWNER" ]; then
decrease_user_value "$OWNER" '$IP_OWNED'
fi
if [ "$OWNER" = 'admin' ]; then
if [ "$STATUS" = 'shared' ]; then
for user in $(ls $VESTA/data/users/); do
decrease_user_value "$user" '$IP_AVAIL'
done
fi
else
decrease_user_value "$OWNER" '$IP_AVAIL'
fi
# Restarting web server
$BIN/v-restart-web
check_result $? "Web restart failed" >/dev/null
# Restarting proxy server
if [ ! -z "$PROXY_SYSTEM" ]; then
$BIN/v-restart-proxy
check_result $? "Proxy restart failed" >/dev/null
fi
# Restarting firewall
if [ ! -z "$FIREWALL_SYSTEM" ]; then
$BIN/v-update-firewall
fi
# Logging
log_history "deleted system ip address $ip"
log_event "$OK" "$ARGUMENTS"
exit