summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorDejavu Moe <[email protected]>2023-05-10 21:12:16 +0800
committerDejavu Moe <[email protected]>2023-05-10 21:12:16 +0800
commitc2b33f6117b3ee54425aa52db594aeb33a7d9a9c (patch)
tree20feb2ea9667cccedce8b0929ccc81d8755bf34a
downloadgist-c2b33f6117b3ee54425aa52db594aeb33a7d9a9c.tar.gz
gist-c2b33f6117b3ee54425aa52db594aeb33a7d9a9c.zip
add cloudflare ufw ip scripts
Diffstat
-rw-r--r--cloudflare/ufw-add-cf-ip.sh13
-rw-r--r--cloudflare/ufw-rm-cf-ip.sh13
2 files changed, 26 insertions, 0 deletions
diff --git a/cloudflare/ufw-add-cf-ip.sh b/cloudflare/ufw-add-cf-ip.sh
new file mode 100644
index 0000000..f292346
--- /dev/null
+++ b/cloudflare/ufw-add-cf-ip.sh
@@ -0,0 +1,13 @@
+#!/bin/bash
+
+for ipv4 in `curl -s https://www.cloudflare.com/ips-v4 | tee ips-v4`
+do
+ sudo ufw allow from $ipv4 to any port 80
+ sudo ufw allow from $ipv4 to any port 443
+done
+
+for ipv6 in `curl -s https://www.cloudflare.com/ips-v6 | tee ips-v6`
+do
+ sudo ufw allow from $ipv6 to any port 80
+ sudo ufw allow from $ipv6 to any port 443
+done \ No newline at end of file
diff --git a/cloudflare/ufw-rm-cf-ip.sh b/cloudflare/ufw-rm-cf-ip.sh
new file mode 100644
index 0000000..990e079
--- /dev/null
+++ b/cloudflare/ufw-rm-cf-ip.sh
@@ -0,0 +1,13 @@
+#!/bin/bash
+
+for ipv4 in `cat ips-v4`
+do
+ sudo ufw delete allow from $ipv4 to any port 80
+ sudo ufw delete allow from $ipv4 to any port 443
+done
+
+for ipv6 in `cat ips-v6`
+do
+ sudo ufw delete allow from $ipv6 to any port 80
+ sudo ufw delete allow from $ipv6 to any port 443
+done \ No newline at end of file
Copyright © 2023 Dejavu Moe. All rights reserved.