commit | author | age
|
5de2af
|
1 |
<?php |
M |
2 |
|
|
3 |
/* |
|
4 |
Copyright (c) 2013, Marius Cramer, pixcept KG |
|
5 |
All rights reserved. |
|
6 |
|
|
7 |
Redistribution and use in source and binary forms, with or without modification, |
|
8 |
are permitted provided that the following conditions are met: |
|
9 |
|
|
10 |
* Redistributions of source code must retain the above copyright notice, |
|
11 |
this list of conditions and the following disclaimer. |
|
12 |
* Redistributions in binary form must reproduce the above copyright notice, |
|
13 |
this list of conditions and the following disclaimer in the documentation |
|
14 |
and/or other materials provided with the distribution. |
|
15 |
* Neither the name of ISPConfig nor the names of its contributors |
|
16 |
may be used to endorse or promote products derived from this software without |
|
17 |
specific prior written permission. |
|
18 |
|
|
19 |
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND |
|
20 |
ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED |
|
21 |
WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. |
|
22 |
IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, |
|
23 |
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, |
|
24 |
BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, |
|
25 |
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY |
|
26 |
OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING |
|
27 |
NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, |
|
28 |
EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
|
29 |
*/ |
|
30 |
|
|
31 |
class cronjob_monitor_iptables extends cronjob { |
|
32 |
|
b1a6a5
|
33 |
// job schedule |
MC |
34 |
protected $_schedule = '*/5 * * * *'; |
|
35 |
protected $_run_at_new = true; |
5de2af
|
36 |
|
b1a6a5
|
37 |
private $_tools = null; |
5de2af
|
38 |
|
b1a6a5
|
39 |
/* this function is optional if it contains no custom code */ |
MC |
40 |
public function onPrepare() { |
|
41 |
global $app; |
|
42 |
|
|
43 |
parent::onPrepare(); |
|
44 |
} |
|
45 |
|
|
46 |
/* this function is optional if it contains no custom code */ |
|
47 |
public function onBeforeRun() { |
|
48 |
global $app; |
|
49 |
|
|
50 |
return parent::onBeforeRun(); |
|
51 |
} |
|
52 |
|
|
53 |
public function onRunJob() { |
|
54 |
global $app, $conf; |
|
55 |
|
|
56 |
/* used for all monitor cronjobs */ |
|
57 |
$app->load('monitor_tools'); |
|
58 |
$this->_tools = new monitor_tools(); |
|
59 |
/* end global section for monitor cronjobs */ |
|
60 |
|
|
61 |
/* the id of the server as int */ |
|
62 |
$server_id = intval($conf['server_id']); |
|
63 |
|
|
64 |
/** The type of the data */ |
|
65 |
|
|
66 |
|
|
67 |
$type = 'iptables_rules'; |
|
68 |
|
|
69 |
/* This monitoring is only available if fail2ban is installed */ |
|
70 |
system('which iptables', $retval); // Debian, Ubuntu, Fedora |
|
71 |
if ($retval === 0) { |
|
72 |
/* Get the data of the log */ |
|
73 |
$data['output'] = '<h2>iptables -S (ipv4)</h2>'.shell_exec('iptables -S 2>/dev/null'); |
|
74 |
|
|
75 |
/* |
5de2af
|
76 |
* At this moment, there is no state (maybe later) |
M |
77 |
*/ |
b1a6a5
|
78 |
$state = 'no_state'; |
MC |
79 |
} else { |
|
80 |
$state = 'no_state'; |
|
81 |
$data = ''; |
|
82 |
} |
5de2af
|
83 |
|
M |
84 |
|
b1a6a5
|
85 |
/* This monitoring is only available if fail2ban is installed */ |
MC |
86 |
system('which ip6tables', $retval); // Debian, Ubuntu, Fedora |
|
87 |
if ($retval === 0) { |
|
88 |
/* Get the data of the log */ |
|
89 |
$data['output'] .= '<br><h2>ip6tables -S (ipv6)</h2>'.shell_exec('ip6tables -S 2>/dev/null'); |
5de2af
|
90 |
|
b1a6a5
|
91 |
/* |
5de2af
|
92 |
* At this moment, there is no state (maybe later) |
M |
93 |
*/ |
b1a6a5
|
94 |
$state = 'no_state'; |
MC |
95 |
} else { |
|
96 |
$state = 'no_state'; |
|
97 |
$data = ''; |
|
98 |
} |
5de2af
|
99 |
|
b1a6a5
|
100 |
$res = array(); |
MC |
101 |
$res['server_id'] = $server_id; |
|
102 |
$res['type'] = $type; |
|
103 |
$res['data'] = $data; |
|
104 |
$res['state'] = $state; |
5de2af
|
105 |
|
M |
106 |
/* |
|
107 |
* Insert the data into the database |
|
108 |
*/ |
|
109 |
$sql = 'REPLACE INTO monitor_data (server_id, type, created, data, state) ' . |
cc7a82
|
110 |
'VALUES (?, ?, UNIX_TIMESTAMP(), ?, ?)'; |
MC |
111 |
$app->dbmaster->query($sql, $res['server_id'], $res['type'], serialize($res['data']), $res['state']); |
5de2af
|
112 |
|
M |
113 |
/* The new data is written, now we can delete the old one */ |
|
114 |
$this->_tools->delOldRecords($res['type'], $res['server_id']); |
b1a6a5
|
115 |
|
MC |
116 |
parent::onRunJob(); |
|
117 |
} |
|
118 |
|
|
119 |
/* this function is optional if it contains no custom code */ |
|
120 |
public function onAfterRun() { |
|
121 |
global $app; |
|
122 |
|
|
123 |
parent::onAfterRun(); |
|
124 |
} |
5de2af
|
125 |
|
M |
126 |
} |
|
127 |
|
|
128 |
?> |