github.com/mysteriumnetwork/node@v0.0.0-20240516044423-365054f76801/firewall/iptables/iptables.go (about) 1 /* 2 * Copyright (C) 2019 The "MysteriumNetwork/node" Authors. 3 * 4 * This program is free software: you can redistribute it and/or modify 5 * it under the terms of the GNU General Public License as published by 6 * the Free Software Foundation, either version 3 of the License, or 7 * (at your option) any later version. 8 * 9 * This program is distributed in the hope that it will be useful, 10 * but WITHOUT ANY WARRANTY; without even the implied warranty of 11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 * GNU General Public License for more details. 13 * 14 * You should have received a copy of the GNU General Public License 15 * along with this program. If not, see <http://www.gnu.org/licenses/>. 16 */ 17 18 package iptables 19 20 import ( 21 "bufio" 22 "bytes" 23 24 "github.com/mysteriumnetwork/node/utils/cmdutil" 25 "github.com/pkg/errors" 26 "github.com/rs/zerolog/log" 27 ) 28 29 // Exec executes given args 30 var Exec = defaultExec 31 32 func defaultExec(args ...string) ([]string, error) { 33 args = append([]string{"sudo", "/usr/sbin/iptables"}, args...) 34 output, err := cmdutil.ExecOutput(args...) 35 if err != nil { 36 return nil, errors.Wrap(err, "iptables cmd error") 37 } 38 39 outputScanner := bufio.NewScanner(bytes.NewBufferString(output)) 40 var lines []string 41 for outputScanner.Scan() { 42 lines = append(lines, outputScanner.Text()) 43 } 44 return lines, outputScanner.Err() 45 } 46 47 // AddRuleWithRemoval activates given rule 48 func AddRuleWithRemoval(rule Rule) (func(), error) { 49 if _, err := Exec(rule.ApplyArgs()...); err != nil { 50 return nil, err 51 } 52 return func() { 53 _, err := Exec(rule.RemoveArgs()...) 54 if err != nil { 55 log.Warn().Err(err).Msgf("Error executing rule: %v you might wanna do it yourself", rule.RemoveArgs()) 56 } 57 }, nil 58 }