\u0412 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u043e \u0432\u0440\u0435\u043c\u0435 \u0447\u0435\u0441\u0442\u043e \u043c\u0438 \u0441\u0435 \u043d\u0430\u043b\u0430\u0433\u0430 \u0434\u0430 \u0440\u0435\u0441\u0442\u0430\u0440\u0442\u0438\u0440\u0430\u043c firewall-a, \u043f\u043e\u0440\u0430\u0434\u0438 \u0440\u0430\u0437\u043d\u0438 \u043f\u0440\u043e\u043c\u0435\u043d\u0438 \u043f\u043e \u043c\u0440\u0435\u0436\u0430\u0442\u0430. \u041f\u0440\u0438 \u043a\u043e\u0435\u0442\u043e \u0441\u0435 \u043d\u0430\u043b\u0430\u0433\u0430 \u043d\u0430 \u043d\u043e\u0432\u043e \u0432\u0441\u0435\u043a\u0438 \u043f\u044a\u0442 \u0434\u0430 \u0434\u043e\u0431\u0430\u0432\u044f\u043c \u043f\u0440\u0430\u0432\u0438\u043b\u0430\u0442\u0430 \u0437\u0430 \u043d\u0430\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u0435 \u043d\u0430 \u0442\u0440\u0430\u0444\u0438\u043a\u0430. \u0418 \u043d\u0435 \u0437\u043d\u0430\u043c \u0432\u0435\u0447\u0435 \u0441\u043b\u0435\u0434 \u043a\u043e\u0439 \u043f\u044a\u0442 \u043c\u0438 \u043f\u0438\u0441\u043d\u0430 \u0438 \u043d\u0430\u043f\u0438\u0441\u0430\u0445 \u043c\u0430\u043b\u044a\u043a \u0441\u043a\u0440\u0438\u043f \u0437\u0430 \u0443\u043b\u0435\u0441\u043d\u0435\u043d\u0438\u0435 \u043d\u0430 \u043d\u0435\u0449\u0430\u0442\u0430.<\/p>\n
[code lang=“bash“]
\n#!\/bin\/bash
\n#
\n# script by alex@hgs.name
\n##############################################
\niptables=“\/sbin\/iptables“
\nb_ip=“100″
\ne_ip=“253″
\n##############################################<\/p>\n
#IP Cicle for traffic monitoring down
\nip_tmd_cicle () {
\nif [ $begin_ip -gt $end_ip ]; then
\n echo
\nelse
\n for IP in 192.168.1.$begin_ip ;
\n do
\n\t$iptables -A TRAFFIC_DOWN -j RETURN -d 192.168.1.$begin_ip
\n\tbegin_ip=$(( $begin_ip+1 ))
\n\tip_tmd_cicle
\n done
\nfi
\n}<\/p>\n
#IP Cicle for traffic monitoring upload
\nip_tmu_cicle () {
\nif [ $begin_ip -gt $end_ip ]; then
\n echo
\nelse
\n for IP in 192.168.1.$begin_ip ;
\n do
\n $iptables -A TRAFFIC_UP -j RETURN -s 192.168.1.$begin_ip
\n begin_ip=$(( $begin_ip+1 ))
\n ip_tmu_cicle
\n done
\nfi
\n}<\/p>\n
create_rules_down (){
\nexport begin_ip=$b_ip
\nexport end_ip=$e_ip
\ntraffic_down=`iptables -L | grep TRAFFIC_DOWN | awk ‘{print $2}’`
\nif [ „$traffic_down“ = „TRAFFIC_DOWN“ ]; then
\n echo -e „\\e[1;32m“ Chain TRAFFIC_DOWN exist“\\e[0m“
\n $iptables -I FORWARD -j TRAFFIC_DOWN
\n ip_tmd_cicle
\n else
\n echo -e „\\e[1;33m“ Chain TRAFFIC_DOWN not exist and create“\\e[0m“
\n $iptables -N TRAFFIC_DOWN
\n $iptables -I FORWARD -j TRAFFIC_DOWN
\n ip_tmd_cicle
\nfi
\n}<\/p>\n
create_rules_up (){
\nexport begin_ip=$b_ip
\nexport end_ip=$e_ip
\ntraffic_up=`iptables -L | grep TRAFFIC_UP | awk ‘{print $2}’`
\nif [ „$traffic_up“ = „TRAFFIC_UP“ ]; then
\n echo -e „\\e[1;32m“ Chain TRAFFIC_UP exist“\\e[0m“
\n $iptables -I FORWARD -j TRAFFIC_UP
\n ip_tmu_cicle
\n else
\n echo -e „\\e[1;33m“ Chain TRAFFIC_UP not exist and create“\\e[0m“
\n $iptables -N TRAFFIC_UP
\n $iptables -I FORWARD -j TRAFFIC_UP
\n ip_tmu_cicle
\nfi
\n}<\/p>\n
# Starting script
\necho -e „\\e[1;32m“Starting create traffic monitoring rules, please wait … „\\e[0m“
\necho
\ncreate_rules_down
\ncreate_rules_up
\necho -e „\\e[1;32m“End create traffic monitoring rules.“\\e[0m“<\/p>\n
[\/code]<\/p>\n
\u041d\u044f\u043a\u043e\u0439 \u0434\u043e\u043f\u044a\u043b\u043d\u0438\u0442\u0435\u043b\u043d\u0438 \u043e\u0431\u044f\u0441\u043d\u0435\u043d\u0438\u044f:
\n\u0418\u043c\u0430 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0437\u0430 Chain TRAFFIC_UP \u0438 Chain TRAFFIC_UP \u0434\u0430\u043b\u0438 \u0441\u044a\u0449\u0435\u0441\u0442\u0432\u0443\u0432\u0430\u0442. \u0410\u043a\u043e \u043d\u044f\u043c\u0430 \u0441\u0435 \u0441\u044a\u0437\u0434\u0430\u0432\u0430\u0442.
\n\u041d\u044f\u043c\u0430 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432 Chain \u0438\u043c\u0430 \u043d\u044f\u043a\u0430\u043a\u0432\u0438 \u043f\u0440\u0430\u0432\u0438\u043b\u0430.<\/p>\n
\u0418\u0434\u0435\u044f\u0442\u0430 \u043d\u0430 \u0441\u043a\u0440\u0438\u043f\u0442\u0430 \u0435 \u0441\u043b\u0435\u0434 \u0440\u0435\u0441\u0442\u0430\u0440\u0442\u0438\u0440\u0430\u043d\u0435 \u043d\u0430 \u0441\u043a\u0440\u0438\u043f\u0442\u0430 \u0437\u0430 firewall-a \u0432 \u043a\u043e\u0439\u0442\u043e \u043f\u043e\u0432\u0435\u0447\u0435\u0442\u043e \u0430\u0434\u043c\u0438\u043d\u0438 \u0437\u0430\u043b\u0430\u0433\u0430\u0442 \u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0437\u0430 \u043f\u044a\u043b\u043d\u043e \u043d\u0443\u043b\u0438\u0440\u0430\u043d\u0435 \u043d\u0430 firewall-\u0430 \u0434\u0430 \u0441\u0435 \u0434\u043e\u0431\u0430\u0432\u044f\u0442 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u0438\u0442\u0435.<\/p>\n","protected":false},"excerpt":{"rendered":"
\u0412 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u043e \u0432\u0440\u0435\u043c\u0435 \u0447\u0435\u0441\u0442\u043e \u043c\u0438 \u0441\u0435 \u043d\u0430\u043b\u0430\u0433\u0430 \u0434\u0430 \u0440\u0435\u0441\u0442\u0430\u0440\u0442\u0438\u0440\u0430\u043c firewall-a, \u043f\u043e\u0440\u0430\u0434\u0438 \u0440\u0430\u0437\u043d\u0438 \u043f\u0440\u043e\u043c\u0435\u043d\u0438 \u043f\u043e \u043c\u0440\u0435\u0436\u0430\u0442\u0430. \u041f\u0440\u0438 \u043a\u043e\u0435\u0442\u043e \u0441\u0435 \u043d\u0430\u043b\u0430\u0433\u0430 \u043d\u0430 \u043d\u043e\u0432\u043e \u0432\u0441\u0435\u043a\u0438 \u043f\u044a\u0442 \u0434\u0430 \u0434\u043e\u0431\u0430\u0432\u044f\u043c \u043f\u0440\u0430\u0432\u0438\u043b\u0430\u0442\u0430 \u0437\u0430 \u043d\u0430\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u0435 \u043d\u0430 \u0442\u0440\u0430\u0444\u0438\u043a\u0430. \u0418 \u043d\u0435 \u0437\u043d\u0430\u043c \u0432\u0435\u0447\u0435 \u0441\u043b\u0435\u0434 \u043a\u043e\u0439 \u043f\u044a\u0442 \u043c\u0438 \u043f\u0438\u0441\u043d\u0430 \u0438 \u043d\u0430\u043f\u0438\u0441\u0430\u0445 \u043c\u0430\u043b\u044a\u043a \u0441\u043a\u0440\u0438\u043f \u0437\u0430 \u0443\u043b\u0435\u0441\u043d\u0435\u043d\u0438\u0435 \u043d\u0430 \u043d\u0435\u0449\u0430\u0442\u0430. [code lang=“bash“] #!\/bin\/bash # # script by alex@hgs.name […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0,"footnotes":""},"categories":[11],"tags":[],"class_list":["post-562","post","type-post","status-publish","format-standard","hentry","category-11"],"_links":{"self":[{"href":"https:\/\/hgs.name\/index.php?rest_route=\/wp\/v2\/posts\/562","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hgs.name\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hgs.name\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hgs.name\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hgs.name\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=562"}],"version-history":[{"count":5,"href":"https:\/\/hgs.name\/index.php?rest_route=\/wp\/v2\/posts\/562\/revisions"}],"predecessor-version":[{"id":568,"href":"https:\/\/hgs.name\/index.php?rest_route=\/wp\/v2\/posts\/562\/revisions\/568"}],"wp:attachment":[{"href":"https:\/\/hgs.name\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=562"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hgs.name\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=562"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hgs.name\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=562"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}