Results 1 to 2 of 2
Hi,
I am trying to work on a bash script that reads in IP ranges from a PG2 style file and adds them to a blocklist on iptables. I have ...
- 06-10-2007 #1Just Joined!
- Join Date
- Jun 2007
- Posts
- 1
Simple bash script help
Hi,
I am trying to work on a bash script that reads in IP ranges from a PG2 style file and adds them to a blocklist on iptables. I have it almost entirely working, but there is some problem when I add the range to iptables. I believe it is caused by the '-' that needs to be inbetween for IPtables, but I'm not sure. Any help would be appreciated.
The format of the blocklist file is as follows:
tatters:~/p2p-blocklist# more level1.txt
General Electric Company:3.0.0.0-3.255.255.255
s0-0.ciscoseattle.bbnplanet.net:4.0.25.146-4.0.25.148
p1-0.cisco.bbnplanet.net:4.0.26.14-4.0.29.24
tatters:~/p2p-blocklist#
My script is here:
tatters:~/p2p-blocklist# more split.sh
#!/bin/sh
#rec="test:4.4.4.4-3.3.3.3"
#echo $rec | cut -d: -f2
IPTABLES="/sbin/iptables"
#empty out the blocklist range
$IPTABLES -F p2pblocklist
$IPTABLES -X p2pblocklist
#create the blocklist range
$IPTABLES -N p2pblocklist
a=0
while read line
do a=$(($a+1));
echo "Adding blocklist line number $a";
rangename=`echo $line | cut -d: -f1`;
startrange=`echo $line | cut -d: -f2 | cut -d- -f1`;
endrange=`echo $line | cut -d: -f2 | cut -d- -f2`;
range="$startrange-$endrange";
echo "begin range $startrange";
echo "end range $endrange";
# enter iptables insert statement here
$IPTABLES -A p2pblocklist -m iprange --dst-range $range -j DROP
echo "";
done < level1.txt
echo "line count is $a";
tatters:~/p2p-blocklist#
When executed, here is the output:
tatters:~/p2p-blocklist# sh ./split.sh
Adding blocklist line number 1
begin range 3.0.0.0
end range 3.255.255.255
'ptables v1.3.6: iprange match: Bad IP address `3.255.255.255
Try `iptables -h' or 'iptables --help' for more information.
Adding blocklist line number 2
begin range 4.0.25.146
end range 4.0.25.148
'ptables v1.3.6: iprange match: Bad IP address `4.0.25.148
Try `iptables -h' or 'iptables --help' for more information.
Any help would be very much appreciated. I'm sure there is some simple escape character or other issue that I am missing.
Thanks
Dave
- 06-11-2007 #2Just Joined!
- Join Date
- Jul 2006
- Posts
- 52
Here are my results from running the script:
fatsheep:~/Desktop/Testing Grounds$ ./split
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 1
begin range 3.0.0.0
end range 3.255.255.255
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 2
begin range 4.0.25.146
end range 4.0.25.148
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 3
begin range 4.0.26.14
end range 4.0.29.24
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
line count is 3
fatsheep:~/Desktop/Testing Grounds$ sh ./split
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 1
begin range 3.0.0.0
end range 3.255.255.255
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 2
begin range 4.0.25.146
end range 4.0.25.148
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 3
begin range 4.0.26.14
end range 4.0.29.24
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
line count is 3
fatsheep:~/Desktop/Testing Grounds$ clear
fatsheep:~/Desktop/Testing Grounds$ ./split
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 1
begin range 3.0.0.0
end range 3.255.255.255
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 2
begin range 4.0.25.146
end range 4.0.25.148
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
Adding blocklist line number 3
begin range 4.0.26.14
end range 4.0.29.24
WARNING: Error inserting x_tables (/lib/modules/2.6.20-16-generic/kernel/net/netfilter/x_tables.ko): Operation not permitted
FATAL: Error inserting ip_tables (/lib/modules/2.6.20-16-generic/kernel/net/ipv4/netfilter/ip_tables.ko): Operation not permitted
iptables v1.3.6: can't initialize iptables table `filter': Permission denied (you must be root)
Perhaps iptables or your kernel needs to be upgraded.
line count is 3
Reply With Quote 
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts