mirror of
https://github.com/serghey-rodin/vesta.git
synced 2024-12-03 19:00:24 -08:00
150 lines
4.0 KiB
Bash
Executable File
150 lines
4.0 KiB
Bash
Executable File
#!/bin/bash
|
|
# info: delete system ip
|
|
# options: IP
|
|
#
|
|
# The function for deleting a system ip. It does not allow to delete first ip
|
|
# on interface and do not allow to delete ip which is used by a web domain.
|
|
|
|
|
|
#----------------------------------------------------------#
|
|
# Variable&Function #
|
|
#----------------------------------------------------------#
|
|
|
|
# Argument definition
|
|
ip=$1
|
|
|
|
# Includes
|
|
source $VESTA/func/main.sh
|
|
source $VESTA/func/ip.sh
|
|
source $VESTA/func/domain.sh
|
|
source $VESTA/conf/vesta.conf
|
|
|
|
|
|
#----------------------------------------------------------#
|
|
# Verifications #
|
|
#----------------------------------------------------------#
|
|
|
|
check_args '1' "$#" 'IP'
|
|
is_format_valid 'ip'
|
|
is_ip_valid "$ip"
|
|
is_ip_key_empty '$U_WEB_DOMAINS'
|
|
is_ip_key_empty '$U_SYS_USERS'
|
|
|
|
|
|
#----------------------------------------------------------#
|
|
# Action #
|
|
#----------------------------------------------------------#
|
|
|
|
# Import ip variables
|
|
source $VESTA/data/ips/$ip
|
|
cidr=$(convert_netmask $NETMASK)
|
|
|
|
# Checking main ip on the interface
|
|
interface=$(/sbin/ip addr | grep "$ip/$cidr" | awk '{print $NF}')
|
|
if [ ! -z "$interface" ] && [ -z "$(echo $interface |cut -s -f2 -d :)" ]; then
|
|
echo "Error: can't delete main IP address"
|
|
log_event "$E_FORBIDEN" "$ARGUMENTS"
|
|
exit $E_FORBIDEN
|
|
fi
|
|
|
|
# Deleting system ip
|
|
if [ ! -z "$interface" ]; then
|
|
/sbin/ip addr del $ip/$cidr dev $INTERFACE
|
|
if [ "$?" -ne 0 ]; then
|
|
echo "Error: can't delete system ip"
|
|
log_event "$E_FORBIDEN" "$ARGUMENTS"
|
|
exit $E_FORBIDEN
|
|
fi
|
|
fi
|
|
|
|
# Deleting startup conf on RHEL/CentOS/Fedora
|
|
if [ -e "/etc/sysconfig/network-scripts/ifcfg-$interface" ]; then
|
|
rm -f /etc/sysconfig/network-scripts/ifcfg-$interface
|
|
fi
|
|
|
|
# Deleting startup conf on Debian/Ubuntu
|
|
if [ -e "/etc/network/interfaces" ]; then
|
|
ip_str=$(grep -n $ip$ /etc/network/interfaces |cut -f1 -d:)
|
|
if [ ! -z "$ip_str" ]; then
|
|
first_str=$((ip_str - 3))
|
|
last_str=$((ip_str + 1))
|
|
sed -i "$first_str,$last_str d" /etc/network/interfaces
|
|
fi
|
|
fi
|
|
|
|
# Deleting vesta ip
|
|
rm -f $VESTA/data/ips/$ip
|
|
|
|
# Deleting web config
|
|
if [ ! -z "$WEB_SYSTEM" ]; then
|
|
rm -f /etc/$WEB_SYSTEM/conf.d/$ip.conf
|
|
fi
|
|
|
|
# Deleting proxy config
|
|
if [ ! -z "$PROXY_SYSTEM" ]; then
|
|
rm -f /etc/$PROXY_SYSTEM/conf.d/$ip.conf
|
|
|
|
# mod_extract_forwarded
|
|
fw_conf="/etc/$WEB_SYSTEM/conf.d/mod_extract_forwarded.conf"
|
|
if [ -e "$fw_conf" ]; then
|
|
ips=$(grep 'MEFaccept 127.0.0.1' $fw_conf)
|
|
new_ips=$(echo "$ips" | sed "s/$ip//" )
|
|
sed -i "s/$ips/$new_ips/g" $fw_conf
|
|
fi
|
|
|
|
# mod_rpaf
|
|
rpaf_conf="/etc/$WEB_SYSTEM/mods-enabled/rpaf.conf"
|
|
if [ -e "$rpaf_conf" ]; then
|
|
ips=$(grep RPAFproxy_ips $rpaf_conf)
|
|
new_ips=$(echo "$rpaf_str" | sed "s/$ip//")
|
|
sed -i "s/$ips/$new_ips/g" $rpaf_conf
|
|
fi
|
|
|
|
#mod_remoteip
|
|
remoteip_conf="/etc/$WEB_SYSTEM/mods-enabled/remoteip.conf"
|
|
if [ -e "$remoteip_conf" ]; then
|
|
sed -i "s/RemoteIPInternalProxy $ip//g" $remoteip_conf
|
|
fi
|
|
fi
|
|
|
|
|
|
#----------------------------------------------------------#
|
|
# Vesta #
|
|
#----------------------------------------------------------#
|
|
|
|
# Updating user conf
|
|
if [ ! -z "$OWNER" ]; then
|
|
decrease_user_value "$OWNER" '$IP_OWNED'
|
|
fi
|
|
|
|
if [ "$OWNER" = 'admin' ]; then
|
|
if [ "$STATUS" = 'shared' ]; then
|
|
for user in $(ls $VESTA/data/users/); do
|
|
decrease_user_value "$user" '$IP_AVAIL'
|
|
done
|
|
fi
|
|
else
|
|
decrease_user_value "$OWNER" '$IP_AVAIL'
|
|
fi
|
|
|
|
# Restarting web server
|
|
$BIN/v-restart-web
|
|
check_result $? "Web restart failed" >/dev/null
|
|
|
|
# Restarting proxy server
|
|
if [ ! -z "$PROXY_SYSTEM" ]; then
|
|
$BIN/v-restart-proxy
|
|
check_result $? "Proxy restart failed" >/dev/null
|
|
fi
|
|
|
|
# Restarting firewall
|
|
if [ ! -z "$FIREWALL_SYSTEM" ]; then
|
|
$BIN/v-update-firewall
|
|
fi
|
|
|
|
# Logging
|
|
log_history "deleted system ip address $ip"
|
|
log_event "$OK" "$ARGUMENTS"
|
|
|
|
exit
|